missing variable assignments before reference: ServerShell.php - issue : 9072 #9073
Conversation
missing variable assignments before reference.
| $syncTool = new SyncTool(); | ||
| $server = $this->getServer($serverId); | ||
| $HttpSocket = $syncTool->setupHttpSocket($server); | ||
|
|
||
| $result = $this->TaxiiServer->push($serverId, $technique, $jobId, $HttpSocket, $user); |
There was a problem hiding this comment.
Looking at app/Model/TaxiiServer.php:push(), I think the fix should actually be to change the arguments to
$result = $this->TaxiiServer->push($serverId, $user, $jobId);
With that, I managed to make the execution of a Taxii push go further, but I'm now hitting another exception
Error Call to a member function saveField() on null....
EDIT: I think this is because the Job is not created because calling push() skips the call pushRouter() which does create the Job.
EDIT2: Actually not specifying the $jobId and let it default to null seems to work better since this will force the creation of a new Job.
There was a problem hiding this comment.
'Thanks @VincentEggerling , maybe you are right.
I was skeptical of changing the function signature.
I will take a look again.
How are you debugging the MISP run? is there a debug switch/config somewhere that I couldnt find?
There was a problem hiding this comment.
You can "in live" tweak the .php files and add something like $this->log("Some var = " . $var, LOG_WARNING); Then have a look in app/tmp/logs and sort by most recently modified. You should see your log appear somewhere.
I use warning level to be sure the log appear because sometimes lower level log are ignored.
With this change, I was able to push some events to my TAXII server. However you might need some more tweaks such as:
- Bug: Hardcoded --collection parameter for TAXII push script #9089 . You'll need to edit manually the collection for now.
- Make sure your TAXII server advertise API-root without any path prefix. This works
http://host:port/149acdaa-dde3-4053-a296-18ac9d7b8d79but this doesn'thttp://host:port/someprefix/149acdaa-dde3-4053-a296-18ac9d7b8d79. This boils down to this part - You need to
pip install misp-stix taxii2-clienton your MISP server.
You might still get errors coming from the conversion MISP->STIX2.1, currently I'm fighting with error of conversion when some GalaxyCluster are involved. (This will appear in the log exec-errors.log).
pip install --upgrade stix2could maybe help ?- You can also tweak the conversion file
app/files/scripts/taxii/taxii_push.pyand add somelog.warning(). - You might want to comment out the reraise part so that the conversion will still proceed even if one file fail to be converted.
MISP/app/files/scripts/taxii/taxii_push.py
Line 378 in 6243e03
This is really hacky for now. For some reason MISP creates two jobs when you click the "Push to TAXII" icon. One of them fails immediately, while the other if you're lucky will end up in "Completed" but still with a grey progression bar.
I think this is because the button triggers two different execution path that both create a job. (See Administration -> Jobs)
There was a problem hiding this comment.
That's a very detailed explanation. Thank you very much.
I will give this a try.
I had shelved the MISP <-> TAXII integration efforts due to the bugs.
missing variable assignments before reference.
What does it do?
github issue:
#9072Questions