From: Victor Julien <victor@inliniac.net>
Date: Mon, 12 Mar 2018 13:32:08 +0000 (+0100)
Subject: smb: use formal MS names for disposition
X-Git-Tag: suricata-4.1.0-beta1~71
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=7cd66516f0fed144d04942eb9a95a6efda4d8647;p=thirdparty%2Fsuricata.git

smb: use formal MS names for disposition
---

diff --git a/rust/src/smb/log.rs b/rust/src/smb/log.rs
index a163eb37ed..ca00d7ed55 100644
--- a/rust/src/smb/log.rs
+++ b/rust/src/smb/log.rs
@@ -210,9 +210,12 @@ fn smb_common_header(state: &SMBState, tx: &SMBTransaction) -> Json
                 js.set_string("filename", "<share_root>");
             }
             match x.disposition {
-                1 => { js.set_string("disposition", "open"); },
-                2 => { js.set_string("disposition", "create"); },
-                5 => { js.set_string("disposition", "overwrite"); },
+                0 => { js.set_string("disposition", "FILE_SUPERSEDE"); },
+                1 => { js.set_string("disposition", "FILE_OPEN"); },
+                2 => { js.set_string("disposition", "FILE_CREATE"); },
+                3 => { js.set_string("disposition", "FILE_OPEN_IF"); },
+                4 => { js.set_string("disposition", "FILE_OVERWRITE"); },
+                5 => { js.set_string("disposition", "FILE_OVERWRITE_IF"); },
                 _ => { js.set_string("disposition", "UNKNOWN"); },
             }
             if x.delete_on_close {