[Zeek] - new writer plugin
william de ping
bill.de.ping at gmail.com
Thu Feb 20 07:06:42 PST 2020
No luck with that.
I see that the Cmakefile and Makefile in the zeromq writer are the same as
mine.
It really seems to be related to a linkage issue.
Running the plugin as a shared object fails due to undefined symbols, yet
running the same code inside zeek/src works.
Any thoughts ?
Thanks
B
On Wed, Feb 19, 2020 at 6:34 PM Justin Azoff <justin at corelight.com> wrote:
> maybe take a peek at how https://github.com/ncsa/bro-zeromq-writer is put
> together.. that's probably one of the simpler standalone log writer plugins.
>
> On Wed, Feb 19, 2020 at 11:17 AM william de ping <bill.de.ping at gmail.com>
> wrote:
>
>> Hi all,
>>
>> I want to make a permanent change into ASCII.cc file of the Ascii_writer.
>> After making the changes, I've created a dummy plugin and updated the src
>> and script dirs accordingly.
>>
>> compiling the plugin works, however, running Zeek with the new
>> Ascii2_writer as the default writer fails with undefined symbols in the bif
>> references area.
>>
>> This issue seems to be related to a linkage issue, since Ascii2_writer
>> code placed in <zeek_src>/src/logging/writers works properly.
>>
>> Any ideas on what to do?
>>
>> Simply copying the Ascii writer code, creating a plugin and using this
>> plugin under a different namespace fails for the same reason.
>>
>> Thanks
>> B
>> _______________________________________________
>> Zeek mailing list
>> zeek at zeek.org
>> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/zeek
>
>
>
> --
> Justin
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/zeek/attachments/20200220/4ab635da/attachment.html
More information about the Zeek
mailing list