Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Merge remote-tracking branch 'origin/topic/awelzel/zam-baseline-updates'

Browse source 
* origin/topic/awelzel/zam-baseline-updates:
  communityid: Use GetField() over GetFieldAs()
  btest/Baseline.zam: Updates for proto addition
This commit is contained in:
Arne Welzel 2024-11-18 17:28:18 +01:00
commit 7ae52ea4d2
17 changed files with 1851 additions and 1839 deletions
Download patch file Download diff file Expand all files Collapse all files

12
CHANGES
View file

@ -1,3 +1,15 @@
7.1.0-dev.575 | 2024-11-18 17:28:18 +0100
* communityid: Use GetField() over GetFieldAs() (Arne Welzel, Corelight)
GetFieldAs() does not initialize an optional or default field. Apparently,
for ZAM that makes a difference, possibly the [] record construction is
optimized, not initializing proto until actually accessed. Not quite
sure why that's not happening for classic script interpretation
though.
* btest/Baseline.zam: Updates for proto addition (Arne Welzel, Corelight)
7.1.0-dev.572 | 2024-11-16 09:34:27 -0700
* Make debug stream names use "-", and handle "_" transparently (Christian Kreibich, Corelight)