Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Merge remote-tracking branch 'origin/topic/bbannier/readability-isolate-declaration'

Browse source 
* origin/topic/bbannier/readability-isolate-declaration:
  Make clang-tidy warnings report as errors to cause CI build to fail
  Fix a clang-tidy finding in cluster telemetry code
  Fix clang-tidy readability-isolate-declaration warnings
This commit is contained in:
Tim Wojtulewicz 2025-06-30 14:19:26 -07:00
commit 5daa83bfa4
35 changed files with 161 additions and 83 deletions
Download patch file Download diff file Expand all files Collapse all files

2
.clang-tidy
View file

@ -2,6 +2,7 @@ Checks: [-*,
bugprone-*, bugprone-*,
performance-*, performance-*,
modernize-*, modernize-*,
readability-isolate-declaration,
# Enable a very limited number of the cppcoreguidelines checkers. # Enable a very limited number of the cppcoreguidelines checkers.
# See the notes for some of the rest of them below. # See the notes for some of the rest of them below.
@ -71,3 +72,4 @@ SystemHeaders: false
CheckOptions: CheckOptions:
- key: modernize-use-default-member-init.UseAssignment - key: modernize-use-default-member-init.UseAssignment
value: 'true' value: 'true'
WarningsAsErrors: '*'

15
CHANGES
View file

@ -1,3 +1,18 @@
8.0.0-dev.566 | 2025-06-30 14:19:26 -0700
* Make clang-tidy warnings report as errors to cause CI build to fail (Tim Wojtulewicz, Corelight)
* Fix a clang-tidy finding in cluster telemetry code (Tim Wojtulewicz, Corelight)
* Fix clang-tidy readability-isolate-declaration warnings (Benjamin Bannier, Corelight)
I missed one of these in review so a machine is probably better at
catching them.
I fixed the existing instances which where largely in code which look
dated. Where possible I slightly reorganized the code so we do not have
to leave values uninitialized, but did not touch up anything else.
8.0.0-dev.562 | 2025-06-30 17:55:58 +0200 8.0.0-dev.562 | 2025-06-30 17:55:58 +0200
* cluster/WebSocket: Include X-Application-Name in cluster.log (Arne Welzel, Corelight) * cluster/WebSocket: Include X-Application-Name in cluster.log (Arne Welzel, Corelight)

2
VERSION
View file

@ -1 +1 @@
8.0.0-dev.562 8.0.0-dev.566

2
auxil/binpac

@ -1 +1 @@
Subproject commit 482afe31fb1e8b533f262b8f175d89d4cd972dda Subproject commit 25451ee80040d6a1addc186c3ed03e13ce7d4654

18
src/Base64.cc
View file

@ -217,17 +217,19 @@ String* decode_base64(const String* s, const String* a, Connection* conn) {
} }
int buf_len = int((s->Len() + 3) / 4) * 3 + 1; int buf_len = int((s->Len() + 3) / 4) * 3 + 1;
int rlen2, rlen = buf_len; int rlen = buf_len;
char *rbuf2, *rbuf = new char[rlen]; char* rbuf = new char[rlen];
Base64Converter dec(conn, a ? a->CheckString() : ""); Base64Converter dec(conn, a ? a->CheckString() : "");
dec.Decode(s->Len(), (const char*)s->Bytes(), &rlen, &rbuf); dec.Decode(s->Len(), (const char*)s->Bytes(), &rlen, &rbuf);
if ( dec.Errored() ) if ( dec.Errored() ) {
goto err; delete[] rbuf;
return nullptr;
}
rlen2 = buf_len - rlen; int rlen2 = buf_len - rlen;
rbuf2 = rbuf + rlen; char* rbuf2 = rbuf + rlen;
// Done() returns -1 if there isn't enough padding, but we just ignore // Done() returns -1 if there isn't enough padding, but we just ignore
// it. // it.
dec.Done(&rlen2, &rbuf2); dec.Done(&rlen2, &rbuf2);
@ -235,10 +237,6 @@ String* decode_base64(const String* s, const String* a, Connection* conn) {
rbuf[rlen] = '\0'; rbuf[rlen] = '\0';
return new String(true, (u_char*)rbuf, rlen); return new String(true, (u_char*)rbuf, rlen);
err:
delete[] rbuf;
return nullptr;
} }
String* encode_base64(const String* s, const String* a, Connection* conn) { String* encode_base64(const String* s, const String* a, Connection* conn) {

3
src/DNS_Mapping.cc
View file

@ -43,7 +43,8 @@ DNS_Mapping::DNS_Mapping(FILE* f) {
return; return;
} }
char req_buf[512 + 1], name_buf[512 + 1]; char req_buf[512 + 1];
char name_buf[512 + 1];
int is_req_host; int is_req_host;
int failed_local; int failed_local;
int num_addrs; int num_addrs;

4
src/DNS_Mgr.cc
View file

@ -872,9 +872,9 @@ void DNS_Mgr::Lookup(const std::string& name, int request_type, LookupCallback*
void DNS_Mgr::Resolve() { void DNS_Mgr::Resolve() {
int nfds = 0; int nfds = 0;
struct timeval *tvp, tv;
struct pollfd pollfds[1024]; struct pollfd pollfds[1024];
struct timeval tv;
tv.tv_sec = DNS_TIMEOUT; tv.tv_sec = DNS_TIMEOUT;
tv.tv_usec = 0; tv.tv_usec = 0;
@ -903,7 +903,7 @@ void DNS_Mgr::Resolve() {
} }
// poll() timeout is in milliseconds. // poll() timeout is in milliseconds.
tvp = ares_timeout(channel, &tv, &tv); struct timeval* tvp = ares_timeout(channel, &tv, &tv);
int timeout_ms = tvp->tv_sec * 1000 + tvp->tv_usec / 1000; int timeout_ms = tvp->tv_sec * 1000 + tvp->tv_usec / 1000;
int res = poll(pollfds, nfds, timeout_ms); int res = poll(pollfds, nfds, timeout_ms);

3
src/Dict.h
View file

@ -582,7 +582,8 @@ public:
// Look to see if this key is already in the table. If found, insert_position is the // Look to see if this key is already in the table. If found, insert_position is the
// position of the existing element. If not, insert_position is where it'll be inserted // position of the existing element. If not, insert_position is where it'll be inserted
// and insert_distance is the distance of the key for the position. // and insert_distance is the distance of the key for the position.
int insert_position = -1, insert_distance = -1; int insert_position = -1;
int insert_distance = -1;
int position = LookupIndex(key, key_size, hash, &insert_position, &insert_distance); int position = LookupIndex(key, key_size, hash, &insert_position, &insert_distance);
if ( position >= 0 ) { if ( position >= 0 ) {
v = table[position].value; v = table[position].value;

39
src/Expr.cc
View file

@ -718,9 +718,15 @@ ValPtr BinaryExpr::Fold(Val* v1, Val* v2) const {
if ( it == TYPE_INTERNAL_SUBNET ) if ( it == TYPE_INTERNAL_SUBNET )
return SubNetFold(v1, v2); return SubNetFold(v1, v2);
zeek_int_t i1 = 0, i2 = 0, i3 = 0; zeek_int_t i1 = 0;
zeek_uint_t u1 = 0, u2 = 0, u3 = 0; zeek_int_t i2 = 0;
double d1 = 0.0, d2 = 0.0, d3 = 0.0; zeek_int_t i3 = 0;
zeek_uint_t u1 = 0;
zeek_uint_t u2 = 0;
zeek_uint_t u3 = 0;
double d1 = 0.0;
double d2 = 0.0;
double d3 = 0.0;
bool is_integral = false; bool is_integral = false;
bool is_unsigned = false; bool is_unsigned = false;
@ -1382,7 +1388,8 @@ AddExpr::AddExpr(ExprPtr arg_op1, ExprPtr arg_op2) : BinaryExpr(EXPR_ADD, std::m
if ( IsError() ) if ( IsError() )
return; return;
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1572,7 +1579,8 @@ SubExpr::SubExpr(ExprPtr arg_op1, ExprPtr arg_op2) : BinaryExpr(EXPR_SUB, std::m
const auto& t1 = op1->GetType(); const auto& t1 = op1->GetType();
const auto& t2 = op2->GetType(); const auto& t2 = op2->GetType();
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1663,7 +1671,8 @@ TimesExpr::TimesExpr(ExprPtr arg_op1, ExprPtr arg_op2)
Canonicalize(); Canonicalize();
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1690,7 +1699,8 @@ DivideExpr::DivideExpr(ExprPtr arg_op1, ExprPtr arg_op2)
if ( IsError() ) if ( IsError() )
return; return;
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1718,7 +1728,8 @@ MaskExpr::MaskExpr(ExprPtr arg_op1, ExprPtr arg_op2) : BinaryExpr(EXPR_MASK, std
if ( IsError() ) if ( IsError() )
return; return;
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1754,7 +1765,8 @@ ModExpr::ModExpr(ExprPtr arg_op1, ExprPtr arg_op2) : BinaryExpr(EXPR_MOD, std::m
if ( IsError() ) if ( IsError() )
return; return;
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1769,7 +1781,8 @@ BoolExpr::BoolExpr(ExprTag arg_tag, ExprPtr arg_op1, ExprPtr arg_op2)
if ( IsError() ) if ( IsError() )
return; return;
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -1958,7 +1971,8 @@ EqExpr::EqExpr(ExprTag arg_tag, ExprPtr arg_op1, ExprPtr arg_op2)
const auto& t1 = op1->GetType(); const auto& t1 = op1->GetType();
const auto& t2 = op2->GetType(); const auto& t2 = op2->GetType();
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;
@ -2048,7 +2062,8 @@ RelExpr::RelExpr(ExprTag arg_tag, ExprPtr arg_op1, ExprPtr arg_op2)
const auto& t1 = op1->GetType(); const auto& t1 = op1->GetType();
const auto& t2 = op2->GetType(); const auto& t2 = op2->GetType();
TypeTag bt1, bt2; TypeTag bt1;
TypeTag bt2;
if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) ) if ( ! get_types_from_scalars_or_vectors(this, bt1, bt2) )
return; return;

4
src/IP.cc
View file

@ -463,8 +463,8 @@ IPv6_Hdr_Chain::~IPv6_Hdr_Chain() {
void IPv6_Hdr_Chain::Init(const struct ip6_hdr* ip6, uint64_t total_len, bool set_next, uint16_t next) { void IPv6_Hdr_Chain::Init(const struct ip6_hdr* ip6, uint64_t total_len, bool set_next, uint16_t next) {
length = 0; length = 0;
uint8_t current_type, next_type; uint8_t current_type;
next_type = IPPROTO_IPV6; uint8_t next_type = IPPROTO_IPV6;
const u_char* hdrs = (const u_char*)ip6; const u_char* hdrs = (const u_char*)ip6;
if ( total_len < (int)sizeof(struct ip6_hdr) ) { if ( total_len < (int)sizeof(struct ip6_hdr) ) {

8
src/IPAddr.cc
View file

@ -59,8 +59,12 @@ ConnKey::ConnKey(Val* v) {
RecordType* vr = vt->AsRecordType(); RecordType* vr = vt->AsRecordType();
auto vl = v->As<RecordVal*>(); auto vl = v->As<RecordVal*>();
int orig_h, orig_p; // indices into record's value list // indices into record's value list
int resp_h, resp_p; int orig_h;
int orig_p;
int resp_h;
int resp_p;
int proto; int proto;
if ( vr == id::conn_id ) { if ( vr == id::conn_id ) {

5
src/ScriptProfile.cc
View file

@ -44,7 +44,10 @@ void ScriptProfile::Report(FILE* f, bool with_traces) const {
std::string call_stacks; std::string call_stacks;
if ( with_traces ) { if ( with_traces ) {
std::string calls, counts, cpu, memory; std::string calls;
std::string counts;
std::string cpu;
std::string memory;
for ( const auto& [s, stats] : Stacks() ) { for ( const auto& [s, stats] : Stacks() ) {
calls += util::fmt("%s|", s.c_str()); calls += util::fmt("%s|", s.c_str());

18
src/SmithWaterman.cc
View file

@ -227,7 +227,8 @@ private:
// //
static void sw_collect_single(Substring::Vec* result, SWNodeMatrix& matrix, SWNode* node, SWParams& params) { static void sw_collect_single(Substring::Vec* result, SWNodeMatrix& matrix, SWNode* node, SWParams& params) {
std::string substring(""); std::string substring("");
int row = 0, col = 0; int row = 0;
int col = 0;
while ( node ) { while ( node ) {
// printf("NODE: %i\n", node->id); // printf("NODE: %i\n", node->id);
@ -346,10 +347,11 @@ Substring::Vec* smith_waterman(const String* s1, const String* s2, SWParams& par
// Length of both strings, plus one because SW needs // Length of both strings, plus one because SW needs
// an extra row and column. // an extra row and column.
// //
int i, len1 = s1->Len() + 1; int len1 = s1->Len() + 1;
int j, len2 = s2->Len() + 1; int len2 = s2->Len() + 1;
int row = 0, col = 0; int row = 0;
int col = 0;
byte_vec string1 = s1->Bytes(); byte_vec string1 = s1->Bytes();
byte_vec string2 = s2->Bytes(); byte_vec string2 = s2->Bytes();
@ -374,14 +376,14 @@ Substring::Vec* smith_waterman(const String* s1, const String* s2, SWParams& par
int counter = 1; int counter = 1;
for ( i = 1; i < len1; ++i ) for ( int i = 1; i < len1; ++i )
for ( j = 1; j < len2; ++j ) for ( int j = 1; j < len2; ++j )
matrix(i, j)->id = counter++; matrix(i, j)->id = counter++;
// Subsequence calculation -------------------------------------------- // Subsequence calculation --------------------------------------------
for ( i = 1; i < len1; ++i ) { for ( int i = 1; i < len1; ++i ) {
for ( j = 1; j < len2; ++j ) { for ( int j = 1; j < len2; ++j ) {
// Current node, top/left neighbours. // Current node, top/left neighbours.
// //
SWNode* current = matrix(i, j); SWNode* current = matrix(i, j);

3
src/Stats.cc
View file

@ -87,7 +87,8 @@ void ProfileLogger::Log() {
struct timeval tv_utime = r.ru_utime; struct timeval tv_utime = r.ru_utime;
struct timeval tv_stime = r.ru_stime; struct timeval tv_stime = r.ru_stime;
uint64_t total, malloced; uint64_t total;
uint64_t malloced;
util::get_memory_usage(&total, &malloced); util::get_memory_usage(&total, &malloced);
static unsigned int first_total = 0; static unsigned int first_total = 0;

3
src/analyzer/protocol/http/HTTP.cc
View file

@ -375,7 +375,8 @@ void HTTP_Entity::SubmitHeader(analyzer::mime::MIME_Header* h) {
DEBUG_MSG("Parsed Content-Range: %s %s-%s/%s\n", byte_unit.c_str(), first_byte_pos.c_str(), DEBUG_MSG("Parsed Content-Range: %s %s-%s/%s\n", byte_unit.c_str(), first_byte_pos.c_str(),
last_byte_pos.c_str(), instance_length_str.c_str()); last_byte_pos.c_str(), instance_length_str.c_str());
int64_t f, l; int64_t f;
int64_t l;
int fr = util::atoi_n(first_byte_pos.size(), first_byte_pos.c_str(), nullptr, 10, f); int fr = util::atoi_n(first_byte_pos.size(), first_byte_pos.c_str(), nullptr, 10, f);
int lr = util::atoi_n(last_byte_pos.size(), last_byte_pos.c_str(), nullptr, 10, l); int lr = util::atoi_n(last_byte_pos.size(), last_byte_pos.c_str(), nullptr, 10, l);
if ( fr != 1 || lr != 1 ) { if ( fr != 1 || lr != 1 ) {

6
src/analyzer/protocol/ident/Ident.cc
View file

@ -39,7 +39,6 @@ void Ident_Analyzer::Done() {
void Ident_Analyzer::DeliverStream(int length, const u_char* data, bool is_orig) { void Ident_Analyzer::DeliverStream(int length, const u_char* data, bool is_orig) {
analyzer::tcp::TCP_ApplicationAnalyzer::DeliverStream(length, data, is_orig); analyzer::tcp::TCP_ApplicationAnalyzer::DeliverStream(length, data, is_orig);
int remote_port, local_port;
const char* line = (const char*)data; const char* line = (const char*)data;
const char* orig_line = line; const char* orig_line = line;
const char* end_of_line = line + length; const char* end_of_line = line + length;
@ -56,7 +55,10 @@ void Ident_Analyzer::DeliverStream(int length, const u_char* data, bool is_orig)
if ( ! ident_request ) if ( ! ident_request )
return; return;
int remote_port;
int local_port;
line = ParsePair(line, end_of_line, remote_port, local_port); line = ParsePair(line, end_of_line, remote_port, local_port);
if ( ! line ) { if ( ! line ) {
if ( s && s->state == analyzer::tcp::TCP_ENDPOINT_CLOSED && if ( s && s->state == analyzer::tcp::TCP_ENDPOINT_CLOSED &&
(s->prev_state == analyzer::tcp::TCP_ENDPOINT_INACTIVE || (s->prev_state == analyzer::tcp::TCP_ENDPOINT_INACTIVE ||
@ -83,6 +85,8 @@ void Ident_Analyzer::DeliverStream(int length, const u_char* data, bool is_orig)
if ( ! ident_reply ) if ( ! ident_reply )
return; return;
int remote_port;
int local_port;
line = ParsePair(line, end_of_line, remote_port, local_port); line = ParsePair(line, end_of_line, remote_port, local_port);
if ( ! line || line == end_of_line || line[0] != ':' ) { if ( ! line || line == end_of_line || line[0] != ':' ) {

6
src/analyzer/protocol/krb/krb-analyzer.pac
View file

@ -94,8 +94,10 @@ zeek::RecordValPtr proc_krb_kdc_req_arguments(KRB_KDC_REQ* msg, const ZeekAnalyz
bool proc_error_arguments(zeek::RecordVal* rv, const std::vector<KRB_ERROR_Arg*>* args, int64 error_code ) bool proc_error_arguments(zeek::RecordVal* rv, const std::vector<KRB_ERROR_Arg*>* args, int64 error_code )
{ {
uint ctime_i = 0, stime_i = 0; uint ctime_i = 0;
int64 ctime_usecs = 0, stime_usecs = 0; uint stime_i = 0;
int64 ctime_usecs = 0;
int64 stime_usecs = 0;
// We need to do a pass first, to see if we have microseconds for the timestamp values, which are optional // We need to do a pass first, to see if we have microseconds for the timestamp values, which are optional

4
src/analyzer/protocol/login/Login.cc
View file

@ -76,8 +76,8 @@ void Login_Analyzer::DeliverStream(int length, const u_char* line, bool orig) {
char* str = new char[length + 1]; char* str = new char[length + 1];
// Eliminate NUL characters. // Eliminate NUL characters.
int i, j; int j = 0;
for ( i = 0, j = 0; i < length; ++i ) for ( int i = 0; i < length; ++i )
if ( line[i] != '\0' ) if ( line[i] != '\0' )
str[j++] = line[i]; str[j++] = line[i];
else { else {

3
src/analyzer/protocol/login/NVT.cc
View file

@ -239,7 +239,8 @@ void TelnetEnvironmentOption::RecvSubOption(u_char* data, int len) {
++data; ++data;
while ( len > 0 ) { while ( len > 0 ) {
int code1, code2; int code1;
int code2;
char* var_name = ExtractEnv(data, len, code1); char* var_name = ExtractEnv(data, len, code1);
char* var_val = ExtractEnv(data, len, code2); char* var_val = ExtractEnv(data, len, code2);

11
src/analyzer/protocol/mime/MIME.cc
View file

@ -681,10 +681,10 @@ bool MIME_Entity::ParseContentTypeField(MIME_Header* h) {
int len = val.length; int len = val.length;
const char* data = val.data; const char* data = val.data;
data_chunk_t ty, subty; data_chunk_t ty;
int offset; data_chunk_t subty;
int offset = MIME_get_slash_token_pair(len, data, &ty, &subty);
offset = MIME_get_slash_token_pair(len, data, &ty, &subty);
if ( offset < 0 ) { if ( offset < 0 ) {
IllegalFormat("media type/subtype not found in content type"); IllegalFormat("media type/subtype not found in content type");
return false; return false;
@ -930,9 +930,8 @@ void MIME_Entity::DecodeQuotedPrintable(int len, const char* data) {
else { else {
int legal = 0; int legal = 0;
if ( i + 2 < len ) { if ( i + 2 < len ) {
int a, b; int a = util::decode_hex(data[i + 1]);
a = util::decode_hex(data[i + 1]); int b = util::decode_hex(data[i + 2]);
b = util::decode_hex(data[i + 2]);
if ( a >= 0 && b >= 0 ) { if ( a >= 0 && b >= 0 ) {
DataOctet((a << 4) + b); DataOctet((a << 4) + b);

4
src/analyzer/protocol/netbios/functions.bif
View file

@ -27,10 +27,10 @@ function decode_netbios_name%(name: string%): string
unsigned char buf[16]; unsigned char buf[16];
const u_char* s = name->Bytes(); const u_char* s = name->Bytes();
int i, j;
int length = 0; int length = 0;
for ( i = 0, j = 0; i < 16; ++i ) int j = 0;
for ( int i = 0; i < 16; ++i ) // NOLINT(modernize-loop-convert)
{ {
char c0 = netbios_toupper(s[j++]); char c0 = netbios_toupper(s[j++]);
char c1 = netbios_toupper(s[j++]); char c1 = netbios_toupper(s[j++]);

3
src/analyzer/protocol/quic/decrypt_crypto.cc
View file

@ -151,7 +151,8 @@ Function that calls the AEAD decryption routine, and returns the decrypted data.
*/ */
hilti::rt::Bytes decrypt(const std::vector<uint8_t>& client_key, const hilti::rt::Bytes& data, uint64_t payload_length, hilti::rt::Bytes decrypt(const std::vector<uint8_t>& client_key, const hilti::rt::Bytes& data, uint64_t payload_length,
const DecryptionInformation& decryptInfo) { const DecryptionInformation& decryptInfo) {
int out, out2; int out = 0;
int out2 = 0;
if ( payload_length < decryptInfo.packet_number_length + AEAD_TAG_LENGTH ) if ( payload_length < decryptInfo.packet_number_length + AEAD_TAG_LENGTH )
throw hilti::rt::RuntimeError(hilti::rt::fmt("payload too small %ld < %ld", payload_length, throw hilti::rt::RuntimeError(hilti::rt::fmt("payload too small %ld < %ld", payload_length,

3
src/analyzer/protocol/ssl/SSL.cc
View file

@ -141,7 +141,8 @@ std::optional<std::vector<u_char>> SSL_Analyzer::TLS12_PRF(const std::string& se
// alloc context + params // alloc context + params
EVP_KDF* kdf = EVP_KDF_fetch(nullptr, "TLS1-PRF", nullptr); EVP_KDF* kdf = EVP_KDF_fetch(nullptr, "TLS1-PRF", nullptr);
EVP_KDF_CTX* kctx = EVP_KDF_CTX_new(kdf); EVP_KDF_CTX* kctx = EVP_KDF_CTX_new(kdf);
OSSL_PARAM params[4], *p = params; OSSL_PARAM params[4];
OSSL_PARAM* p = params;
EVP_KDF_free(kdf); EVP_KDF_free(kdf);
#else /* OSSL 3 */ #else /* OSSL 3 */
// alloc buffers // alloc buffers

3
src/cluster/Telemetry.h
View file

@ -3,6 +3,7 @@
#pragma once #pragma once
#include <cstddef> #include <cstddef>
#include <cstdint>
#include <functional> #include <functional>
#include <memory> #include <memory>
#include <string> #include <string>
@ -38,7 +39,7 @@ class Backend;
namespace detail { namespace detail {
enum class TelemetryScope { enum class TelemetryScope : uint8_t {
Core, Core,
WebSocket, WebSocket,
}; };

7
src/file_analysis/analyzer/entropy/Entropy.cc
View file

@ -45,8 +45,11 @@ void Entropy::Finalize() {
if ( ! file_entropy ) if ( ! file_entropy )
return; return;
double montepi, scc, ent, mean, chisq; double montepi = 0;
montepi = scc = ent = mean = chisq = 0.0; double scc = 0;
double ent = 0;
double mean = 0;
double chisq = 0;
entropy->Get(&ent, &chisq, &mean, &montepi, &scc); entropy->Get(&ent, &chisq, &mean, &montepi, &scc);
static auto entropy_test_result = id::find_type<RecordType>("entropy_test_result"); static auto entropy_test_result = id::find_type<RecordType>("entropy_test_result");

3
src/file_analysis/analyzer/x509/OCSP.cc
View file

@ -392,7 +392,8 @@ void OCSP::ParseResponse(OCSP_RESPONSE* resp) {
const ASN1_GENERALIZEDTIME* produced_at = nullptr; const ASN1_GENERALIZEDTIME* produced_at = nullptr;
const STACK_OF(X509)* certs = nullptr; const STACK_OF(X509)* certs = nullptr;
int resp_count, num_ext = 0; int resp_count;
int num_ext = 0;
VectorVal* certs_vector = nullptr; VectorVal* certs_vector = nullptr;
int len = 0; int len = 0;

28
src/packet_analysis/protocol/icmp/ICMP.cc
View file

@ -250,13 +250,17 @@ TransportProto ICMPAnalyzer::GetContextProtocol(const IP_Hdr* ip_hdr, uint32_t*
} }
zeek::RecordValPtr ICMPAnalyzer::ExtractICMP4Context(int len, const u_char*& data) { zeek::RecordValPtr ICMPAnalyzer::ExtractICMP4Context(int len, const u_char*& data) {
uint32_t ip_len, frag_offset; uint32_t ip_len;
uint32_t frag_offset;
bool bad_hdr_len = false; bool bad_hdr_len = false;
bool bad_checksum = false; bool bad_checksum = false;
TransportProto proto = TRANSPORT_UNKNOWN; TransportProto proto = TRANSPORT_UNKNOWN;
int DF, MF; int DF;
IPAddr src_addr, dst_addr; int MF;
uint32_t src_port, dst_port; IPAddr src_addr;
IPAddr dst_addr;
uint32_t src_port;
uint32_t dst_port;
if ( len < (int)sizeof(struct ip) ) { if ( len < (int)sizeof(struct ip) ) {
// We don't have an entire IP header. // We don't have an entire IP header.
@ -322,13 +326,17 @@ zeek::RecordValPtr ICMPAnalyzer::ExtractICMP4Context(int len, const u_char*& dat
} }
zeek::RecordValPtr ICMPAnalyzer::ExtractICMP6Context(int len, const u_char*& data) { zeek::RecordValPtr ICMPAnalyzer::ExtractICMP6Context(int len, const u_char*& data) {
int DF = 0, MF = 0, bad_hdr_len = 0; int DF = 0;
int MF = 0;
int bad_hdr_len = 0;
TransportProto proto = TRANSPORT_UNKNOWN; TransportProto proto = TRANSPORT_UNKNOWN;
IPAddr src_addr; IPAddr src_addr;
IPAddr dst_addr; IPAddr dst_addr;
uint32_t ip_len, frag_offset = 0; uint32_t ip_len;
uint32_t src_port, dst_port; uint32_t frag_offset = 0;
uint32_t src_port;
uint32_t dst_port;
if ( len < (int)sizeof(struct ip6_hdr) ) { if ( len < (int)sizeof(struct ip6_hdr) ) {
bad_hdr_len = 1; bad_hdr_len = 1;
@ -408,7 +416,8 @@ void ICMPAnalyzer::RouterAdvert(double t, const struct icmp* icmpp, int len, int
if ( ! f ) if ( ! f )
return; return;
uint32_t reachable = 0, retrans = 0; uint32_t reachable = 0;
uint32_t retrans = 0;
if ( caplen >= (int)sizeof(reachable) ) if ( caplen >= (int)sizeof(reachable) )
memcpy(&reachable, data, sizeof(reachable)); memcpy(&reachable, data, sizeof(reachable));
@ -480,7 +489,8 @@ void ICMPAnalyzer::Redirect(double t, const struct icmp* icmpp, int len, int cap
if ( ! f ) if ( ! f )
return; return;
IPAddr tgtaddr, dstaddr; IPAddr tgtaddr;
IPAddr dstaddr;
if ( caplen >= (int)sizeof(in6_addr) ) if ( caplen >= (int)sizeof(in6_addr) )
tgtaddr = IPAddr(*((const in6_addr*)data)); tgtaddr = IPAddr(*((const in6_addr*)data));

6
src/packet_analysis/protocol/ip/conn_key/fivetuple/Factory.cc
View file

@ -25,7 +25,11 @@ zeek::expected<zeek::ConnKeyPtr, std::string> Factory::DoConnKeyFromVal(const ze
auto vl = v.AsRecordVal(); auto vl = v.AsRecordVal();
// Indices into conn_id's record field value list: // Indices into conn_id's record field value list:
int orig_h = 0, orig_p = 1, resp_h = 2, resp_p = 3, proto = 4; int orig_h = 0;
int orig_p = 1;
int resp_h = 2;
int resp_p = 3;
int proto = 4;
if ( vr != id::conn_id ) { if ( vr != id::conn_id ) {
// While it's not a conn_id, it may have equivalent fields. // While it's not a conn_id, it may have equivalent fields.

6
src/packet_analysis/protocol/ip/conn_key/vlan_fivetuple/Factory.cc
View file

@ -54,7 +54,8 @@ protected:
}; };
std::pair<int, int> GetConnIdFieldOffsets() { std::pair<int, int> GetConnIdFieldOffsets() {
static int vlan_offset = -2, inner_vlan_offset = -2; static int vlan_offset = -2;
static int inner_vlan_offset = -2;
if ( vlan_offset == -2 && inner_vlan_offset == -2 ) { if ( vlan_offset == -2 && inner_vlan_offset == -2 ) {
vlan_offset = id::conn_id->FieldOffset("vlan"); vlan_offset = id::conn_id->FieldOffset("vlan");
@ -101,7 +102,8 @@ zeek::expected<zeek::ConnKeyPtr, std::string> Factory::DoConnKeyFromVal(const ze
auto rt = v.GetType()->AsRecordType(); auto rt = v.GetType()->AsRecordType();
auto vl = v.AsRecordVal(); auto vl = v.AsRecordVal();
int vlan_offset, inner_vlan_offset; int vlan_offset;
int inner_vlan_offset;
if ( rt == id::conn_id ) { if ( rt == id::conn_id ) {
std::tie(vlan_offset, inner_vlan_offset) = k->GetConnIdFieldOffsets(); std::tie(vlan_offset, inner_vlan_offset) = k->GetConnIdFieldOffsets();
} }

4
src/packet_analysis/protocol/iptunnel/IPTunnel.cc
View file

@ -82,8 +82,8 @@ bool IPTunnelAnalyzer::AnalyzePacket(size_t len, const uint8_t* data, Packet* pa
bool IPTunnelAnalyzer::ProcessEncapsulatedPacket(double t, Packet* pkt, const std::shared_ptr<IP_Hdr>& inner, bool IPTunnelAnalyzer::ProcessEncapsulatedPacket(double t, Packet* pkt, const std::shared_ptr<IP_Hdr>& inner,
std::shared_ptr<EncapsulationStack> prev, std::shared_ptr<EncapsulationStack> prev,
const EncapsulatingConn& ec) { const EncapsulatingConn& ec) {
uint32_t caplen, len; uint32_t caplen = inner->TotalLen();
caplen = len = inner->TotalLen(); uint32_t len = caplen;
pkt_timeval ts; pkt_timeval ts;
int link_type; int link_type;

3
src/probabilistic/CounterVector.cc
View file

@ -70,7 +70,8 @@ void CounterVector::Reset() { bits->Reset(); }
CounterVector::count_type CounterVector::Count(size_type cell) const { CounterVector::count_type CounterVector::Count(size_type cell) const {
assert(cell < Size()); assert(cell < Size());
size_t cnt = 0, order = 1; size_t cnt = 0;
size_t order = 1;
size_t lsb = cell * width; size_t lsb = cell * width;
for ( size_t i = lsb; i < lsb + width; ++i, order <<= 1 ) for ( size_t i = lsb; i < lsb + width; ++i, order <<= 1 )

5
src/script_opt/ZAM/AM-Opt.cc
View file

@ -480,7 +480,10 @@ void ZAMCompiler::ComputeFrameLifetimes() {
break; break;
} }
int s1, s2, s3, s4; int s1;
int s2;
int s3;
int s4;
if ( ! inst->UsesSlots(s1, s2, s3, s4) ) if ( ! inst->UsesSlots(s1, s2, s3, s4) )
continue; continue;

6
src/script_opt/ZAM/Driver.cc
View file

@ -385,7 +385,8 @@ void ZAMCompiler::Dump() {
for ( auto i = 0U; i < insts2.size(); ++i ) { for ( auto i = 0U; i < insts2.size(); ++i ) {
auto& inst = insts2[i]; auto& inst = insts2[i];
std::string liveness, depth; std::string liveness;
std::string depth;
if ( inst->live ) if ( inst->live )
liveness = util::fmt("(labels %d)", inst->num_labels); liveness = util::fmt("(labels %d)", inst->num_labels);
@ -460,7 +461,8 @@ void ZAMCompiler::DumpInsts1(const FrameReMap* remappings) {
// we need to concretize the branch slots // we need to concretize the branch slots
ConcretizeBranch(inst, inst->target, inst->target_slot); ConcretizeBranch(inst, inst->target, inst->target_slot);
std::string liveness, depth; std::string liveness;
std::string depth;
if ( inst->live ) if ( inst->live )
liveness = util::fmt("(labels %d)", inst->num_labels); liveness = util::fmt("(labels %d)", inst->num_labels);

3
src/threading/SerialTypes.cc
View file

@ -203,7 +203,8 @@ bool Value::IsCompatibleType(Type* t, bool atomic_only) {
} }
bool Value::Read(detail::SerializationFormat* fmt) { bool Value::Read(detail::SerializationFormat* fmt) {
int ty, sty; int ty;
int sty;
if ( ! (fmt->Read(&ty, "type") && fmt->Read(&sty, "subtype") && fmt->Read(&present, "present")) ) if ( ! (fmt->Read(&ty, "type") && fmt->Read(&sty, "subtype") && fmt->Read(&present, "present")) )
return false; return false;

1
src/util.cc
View file

@ -1335,7 +1335,6 @@ char* uitoa_n(uint64_t value, char* str, int n, int base, const char* prefix) {
int i = 0; int i = 0;
uint64_t v; uint64_t v;
char *p, *q;
char c; char c;
if ( prefix ) { if ( prefix ) {