Skip to content
Snippets Groups Projects
Commit 84ff8712 authored by Stuart Mcalpine's avatar Stuart Mcalpine
Browse files

Even when Snapshots: invoke_stf is chosen (perform VELOCIraptor automatically

at the snapshot output times), do not use the snapshot basename and instead use
the stf basename (StructureFinding: basename).

This saves the group files to their own folder as is the behaviour when
performing VELOCIraptor using StructureFinding: output_list.
parent 13f05c12
Branches
Tags
1 merge request!874Stf output times
...@@ -518,14 +518,8 @@ void velociraptor_invoke(struct engine *e, const int linked_with_snap) { ...@@ -518,14 +518,8 @@ void velociraptor_invoke(struct engine *e, const int linked_with_snap) {
char outputFileName[PARSER_MAX_LINE_SIZE + 128]; char outputFileName[PARSER_MAX_LINE_SIZE + 128];
/* What should the filename be? */ /* What should the filename be? */
if (linked_with_snap) { snprintf(outputFileName, PARSER_MAX_LINE_SIZE + 128, "%s_%04i.VELOCIraptor",
snprintf(outputFileName, PARSER_MAX_LINE_SIZE + 128, e->stf_base_name, e->stf_output_count);
"stf_%s_%04i.VELOCIraptor", e->snapshot_base_name,
e->snapshot_output_count);
} else {
snprintf(outputFileName, PARSER_MAX_LINE_SIZE + 128, "%s_%04i.VELOCIraptor",
e->stf_base_name, e->stf_output_count);
}
/* What is the snapshot number? */ /* What is the snapshot number? */
int snapnum; int snapnum;
......
0% Loading or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment