Juliana Fajardini Reichow
Juliana Fajardini Reichow
Link to [redmine](https://redmine.openinfosecfoundation.org/projects/suricata/issues) ticket: https://redmine.openinfosecfoundation.org/issues/5524 https://redmine.openinfosecfoundation.org/issues/5566 Describe changes: - Add events to pgsql, so when there's a recoverable error the parser can offer insight into what's wrong, and still parse...
Link to [redmine](https://redmine.openinfosecfoundation.org/projects/suricata/issues) ticket: https://redmine.openinfosecfoundation.org/issues/5816 Previous PR: https://github.com/OISF/suricata/pull/10264 **Disclaimer:** this code triggers a `stack use after scope` error related, I think, to how I'm trying to "automate" the counter ids...
When I was checking a PR by another contributor, I noticed that the links were still pointing to Redmine and suricata-ids. Link to [redmine](https://redmine.openinfosecfoundation.org/projects/suricata/issues) ticket: none Describe changes: - replace...
Previous PR: https://github.com/OISF/suricata/pull/10997 Changes from last PR: - remove changes to `template.rs` as per Jason's analysis Link to [redmine](https://redmine.openinfosecfoundation.org/projects/suricata/issues) ticket: https://redmine.openinfosecfoundation.org/issues/6983 https://redmine.openinfosecfoundation.org/issues/7000 Provide values to any of the below to...
While working for alert metadata testing for PGSQL, I was looking for more info on `pkt-data` and realized we didn't have a rules-guide entry for it. The description here is...
Related to Bug #6983 Previous PR: #1796 Changes from last PR: - use `content` instead of `pkt_data` - check for more meaningful (and longer) string - add a check for...
This test indicated that there were FP drops for http and that another check was failing, but currently the are no more FP for HTTP. Updated the checks to reflect...
It seems that in certain cases as seen in this test, flow.action isn't updated, even if, say, all packets from the flow are dropped. Maybe this is due to the...
This test indicated that there were FP drops for HTTP transactions, leading the `http` events check to fail. This is no longer the case. flow.action is still not set to...
Check for transaction metadata in PGSQL alerts. Add `engine-analysis` tests for the used rules, as well, to better describe them and compare with expected behavior. Related to Task #7000 https://github.com/OISF/suricata-verify/pull/1990...