-
Notifications
You must be signed in to change notification settings - Fork 88
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
detect/lua/v1: add tests for detect-lua #688
Conversation
Task: 4911
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please check inline comment :)
The CI failure should be fixed by adding a suricata.yaml file, to prevent S-V to looking at the default location for the lua script, I believe.
- filter: | ||
count: 2 | ||
match: | ||
event_type: alert | ||
alert.signature_id: 6677001 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Considering there are two other rules added to the test, can you add filters for those as well, or, if they're not needed for the test, considering the original ones in detect-lua, you could probably remove them.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
friendly ping @TheKharleeci
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks for the friendly ping @catenacyber. I think I'm confused on how to go about this particular test
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
How can we help ?
What about the comments from Juliana ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Currently working on it. Apologies for the late reply
Is this still live ? |
yes please |
Followed By: #1086 |
Includes test for LuaMatchTest01
Link to redmine ticket: https://redmine.openinfosecfoundation.org/issues/4911