mirror of
https://github.com/zeek/zeek.git
synced 2025-10-03 07:08:19 +00:00
130c89a0a7
To address review feedback in GH-4362: rename analyzer-failed-log.zeek to loggig.zeek, analyzer-debug-log.zeek to debug-logging.zeek and dpd-log.zeek to deprecated-dpd-log.zeek. Includes respective test, NEWS, etc updates.
21 lines
972 B
Text
21 lines
972 B
Text
# @TEST-EXEC: zeek -r ${TRACES}/socks.trace %INPUT
|
|
# @TEST-EXEC: mv analyzer_debug.log analyzer_debug.log-default
|
|
# @TEST-EXEC: btest-diff analyzer_debug.log-default
|
|
|
|
# @TEST-EXEC: zeek -r ${TRACES}/socks.trace %INPUT Analyzer::DebugLogging::include_confirmations=F
|
|
# @TEST-EXEC: mv analyzer_debug.log analyzer_debug.log-dontinclude-confirmations
|
|
# @TEST-EXEC: btest-diff analyzer_debug.log-dontinclude-confirmations
|
|
|
|
# @TEST-EXEC: zeek -r ${TRACES}/socks.trace %INPUT Analyzer::DebugLogging::include_disabling=F
|
|
# @TEST-EXEC: mv analyzer_debug.log analyzer_debug.log-dontinclude-disabling
|
|
# @TEST-EXEC: btest-diff analyzer_debug.log-dontinclude-disabling
|
|
|
|
@load base/protocols/conn
|
|
@load base/protocols/dns
|
|
@load base/protocols/socks
|
|
|
|
@load frameworks/analyzer/debug-logging
|
|
|
|
# DCE RPC violations are ignored by default. Consider violations for this
|
|
# test so that the analyzer will be disabled eventually.
|
|
redef DPD::ignore_violations -= { Analyzer::ANALYZER_DCE_RPC };
|