dcerpc: detect right parsing of empty op version

author Philippe Antoine <contact@catenacyber.fr>

Fri, 10 Jul 2020 08:50:36 +0000 (10:50 +0200)

committer Victor Julien <victor@inliniac.net>

Fri, 10 Jul 2020 13:31:41 +0000 (15:31 +0200)
author Philippe Antoine <contact@catenacyber.fr>
Fri, 10 Jul 2020 08:50:36 +0000 (10:50 +0200)
committer Victor Julien <victor@inliniac.net>
Fri, 10 Jul 2020 13:31:41 +0000 (15:31 +0200)
diff --git a/rust/src/dcerpc/detect.rs b/rust/src/dcerpc/detect.rs

index 5d798a65e046d4da1b77347e4abb376402fedca9..2e9d78f8d6052c35661e4cfe77621ce5b56d2cb6 100644 (file)
--- a/rust/src/dcerpc/detect.rs
+++ b/rust/src/dcerpc/detect.rs
@@ -60,6 +60,9 @@ pub struct DCEOpnumData {
  }
  
  fn extract_op_version(opver: &str) -> Result<(u8, u16), ()> {
+    if opver.len() < 1 {
+        return Err(());
+    }
      let (op, version) = opver.split_at(1);
      let opval: u8 = match op {
          ">" => DETECT_DCE_IFACE_OP_GT,
@@ -363,6 +366,13 @@ mod test {
  
          let op_version = "@1";
          assert_eq!(true, extract_op_version(op_version).is_err());
+
+        let op_version = "";
+        assert_eq!(
+            Err(()),
+            extract_op_version(op_version)
+        );
+
      }
  
      #[test]
author	Philippe Antoine <contact@catenacyber.fr>
	Fri, 10 Jul 2020 08:50:36 +0000 (10:50 +0200)
committer	Victor Julien <victor@inliniac.net>
	Fri, 10 Jul 2020 13:31:41 +0000 (15:31 +0200)