Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
8206 commits 387 branches 195 tags 255 MiB
Commit graph

1238 commits

Author SHA1 Message Date
Jon Siwek
9736182fbc Update github/download links 2018-12-07 16:36:51 -06:00
Jon Siwek
f287b2bdf9 Fix Travis git clone command 2018-12-07 07:27:42 -06:00
Jon Siwek
34e577c4f0 Update external test suite locations 2018-12-06 20:11:57 -06:00
Jon Siwek
fd63168171 Merge remote-tracking branch 'origin/topic/jsiwek/parallelize-comm-tests' 
* origin/topic/jsiwek/parallelize-comm-tests:
  Parallelize communication tests using btest TEST-PORT
 2018-11-29 17:06:30 -06:00
Jon Siwek
28a2964e38 Merge remote-tracking branch 'origin/dev/2.7' 
* origin/dev/2.7:
  Improve introspection of Record and TypeType values
  Bro plugins should support a patch version (x.y.z)
  GH-148: add priority to DNSSEC event handlers
  DNSSEC support in Bro
 2018-11-29 16:44:50 -06:00
Jon Siwek
f78c697fa0 Release 2.6 2018-11-29 10:06:26 -06:00
Jon Siwek
6af68638de GH-218: Add missing ICMP router advertisement counterpart 2018-11-22 07:58:41 -06:00
Jon Siwek
3f206cb8a9 Updating CHANGES and VERSION. 2018-11-15 08:36:07 -06:00
Jon Siwek
01e17b5ea0 Fix SumStats "last" plugin in cluster mode 2018-11-08 12:27:37 -06:00
Jon Siwek
e3612960ee Merge branch 'topic/bloomfilter-performance-boost' of https://github.com/bro/bro 
* 'topic/bloomfilter-performance-boost' of https://github.com/bro/bro:
  Remove unnessary check
 2018-11-08 09:41:07 -06:00
Jon Siwek
ca014d6e35 Support appending to vector of any 
For consistency, since it already works to assign to an index within
vector of any.
 2018-11-07 11:48:43 -06:00
Jon Siwek
808f1d1524 Fix coding conventions nits/typos 2018-11-07 10:27:43 -06:00
Jon Siwek
c1f02aaa61 Revert "Switch frag_timeout from redef to option" 
This reverts commit 38259afa8d.

The change to an option wasn't yet incomplete -- that would
require dynamic lookup of the value at the C++ layer.
 2018-11-06 09:32:58 -06:00
Jon Siwek
de640d651f Fix a unit test relying on a bash-ism 2018-11-02 18:31:45 -05:00
Jon Siwek
b2560384c4 Add script-layer call stack to internal errors messages that abort 2018-11-02 17:43:34 -05:00
Jon Siwek
802b4f876e Improve Travis script to show multiple core dump stacks 2018-11-02 09:39:01 -05:00
Jon Siwek
3251792ddb Improve a weird stats unit test 2018-11-02 08:58:08 -05:00
Jon Siwek
8544508d33 Fix Travis script typo 2018-11-01 20:39:33 -05:00
Jon Siwek
53f4e09342 Add more debug output to Travis script 2018-11-01 19:58:03 -05:00
Jon Siwek
5ddb2b37c0 Add core file search and stack trace output for Travis builds 2018-11-01 18:36:31 -05:00
Jon Siwek
cbaab3d4fa GH-199: change bro --help exit status from 1 to 0 
Fixes #199
 2018-10-31 22:28:38 -05:00
Jon Siwek
8c02aa5211 Merge remote-tracking branch 'origin/topic/vladg/mysql_nul_string_fix' 
* origin/topic/vladg/mysql_nul_string_fix:
  Add a test with an encrypted MySQL connection
  Fix parsing of MySQL NUL Strings, where we now require it to have a NUL value at the end.
 2018-10-30 10:00:39 -05:00
Jon Siwek
0cc5e4e044 Add missing record field comment 2018-10-26 10:42:05 -05:00
Jon Siwek
8d0087154a Add missing record field comments 2018-10-26 10:24:30 -05:00
Jon Siwek
6a059a1cf7 Fix minor documentation mistakes 2018-10-25 18:56:38 -05:00
Jon Siwek
30778f50f9 Merge remote-tracking branch 'origin/topic/vlad/ssh_auth_none_fix' 
* origin/topic/vlad/ssh_auth_none_fix:
  Update btest baselines for fix in 46f727a6fa
  Generate ssh_auth_attempted for the 'none' authentication method.
 2018-10-23 13:03:19 -05:00
Jon Siwek
2586e5aa3e Improve scripts/base/utils/dir unit test 2018-10-19 11:16:38 -05:00
Jon Siwek
6378c3dc90 Fix documentation link for notice_alarm.log fields 2018-10-18 10:22:03 -05:00
Jon Siwek
9a295a7009 Merge branch 'master' of https://github.com/spitfire55/bro 
* 'master' of https://github.com/spitfire55/bro:
  Revert DNS query 255 from ANY to *
  Missing commas...
  Fix typo in dce-rpc consts
  Refactor to use consistent numeric type in dce_rpc. Add missing DNS query type codes

I added back in DNS constants for PTR, EDNS, and ANY to avoid breaking
code for any people that use them.

Also omitted the DNP3 function code 0x83 name change from
"AUTHENTICATE_RESP" to "AUTHENTICATE_RESPONSE", again to avoid
potentially breaking code unnecessarily: "RESP" vs. "RESPONSE" is not
wrong in any sense, just maybe a matter of clarify.
 2018-10-16 15:56:37 -05:00
Jon Siwek
0a0e2e5363 Merge remote-tracking branch 'origin/topic/vladg/ssh_is_server_fix' 
* origin/topic/vladg/ssh_is_server_fix:
  Update baselines for SSH capabilities fix
  Fix SSH analyzer bug where is_server in capabilities is wrong.
 2018-10-16 13:42:24 -05:00
Johanna Amann
b682782024 Fix typo in Sessions.h 
Found by Eiji Yanagi (Cisco).
 2018-10-16 09:23:43 -07:00
Jon Siwek
c8637b7430 Merge branch 'master' of https://github.com/spitfire55/bro 
* 'master' of https://github.com/spitfire55/bro:
  Add DCE_RPC exchange_mapi operations to relevant consts.bro file
 2018-10-15 16:43:50 -05:00
Jon Siwek
70233148be GH-186: fix JSON formatting of timestamps before Unix epoch 2018-10-12 21:34:28 +00:00
Jon Siwek
f05ef0cb1e Fix test baseline for plugin skeleton update 2018-10-12 12:51:53 -04:00
Jon Siwek
dc7bdc4ca6 Merge remote-tracking branch 'origin/topic/johanna/local-nets-option' 
* origin/topic/johanna/local-nets-option:
  Convert site::local_nets, etc. into options.
 2018-10-12 12:18:53 -04:00
Jon Siwek
8792f5545c Fix crash when modifying a table from within its &expire_func 2018-10-12 08:35:25 -04:00
Jon Siwek
0f55080625 GH-184: add bro-config --build_type, outputs CMake build type 2018-10-05 14:27:12 -05:00
Jon Siwek
0350004f1e Add return value checks for some RPC parsing functions 2018-10-04 11:33:57 -05:00
Jon Siwek
894b24d180 Improve broker.remote_id unit test 2018-10-03 15:50:07 -05:00
Jon Siwek
3c395aa22d Fix memory leak in broker type checking 2018-10-03 11:10:32 -05:00
Jon Siwek
98181dd67c Update testing/btest/README 2018-10-02 16:05:38 -05:00
Jon Siwek
0c02b11226 Merge remote-tracking branch 'origin/fastpath' 
* origin/fastpath:
  Add some missing @TEST-REQUIRES to a few tests
 2018-09-25 16:38:50 -05:00
Jon Siwek
c32b359e7e Merge branch 'master' of https://github.com/Neverlord/bro 
* 'master' of https://github.com/Neverlord/bro:
  Fix BasicThread::SetOSName on FreeBSD
 2018-09-24 10:56:31 -05:00
Jon Siwek
f7da111d1c Merge remote-tracking branch 'origin/fastpath' 
* origin/fastpath:
  Fix some broken @TEST-REQUIRES
 2018-09-21 13:29:44 -05:00
Jon Siwek
2ede95422b Emit missing GeoIP database errors only once at startup 
Instead of one error per lookup.
 2018-09-21 13:27:27 -05:00
Jon Siwek
d7097635f4 Fix compile error in MMDB GeoIP code 
Seems to be from the ambiguity addressed via [1].  In C++11,
the compiler could treat it as an initializer list ctor instead
of a copy constructor for a single-element list.

[1] http://open-std.org/JTC1/SC22/WG21/docs/cwg_defects.html#1467
 2018-09-21 10:22:03 -05:00
Jon Siwek
c75d1d0521 Merge remote-tracking branch 'origin/fastpath' 
* origin/fastpath:
  Add a missing "break" in OSFinger.cc
  Fix buffer sizes in the rotate_file function
 2018-09-20 13:16:04 -05:00
Jon Siwek
c2c5754e28 Merge branch 'topic/jazoff/sqli-policy-hook' of https://github.com/JustinAzoff/bro 
* 'topic/jazoff/sqli-policy-hook' of https://github.com/JustinAzoff/bro:
  add sqli_policy hook
 2018-09-19 15:22:45 -05:00
Jon Siwek
3a66bc7c9d Updating CHANGES and VERSION. 2018-09-18 16:54:20 -05:00
Jon Siwek
43363ce51b Updating CHANGES and VERSION. 2018-09-18 15:21:31 -05:00