mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
Merge remote-tracking branch 'origin/topic/johanna/analyzer-log-proto'
* origin/topic/johanna/analyzer-log-proto:
Add proto to analyzer.log
(cherry picked from commit 2f2f328a72)
This commit is contained in:
Johanna Amann
Tim Wojtulewicz
parent
8e7482de4b
commit
a76b2148c6
15 changed files with 47 additions and 33 deletions
|
|
@ -23,8 +23,10 @@ export {
|
|||
uid: string &log &optional;
|
||||
## File UID if available.
|
||||
fuid: string &log &optional;
|
||||
## Connection identifier if available
|
||||
## Connection identifier if available.
|
||||
id: conn_id &log &optional;
|
||||
## Transport protocol for the violation, if available.
|
||||
proto: transport_proto &log &optional;
|
||||
## Failure or violation reason, if available.
|
||||
failure_reason: string &log;
|
||||
## Data causing failure or violation if available. Truncated
|
||||
|
|
@ -62,6 +64,7 @@ function log_analyzer_failure(ts: time, atype: AllAnalyzers::Tag, info: Analyzer
|
|||
{
|
||||
rec$id = info$c$id;
|
||||
rec$uid = info$c$uid;
|
||||
rec$proto = get_port_transport_proto(info$c$id$orig_p);
|
||||
}
|
||||
|
||||
if ( info?$f )
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue