From 87826ddbdb4bd626ad631328b6beb86a79b85978 Mon Sep 17 00:00:00 2001 From: sahlberg Date: Sat, 12 Nov 2005 08:48:02 +0000 Subject: add initial decode of dcerpc over smb2 it does not yet multiplex between different files but it is better than nothing git-svn-id: http://anonsvn.wireshark.org/wireshark/trunk@16484 f5534014-38df-0310-8fa8-9805f1628bb7 --- epan/dissectors/packet-smb2.h | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) (limited to 'epan/dissectors/packet-smb2.h') diff --git a/epan/dissectors/packet-smb2.h b/epan/dissectors/packet-smb2.h index 55a5b8e6cb..eb989b6722 100644 --- a/epan/dissectors/packet-smb2.h +++ b/epan/dissectors/packet-smb2.h @@ -50,7 +50,15 @@ typedef struct _smb2_saved_info_t { nstime_t req_time; } smb2_saved_info_t; -#define SMB2_FLAGS_TID_IS_IPC 0x00000001 +/* at most one of these two bits may be set. + * if ipc$ status is unknown none is set. + * + * if the tid name ends with "IPC$" we assume that all files on this tid + * are dcerpc pipes. + */ +#define SMB2_FLAGS_TID_IS_IPC 0x00000001 +#define SMB2_FLAGS_TID_IS_NOT_IPC 0x00000002 + typedef struct _smb2_tid_info_t { guint32 tid; guint32 flags; @@ -79,6 +87,8 @@ typedef struct _smb2_info_t { gboolean response; /* is this a response ? */ smb2_conv_info_t *conv; smb2_saved_info_t *saved; + smb2_tid_info_t *tree; + proto_tree *top_tree; } smb2_info_t; #endif -- cgit v1.2.3