Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-04 15:48:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
12680 commits 385 branches 195 tags 258 MiB
Commit graph

6667 commits

Author SHA1 Message Date
Seth Hall
d08230ef8c Switch to more accurate source and binary references in cmake 
This is mostly involved with moving CMAKE_SOURCE_DIR and
CMAKE_BINARY_DIR to PROJECT_SOURCE_DIR and PROJECT_BINARY_DIR because it
enables zeek to be built as a subproject of another.

There is another branch in the cmake repository with the same name that
is also required for this to fully work.
 2021-06-23 10:26:17 +00:00
Seth Hall
adb8ee16cb Removed a non-functional builtin plugin preload loading mechanism 2021-06-23 10:19:20 +00:00
Seth Hall
0470b06537 Load the builtin-plugin preload files and fix the dev path. 2021-06-23 10:12:57 +00:00
Tim Wojtulewicz
30973af94a Merge remote-tracking branch 'origin/topic/johanna/remove-stepping-stone' 
* origin/topic/johanna/remove-stepping-stone:
  Remove the Stepping Stone analyzer
 2021-06-21 16:14:25 -07:00
Luke Cesarz
35334a7681 Fix typo 2021-06-20 08:14:10 -07:00
Luke Cesarz
d29a43fb79 Fix segfault with incomplete connection 
Add required HasField check before GetFieldAs call
 2021-06-20 07:51:46 -07:00
Seth Hall
8222193525 Fixes for the builtin plugin functionality 2021-06-11 18:52:03 +00:00
Vern Paxson
b4f025dda9 support for standalone compiled scripts to export globals with module qualifiers 2021-06-11 08:49:52 -07:00
Seth Hall
e399b537ca Added --include-plugins configure argument 2021-06-10 10:39:13 -07:00
Johanna Amann
e0d284ec9f Merge branch 'logging/script-logdir' of https://github.com/kramse/zeek 
* 'logging/script-logdir' of https://github.com/kramse/zeek:
  Copy of ascii-empty test, just changed path in the beginning
  Logdir: Change requested by 0xxon, no problem
  Introduce script-land variable that can be used to set logdir.

Closes GH-772
 2021-06-10 12:19:15 +01:00
Henrik Kramselund Jereminsen
74561e922f Logdir: Change requested by 0xxon, no problem 
Suggestion from 0xxon to look at Input Framework inspired this change
 2021-06-10 10:33:26 +01:00
Henrik Kramselund Jereminsen
6bde33aca7 Introduce script-land variable that can be used to set logdir. 
Addresses GH-772
 2021-06-10 10:32:11 +01:00
Vern Paxson
7904701ffb another set of tweaks per review comments 2021-06-09 09:41:41 -07:00
Vern Paxson
d4eb0224a1 addressed a number of code review comments 2021-06-07 10:52:19 -07:00
Dominik Charousset
2f19c89189 Improve assignment operators for IntrusivePtr 
Fixes Coverity finding 1367523 (Missing move assignment operator).
 2021-06-06 15:34:24 +02:00
Vern Paxson
4ecf70f515 updates for documentation of functionality for compiling scripts to C++ 2021-06-04 17:15:15 -07:00
Vern Paxson
725aa558a7 fixes for standalone C++ scripts making types & variables/functions available 2021-06-04 17:14:46 -07:00
Vern Paxson
fb9c73fa86 fixed bug limiting availability of load_CPP() BiF 2021-06-04 17:03:50 -07:00
Vern Paxson
e722607bd9 updates to development helper scripts to support new workflow 2021-06-04 17:02:43 -07:00
Vern Paxson
e1dc3e7b08 simpler workflow for -O gen-C++ ; also some hooks for -O gen-standalone-C++ 2021-06-04 17:01:53 -07:00
Vern Paxson
98f549d65d ReplaceBody now deletes a body if the replacement is nil 2021-06-04 16:56:29 -07:00
Vern Paxson
2ec2e1e7d7 removal of can't-actually-be-executed code 2021-06-04 16:54:11 -07:00
Tim Wojtulewicz
9fbbcaad8f Merge remote-tracking branch 'origin/topic/timw/analyzer-deprecations' 
* origin/topic/timw/analyzer-deprecations:
  Add deprecated headers for UDP and ICMP analyzers
 2021-06-04 08:29:43 -07:00
Tim Wojtulewicz
d15fca7e17 Merge remote-tracking branch 'origin/topic/timw/fix-ip-header-length-checking' 
* origin/topic/timw/fix-ip-header-length-checking:
  Fix handling of IP packets with bogus IP header lengths
 2021-06-04 08:28:57 -07:00
Vern Paxson
4172b9e147 Merge remote-tracking branch 'origin/master' into topic/vern/ZAM-prep 2021-06-03 08:13:48 -07:00
Johanna Amann
011ac442a1 Remove the Stepping Stone analyzer 
This commit removes the stepping stone analyzer. It has been deactivated
by default since at least Zeek 2.0, is dysfunctional in cluster settings
and has a bunch of other issued.

Relates to GH-1573
 2021-06-03 14:28:12 +01:00
Vern Paxson
47783cb9fd support "any" coercions for "-O gen-C++" 2021-06-02 15:58:16 -07:00
Vern Paxson
7a96d2fa61 better descriptions for named record constructors 2021-06-02 15:57:25 -07:00
Tim Wojtulewicz
cdc62efa73 Add deprecated headers for UDP and ICMP analyzers 2021-06-02 15:52:10 -07:00
Tim Wojtulewicz
1f94b8f250 Label session adapters in the output of zeek -NN 2021-06-02 13:20:11 -07:00
Tim Wojtulewicz
5433f2936e Split session adapter code into separate files from the analyzers 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
b6ab22e9fb Move adapter-specific code back into the adapter 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
1eed8b7f67 Move ICMP counterpart methods outside of ICMPAnalyzer class 
These were previously global methods in the old analyzer, and moving them
to be private members of ICMPAnalyzer broke the usage of them by at least
one external plugin.
 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
12d768d0d8 Remove obsolete Skipping()/SetSkip() from Connection 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
08fb5d76ee Remove some code from IPBasedAnalyzer and children that was waiting for TCP to be implemented 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
4114bbebf0 Move TCPStateStats object out of session_mgr 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
9e1f6f95aa Move analyzer-to-port mapping out of analyzer::Manager into packet analyzers 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
d6c74373c7 Move packet parsing code out of adapter into analyzer 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
f6e31107e1 Move old TCP analyzer into analyzer adapter in packet analysis tree 2021-06-02 13:20:10 -07:00
Tim Wojtulewicz
b171f94729 Merge remote-tracking branch 'zeek-security/topic/timw/mobile-ipv6-overflow' 
* zeek-security/topic/timw/mobile-ipv6-overflow:
  Add some extra length checking when parsing mobile ipv6 packets
 2021-06-02 10:02:59 -07:00
Tim Wojtulewicz
9a6959d633 Merge remote-tracking branch 'origin/topic/jsiwek/improve-netbios-toupper' 
* origin/topic/jsiwek/improve-netbios-toupper:
  Replace toupper() usages in netbios decoding BIFs
 2021-06-01 19:12:09 -07:00
Vern Paxson
d8213246ea error propagation fix for AST reduction 2021-06-01 14:13:09 -07:00
Tim Wojtulewicz
ff79a58f59 Merge remote-tracking branch 'origin/topic/neverlord/telemetry-scraper' 
* origin/topic/neverlord/telemetry-scraper:
  Integrate review feedback
  Sync new broker options, fix name inconsistencies
  Integrate new Broker metric exporter parameters
 2021-06-01 10:19:46 -07:00
Vern Paxson
b5b58b0a3a "-O compile-all" option to specify compilation of inlined functions 2021-06-01 09:24:17 -07:00
Vern Paxson
7855557e92 compile inlined functions if they're also used indirectly 2021-06-01 09:05:01 -07:00
Vern Paxson
5f4956bf24 provide ZAM-generated code with low-level access to record fields 2021-06-01 08:57:16 -07:00
Vern Paxson
099dc99d2b fix for cloning records with fields of type "any" 2021-06-01 08:52:24 -07:00
Vern Paxson
cd8e16e090 direct access for ZAM to VectorVal internal vector 2021-05-30 19:35:54 -07:00
Vern Paxson
43c88749dd ZVal constructors, accessors & methods in support of ZAM 2021-05-30 19:23:29 -07:00
Vern Paxson
dfc74a9af4 switch ZVal representation of types from Type objects to TypeVal's 2021-05-30 18:44:41 -07:00