Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
11016 commits 387 branches 195 tags 255 MiB
Commit graph

11016 commits

This branch
This branch
All branches
Author SHA1 Message Date
Tim Wojtulewicz
b248a56a2d Add coveralls badge to README.md 2020-10-23 19:58:02 +00:00
Tim Wojtulewicz
56c1eea5d3 Remove the entire auxil directory from the results 2020-10-23 19:44:51 +00:00
Tim Wojtulewicz
2c9c55b058 Prevent non-master builds, add cirrus information to upload 2020-10-22 00:56:20 +00:00
Tim Wojtulewicz
e2053551cd Add support for sending data to coveralls with lcov_html.sh via Cirrus 2020-10-21 21:55:30 +00:00
Jon Siwek
66eaf9c7cc Merge remote-tracking branch 'origin/topic/jsiwek/pop3-fuzzer-deprecation-warning' into master 
* origin/topic/jsiwek/pop3-fuzzer-deprecation-warning:
  Fix deprecation warning in POP3 fuzzer
 2020-10-19 11:54:40 -07:00
Jon Siwek
68c13013a5 Merge remote-tracking branch 'origin/topic/timw/gre-header-length-check' into master 
* origin/topic/timw/gre-header-length-check:
  Add header length check to GRE packet analyzer
 2020-10-19 11:54:07 -07:00
Tim Wojtulewicz
a19b018dc8 Add header length check to GRE packet analyzer 2020-10-19 10:58:10 -07:00
zeek-bot
4d27793f13 Update doc submodule [nomail] [skip ci] 2020-10-17 00:33:24 +00:00
Jon Siwek
0cc1fc3d88 Merge remote-tracking branch 'origin/topic/jsiwek/avoid-memcmp-null-args' 
* origin/topic/jsiwek/avoid-memcmp-null-args:
  Avoid passing null pointers to memcmp in ZeekString comparison methods
 2020-10-16 12:42:07 -07:00
Jon Siwek
5e164469f3 Merge remote-tracking branch 'origin/topic/vlad/gh-1225' 
* origin/topic/vlad/gh-1225:
  Extract length as a uint8
  Change ICMP ND length to a uint16
 2020-10-16 10:37:08 -07:00
Jon Siwek
72b3a4244e Avoid passing null pointers to memcmp in ZeekString comparison methods 2020-10-16 10:28:11 -07:00
Vlad Grigorescu
11a311dfb9 Extract length as a uint8 2020-10-16 09:03:48 -05:00
Johanna Amann
65125121d8 Merge branch 'topic/johanna/GH-169' 
* topic/johanna/GH-169:
  Make event ordering deterministic
  dump-events: try to make baseline work on all systems
  Introduce generate_all_events bif and add option to misc/dump-events

Fixes GH-169
 2020-10-16 07:11:57 +00:00
zeek-bot
04b8dc5341 Update doc submodule [nomail] [skip ci] 2020-10-16 00:40:37 +00:00
Jon Siwek
e58104e8d8 Fix deprecation warning in POP3 fuzzer 2020-10-15 16:10:02 -07:00
Jon Siwek
2c7f68308a Update external test suite commit pointers 2020-10-15 16:06:44 -07:00
Vlad Grigorescu
b5d11d1ace Change ICMP ND length to a uint16 2020-10-15 16:56:05 -05:00
Tim Wojtulewicz
a9d86cec8b Merge remote-tracking branch 'origin/topic/timw/1131-ip-handling' 
* origin/topic/timw/1131-ip-handling:
  Rework Sessions::Weird
  Prevent String::Set from crashing if passed a nullptr
  Store packet's ip header as unique_ptr
  Remove some unused includes from Packet.h
  Use shared_ptr for encapsulation data instead of raw pointer
  Review cleanup
  Update external testing repo hashes
  Reorder Packet member variables slightly for better packing
  Store the ip header in the packet after processing, reuse other places
  Change to store data in packet directly instead of keystore
  Don't always insert data into keystore for tunnels
  Add comment about packet header size and session analysis
  Set data to ip header's payload instead of advancing the pointer
  Move packet dumping to packet_mgr
  Make Sessions::NextPacket call packet_mgr, fix fuzzer code to do the same
  Move IP and IP tunnel code from Sessions into packet analyzers
  Prep work for IP changes
 2020-10-15 13:25:51 -07:00
Tim Wojtulewicz
a99b540e46 Rework Sessions::Weird 2020-10-15 13:03:11 -07:00
Tim Wojtulewicz
b1e517e863 Prevent String::Set from crashing if passed a nullptr 2020-10-15 12:49:08 -07:00
Tim Wojtulewicz
ecd970ffde Store packet's ip header as unique_ptr 2020-10-15 12:49:08 -07:00
Tim Wojtulewicz
2000f89b12 Remove some unused includes from Packet.h 2020-10-15 12:49:07 -07:00
Tim Wojtulewicz
41dcd0cde0 Use shared_ptr for encapsulation data instead of raw pointer 2020-10-15 12:49:05 -07:00
Tim Wojtulewicz
a7d4364334 Review cleanup 2020-10-15 12:44:45 -07:00
Tim Wojtulewicz
89a9c96673 Update external testing repo hashes 2020-10-15 12:34:37 -07:00
Tim Wojtulewicz
c4a7a4eaea Reorder Packet member variables slightly for better packing 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
665d0d9814 Store the ip header in the packet after processing, reuse other places 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
7d2c35174f Change to store data in packet directly instead of keystore 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
d0ef05c748 Don't always insert data into keystore for tunnels 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
02ed03adaa Add comment about packet header size and session analysis 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
d0cc30eccd Set data to ip header's payload instead of advancing the pointer 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
afdc08085f Move packet dumping to packet_mgr 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
8ece1cf484 Make Sessions::NextPacket call packet_mgr, fix fuzzer code to do the same 2020-10-15 12:18:32 -07:00
Tim Wojtulewicz
1cf251d1ca Move IP and IP tunnel code from Sessions into packet analyzers 2020-10-15 12:18:30 -07:00
Tim Wojtulewicz
69da2d7b1d Prep work for IP changes 
- Move all of the time handling code out of PktSrc into RunState
- Call packet_mgr->ProcessPacket() from various places to setup layer 2 data in packets
 2020-10-15 12:12:07 -07:00
Johanna Amann
5f29f1dca1 Make event ordering deterministic 
NetControl::init and filter_change_tracking could basically be raised in
random order.
 2020-10-15 16:35:52 +00:00
Johanna Amann
e6805258dc dump-events: try to make baseline work on all systems 2020-10-15 15:35:51 +00:00
Johanna Amann
e95e9b8a5d Merge remote-tracking branch 'origin/master' into topic/johanna/GH-169 2020-10-15 15:31:23 +00:00
Jon Siwek
5f1ee35d31 Merge remote-tracking branch 'origin/topic/jsiwek/gh-1211-improve-already-defined-error' into master 
* origin/topic/jsiwek/gh-1211-improve-already-defined-error:
  GH-1211: Improve error message for already-defined functions
 2020-10-14 10:48:05 -07:00
Jon Siwek
9ad47a3141 Update submodule(s) [nomail] 2020-10-14 10:46:08 -07:00
zeek-bot
b905e22135 Update doc submodule [nomail] [skip ci] 2020-10-14 00:38:25 +00:00
Jon Siwek
92cc798dd5 Merge remote-tracking branch 'origin/topic/jsiwek/gh-1208-dict-asserts' 
* origin/topic/jsiwek/gh-1208-dict-asserts:
  GH-1208: Use Dictionary validity assertions only during CI
 2020-10-13 16:26:38 -07:00
Jon Siwek
6cb0cb9746 Merge remote-tracking branch 'origin/topic/seth/make-cluster-port-optional' 
* origin/topic/seth/make-cluster-port-optional:
  Apply suggestions from code review
  Update scripts/base/frameworks/cluster/main.zeek
  Make defining a port number for hosts in a cluster that only connect outbound optional
 2020-10-13 15:35:43 -07:00
Jon Siwek
399badfb51 Update submodule(s) [nomail] 2020-10-13 15:32:44 -07:00
Tim Wojtulewicz
1a8bb30127 Update submodule(s) [nomail] 2020-10-13 15:25:39 -07:00
Jon Siwek
3c4de51f40 GH-1208: Use Dictionary validity assertions only during CI 2020-10-13 14:59:11 -07:00
Tim Wojtulewicz
3f25214914 Merge remote-tracking branch 'origin/topic/timw/1063-kqueue-update' 
* origin/topic/timw/1063-kqueue-update:
  Update cmake submodule to pull in fix for building libkqueue
  GH-1063: Update libkqueue to fix pf_ring-zc failures
 2020-10-13 13:49:38 -07:00
Seth Hall
cd330c801d
Apply suggestions from code review 
Co-authored-by: Jon Siwek <jsiwek@corelight.com>
 2020-10-13 16:48:15 -04:00
Tim Wojtulewicz
6ef55db553 Update cmake submodule to pull in fix for building libkqueue 2020-10-13 13:47:56 -07:00
Tim Wojtulewicz
a608015338 GH-1063: Update libkqueue to fix pf_ring-zc failures 2020-10-13 13:47:56 -07:00