Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Make connection$service_violation a set[string]

Browse source 
To stay consistent with connection$service.
This commit is contained in:
Arne Welzel 2022-09-20 12:19:47 +02:00
parent 0e28a7faf5
commit 7ed6cbeee5
2 changed files with 2 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

4
scripts/base/frameworks/analyzer/dpd.zeek
View file

@ -48,7 +48,7 @@ redef record connection += {
dpd_state: State &optional;
## The set of services (analyzers) for which Zeek has observed a
## violation after the same service had previously been confirmed.
service_violation: set[AllAnalyzers::Tag] &default=set();
service_violation: set[string] &default=set();
};
event zeek_init() &priority=5
@ -72,7 +72,7 @@ event analyzer_violation(c: connection, atype: AllAnalyzers::Tag, aid: count,
return;
delete c$service[analyzer];
add c$service_violation[atype];
add c$service_violation[analyzer];
local info: Info;
info$ts=network_time();