GH-1215: Remove dispatch_map from packet analysis, replace with BIF methods for registering dispatches

2025-10-10 02:28:21 +00:00 · 2020-10-27 12:43:36 -07:00 · 2020-10-27 12:43:36 -07:00 · cd06bf34c7
commit cd06bf34c7
parent 43821a8957
34 changed files with 3770 additions and 3623 deletions
--- a/scripts/base/packet-protocols/ip/main.zeek
+++ b/scripts/base/packet-protocols/ip/main.zeek
@ -1,12 +1,8 @@
 module PacketAnalyzer::IP;

-export {
-	## Identifier mappings based on IP version (4 or 6)
-	const dispatch_map: PacketAnalyzer::DispatchMap = {} &redef;
-}
-
-redef dispatch_map += {
-	[4] = PacketAnalyzer::DispatchEntry($analyzer=PacketAnalyzer::ANALYZER_IPTUNNEL),    # IPv4 tunnel
-	[41] = PacketAnalyzer::DispatchEntry($analyzer=PacketAnalyzer::ANALYZER_IPTUNNEL),   # IPv6 tunnel
-	[47] = PacketAnalyzer::DispatchEntry($analyzer=PacketAnalyzer::ANALYZER_GRE)
-};
+event zeek_init() &priority=20
+	{
+	PacketAnalyzer::register_packet_analyzer(PacketAnalyzer::ANALYZER_IP, 4, PacketAnalyzer::ANALYZER_IPTUNNEL);
+	PacketAnalyzer::register_packet_analyzer(PacketAnalyzer::ANALYZER_IP, 41, PacketAnalyzer::ANALYZER_IPTUNNEL);
+	PacketAnalyzer::register_packet_analyzer(PacketAnalyzer::ANALYZER_IP, 47, PacketAnalyzer::ANALYZER_GRE);
+	}