Remove connection_successful and successful_connection_remove events

Related to https://github.com/zeek/zeek/issues/1119

scripts/base/protocols/conn/main.zeek

@@ -299,12 +299,6 @@ event connection_state_remove(c: connection) &priority=5
 	}
 
 event connection_state_remove(c: connection) &priority=-5
-	{
-	if ( ! c$successful )
-		Log::write(Conn::LOG, c$conn);
-	}
-
-event successful_connection_remove(c: connection) &priority=-5
 	{
 	Log::write(Conn::LOG, c$conn);
 	}

scripts/base/protocols/dce-rpc/main.zeek

@@ -209,7 +209,7 @@ event dce_rpc_response(c: connection, fid: count, ctx_id: count, opnum: count, s
 		}
 	}
 
-event successful_connection_remove(c: connection)
+event connection_state_remove(c: connection)
 	{
 	if ( ! c?$dce_rpc )
 		return;

scripts/base/protocols/dnp3/main.zeek

@@ -63,7 +63,7 @@ event dnp3_application_response_header(c: connection, is_orig: bool, application
 	delete c$dnp3;
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( ! c?$dnp3 )
 		return;

scripts/base/protocols/dns/main.zeek

@@ -582,7 +582,7 @@ event dns_rejected(c: connection, msg: dns_msg, query: string, qtype: count, qcl
 		c$dns$rejected = T;
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( ! c?$dns_state )
 		return;

scripts/base/protocols/ftp/main.zeek

@@ -337,7 +337,7 @@ event connection_reused(c: connection) &priority=5
 		c$ftp_data_reuse = T;
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c$ftp_data_reuse ) return;
 	if ( [c$id$resp_h, c$id$resp_p] in ftp_data_expected )
@@ -350,7 +350,7 @@ event successful_connection_remove(c: connection) &priority=-5
 	}
 
 # Use remove event to cover connections terminated by RST.
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( ! c?$ftp ) return;
 

scripts/base/protocols/http/main.zeek

@@ -321,7 +321,7 @@ event http_message_done(c: connection, is_orig: bool, stat: http_message_stat) &
 		}
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	# Flush all pending but incomplete request/response pairs.
 	if ( c?$http_state )

scripts/base/protocols/irc/dcc-send.zeek

@@ -124,7 +124,7 @@ event scheduled_analyzer_applied(c: connection, a: Analyzer::Tag) &priority=10
 		add c$service["irc-dcc-data"];
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( [c$id$resp_h, c$id$resp_p] in dcc_expected_transfers )
 		{

scripts/base/protocols/krb/files.zeek

@@ -118,7 +118,7 @@ event krb_tgs_response(c: connection, msg: KDC_Response)
 	fill_in_subjects(c);
 	}
 
-event successful_connection_remove(c: connection)
+event connection_state_remove(c: connection)
 	{
 	fill_in_subjects(c);
 	}

scripts/base/protocols/krb/main.zeek

@@ -228,7 +228,7 @@ event krb_tgs_response(c: connection, msg: KDC_Response) &priority=-5
 	do_log(c);
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	do_log(c);
 	}

scripts/base/protocols/mysql/main.zeek

@@ -122,7 +122,7 @@ event mysql_ok(c: connection, affected_rows: count) &priority=-5
 		}
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$mysql )
 		{

scripts/base/protocols/ntlm/main.zeek

@@ -106,7 +106,7 @@ event gssapi_neg_result(c: connection, state: count) &priority=-3
 		}
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$ntlm && ! c$ntlm$done )
 		{

scripts/base/protocols/radius/main.zeek

@@ -138,7 +138,7 @@ event radius_message(c: connection, result: RADIUS::Message) &priority=-5
 		}
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$radius && ! c$radius$logged )
 		{

scripts/base/protocols/rdp/main.zeek

@@ -274,7 +274,7 @@ event protocol_violation(c: connection, atype: Analyzer::Tag, aid: count, reason
 		write_log(c);
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	# If the connection is removed, then log the record immediately.
 	if ( c?$rdp )

scripts/base/protocols/rfb/main.zeek

@@ -151,7 +151,7 @@ event rfb_share_flag(c: connection, flag: bool) &priority=5
 	c$rfb$share_flag = flag;
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$rfb )
 		{

scripts/base/protocols/sip/main.zeek

@@ -289,7 +289,7 @@ event sip_end_entity(c: connection, is_request: bool) &priority = -5
 		}
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$sip_state )
 		{

scripts/base/protocols/smtp/main.zeek

@@ -298,7 +298,7 @@ event mime_one_header(c: connection, h: mime_header_rec) &priority=3
 		c$smtp$path += ip;
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$smtp )
 		smtp_message(c);

scripts/base/protocols/snmp/main.zeek

@@ -93,7 +93,7 @@ function init_state(c: connection, h: SNMP::Header): Info
 	}
 
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$snmp )
 		Log::write(LOG, c$snmp);

scripts/base/protocols/socks/main.zeek

@@ -111,7 +111,7 @@ event socks_login_userpass_reply(c: connection, code: count) &priority=5
 	c$socks$status = v5_status[code];
 	}
 
-event successful_connection_remove(c: connection)
+event connection_state_remove(c: connection)
 	{
 	# This will handle the case where the analyzer failed in some way and was
 	# removed.  We probably  don't want to log these connections.

scripts/base/protocols/ssh/main.zeek

@@ -247,7 +247,7 @@ event ssh_capabilities(c: connection, cookie: string, capabilities: Capabilities
 	                                 server_caps$server_host_key_algorithms);
 	}
 
-event successful_connection_remove(c: connection)
+event connection_state_remove(c: connection)
 	{
 	if ( c?$ssh && !c$ssh$logged )
 		{

scripts/base/protocols/ssl/main.zeek

@@ -329,13 +329,13 @@ event ssl_established(c: connection) &priority=-5
 	finish(c, T);
 	}
 
-event successful_connection_remove(c: connection) &priority=20
+event connection_state_remove(c: connection) &priority=20
 	{
 	if ( c?$ssl && ! c$ssl$logged )
 		hook ssl_finishing(c);
 	}
 
-event successful_connection_remove(c: connection) &priority=-5
+event connection_state_remove(c: connection) &priority=-5
 	{
 	if ( c?$ssl )
 		# called in case a SSL connection that has not been established terminates