Skip to content

dns: adds test for sshfp#1588

Closed
catenacyber wants to merge 1 commit intoOISF:masterfrom
catenacyber:dns-sshfp-schema-5642-v1
Closed

dns: adds test for sshfp#1588
catenacyber wants to merge 1 commit intoOISF:masterfrom
catenacyber:dns-sshfp-schema-5642-v1

Conversation

@catenacyber
Copy link
Collaborator

@catenacyber catenacyber commented Jan 18, 2024

Ticket

Redmine ticket: https://redmine.openinfosecfoundation.org/issues/5642
Or rather https://redmine.openinfosecfoundation.org/issues/6478

But I think there should be its own subticket for dns

Meant to pass with OISF/suricata#10193

@catenacyber catenacyber added the requires suricata pr Depends on a PR in Suricata label Jan 18, 2024
@catenacyber
Copy link
Collaborator Author

catenacyber commented Jan 18, 2024

Current failure :

/Users/catena/catena/prod/suricata-verify/tests/dns/dns-sshfp/output/eve.json - INVALID. Errors:
1./dns/answers/0 Additional properties are not allowed ('sshfp' was unexpected)
2./dns/answers/1 Additional properties are not allowed ('sshfp' was unexpected)
3./dns/grouped Additional properties are not allowed ('SSHFP' was unexpected)
4./dns Additional properties are not allowed ('tc' was unexpected)
===> dns-sshfp: FAILED: Invalid JSON schema

@jasonish is this normal to have uppercase dns.grouped.SSHFP ?

@jasonish
Copy link
Member

jasonish commented Jan 18, 2024

@jasonish is this normal to have uppercase dns.grouped.SSHFP ?

Normal I don't know, per our code its expected - all the type names are logged in uppercase in the groupings.

@catenacyber
Copy link
Collaborator Author

catenacyber commented Jan 18, 2024

@jasonish is this normal to have uppercase dns.grouped.SSHFP ?

Normal I don't know, per our code its expected - all the type names are logged in uppercase in the groupings.

@hadiqaalamdar your job is to make this SV test pass then ;-) also with dns.grouped.SSHFP

@catenacyber catenacyber mentioned this pull request Jan 18, 2024
Closed
3 tasks
@hadiqaalamdar hadiqaalamdar mentioned this pull request Feb 13, 2024
Closed
3 tasks
@hadiqaalamdar
Copy link
Contributor

hadiqaalamdar commented Feb 13, 2024
edited
Loading

created the new schema.json PR: OISF/suricata#10401

@catenacyber catenacyber force-pushed the dns-sshfp-schema-5642-v1 branch from 7490af2 to 83699b6 Compare February 13, 2024 21:02
@hadiqaalamdar hadiqaalamdar mentioned this pull request Feb 15, 2024
Closed
3 tasks
@hadiqaalamdar
Copy link
Contributor

hadiqaalamdar commented Feb 15, 2024

New schema.json PR: OISF/suricata#10429

@catenacyber catenacyber force-pushed the dns-sshfp-schema-5642-v1 branch from 83699b6 to 21fde01 Compare February 15, 2024 08:21
This was referenced Feb 15, 2024
Closed
Closed
Closed
Closed
@victorjulien victorjulien mentioned this pull request Feb 22, 2024
Merged
@victorjulien
Copy link
Member

victorjulien commented Feb 24, 2024

Merged in #1663, thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@victorjulien victorjulien victorjulien approved these changes

Assignees

No one assigned

Labels

requires suricata pr Depends on a PR in Suricata

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@catenacyber @jasonish @hadiqaalamdar @victorjulien