pub ctxid: u16,
pub opnum: u16,
pub first_request_seen: u8,
+ pub min_version: u8,
pub call_id: u32, // ID to match any request-response pair
pub frag_cnt_ts: u16,
pub frag_cnt_tc: u16,
}
self.tx_index_completed = index;
}
+ if let Some(hdr) = &self.header {
+ tx.min_version = hdr.rpc_vers_minor;
+ }
tx
}
return 0;
}
- match state.get_hdr_type() {
- Some(DCERPC_TYPE_REQUEST | DCERPC_TYPE_RESPONSE) => {}
- _ => {
+ if !(tx.req_cmd == DCERPC_TYPE_REQUEST || tx.resp_cmd == DCERPC_TYPE_RESPONSE) {
return 0;
- }
- };
+ }
return match_backuuid(tx, state, if_data);
}
jsb.set_string("response", "UNREPLIED")?;
}
- if let Some(ref hdr) = state.header {
- jsb.set_uint("call_id", tx.call_id as u64)?;
- let vstr = format!("{}.{}", hdr.rpc_vers, hdr.rpc_vers_minor);
- jsb.set_string("rpc_version", &vstr)?;
- }
+ jsb.set_uint("call_id", tx.call_id as u64)?;
+ let vstr = format!("5.{}", tx.min_version);
+ jsb.set_string("rpc_version", &vstr)?;
return Ok(());
}
projects / thirdparty / suricata.git / commitdiff
