Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-08 01:28:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Update docs and tests for bro_(init|done) -> zeek_(init|done)

Browse source
This commit is contained in:
Seth Hall 2019-04-14 08:19:08 -04:00
parent 8cefb9be42
commit 5db766bd88
508 changed files with 532 additions and 2016 deletions
Download patch file Download diff file Expand all files Collapse all files

2
testing/btest/scripts/base/frameworks/input/basic.bro
View file

@ -47,7 +47,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/bignumber.bro
View file

@ -26,7 +26,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/binary.bro
View file

@ -45,7 +45,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, a: string, b
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/config/basic.bro
View file

@ -67,7 +67,7 @@ event Input::end_of_data(name: string, source:string)
terminate();
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_table([$reader=Input::READER_CONFIG, $source="../configfile", $name="configuration", $idx=Idx, $val=Val, $destination=currconfig, $want_record=F]);

2
testing/btest/scripts/base/frameworks/input/config/errors.bro
View file

@ -58,7 +58,7 @@ event Input::end_of_data(name: string, source:string)
terminate();
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_table([$reader=Input::READER_CONFIG, $source="../configfile", $name="configuration", $idx=Idx, $val=Val, $destination=currconfig, $want_record=F]);

2
testing/btest/scripts/base/frameworks/input/default.bro
View file

@ -33,7 +33,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, val: Val)
print outfile, val;
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_event([$source="../input.log", $name="input", $fields=Val, $ev=line, $want_record=T]);

2
testing/btest/scripts/base/frameworks/input/empty-values-hashing.bro
View file

@ -52,7 +52,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
print outfile, right;
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
try = 0;

2
testing/btest/scripts/base/frameworks/input/emptyvals.bro
View file

@ -29,7 +29,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/errors.bro
View file

@ -148,7 +148,7 @@ event kill_me()
terminate();
}
event bro_init()
event zeek_init()
{
outfile = open("out");
Input::add_event([$source="input.log", $name="file", $fields=FileVal, $ev=line_file, $want_record=T]);

2
testing/btest/scripts/base/frameworks/input/event.bro
View file

@ -35,7 +35,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, i: int, b: b
print outfile, b;
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_event([$source="../input.log", $name="input", $fields=Val, $ev=line, $want_record=F]);

2
testing/btest/scripts/base/frameworks/input/invalid-lines.bro
View file

@ -50,7 +50,7 @@ type Val: record {
global servers: table[int] of Val = table();
global servers2: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/invalidnumbers.bro
View file

@ -30,7 +30,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/invalidset.bro
View file

@ -45,7 +45,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, v: Val)
print outfile, "Event", v;
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/invalidtext.bro
View file

@ -46,7 +46,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, v: Val)
print outfile, "Event", v;
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/missing-enum.bro
View file

@ -22,7 +22,7 @@ type Val: record {
global etable: table[int] of Log::ID = table();
event bro_init()
event zeek_init()
{
# first read in the old stuff into the table...
Input::add_table([$source="../input.log", $name="enum", $idx=Idx, $val=Val, $destination=etable, $want_record=F]);

2
testing/btest/scripts/base/frameworks/input/missing-file-initially.bro
View file

@ -50,7 +50,7 @@ event line2(description: Input::EventDescription, tpe: Input::Event, v: Val)
}
event bro_init()
event zeek_init()
{
Input::add_event([$source="../does-not-exist.dat", $name="input", $reader=Input::READER_ASCII, $mode=Input::REREAD, $fields=Val, $ev=line, $want_record=T]);
Input::add_event([$source="../does-not-exist.dat", $name="inputstream", $reader=Input::READER_ASCII, $mode=Input::STREAM, $fields=Val, $ev=line, $want_record=T]);

2
testing/btest/scripts/base/frameworks/input/missing-file.bro
View file

@ -19,7 +19,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, i: int, b: b
{
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/onecolumn-norecord.bro
View file

@ -28,7 +28,7 @@ type Val: record {
global servers: table[int] of bool = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_table([$source="../input.log", $name="input", $idx=Idx, $val=Val, $destination=servers, $want_record=F]);

2
testing/btest/scripts/base/frameworks/input/onecolumn-record.bro
View file

@ -28,7 +28,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_table([$name="input", $source="../input.log", $idx=Idx, $val=Val, $destination=servers]);

2
testing/btest/scripts/base/frameworks/input/optional.bro
View file

@ -35,7 +35,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/port-embedded.bro
View file

@ -32,7 +32,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
print left, right;
}
event bro_init()
event zeek_init()
{
Input::add_table([$source="../input.log", $name="input", $idx=Idx, $val=Val, $ev=line, $destination=servers]);
}

2
testing/btest/scripts/base/frameworks/input/port.bro
View file

@ -27,7 +27,7 @@ type Val: record {
global servers: table[addr] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
Input::add_table([$source="../input.log", $name="input", $idx=Idx, $val=Val, $destination=servers]);

2
testing/btest/scripts/base/frameworks/input/predicate-stream.bro
View file

@ -64,7 +64,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
terminate();
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
ct = 0;

2
testing/btest/scripts/base/frameworks/input/predicate.bro
View file

@ -34,7 +34,7 @@ type Val: record {
global servers: table[int] of bool = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/predicatemodify.bro
View file

@ -31,7 +31,7 @@ type Val: record {
global servers: table[int, string] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/predicatemodifyandreread.bro
View file

@ -75,7 +75,7 @@ global servers: table[int, string] of Val = table();
global outfile: file;
global try: count;
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/predicaterefusesecondsamerecord.bro
View file

@ -35,7 +35,7 @@ type Val: record {
global servers: table[addr] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/raw/basic.bro
View file

@ -38,7 +38,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/raw/execute.bro
View file

@ -32,7 +32,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
terminate();
}
event bro_init()
event zeek_init()
{
outfile = open("../out.tmp");
Input::add_event([$source="wc -l ../input.log |", $reader=Input::READER_RAW, $name="input", $fields=Val, $ev=line, $want_record=F]);

2
testing/btest/scripts/base/frameworks/input/raw/executestdin.bro
View file

@ -72,7 +72,7 @@ function more_input(name_prefix: string)
$config=config_strings]);
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
++total_processes;

2
testing/btest/scripts/base/frameworks/input/raw/executestream.bro
View file

@ -56,7 +56,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
}
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
try = 0;

2
testing/btest/scripts/base/frameworks/input/raw/long.bro
View file

@ -29,7 +29,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/raw/offset.bro
View file

@ -33,7 +33,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/raw/rereadraw.bro
View file

@ -38,7 +38,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/raw/stderr.bro
View file

@ -54,7 +54,7 @@ event InputRaw::process_finished(name: string, source:string, exit_code:count, s
terminate();
}
event bro_init()
event zeek_init()
{
local config_strings: table[string] of string = {
["read_stderr"] = "1"

2
testing/btest/scripts/base/frameworks/input/raw/streamraw.bro
View file

@ -56,7 +56,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, s: string)
}
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
try = 0;

2
testing/btest/scripts/base/frameworks/input/repeat.bro
View file

@ -31,7 +31,7 @@ global destination: table[int] of bool = table();
const one_to_32: vector of count = {1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32};
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/reread.bro
View file

@ -103,7 +103,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
print outfile, right;
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
try = 0;

2
testing/btest/scripts/base/frameworks/input/set.bro
View file

@ -27,7 +27,7 @@ type Idx: record {
global servers: set[addr] = set();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/setseparator.bro
View file

@ -27,7 +27,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/setspecialcases.bro
View file

@ -31,7 +31,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/sqlite/basic.bro
View file

@ -86,7 +86,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, r: Conn::Inf
print outfile, |r$tunnel_parents|; # to make sure I got empty right
}
event bro_init()
event zeek_init()
{
local config_strings: table[string] of string = {
["query"] = "select * from conn;",

2
testing/btest/scripts/base/frameworks/input/sqlite/error.bro
View file

@ -79,7 +79,7 @@ event term_me()
terminate();
}
event bro_init()
event zeek_init()
{
local config_strings: table[string] of string = {
["query"] = "select * from ssh;",

2
testing/btest/scripts/base/frameworks/input/sqlite/port.bro
View file

@ -35,7 +35,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, p: port)
print outfile, p;
}
event bro_init()
event zeek_init()
{
local config_strings: table[string] of string = {
["query"] = "select port as p, proto from port;",

2
testing/btest/scripts/base/frameworks/input/sqlite/types.bro
View file

@ -73,7 +73,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, p: SSH::Log)
print outfile, |p$vs|;
}
event bro_init()
event zeek_init()
{
local config_strings: table[string] of string = {
["query"] = "select * from ssh;",

2
testing/btest/scripts/base/frameworks/input/stream.bro
View file

@ -80,7 +80,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
}
}
event bro_init()
event zeek_init()
{
outfile = open("../out");
try = 0;

2
testing/btest/scripts/base/frameworks/input/subrecord-event.bro
View file

@ -64,7 +64,7 @@ event line(description: Input::EventDescription, tpe: Input::Event, value: Val)
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/subrecord.bro
View file

@ -51,7 +51,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

2
testing/btest/scripts/base/frameworks/input/tableevent.bro
View file

@ -47,7 +47,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
}
}
event bro_init()
event zeek_init()
{
try = 0;
outfile = open("../out");

2
testing/btest/scripts/base/frameworks/input/twotables.bro
View file

@ -81,7 +81,7 @@ event line(description: Input::TableDescription, tpe: Input::Event, left: Idx, r
# print event_out, right;
}
event bro_init()
event zeek_init()
{
event_out = open ("../event.out");
pred1_out = open ("../pred1.out");

2
testing/btest/scripts/base/frameworks/input/unsupported_types.bro
View file

@ -45,7 +45,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...

12
testing/btest/scripts/base/frameworks/input/windows.bro
View file

@ -7,11 +7,11 @@
redef exit_only_after_terminate = T;
@TEST-START-FILE input.log
#separator \x09
#path ssh
#fields b i e c p sn a d t iv s sc ss se vc ve ns
#types bool int enum count port subnet addr double time interval string table table table vector vector string
T -42 SSH::LOG 21 123 10.0.0.0/24 1.2.3.4 3.14 1315801931.273616 100.000000 hurz 2,4,1,3 CC,AA,BB EMPTY 10,20,30 EMPTY 4242
#separator \x09
#path ssh
#fields b i e c p sn a d t iv s sc ss se vc ve ns
#types bool int enum count port subnet addr double time interval string table table table vector vector string
T -42 SSH::LOG 21 123 10.0.0.0/24 1.2.3.4 3.14 1315801931.273616 100.000000 hurz 2,4,1,3 CC,AA,BB EMPTY 10,20,30 EMPTY 4242
@TEST-END-FILE
@load base/protocols/ssh
@ -47,7 +47,7 @@ type Val: record {
global servers: table[int] of Val = table();
event bro_init()
event zeek_init()
{
outfile = open("../out");
# first read in the old stuff into the table...