Feature #2923
closed
suricata-verify: eve2test util
Added by Victor Julien over 5 years ago.
Updated over 4 years ago.
Description
The suricata-verify test.yaml contains a great way to create regression tests. However creating the test files is tedious. It usually involves taking a eve.json record and then manually creating a matching test.yaml.
I would like to have a small util script in python, that converts an eve.json to the test.yaml format.
Something like:
eve2test eve.json > test.yaml
- Status changed from New to Assigned
If I understand correctly, only the verification filters are run over `eve.json` so this utility should actually create just the `filter` block and write it in a test file. Developer may then provide all other options like min-version of Suricata, requires, etc. Please let me know.
Lets start that way, yes. We can consider adding more logic later, but this is the most valuable first step I think.
- Status changed from Assigned to Feedback
- Target version changed from TBD to QA
- Priority changed from Normal to High
- Related to Task #3269: Script for creating test with params added
- Status changed from Feedback to In Review
- Status changed from In Review to Closed
Also available in: Atom
PDF