Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-17 05:58:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/src
History
Christian Kreibich b24c5c0e46 Order rule traversal in RuleMatcher::Match() operations by Rule index 
This ordering fixes a test failure we're seeing on Alpine for the
signatures/tcp-end-of-match btest, since discrepancies in rule match traversal
could lead to discrepancies in corresponding event ordering.

It looks safe to rely on across platforms since the index is driven by signature
load order, which shouldn't deviate. If this somehow doesn't hold in the future,
we'll only wind up with a test failure, not incorrect match behavior.

(Correction to 2e03fbb8b0, which I pushed
accidentally.)
2024-11-18 09:45:09 -08:00
..
3rdparty@96caa6a590 Merge remote-tracking branch 'origin/topic/christian/ci-updates' 2024-06-18 10:53:09 +02:00
analyzer clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
broker clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
file_analysis clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
fuzzers Bump clang-format 2024-09-02 16:46:59 +02:00
include Creating a symlink src/include/zeek -> src/ 2022-11-09 18:16:13 +02:00
input input/Raw: Rework GetLine() 2024-10-09 14:21:07 -07:00
iosource iosource/Manager: Remove superflous includes 2024-11-15 15:55:46 +01:00
logging clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
packet_analysis Don't forward out of the unknown IP transport analyzer 2024-11-15 16:54:53 -07:00
plugin all: Change to use Func::GetName() 2024-09-27 15:11:17 +02:00
probabilistic Remove deprecated BloomFilter serialization methods 2024-08-07 11:58:21 -07:00
script_opt ZAM fixes for assignments involving "any" record fields 2024-11-11 09:19:54 +01:00
session telemetry: Move callbacks to Zeek 2024-09-12 09:12:24 +02:00
spicy Fix nullptr deref in Spicy accept/decline input 2024-11-11 10:30:02 -05:00
supervisor Remove the Supervisor's internal ClusterEndpoint struct. 2024-07-02 14:52:17 -07:00
telemetry clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
threading telemetry: Move callbacks to Zeek 2024-09-12 09:12:24 +02:00
zeekygen Avoid segfault when generating Zeekygen docs on Zeek-internal identifiers. 2024-05-03 12:23:49 -07:00
Anon.cc Reformat 2023-11-06 09:42:46 +00:00
Anon.h Reformat 2023-11-06 09:42:46 +00:00
Attr.cc improved error cascade for invalid attributes 2024-06-04 10:36:36 -07:00
Attr.h improved error cascade for invalid attributes 2024-06-04 10:36:36 -07:00
Base64.cc Reformat 2023-11-06 09:42:46 +00:00
Base64.h Reformat 2023-11-06 09:42:46 +00:00
binpac-lib.pac Code modernization: Convert from deprecated C standard library headers 2022-06-27 09:47:31 -07:00
binpac.pac Remove $Id$ tags 2011-08-04 15:21:18 -05:00
binpac_zeek-lib.pac Spelling src 2022-11-09 12:08:15 -05:00
binpac_zeek.h Reformat 2023-11-06 09:42:46 +00:00
CCL.cc Reformat 2023-11-06 09:42:46 +00:00
CCL.h Reformat 2023-11-06 09:42:46 +00:00
CMakeLists.txt Telemetry framework: move BIFs to the primary-bif stage 2024-10-18 09:56:29 -07:00
communityid.bif communityid: Use GetField() over GetFieldAs() 2024-11-15 17:38:53 +01:00
CompHash.cc Reformat 2023-11-06 09:42:46 +00:00
CompHash.h Reformat 2023-11-06 09:42:46 +00:00
Conn.cc Add conn.log entries for connections with unhandled IP protocols 2024-11-13 11:25:40 -07:00
Conn.h Increase size of proto fields to uint16_t, add common default value 2024-11-13 11:25:46 -07:00
const.bif logging: Dedicated log flush timer 2024-09-27 15:30:35 +02:00
DbgBreakpoint.cc Reformat 2023-11-06 09:42:46 +00:00
DbgBreakpoint.h Reformat 2023-11-06 09:42:46 +00:00
DbgDisplay.h Reformat 2023-11-06 09:42:46 +00:00
DbgHelp.cc updated Bro->Zeek in comments in the source tree 2022-01-24 14:26:20 -08:00
DbgWatch.cc Reformat 2023-11-06 09:42:46 +00:00
DbgWatch.h Reformat 2023-11-06 09:42:46 +00:00
Debug.cc all: Change to use Func::GetName() 2024-09-27 15:11:17 +02:00
Debug.h Reformat 2023-11-06 09:42:46 +00:00
DebugCmdInfoConstants.in Merge remote-tracking branch 'microsoft/master' 2022-11-11 15:23:21 -07:00
DebugCmds.cc Reformat 2023-11-06 09:42:46 +00:00
DebugCmds.h Add missing include for int32_t in DebugCmds.h 2024-02-05 14:38:16 -07:00
DebugLogger.cc Make debug stream names use "-", and handle "_" transparently 2024-11-15 17:53:29 -08:00
DebugLogger.h Make debug stream names use "-", and handle "_" transparently 2024-11-15 17:53:29 -08:00
Desc.cc fix ZAM "cat" of doubles/times to include trailing ".0" per normal BiF behavior 2024-03-28 16:43:06 -07:00
Desc.h Reformat 2023-11-06 09:42:46 +00:00
DFA.cc Fix up minor warnings in touched files 2024-10-30 08:47:57 -04:00
DFA.h Fix up minor warnings in touched files 2024-10-30 08:47:57 -04:00
Dict.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
Dict.h Dict: Invalidate iterators during Clear() 2024-01-09 09:12:21 +01:00
digest.cc Reformat 2023-11-06 09:42:46 +00:00
digest.h digest/digest_print: Use bytetohex() instead of snprintf() 2024-02-13 19:32:16 +01:00
Discard.cc Reformat 2023-11-06 09:42:46 +00:00
Discard.h Reformat 2023-11-06 09:42:46 +00:00
DNS_Mapping.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
DNS_Mapping.h Reformat 2023-11-06 09:42:46 +00:00
DNS_Mgr.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
DNS_Mgr.h Bump clang-format 2024-09-02 16:46:59 +02:00
EquivClass.cc Reformat 2023-11-06 09:42:46 +00:00
EquivClass.h Reformat 2023-11-06 09:42:46 +00:00
event.bif Add conn.log entries for connections with unhandled IP protocols 2024-11-13 11:25:40 -07:00
Event.cc segment_profiling: Remove SegmentProfiler and load_sample event 2024-01-03 11:55:54 +01:00
Event.h EventMgr: Remove queue_flare, use GetNextTimeout() instead 2023-12-04 20:03:31 +01:00
EventHandler.cc Remove is_sum arguments from counters and gauges 2024-05-31 13:36:37 -07:00
EventHandler.h broker/Eventhandler: Deprecate Broker::auto_publish() for v8.1 2024-11-14 12:59:22 +01:00
EventLauncher.cc Minor fixes for build problems after reformatting 2021-09-16 15:36:09 -07:00
EventLauncher.h Minor fixes for build problems after reformatting 2021-09-16 15:36:09 -07:00
EventRegistry.cc Remove EventRegistry::Used and EventRegistry::SetUsed 2024-08-07 11:58:21 -07:00
EventRegistry.h Remove EventRegistry::Used and EventRegistry::SetUsed 2024-08-07 11:58:21 -07:00
EventTrace.cc all: Change to use Func::GetName() 2024-09-27 15:11:17 +02:00
EventTrace.h Add some uses of std::move in constructors and simple functions for pass-by-value arguments 2023-11-28 13:40:28 -07:00
Expr.cc types: Fix table() resulting in table_type->IsSet() == true 2024-11-06 13:28:57 +01:00
Expr.h Merge remote-tracking branch 'origin/topic/vern/zam-regularization' 2024-08-16 12:10:33 +02:00
File.cc Reformat 2023-11-06 09:42:46 +00:00
File.h Reformat 2023-11-06 09:42:46 +00:00
Flare.cc Reformat 2023-11-06 09:42:46 +00:00
Flare.h Reformat 2023-11-06 09:42:46 +00:00
Frag.cc Reformat 2023-11-06 09:42:46 +00:00
Frag.h Reformat 2023-11-06 09:42:46 +00:00
Frame.cc Add facade types to avoid using raw Broker types 2023-12-04 15:23:28 +01:00
Frame.h Add facade types to avoid using raw Broker types 2023-12-04 15:23:28 +01:00
Func.cc Telemetry framework: move BIFs to the primary-bif stage 2024-10-18 09:56:29 -07:00
Func.h Func: Add std::string name accessors, deprecate const char* versions 2024-09-27 15:11:17 +02:00
Hash.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
Hash.h Make BIFs just return ValPtr directly instead of BifReturnVal 2024-01-22 10:35:34 -07:00
ID.cc simpler and more robust identification of function parameters for AST profiling 2024-08-16 11:19:02 +02:00
ID.h simpler and more robust identification of function parameters for AST profiling 2024-08-16 11:19:02 +02:00
input.h Reformat 2023-11-06 09:42:46 +00:00
IntrusivePtr.h Reformat 2023-11-06 09:42:46 +00:00
IntSet.cc Reformat 2023-11-06 09:42:46 +00:00
IntSet.h Reformat 2023-11-06 09:42:46 +00:00
IP.cc Reformat 2023-11-06 09:42:46 +00:00
IP.h Increase size of proto fields to uint16_t, add common default value 2024-11-13 11:25:46 -07:00
IPAddr.cc Minor review nits 2024-11-13 14:08:30 -07:00
IPAddr.h Add conn.log entries for connections with unhandled IP protocols 2024-11-13 11:25:40 -07:00
List.cc Reformat 2023-11-06 09:42:46 +00:00
List.h Reformat 2023-11-06 09:42:46 +00:00
main.cc Reformat 2023-11-06 09:42:46 +00:00
make_dbg_constants.py Format Python scripts with yapf. 2021-11-24 23:13:24 +01:00
mmdb.bif Modernize various C++/Zeek-isms in the MMDB code. 2024-01-11 17:13:41 -08:00
MMDB.cc Fix MMDB::Lookup() to check result status correctly 2024-01-25 23:54:22 -08:00
MMDB.h Modernize various C++/Zeek-isms in the MMDB code. 2024-01-11 17:13:41 -08:00
module_util.cc Reformat 2023-11-06 09:42:46 +00:00
module_util.h Reformat 2023-11-06 09:42:46 +00:00
net_util.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
net_util.h Add conn.log entries for connections with unhandled IP protocols 2024-11-13 11:25:40 -07:00
NetVar.cc Add conn.log entries for connections with unhandled IP protocols 2024-11-13 11:25:40 -07:00
NetVar.h Add conn.log entries for connections with unhandled IP protocols 2024-11-13 11:25:40 -07:00
NFA.cc Reformat 2023-11-06 09:42:46 +00:00
NFA.h Reformat 2023-11-06 09:42:46 +00:00
Notifier.cc fix for Trigger's whose termination leads to deleting other Trigger's 2023-12-12 09:45:19 +01:00
Notifier.h Reformat 2023-11-06 09:42:46 +00:00
Obj.cc fix for setting object locations to avoid use-after-free situation 2024-09-27 13:23:06 -07:00
Obj.h Bump clang-format 2024-09-02 16:46:59 +02:00
OpaqueVal.cc Remove deprecated OpaqueVal serialization methods 2024-08-07 11:58:21 -07:00
OpaqueVal.h Remove deprecated OpaqueVal serialization methods 2024-08-07 11:58:21 -07:00
option.bif option.bif: Short-circuit option changes when terminating 2022-07-29 18:22:03 +02:00
Options.cc "-O dump-final-ZAM" option similar to "dump-ZAM" only prints final version of functions 2024-09-27 13:24:30 -07:00
Options.h Reformat 2023-11-06 09:42:46 +00:00
Overflow.cc Reformat 2023-11-06 09:42:46 +00:00
Overflow.h Reformat 2023-11-06 09:42:46 +00:00
PacketFilter.cc Reformat 2023-11-06 09:42:46 +00:00
PacketFilter.h Reformat 2023-11-06 09:42:46 +00:00
parse.y "add" and "delete" are now expressions rather than statements 2024-05-29 12:40:06 -07:00
Pipe.cc Reformat 2023-11-06 09:42:46 +00:00
Pipe.h Reformat 2023-11-06 09:42:46 +00:00
PolicyFile.cc Reformat 2023-11-06 09:42:46 +00:00
PolicyFile.h Reformat 2023-11-06 09:42:46 +00:00
PrefixTable.cc Reformat 2023-11-06 09:42:46 +00:00
PrefixTable.h Reformat 2023-11-06 09:42:46 +00:00
PriorityQueue.cc Reformat 2023-11-06 09:42:46 +00:00
PriorityQueue.h Reformat 2023-11-06 09:42:46 +00:00
RandTest.cc Reformat 2023-11-06 09:42:46 +00:00
RandTest.h Reformat 2023-11-06 09:42:46 +00:00
re-parse.y RE/Specific_RE_Matcher: Make Compile() return false for syntax errors 2024-02-28 17:07:51 +01:00
re-scan.l RE/Specific_RE_Matcher: Make Compile() return false for syntax errors 2024-02-28 17:07:51 +01:00
RE.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
RE.h RE: Remove RE_DisjunctiveMatcher and re-use MatchAll() 2023-11-21 10:34:16 +01:00
Reassem.cc Reformat 2023-11-06 09:42:46 +00:00
Reassem.h Reformat 2023-11-06 09:42:46 +00:00
reporter.bif Update reporter.bif to describe special case of errors in init 2024-06-04 11:56:06 +02:00
Reporter.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
Reporter.h run-time warnings for scripts compiled to C++ 2024-08-16 11:18:57 +02:00
rule-parse.y rule-parse: Remove id_to_str() lookup to squelch coverity warning 2024-08-09 09:49:43 +02:00
rule-scan.l rule-scan: Copy yytext strings 2023-12-05 15:26:40 +01:00
Rule.cc Reformat 2023-11-06 09:42:46 +00:00
Rule.h Order rule traversal in RuleMatcher::Match() operations by Rule index 2024-11-18 09:45:09 -08:00
RuleAction.cc RuleMatcher: Use a single list for tracking pattern_matches 2024-11-04 16:17:49 +01:00
RuleAction.h signatures: Add data_end_offset to signature_match() and custom events 2024-10-30 13:29:58 +01:00
RuleCondition.cc Reformat 2023-11-06 09:42:46 +00:00
RuleCondition.h Reformat 2023-11-06 09:42:46 +00:00
RuleMatcher.cc Order rule traversal in RuleMatcher::Match() operations by Rule index 2024-11-18 09:45:09 -08:00
RuleMatcher.h RuleMatcher: Move plugin/Manager.h include from .h to .cc 2024-11-15 16:00:23 +01:00
RunState.cc PktSrc/RunState: Scale on first_wallclock and move pseudo realtime logic to RunState 2024-11-12 10:46:55 +01:00
RunState.h PktSrc/RunState: Scale on first_wallclock and move pseudo realtime logic to RunState 2024-11-12 10:46:55 +01:00
scan.l Add &default_insert attribute for tables 2023-08-04 12:30:36 +02:00
ScannedFile.cc Reformat 2023-11-06 09:42:46 +00:00
ScannedFile.h Reformat 2023-11-06 09:42:46 +00:00
Scope.cc Return an error if GLOBAL:: prefix is used 2024-08-07 11:58:22 -07:00
Scope.h Reformat 2023-11-06 09:42:46 +00:00
ScriptCoverageManager.cc Reformat 2023-11-06 09:42:46 +00:00
ScriptCoverageManager.h Reformat 2023-11-06 09:42:46 +00:00
ScriptProfile.cc all: Change to use Func::GetName() 2024-09-27 15:11:17 +02:00
ScriptProfile.h all: Change to use Func::GetName() 2024-09-27 15:11:17 +02:00
ScriptValidation.cc fixes to limit AST traversal in the face of recursive types 2024-08-16 11:19:02 +02:00
ScriptValidation.h Reformat 2023-11-06 09:42:46 +00:00
SerializationFormat.cc Reformat 2023-11-06 09:42:46 +00:00
SerializationFormat.h Reformat 2023-11-06 09:42:46 +00:00
SmithWaterman.cc Reformat 2023-11-06 09:42:46 +00:00
SmithWaterman.h Reformat 2023-11-06 09:42:46 +00:00
Span.h Span: Remove deduction guideline for Iter, Iter, include cleanup 2024-08-16 10:47:45 +02:00
stats.bif Move thread manager stats to telemetry metric 2024-08-05 13:21:44 -07:00
Stats.cc Move thread manager stats to telemetry metric 2024-08-05 13:21:44 -07:00
Stats.h segment_profiling: Remove SegmentProfiler and load_sample event 2024-01-03 11:55:54 +01:00
Stmt.cc Merge remote-tracking branch 'origin/topic/vern/zam-regularization' 2024-08-16 12:10:33 +02:00
Stmt.h removing now-vestigial "add" and "delete" statements 2024-05-29 12:40:06 -07:00
StmtBase.h fixes & enhancements to location information associated w/ AST nodes & ZAM optimization 2024-02-06 11:03:02 +01:00
StmtEnums.h Remove STMT_ANY statement type 2024-08-07 11:58:21 -07:00
strings.bif Change to use ToStdStringView() in a few other BIFs 2024-01-23 10:38:56 -07:00
Tag.cc Reformat 2023-11-06 09:42:46 +00:00
Tag.h Reformat 2023-11-06 09:42:46 +00:00
Timer.cc logging: Dedicated log flush timer 2024-09-27 15:30:35 +02:00
Timer.h logging: Dedicated log flush timer 2024-09-27 15:30:35 +02:00
Traverse.cc Reformat 2023-11-06 09:42:46 +00:00
Traverse.h Reformat 2023-11-06 09:42:46 +00:00
TraverseTypes.h Reformat 2023-11-06 09:42:46 +00:00
Trigger.cc telemetry: Move callbacks to Zeek 2024-09-12 09:12:24 +02:00
Trigger.h Remove deprecated Trigger constructor 2024-08-07 11:58:21 -07:00
TunnelEncapsulation.cc Minor review nits 2024-11-13 14:08:30 -07:00
TunnelEncapsulation.h Minor review nits 2024-11-13 14:08:30 -07:00
Type.cc types: Fix table() resulting in table_type->IsSet() == true 2024-11-06 13:28:57 +01:00
Type.h Bump clang-format 2024-09-02 16:46:59 +02:00
types.bif Pass parsed file record information with ReadFile/WriteFile events 2023-08-07 13:44:38 -07:00
UID.cc Reformat 2023-11-06 09:42:46 +00:00
UID.h Reformat 2023-11-06 09:42:46 +00:00
util.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
util.h fix ZAM "cat" of doubles/times to include trailing ".0" per normal BiF behavior 2024-03-28 16:43:06 -07:00
Val.cc fixes for (mostly ZAM) vector operation issues found by ASAN 2024-11-11 09:19:54 +01:00
Val.h Merge remote-tracking branch 'origin/topic/vern/zam-regularization' 2024-08-16 12:10:33 +02:00
Var.cc framework for --enable-ZAM-profiling configuration 2024-03-19 10:59:49 -07:00
Var.h Reformat 2023-11-06 09:42:46 +00:00
version.c.in Support for configurable localversion 2024-04-17 14:16:47 -07:00
WeirdState.cc Reformat 2023-11-06 09:42:46 +00:00
WeirdState.h Reformat 2023-11-06 09:42:46 +00:00
zeek-affinity.cc Reformat 2023-11-06 09:42:46 +00:00
zeek-affinity.h Reformat 2023-11-06 09:42:46 +00:00
zeek-bif.h Make BIFs just return ValPtr directly instead of BifReturnVal 2024-01-22 10:35:34 -07:00
zeek-setup.cc zeek-setup: Remove some unused headers 2024-11-15 17:00:02 +01:00
zeek-setup.h Reformat 2023-11-06 09:42:46 +00:00
zeek.bif Minor review nits 2024-11-13 14:08:30 -07:00
zeek.pac Add GTPv1 packet analyzer, disable old analyzer 2021-11-23 19:36:50 -07:00
ZeekArgs.cc Reformat 2023-11-06 09:42:46 +00:00
ZeekArgs.h Reformat 2023-11-06 09:42:46 +00:00
ZeekConfig.cmake.in Revert "Merge remote-tracking branch 'origin/topic/neverlord/gh-3247'" 2023-08-29 12:13:40 -07:00
ZeekList.h Reformat 2023-11-06 09:42:46 +00:00
ZeekPluginBootstrap.cmake.in ZeekPluginBootstrap: Encode Zeek's CMAKE_BUILD_TYPE 2023-06-15 10:46:06 +02:00
ZeekPluginConfig.cmake.in Fix install directory for plugins 2023-04-22 16:12:22 +02:00
ZeekString.cc clang-format: Sort doctest header at the bottom 2024-11-15 17:00:00 +01:00
ZeekString.h ZeekString: Implement move constructor 2024-11-04 16:17:47 +01:00
ZVal.cc Reformat 2023-11-06 09:42:46 +00:00
ZVal.h complete migration of ZAM to use only public ZVal methods 2024-08-16 11:18:58 +02:00