profile
viewpoint
If you are wondering where the data of this site comes from, please visit https://api.github.com/users/mavam/events. GitMemory does not store any data, but only uses NGINX to cache data for a period of time. The idea behind GitMemory is simply to give users a better reading experience.

actor-framework/actor-framework 2461

An Open Source Implementation of the Actor Model in C++

mavam/stat-cookbook 1928

:orange_book: The probability and statistics cookbook

mavam/libbf 297

:dart: Bloom filters for C++11

mavam/abstract-algebra-cheatsheet 137

:green_book: A visualization of key structures in abstract algebra.

mavam/ml-driver 64

:rocket: Linux kernel driver for the DreamCheeky USB missile launcher

mavam/dotfiles 47

:desktop_computer: The very heart of an efficient work environment

mavam/gitdub 25

:outbox_tray: A github WebHook that emails detailed diffs of your commits.

mavam/brospects 20

Experimental Bro scripts with good prospects for the official bro-scripts repository.

mavam/compbench 19

:hourglass: Benchmark and visualization of various compression algorithms

push eventzeek/zeek

Tim Wojtulewicz

commit sha a83f42b64cc830ae62f67492dbcc57ad4c9c2ee8

Dump some info during the lgtm build

view details

push time in 17 minutes

issue commentJ-Gras/zeek-af_packet-plugin

Compile error in Plugin.cc / AF_Packet.h with latest build

No problem. My apologies I should have included that - my Zeek version is set as 3.2.3 based to match a dockerfile contained within ActiveCM's single-system Zeek cluster project. Cheers!

EWickens

comment created time in an hour

push eventzeek/zeek

Vern Paxson

commit sha dbe46fa90662643d0d1a665d0bc691745add4962

gearing up for multiple compilation units

view details

Vern Paxson

commit sha ccc9163ac9e0d24376bcff4086cea5898525f0f2

hooks for add-C++

view details

Vern Paxson

commit sha 2aa599f1ff15114b28f40aac0dd686b58e88b5d2

add-C++ now fully functional

view details

push time in an hour

push eventzeek/zeek

Tim Wojtulewicz

commit sha 82d14096d6af726b0042bd683d16b5607b3d85ee

Trying to fix the build on LGTM

view details

push time in an hour

push eventoscarlab/betrfs

Erica Fu

commit sha 6ae052a5cfe5ed273cfa8100ba0fd166009b9d77

another script for simple fs

view details

Erica Fu

commit sha de3d3467f9af987936cbb871bfd3348cefce81fb

Makefile for simplefs

view details

Erica Fu

commit sha 6cc86928ee5144ce9902c77a812e5bb5898b28ce

revise simplefs/.mkinclude

view details

Erica Fu

commit sha 33adb7529ff9ecca852af9c9ab2f7af5b730cbdc

disable tests not for SFS (private repo PR#120)

view details

Erica Fu

commit sha bd03caa1431e5b017aae1322ec49775005c4d67a

more cleanup on toku test cases, PR#99, #156, #161, #174

view details

Erica Fu

commit sha fdbab6f52d701c0beb9b3e11a3acc67aec07cfd3

remove moved files

view details

Erica Fu

commit sha 1efbf18f251e410da0fe67b88e5522c700445d3b

more changes from private repo

view details

Erica Fu

commit sha 1c6635bc1b2d6cd58651ac6f862cd8b95b555fb2

cleanup ftfs_fs

view details

Erica Fu

commit sha 9d9bcbaafdd8366bbcb0152c892b78ebd229e6f5

update Jenkinsfiles for Toku

view details

Erica Fu

commit sha 3434c2f9f79739237cc5e91bcbb9ba555d072923

revise ftfs/.mkinclude

view details

Erica Fu

commit sha 92e178d139ef47ebd7d71123fe0b56b21e3d002b

update default-pre.py for toku

view details

Erica Fu

commit sha 00cb2c9aece2572383350983e06544dde1dcf2d3

fixing wrong assert condition which found by toku stress test

view details

Erica Fu

commit sha 263bad7a416ed1b71df8f2719e2e1c03723c6f59

fix possible bug

view details

Erica Fu

commit sha 7a27bf7160202195f469ea5b3b36fd5261ae9fa3

fix bp not initialized, found by test-stress-with-verify Toku test

view details

Sagar Patel

commit sha 8c039970a42b6cf6b2e637bc629ccbd5abcad976

[Jenkins] balance and fix cleanup of toku job (#21) Manually import toku job cleanup changes from internal repo to prevent lingering VM images. Also, balance toku jobs and put the dmesg output in a try/catch block to tolerate vagrant errors.

view details

push time in an hour

delete branch zeek/zeek

delete branch : topic/seth/ntlm-fixes

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/linux-cooked

delete time in 2 hours

delete branch zeek/zeek

delete branch : sethhall-fix-ssl-files-warning

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/github-ident-flex

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/more-file-type-ident

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/config-reader-musl-support

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/zeek-script-args

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/make-cluster-port-optional

delete time in 2 hours

delete branch zeek/zeek

delete branch : topic/seth/plugin-dir

delete time in 2 hours

push eventzeek/packages

Johanna Amann

commit sha d1059e7bb7c7974e4ea974874c0e301f35037bef

Update aggregate metadata

view details

push time in 2 hours

Pull request review commentzeek/zeek

Option to build external plugins directly into Zeek

 void Manager::LoadScriptsForStaticPlugins() 	{ 	for ( const auto& p : Manager::ActivePlugins() ) 		{-		if ( p->DynamicPlugin() )+		if ( p->DynamicPlugin() || p->Name() == "" )

Changed

sethhall

comment created time in 2 hours

push eventzeek/zeek

Seth Hall

commit sha 818deb98d2775dd6d923e5d70711d86a0b710593

Minor nit change for Tim

view details

push time in 2 hours

Pull request review commentzeek/zeek

Option to build external plugins directly into Zeek

 foreach (plugin_dir ${BUILTIN_PLUGIN_LIST})     add_subdirectory(${plugin_dir} ${CMAKE_CURRENT_BINARY_DIR}/plugins/${plugin_name}) endforeach () +# Write the preload Zeek script for static plugins.+file(GLOB STATIC_PLUGIN_PRELOADS CONFIGURE_DEPENDS "${CMAKE_BINARY_DIR}/scripts/plugins/*/__preload__.zeek")+file(WRITE ${CMAKE_BINARY_DIR}/scripts/plugins/__preload__.zeek "# Warning, this is an autogenerated file!\n")+foreach (static_preload_script ${STATIC_PLUGIN_PRELOADS})+    string(REPLACE ${CMAKE_BINARY_DIR}/scripts/ "" load_script ${static_preload_script})+    file(APPEND ${CMAKE_BINARY_DIR}/scripts/plugins/__preload__.zeek "@load ${load_script}\n")+endforeach ()+

There is a line just above that does WRITE which truncates the file to place the line that says the file is autogenerated.

sethhall

comment created time in 2 hours

push eventzeek/zeek

Seth Hall

commit sha 8aa3367e7ade55ddb14291c2ee66f35009d85ac0

Install the static plugin preload file

view details

push time in 2 hours

Pull request review commentzeek/zeek

Option to build external plugins directly into Zeek

 void Manager::LoadScriptsForStaticPlugins() 	{ 	for ( const auto& p : Manager::ActivePlugins() ) 		{-		if ( p->DynamicPlugin() )+		if ( p->DynamicPlugin() || p->Name() == "" )

I'd prefer p->Name().empty().

sethhall

comment created time in 2 hours

Pull request review commentzeek/zeek

Option to build external plugins directly into Zeek

 foreach (plugin_dir ${BUILTIN_PLUGIN_LIST})     add_subdirectory(${plugin_dir} ${CMAKE_CURRENT_BINARY_DIR}/plugins/${plugin_name}) endforeach () +# Write the preload Zeek script for static plugins.+file(GLOB STATIC_PLUGIN_PRELOADS CONFIGURE_DEPENDS "${CMAKE_BINARY_DIR}/scripts/plugins/*/__preload__.zeek")+file(WRITE ${CMAKE_BINARY_DIR}/scripts/plugins/__preload__.zeek "# Warning, this is an autogenerated file!\n")+foreach (static_preload_script ${STATIC_PLUGIN_PRELOADS})+    string(REPLACE ${CMAKE_BINARY_DIR}/scripts/ "" load_script ${static_preload_script})+    file(APPEND ${CMAKE_BINARY_DIR}/scripts/plugins/__preload__.zeek "@load ${load_script}\n")+endforeach ()+

Does this fully-overwrite this file every time CMake runs? Say, if you switch branches or update a submodule?

sethhall

comment created time in 2 hours

PR closed mathiasbynens/dotfiles

.gitconfig: Open merge conflicts in default editor

git fix FTW

+3 -0

0 comment

1 changed file

builtbylane

pr closed time in 2 hours

push eventzeek/zeek

Seth Hall

commit sha f897408dbeac456c9c2bfee949b9473bad9a9997

Fix a small bug (compile error)

view details

push time in 3 hours

PR merged zeek/packages

Added zeek-intel-path
+1 -0

0 comment

1 changed file

captainGeech42

pr closed time in 3 hours

push eventzeek/packages

Zander Work

commit sha 0125d3bcae10feb4970fa73d06dcf92d6d3e1c8c

added zeek-intel-path

view details

Johanna Amann

commit sha c568082e512f2cedb7a401e7cc04d9d8ca4eb375

Merge branch 'master' of https://github.com/captainGeech42/packages * 'master' of https://github.com/captainGeech42/packages: added zeek-intel-path

view details

push time in 3 hours

issue commentJ-Gras/zeek-af_packet-plugin

Compile error in Plugin.cc / AF_Packet.h with latest build

Hey, thanks for the feedback! Which version of Zeek are you using? The current master was updated to be compatible with the changes of the upcoming Zeek release.

EWickens

comment created time in 3 hours

issue commentactor-framework/actor-framework

Link errors building hello_world sample with clang 5

Thanks. It looks like you are testing clang 7 and 8 in CI. We are testing clang 6 through 10 in CI for the Conan Center package.

sourcedelica

comment created time in 3 hours

issue openedJ-Gras/zeek-af_packet-plugin

Compile error in Plugin.cc / AF_Packet.h with latest build

Hey,

Have been building this within a docker container on the latest release (c993fc275864fd068e6a816fd2f3892a0d5f4cb7)

Encountered an issue during compilation which I've provided below, I rolled back to the 2.1.2 release and all is working on install again.

Hope this helps!

In file included from /tmp/zeek-af_packet-plugin/src/Plugin.cc:3:
/tmp/zeek-af_packet-plugin/src/AF_Packet.h:28:55: error: expected class-name before '{' token
   28 | class AF_PacketSource : public zeek::iosource::PktSrc {
      |                                                       ^
/tmp/zeek-af_packet-plugin/src/AF_Packet.h:46:9: error: 'PktSrc' does not name a type; did you mean 'pktsrc'?
   46 |  static PktSrc* InstantiateAF_Packet(const std::string& path, bool is_live);
      |         ^~~~~~
      |         pktsrc
/tmp/zeek-af_packet-plugin/src/AF_Packet.h:52:33: error: 'zeek::Packet' has not been declared
   52 |  virtual bool ExtractNextPacket(zeek::Packet* pkt);
      |                                 ^~~~
/tmp/zeek-af_packet-plugin/src/AF_Packet.h:56:26: error: 'Stats' has not been declared
   56 |  virtual void Statistics(Stats* stats);
      |                          ^~~~~
/tmp/zeek-af_packet-plugin/src/AF_Packet.h:59:2: error: 'Properties' does not name a type
   59 |  Properties props;
      |  ^~~~~~~~~~
/tmp/zeek-af_packet-plugin/src/AF_Packet.h:60:2: error: 'Stats' does not name a type
   60 |  Stats stats;
      |  ^~~~~
/tmp/zeek-af_packet-plugin/src/Plugin.cc: In member function 'virtual zeek::plugin::Configuration plugin::Zeek_AF_Packet::Plugin::Configure()':
/tmp/zeek-af_packet-plugin/src/Plugin.cc:12:19: error: expected type-specifier before '::' token
   12 |  AddComponent(new ::zeek::iosource::PktSrcComponent("AF_PacketReader", "af_packet", ::zeek::iosource::PktSrcComponent::LIVE, ::zeek::iosource::pktsrc::AF_PacketSource::InstantiateAF_Packet));
      |                   ^~
make[3]: Leaving directory '/tmp/zeek-af_packet-plugin/build'
make[3]: *** [CMakeFiles/Zeek-AF_Packet.linux-x86_64.dir/build.make:102: CMakeFiles/Zeek-AF_Packet.linux-x86_64.dir/src/Plugin.cc.o] Error 1
make[2]: *** [CMakeFiles/Makefile2:134: CMakeFiles/Zeek-AF_Packet.linux-x86_64.dir/all] Error 2
make[2]: Leaving directory '/tmp/zeek-af_packet-plugin/build'
make[1]: Leaving directory '/tmp/zeek-af_packet-plugin/build'
make[1]: *** [Makefile:172: all] Error 2
make: *** [Makefile:13: build-it] Error 2

created time in 3 hours

PR opened zeek/zeek

Add telemetry API to Zeek

Closes #1408.

This is not yet the full functionality, but I think integrating feedback on the approach makes sense at this point.

For the most part, the API is a simple wrapper around the CAF metrics API. This API makes use of spans (abstraction for contiguous blocks of memory with a pointer and a size). Unfortunately, std::span is not yet available to Zeek. This is why I've added a new Span class. I could also push this to a detail namespace if preferred, but I figured it may come in handy in other places as well until we can switch to std::span instead.

A couple notes on the implementation:

  • CAF uses a registry for metrics. Once retrieved, this means metric objects live for as long as the CAF actor system. Hence, CAF hands out raw pointers that an application can safely hang on to. All handle types have an opaque Impl member class that Zeek casts to the native CAF types internally.
  • Counters and gauges come in two "flavors": int64_t or double. The former is preferred whenever possible, because integers have more efficient atomic increment/decrement operations on most platforms (like atomic fetch-and-add). A double always needs to fall back to compare-and-swap with retry loops. This means there's an IntCounter and a DoubleCounter with a Counter<T> template for convenience (T may only be int64_t or double).
  • Handle types have no default constructor. This is to make sure that an application initializes the handles properly before use and we can consequently skip null pointer checking. If this turns out to be too permissive in practice, we can make the handles default-constructable but then we either need to check for null in all member functions or require null checks by the user.
  • Unit tests are in telemetry/Manager.cc, which hopefully provide a good starting point for seeing how the API works. 🙂
  • For technical reasons, we create the telemetry Manager from the Broker Manager.

Once we agree on the general approach, I'll also add:

  • [ ] histogram handle types
  • [ ] BIFs for accessing the metrics API from script land (probably using new OpaqueVal classes for wrapping handle types)
+1950 -0

0 comment

14 changed files

pr created time in 3 hours

Pull request review commenttenzir/vast

Add 'mqtt' and 'anomaly' Suricata schema types

 This changelog documents all notable user-facing changes of VAST.   the query language entirely.   [#1399](https://github.com/tenzir/vast/pull/1399) +### ⚠️ Changes++- VAST now ships with schema record types for Suricata's `mqtt` and `anomaly`+  event types.+  [#1408](https://github.com/tenzir/vast/pull/1408)+  [@satta](https://github.com/satta)
- ⚠️ VAST now ships with schema record types for Suricata's `mqtt` and `anomaly`
  event types.
  [#1408](https://github.com/tenzir/vast/pull/1408)
  [@satta](https://github.com/satta)

Please apply this diff and move to the top; we keep the changelog reverse-chronological in the Unreleased section instead of sorting it by category.

satta

comment created time in 3 hours