suricata dns: unify dns eve object; add additionals section

dns: unify dns eve object; add additionals section - v5

Open jasonish opened this issue 3 weeks ago • 6 comments

Previous PR: https://github.com/OISF/suricata/pull/11283

https://redmine.openinfosecfoundation.org/issues/7011 https://redmine.openinfosecfoundation.org/issues/7017 https://redmine.openinfosecfoundation.org/issues/6281

Changes from last PR:

address comments
log all sections, not just queries in requests
merge in additionals: https://github.com/OISF/suricata/pull/11263
remove unused schema elements

SV_BRANCH=https://github.com/OISF/suricata-verify/pull/1916

Jun 13 '24 22:06 jasonish

suricata suricata copied to clipboard

dns: unify dns eve object; add additionals section - v5

suricata
suricata copied to clipboard