3746 commits

Author	SHA1	Message	Date
Tim Wojtulewicz	9458ebdd39	Update CHANGES, VERSION, and NEWS for v8.0.1	2025-08-26 17:58:46 +00:00
Arne Welzel	56e4dc9247	Merge remote-tracking branch 'origin/topic/awelzel/4754-follow-up' ... * origin/topic/awelzel/4754-follow-up: cluster/serializer/broker: Drop unused include cluster/serializer/broker: fixup inconsistent param comment (cherry picked from commit 9b94e25e67)	2025-08-26 09:48:08 -07:00
Tim Wojtulewicz	2f38ff6c87	Merge remote-tracking branch 'origin/topic/bbannier/issue-3266' ... * origin/topic/bbannier/issue-3266: Fix installation of symlink with `DESTDIR` (cherry picked from commit d7db612b0f)	2025-08-26 09:05:29 -07:00
Christian Kreibich	9e66cf873b	Merge branch 'topic/christian/news-typos' ... * topic/christian/news-typos: Minor fixes to a few NEWS entries. (cherry picked from commit 2929f1eb17)	2025-08-25 12:32:14 -07:00
Arne Welzel	c0a80fe610	Merge remote-tracking branch 'origin/topic/awelzel/cluster-event-metadata-fixes-for-8.0' ... * origin/topic/awelzel/cluster-event-metadata-fixes-for-8.0: cluster/Backend: Fallback to current network time when current event has not timestamp cluster/serializer/broker: Do not send empty metadata vectors around (cherry picked from commit 3e89e6b328)	2025-08-22 09:25:39 -07:00
Arne Welzel	4bfac4a087	Merge remote-tracking branch 'origin/topic/awelzel/4754-double-wrapped-broker-data-records' ... * origin/topic/awelzel/4754-double-wrapped-broker-data-records: cluster/serializer/broker: Do not special case Broker::Data anymore broker/Data: Support unwrapping Broker::Data records (cherry picked from commit 3d6a064ecc)	2025-08-22 09:24:47 -07:00
Arne Welzel	5de3ea1e2f	Merge remote-tracking branch 'origin/topic/awelzel/docker-trixie' ... * origin/topic/awelzel/docker-trixie: ci: Run zeekctl and builtin tasks with Debian 13, too ci: Prepend timestamps to output ci: Enable Spicy for arm_debian13 ci: Add Debian 13.0 (trixie) docker: Bump to debian:trixie-slim (cherry picked from commit 63574b9fd4)	2025-08-22 09:22:04 -07:00
Arne Welzel	abfb6ca156	Merge remote-tracking branch 'amazing-pp/t/psql-login-no-role' ... * amazing-pp/t/psql-login-no-role: Report PostgreSQL login success only after ReadyForQuery (cherry picked from commit e04f725523)	2025-08-22 09:19:15 -07:00
Tim Wojtulewicz	1cb6519ba7	Merge remote-tracking branch 'origin/topic/timw/event-constructor-deprecation-message' into release/8.0 ... * origin/topic/timw/event-constructor-deprecation-message: Clarify Event constructor deprectation message	2025-08-18 14:44:33 -07:00
Tim Wojtulewicz	f07a59d32c	Updating CHANGES and VERSION.	2025-08-18 18:01:55 +00:00
Tim Wojtulewicz	8a6a24cb70	Merge remote-tracking branch 'origin/topic/etyp/update-news-record-vec-deprecation' ... * origin/topic/etyp/update-news-record-vec-deprecation: Add `record_type_to_vector` deprecation to NEWS (cherry picked from commit a4da8d3f7b)	2025-08-18 16:42:13 +00:00
Arne Welzel	69dc9209b5	Merge remote-tracking branch 'origin/topic/vern/stmt-line-numbers' ... * origin/topic/vern/stmt-line-numbers: maintenance updates for ZAM BiF-tracking fix line numbers associated with "if" and initialization statements (cherry picked from commit c0a863cba0)	2025-08-18 16:37:06 +00:00
Tim Wojtulewicz	56e55ba3ee	Updating CHANGES and VERSION.	2025-08-12 12:43:40 -07:00
Tim Wojtulewicz	04c4d792d1	Merge remote-tracking branch 'origin/topic/bbannier/bump-spicy' ... * origin/topic/bbannier/bump-spicy: Bump pre-commit hooks Bump auxil/spicy to latest development snapshot (cherry picked from commit cc59bfa5d8)	2025-08-12 12:42:54 -07:00
Tim Wojtulewicz	fcdfe2aca2	Merge remote-tracking branch 'origin/topic/awelzel/4730-smb-read-response-data-offset' ... * origin/topic/awelzel/4730-smb-read-response-data-offset: smb2/read: Parse only 1 byte for data_offset, ignore reserved1 (cherry picked from commit 76289a8022)	2025-08-11 11:39:22 -07:00
Arne Welzel	1511ca00df	Merge remote-tracking branch 'origin/topic/awelzel/4176-cluster-on-sub-unsub-hooks' ... * origin/topic/awelzel/4176-cluster-on-sub-unsub-hooks: cluster: Add on_subscribe() and on_unsubscribe() hooks (cherry picked from commit 13f613eb1d)	2025-08-11 11:36:42 -07:00
Johanna Amann	a76b2148c6	Merge remote-tracking branch 'origin/topic/johanna/analyzer-log-proto' ... * origin/topic/johanna/analyzer-log-proto: Add proto to analyzer.log (cherry picked from commit 2f2f328a72)	2025-08-11 11:34:08 -07:00
Tim Wojtulewicz	1addeab4fe	Updating CHANGES and VERSION.	2025-08-04 09:44:48 -07:00
Christian Kreibich	c1cb1a2e5f	Compile contributors for Zeek 8.0 in the NEWS file ... (cherry picked from commit 4fdd83f3f5)	2025-08-04 09:39:08 -07:00
Arne Welzel	4ecc62322e	Merge remote-tracking branch 'origin/topic/awelzel/depend-on-libzmq' ... * origin/topic/awelzel/depend-on-libzmq: ci/windows: No ZeroMQ cluster backend cluster/zeromq: Bail on missing ZeroMQ by default	2025-08-01 17:10:32 +02:00
Arne Welzel	3c2d01e19e	Merge remote-tracking branch 'origin/topic/neverlord/std-span' ... * origin/topic/neverlord/std-span: Remove zeek::Span and use std::span instead	2025-08-01 14:50:02 +02:00
Tim Wojtulewicz	f2e155d7fa	Merge remote-tracking branch 'origin/topic/timw/update-ct-ca-lists' ... * origin/topic/timw/update-ct-ca-lists: Update CT/CA lists to versions from NSS 3.114	2025-07-31 14:32:21 -07:00
Tim Wojtulewicz	b9a5a635bd	Merge remote-tracking branch 'origin/topic/timw/clang-tidy-fix' ... * origin/topic/timw/clang-tidy-fix: Fix use-after-move reported by clang-tidy	2025-07-31 10:34:58 -07:00
Johanna Amann	136bdb43fd	Merge remote-tracking branch 'origin/topic/johanna/gh-4694' ... * origin/topic/johanna/gh-4694: Add tests for the deprecated-dpd-log.zeek policy script Move c$service_violation to deprecated-dpd-log.zeek	2025-07-31 16:11:00 +01:00
Tim Wojtulewicz	3e0012ea30	Merge remote-tracking branch 'origin/topic/bbannier/bump-spicy' ... * origin/topic/bbannier/bump-spicy: Bump `auxil/spicy` to latest development snapshot	2025-07-31 07:58:05 -07:00
Arne Welzel	10e7f14f78	Merge remote-tracking branch 'origin/topic/awelzel/defer-more-stuff' ... * origin/topic/awelzel/defer-more-stuff: RecordType: Ensure &default fields are always re-initialized Attr: Deprecate using &default and &optional together on record fields RecordType: Allow deferring &default=vector(), set(), table() fields	2025-07-30 10:35:56 +02:00
Arne Welzel	d7fbd49d9e	Merge remote-tracking branch 'origin/topic/vern/zam-record-fields-fixes' ... * origin/topic/vern/zam-record-fields-fixes: fixes for specialized ZAM operations needing to check whether record fields exist	2025-07-30 10:08:21 +02:00
Johanna Amann	a22b45c69e	Merge remote-tracking branch 'origin/topic/johanna/gh-4202' ... * origin/topic/johanna/gh-4202: Update NEWS for Conn::set_conn changes DNS-fuzzer: raise new_connection event Optimize Conn::set_conn to minimize operations Move Conn::set_conn() from connection_state_remove to new_connection	2025-07-29 21:01:51 +01:00
Arne Welzel	ab282e3637	Merge remote-tracking branch 'origin/topic/awelzel/cluster-event-out-of-detail' ... * origin/topic/awelzel/cluster-event-out-of-detail: cluster::Event: Move implementation into cluster/Event.{h,cc} cluster: Move cluster::detail::Event to cluster::Event	2025-07-29 18:24:20 +02:00
Tim Wojtulewicz	9f3a1a135f	Merge remote-tracking branch 'origin/topic/timw/fix-fuzzer-conn-key-deprecation' ... * origin/topic/timw/fix-fuzzer-conn-key-deprecation: Fix ConnKey deprecation warnings from generic fuzzer	2025-07-29 07:41:23 -07:00
Tim Wojtulewicz	743b9e27cc	Merge remote-tracking branch 'origin/topic/timw/fix-irc-analyzer-event-types' ... * origin/topic/timw/fix-irc-analyzer-event-types: Fix types passed to some of the IRC analyzer events	2025-07-29 07:19:36 -07:00
Tim Wojtulewicz	06ec03046d	Merge remote-tracking branch 'origin/topic/timw/fix-ranges-debian-11-build-failure' ... * origin/topic/timw/fix-ranges-debian-11-build-failure: Fix build failure with std::ranges on Debian 11	2025-07-29 07:19:11 -07:00
Arne Welzel	cd7836dda2	Merge remote-tracking branch 'origin/topic/awelzel/4431-zeromq-drop-policy-v2' ... * origin/topic/awelzel/4431-zeromq-drop-policy-v2: cluster.bif: Improve Cluster::publish() docstring btest/cluster/zeromq: Add tests for overload behavior cluster/zeromq: Metric for msg errors cluster/zeromq: Drop events when overloaded cluster/zeromq: Comments and move lookups to InitPostScript() cluster/zeromq: Rework lambdas to member functions cluster/zeromq: Support local XPUB/XSUB hwm and buf configurability cluster/OnLoop: Support DontBlock and Force flags for queueing cluster/ThreadedBackend: Injectable OnLoopProcess instance	2025-07-29 11:38:49 +02:00
Arne Welzel	12518e8256	Merge remote-tracking branch 'origin/topic/awelzel/expose-num-packets-unprocessed' ... * origin/topic/awelzel/expose-num-packets-unprocessed: ConnStats: Expose num_packets_unprocessed packet_analysis/Manager: Rename GetUnprocessedCount() to PacketsUnprocessed()	2025-07-29 10:12:46 +02:00
Arne Welzel	96f9cc73c3	Merge remote-tracking branch 'origin/topic/awelzel/spicy-format-for-8.0' ... * origin/topic/awelzel/spicy-format-for-8.0: Update .git-blame-ignore-revs analyzer/protocol: Reformat with spicy-format pre-commit-config: Bump spicy-format to 0.26.0	2025-07-29 10:05:33 +02:00
Tim Wojtulewicz	73d56407b1	Merge remote-tracking branch 'origin/topic/awelzel/3935-dce-rpc-named-pipe-docs' ... * origin/topic/awelzel/3935-dce-rpc-named-pipe-docs: dce-rpc: Make named_pipe filed docs extensive	2025-07-28 14:18:23 -07:00
Tim Wojtulewicz	22fc57a90a	Merge remote-tracking branch 'origin/topic/johanna/gh-4656' ... * origin/topic/johanna/gh-4656: Fix parsing of EDNS rcode	2025-07-28 14:16:24 -07:00
Tim Wojtulewicz	8063be111a	Merge remote-tracking branch 'origin/topic/timw/more-irc-coverage' ... * origin/topic/timw/more-irc-coverage: Expand coverage of IRC analyzer with more commands Add support for ircv3 tags	2025-07-28 14:15:47 -07:00
Tim Wojtulewicz	8aeaed69c5	Merge remote-tracking branch 'origin/topic/timw/lazy-allocate-id-option-handlers' ... * origin/topic/timw/lazy-allocate-id-option-handlers: Move ID::type in structure to fill memory padding Use sorted forward_list instead of multimap for ID option change handlers	2025-07-28 13:57:26 -07:00
Tim Wojtulewicz	020dd1a848	Merge remote-tracking branch 'origin/topic/timw/cpp20-modernization' ... * origin/topic/timw/cpp20-modernization: Remove intermediate cipher vectors in ssl-analyzer.pac Reduce the size of Func::Body quite a bit with some extra packing Switch to using std::ranges algorithms Enable modernize-std-numbers clang-tidy checker, fix findings Switch to using c++20 constraints instead of std::enable_if	2025-07-28 13:13:02 -07:00
Evan Typanski	c00314746a	Merge branch 'topic/etyp/deprecate-record-ty-to-vec' ... * topic/etyp/deprecate-record-ty-to-vec: Deprecate `record_type_to_vector`	2025-07-28 12:25:44 -04:00
Tim Wojtulewicz	a09b4108c8	Merge remote-tracking branch 'origin/topic/timw/odesc-size-t' ... * origin/topic/timw/odesc-size-t: Use size_t for byte sizes in SerializationFormat Add ODesc::Size() that returns size_t, deprecate ODesc::Len()	2025-07-25 09:14:01 -07:00
Arne Welzel	6e2a18ce4f	Merge remote-tracking branch 'origin/topic/awelzel/conn-id-ctx-singleton' ... * origin/topic/awelzel/conn-id-ctx-singleton: RecordType: Allow field init deferral of deferrable record constructors Conn: Use conn_id_ctx singleton Conn: Add InitPostScript() and conn_id_ctx singleton ID: Add conn_id_ctx	2025-07-25 10:59:07 +02:00
Tim Wojtulewicz	90da71ef16	Merge remote-tracking branch 'origin/topic/timw/update-broker' ... * origin/topic/timw/update-broker: Update broker submodule to pull in clang 20 fix [nomail]	2025-07-24 12:46:27 -07:00
Tim Wojtulewicz	9c845d9979	Merge remote-tracking branch 'origin/topic/timw/pid-start-time-metric' ... * origin/topic/timw/pid-start-time-metric: Add process_start_time_seconds and process_pid metrics	2025-07-24 10:39:52 -07:00
Tim Wojtulewicz	d12b381e3e	Merge remote-tracking branch 'origin/topic/timw/no-weekly-tasks-on-master-pushes' ... * origin/topic/timw/no-weekly-tasks-on-master-pushes: CI: Only run weekly tasks as part of cron	2025-07-24 08:01:07 -07:00
Arne Welzel	e231efac0b	Merge remote-tracking branch 'origin/topic/awelzel/4645-icmp-conns-inconsistent' ... * origin/topic/awelzel/4645-icmp-conns-inconsistent: conn_key/fivetuple: Handle one-way ICMP conns in DoConnKeyFromVal()	2025-07-24 09:49:07 +02:00
Johanna Amann	4399f171ae	Merge remote-tracking branch 'origin/topic/johanna/pppoe-session-id-logging' ... * origin/topic/johanna/pppoe-session-id-logging: Update external tests for pppoe-session-id conn.log changes PPPoE: add session id logging	2025-07-24 07:57:18 +01:00
Tim Wojtulewicz	acdf8f4d4d	Merge remote-tracking branch 'origin/topic/timw/coverity-fixes' ... * origin/topic/timw/coverity-fixes: Fix a few other minor issues reported by Coverity Add a few extra null checks, plus a missing initialization that led to a bad null check Fix some integer overflow issues reported by Coverity Ignore a couple of known-unused results reported by Coverity Fix some bit-shifting overflow/UB issues reported by Coverity Reset the value of a status variable in SQLite backend before using it in a loop Fix a potential memory leak reported by Coverity Avoid some string copies in IRC analyzer Add some additional std::moves reported by Coverity Fix an unsigned integer comparison reported by Coverity Fix uninitialized class member Coverity findings Handle uncaught exception during setup Update gen-zam submodule for Coverity findings	2025-07-23 15:26:29 -07:00
Tim Wojtulewicz	ca3b670d0f	Merge remote-tracking branch 'origin/topic/timw/storage-forced-sync' ... * origin/topic/timw/storage-forced-sync: Fix swapped storage metrics names Add flag to force synchronous mode when calling storage script-land functions	2025-07-23 14:03:56 -07:00