Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts/base/frameworks/files
History
Arne Welzel e4ab7b2d70 files/main: No empty file_ids 
When an analyzer calls DataIn(), there's a costly callback construct
going through the event queue. If an analyzer does not have a
get_file_handle() handler installed, the produced file_id would
end up empty and ignored. Consequently, the get_file_handle() callback
was invoked for every new DataIn() invocations.

This is surprising and costly. Log a warning when this happens and
instead set a generically generated file handle value instead to
prevent the repeated get_file_handle() invocations.
2023-02-06 18:08:05 +01:00
..
magic Spelling fixes: scripts 2022-11-02 17:36:39 -04:00
__load__.zeek Rename all scripts to have ".zeek" file extension 2019-04-11 21:12:40 -05:00
main.zeek files/main: No empty file_ids 2023-02-06 18:08:05 +01:00
README Add README files for most Bro frameworks 2013-10-11 00:19:37 -05:00

README 

The file analysis framework provides an interface for driving the analysis
of files, possibly independent of any network protocol over which they're
transported.