Actions
Task #7627
open
JF
JI
events/rules: prevent ruleset loading blocks from name fixes
Task #7627:
events/rules: prevent ruleset loading blocks from name fixes
Effort:
Difficulty:
Label:
Description
#7361 had an unexpected effect of blocking the load of rule sets that used rules that previously would just silently fail if they used unknown events.
For dot releases, we want to avoid that. We also want to fix the rule set blocking outcome, for 7.
JF Updated by Juliana Fajardini Reichow about 1 year ago
- Related to Task #7626: tests: test rules shipped w/ Suricata for each release added
JF Updated by Juliana Fajardini Reichow about 1 year ago
- Label Needs backport to 7.0 added
OT Updated by OISF Ticketbot about 1 year ago
- Subtask #7660 added
OT Updated by OISF Ticketbot about 1 year ago
- Label deleted (
Needs backport to 7.0)
VJ Updated by Victor Julien 11 months ago
- Target version changed from 8.0.0-rc1 to 9.0.0-beta1
VJ Updated by Victor Julien 6 months ago
It's unclear if there is anything we want to change here. Invalid rules should be flagged, and we have strict mode to handle the subtleties.
JI Updated by Jason Ish about 1 month ago
I've rejected this for 7.0, I think we work as designed. We have no 8.0 backport ticket. But I think we still work as designed, and we should probably reject this as well.
Actions