base/protocols/mysql/main.zeek¶
- MySQL¶
Implements base functionality for MySQL analysis. Generates the mysql.log file.
- Namespace
MySQL
- Imports
base/protocols/conn/removal-hooks.zeek, base/protocols/mysql/consts.zeek
Summary¶
Types¶
Redefinitions¶
|
Events¶
Event that can be handled to access the MySQL record as it is sent on to the logging framework. |
Hooks¶
MySQL finalization hook. |
|
Detailed Interface¶
Types¶
- MySQL::Info¶
- Type
-
- ts:
time
&log
Timestamp for when the event happened.
- uid:
string
&log
Unique ID for the connection.
- id:
conn_id
&log
The connection’s 4-tuple of endpoint addresses/ports.
- cmd:
string
&log
The command that was issued
- arg:
string
&log
The argument issued to the command
- success:
bool
&log
&optional
Did the server tell us that the command succeeded?
- rows:
count
&log
&optional
The number of affected rows, if any
- response:
string
&log
&optional
Server message, if any
- ts:
Events¶
- MySQL::log_mysql¶
- Type
event
(rec:MySQL::Info
)
Event that can be handled to access the MySQL record as it is sent on to the logging framework.
Hooks¶
- MySQL::finalize_mysql¶
- Type
MySQL finalization hook. Remaining MySQL info may get logged when it’s called.