diff options
| author | Luca Deri <deri@ntop.org> | 2021-05-10 22:43:05 +0200 |
|---|---|---|
| committer | Luca Deri <deri@ntop.org> | 2021-05-10 22:43:05 +0200 |
| commit | 4297a65ce881c8c5462c520f3b3dc987879bccce (patch) | |
| tree | 1aa1a37405717efff20cbb2cdf7e93fca064b041 /example | |
| parent | fff60ec31721c32fa4737aba9e40f4d45bd21eca (diff) | |
Implemented flow score in Wireshark integration
Diffstat (limited to 'example')
| -rw-r--r-- | example/ndpiReader.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/example/ndpiReader.c b/example/ndpiReader.c index 1736b4fa3..47480f111 100644 --- a/example/ndpiReader.c +++ b/example/ndpiReader.c @@ -181,6 +181,7 @@ struct ndpi_packet_trailer { u_int32_t magic; /* WIRESHARK_NTOP_MAGIC */ u_int16_t master_protocol /* e.g. HTTP */, app_protocol /* e.g. FaceBook */; ndpi_risk flow_risk; + u_int16_t flow_score; char name[16]; } PACK_OFF; @@ -3294,6 +3295,7 @@ static void ndpi_process_packet(u_char *args, memset(trailer, 0, sizeof(struct ndpi_packet_trailer)); trailer->magic = htonl(WIRESHARK_NTOP_MAGIC); trailer->flow_risk = htonl64(flow_risk); + trailer->flow_score = htons(ndpi_risk2score(flow_risk)); trailer->master_protocol = htons(p.master_protocol), trailer->app_protocol = htons(p.app_protocol); ndpi_protocol2name(ndpi_thread_info[thread_id].workflow->ndpi_struct, p, trailer->name, sizeof(trailer->name)); crc = (uint32_t*)&extcap_buf[h.caplen+sizeof(struct ndpi_packet_trailer)]; |