From 00b67c187d284ac8d0ff61ffd42e4e287740002c Mon Sep 17 00:00:00 2001 From: jason taylor Date: Wed, 23 Aug 2023 21:29:45 +0000 Subject: [PATCH] asfadsf Signed-off-by: jason taylor --- src/detect-smb-version.c | 19 +++++++++---------- 1 file changed, 9 insertions(+), 10 deletions(-) diff --git a/src/detect-smb-version.c b/src/detect-smb-version.c index 9563fca052c0..f811ccebf0bc 100644 --- a/src/detect-smb-version.c +++ b/src/detect-smb-version.c @@ -90,8 +90,8 @@ static void DetectSmbVersionFree(DetectEngineCtx *de_ctx, void *ptr) } /** - * \brief Creates a SigMatch for the "dce_opnum" keyword being sent as argument, - * and appends it to the rs_dcerpc_opnum_matchSignature(s). + * \brief Creates a SigMatch for the "smb_version" keyword being sent as argument, + * and appends it to the rs_smb_version_match Signature(s). * * \param de_ctx Pointer to the detection engine context. * \param s Pointer to signature for the current Signature being parsed @@ -104,6 +104,7 @@ static void DetectSmbVersionFree(DetectEngineCtx *de_ctx, void *ptr) static int DetectSmbVersionSetup(DetectEngineCtx *de_ctx, Signature *s, const char *arg) { SCLogDebug("smb_version: DetectSmbVersionSetup"); + SCLogDebug("smb_version keyword argument value is: %s", arg); if (DetectSignatureSetAppProto(s, ALPROTO_SMB) < 0) return -1; @@ -128,7 +129,7 @@ static int DetectSmbVersionSetup(DetectEngineCtx *de_ctx, Signature *s, const ch sm->type = DETECT_SMB_VERSION; sm->ctx = dod; - + SigMatchAppendSMToList(s, sm, g_smb_version_list_id); return 0; } @@ -147,16 +148,14 @@ void DetectSmbVersionRegister(void) sigmatch_table[DETECT_SMB_VERSION].Free = DetectSmbVersionFree; sigmatch_table[DETECT_SMB_VERSION].desc = "smb keyword to match on SMB version"; - /* - DetectAppLayerInspectEngineRegister2( - BUFFER_NAME, ALPROTO_SMB, SIG_FLAG_TOSERVER, 0, DetectEngineInspectSmbVersion, +/* DetectAppLayerInspectEngineRegister2( + BUFFER_NAME, ALPROTO_SMB, SIG_FLAG_TOSERVER, 0, DetectSmbVersionMatchRust, NULL); - DetectAppLayerInspectEngineRegister2( - BUFFER_NAME, ALPROTO_SMB, SIG_FLAG_TOCLIENT, 0, DetectEngineInspectSmbVersion, + DetectAppLayerInspectEngineRegister2( + BUFFER_NAME, ALPROTO_SMB, SIG_FLAG_TOCLIENT, 0, DetectSmbVersionMatchRust, NULL); - */ - +*/ g_smb_version_list_id = DetectBufferTypeRegister(BUFFER_NAME); SCLogDebug("registering " BUFFER_NAME " rule option");