config: add tests for ipproto + appproto combinations

Bug 8205

Author: inashivb

tests/bug-8205/bug-8205-g0-t0-u0/suricata.yaml

@@ -0,0 +1,17 @@
+%YAML 1.1
+---
+
+app-layer:
+  protocols:
+    dns:
+      enabled: no
+      tcp:
+        enabled: no
+      udp:
+        enabled: no
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns
+

tests/bug-8205/bug-8205-g0-t0-u0/test.yaml

@@ -0,0 +1,10 @@
+requires:
+  min-version: 9
+
+pcap: ../../dns/dns-frames/input.pcap
+
+checks:
+  - filter:
+      count: 0
+      match:
+        event_type: dns

tests/bug-8205/bug-8205-g0-t0-u1/suricata.yaml

@@ -0,0 +1,17 @@
+%YAML 1.1
+---
+
+app-layer:
+  protocols:
+    dns:
+      enabled: no
+      tcp:
+        enabled: no
+      udp:
+        enabled: yes
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns
+

tests/bug-8205/bug-8205-g0-t0-u1/test.yaml

@@ -0,0 +1,19 @@
+requires:
+  min-version: 9
+
+pcap: ../../dns/dns-frames/input.pcap
+
+checks:
+  - filter:
+      count: 0
+      match:
+        event_type: dns
+        proto: TCP
+  - filter:
+      count: 2
+      match:
+        event_type: dns
+        proto: UDP
+  - shell:
+      args: |
+        grep -q "Warning: app-layer-detect-proto: Inconsistent global (FALSE) and respective ipproto (TRUE) settings found for alproto dns and ipproto udp" stdout

tests/bug-8205/bug-8205-g0-t1-u0/suricata.yaml

@@ -0,0 +1,17 @@
+%YAML 1.1
+---
+
+app-layer:
+  protocols:
+    dns:
+      enabled: no
+      tcp:
+        enabled: yes
+      udp:
+        enabled: no
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns
+

tests/bug-8205/bug-8205-g0-t1-u0/test.yaml

@@ -0,0 +1,19 @@
+requires:
+  min-version: 9
+
+pcap: ../../dns/dns-frames/input.pcap
+
+checks:
+  - filter:
+      count: 0
+      match:
+        event_type: dns
+        proto: UDP
+  - filter:
+      count: 2
+      match:
+        event_type: dns
+        proto: TCP
+  - shell:
+      args: |
+        grep -q "Warning: app-layer-detect-proto: Inconsistent global (FALSE) and respective ipproto (TRUE) settings found for alproto dns and ipproto tcp" stdout

tests/bug-8205/bug-8205-g0-t1-u1/suricata.yaml

@@ -0,0 +1,17 @@
+%YAML 1.1
+---
+
+app-layer:
+  protocols:
+    dns:
+      enabled: no
+      tcp:
+        enabled: yes
+      udp:
+        enabled: yes
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns
+

tests/bug-8205/bug-8205-g0-t1-u1/test.yaml

@@ -0,0 +1,22 @@
+requires:
+  min-version: 9
+
+pcap: ../../dns/dns-frames/input.pcap
+
+checks:
+  - filter:
+      count: 2
+      match:
+        event_type: dns
+        proto: UDP
+  - filter:
+      count: 2
+      match:
+        event_type: dns
+        proto: TCP
+  - shell:
+      args: |
+        grep -q "Warning: app-layer-detect-proto: Inconsistent global (FALSE) and respective ipproto (TRUE) settings found for alproto dns and ipproto tcp" stdout
+  - shell:
+      args: |
+        grep -q "Warning: app-layer-detect-proto: Inconsistent global (FALSE) and respective ipproto (TRUE) settings found for alproto dns and ipproto udp" stdout

tests/bug-8205/bug-8205-g1-t0-u0/suricata.yaml

@@ -0,0 +1,17 @@
+%YAML 1.1
+---
+
+app-layer:
+  protocols:
+    dns:
+      enabled: yes
+      tcp:
+        enabled: no
+      udp:
+        enabled: no
+outputs:
+  - eve-log:
+      enabled: yes
+      types:
+        - dns
+

tests/bug-8205/bug-8205-g1-t0-u0/test.yaml

@@ -0,0 +1,22 @@
+requires:
+  min-version: 9
+
+pcap: ../../dns/dns-frames/input.pcap
+
+checks:
+  - filter:
+      count: 0
+      match:
+        event_type: dns
+        proto: UDP
+  - filter:
+      count: 0
+      match:
+        event_type: dns
+        proto: TCP
+  - shell:
+      args: |
+        grep -q "Warning: app-layer-detect-proto: Inconsistent global (TRUE) and respective ipproto (FALSE) settings found for alproto dns and ipproto tcp" stdout
+  - shell:
+      args: |
+        grep -q "Warning: app-layer-detect-proto: Inconsistent global (TRUE) and respective ipproto (FALSE) settings found for alproto dns and ipproto udp" stdout