Added NDPI_ERROR_CODE_DETECTED risk

author: Luca Deri <deri@ntop.org> 2022-02-03 13:20:54 +0100
committer: Luca Deri <deri@ntop.org> 2022-02-03 13:20:54 +0100
commit: 7aef27f85e86302130bf8dffaf9809d488856427 (patch)
tree: af1164f3be4a4bdc3cea1a9bacfa83c4db8c3961 /src/lib/protocols/dns.c
parent: 0dd5ac89f842ac37f4c36ff67620a49b9e7eb76f (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/src/lib/protocols/dns.c b/src/lib/protocols/dns.c
index 6537b8b2e..96b1f5da7 100644
--- a/src/lib/protocols/dns.c
+++ b/src/lib/protocols/dns.c
@@ -233,6 +233,9 @@ static int search_valid_dns(struct ndpi_detection_module_struct *ndpi_struct,
     /* DNS Reply */
     flow->protos.dns.reply_code = dns_header->flags & 0x0F;
 
+    if(flow->protos.dns.reply_code != 0)
+      ndpi_set_risk(ndpi_struct, flow, NDPI_ERROR_CODE_DETECTED);
+    
     if((dns_header->num_queries > 0) && (dns_header->num_queries <= NDPI_MAX_DNS_REQUESTS) /* Don't assume that num_queries must be zero */
        && ((((dns_header->num_answers > 0) && (dns_header->num_answers <= NDPI_MAX_DNS_REQUESTS))
 	    || ((dns_header->authority_rrs > 0) && (dns_header->authority_rrs <= NDPI_MAX_DNS_REQUESTS))
author	Luca Deri <deri@ntop.org>	2022-02-03 13:20:54 +0100
committer	Luca Deri <deri@ntop.org>	2022-02-03 13:20:54 +0100
commit	7aef27f85e86302130bf8dffaf9809d488856427 (patch)
tree	af1164f3be4a4bdc3cea1a9bacfa83c4db8c3961 /src/lib/protocols/dns.c
parent	0dd5ac89f842ac37f4c36ff67620a49b9e7eb76f (diff)