dns-tcp-www-google-com: v2 and v3 tests

OISF · Jul 5, 2024 · 9135570 · 9135570
1 parent ba8a520
commit 9135570
Show file tree

Hide file tree

Showing 6 changed files with 33 additions and 5 deletions.
diff --git a/tests/dns-tcp-www-google-com/README.md → tests/dns/dns-tcp-www-google-com/README.md b/tests/dns-tcp-www-google-com/README.md → tests/dns/dns-tcp-www-google-com/README.md
diff --git a/tests/dns-tcp-www-google-com/suricata.yaml → .../dns/dns-tcp-www-google-com/suricata.yaml b/tests/dns-tcp-www-google-com/suricata.yaml → .../dns/dns-tcp-www-google-com/suricata.yaml
diff --git a/tests/dns/dns-tcp-www-google-com/test.yaml b/tests/dns/dns-tcp-www-google-com/test.yaml
@@ -0,0 +1,17 @@
+pcap: ../../dns-tcp-www-google-com-v1/dns.pcap
+
+checks:
+  - filter:
+      count: 1
+      match:
+        src_ip: "10.16.1.11"
+        dest_ip: "8.8.4.4"
+        event_type: dns
+        dns.type: request
+  - filter:
+      count: 1
+      match:
+        src_ip: "10.16.1.11"
+        dest_ip: "8.8.4.4"
+        event_type: dns
+        dns.type: response
diff --git a/tests/dns/v2/dns-tcp-www-google-com/README.md b/tests/dns/v2/dns-tcp-www-google-com/README.md
@@ -0,0 +1,2 @@
+A basic TCP DNS test that sends one request with a response that
+contains multiple answers.
diff --git a/tests/dns/v2/dns-tcp-www-google-com/suricata.yaml b/tests/dns/v2/dns-tcp-www-google-com/suricata.yaml
@@ -0,0 +1,13 @@
+%YAML 1.1
+---
+
+# Remove stats logging.
+stats:
+  enabled: no
+
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns:
+            version: 2
diff --git a/tests/dns-tcp-www-google-com/test.yaml → ...s/dns/v2/dns-tcp-www-google-com/test.yaml b/tests/dns-tcp-www-google-com/test.yaml → ...s/dns/v2/dns-tcp-www-google-com/test.yaml
@@ -1,8 +1,4 @@
-pcap: ../dns-tcp-www-google-com-v1/dns.pcap
-
-requires:
-  features:
-    - HAVE_LIBJANSSON
+pcap: ../../../dns-tcp-www-google-com-v1/dns.pcap
 
 checks:
   - filter: