smb: New keyword smb.cmd v6

[zer1t0]

Make sure these boxes are signed before submitting your Pull Request -- thank you.

• I have read the contributing guide lines at https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Contributing
• I have signed the Open Information Security Foundation contribution agreement at https://suricata.io/about/contribution-agreement/
• I have updated the user guide (in doc/userguide/) to reflect the changes made (if applicable)

Link to redmine ticket:
https://redmine.openinfosecfoundation.org/issues/5069

Describe changes:

• New keyword smb.cmd added, which allows to match the command value in smb message header. It works for smb1 and smb2.
• Documentation for the keyword added (created SMB keyword documentation)

Example of rule alert smb any any -> any any (msg: "Smb command rule"; smb.cmd: 10; sid: 1;) . More examples in documentation.

suricata-verify-pr: 733

[codecov]

Codecov Report

Merging #7338 (c218349) into master (2ebb525) will decrease coverage by 1.92%.
The diff coverage is 77.27%.

❗ Current head c218349 differs from pull request most recent head 1d8ec73. Consider uploading reports for the commit 1d8ec73 to get more accurate results

@@            Coverage Diff             @@
##           master    #7338      +/-   ##
==========================================
- Coverage   77.68%   75.76%   -1.93%     
==========================================
  Files         628      657      +29     
  Lines      185657   190107    +4450     
==========================================
- Hits       144232   144029     -203     
- Misses      41425    46078    +4653     

Flag	Coverage Δ
fuzzcorpus	60.25% <30.00%> (+2.20%)	⬆️
suricata-verify	51.57% <82.92%> (-2.89%)	⬇️
unittests	61.01% <32.43%> (-2.03%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

[catenacyber]

Looks fine enough for me

• CI : ✅
• Code : looks good, one rust question...
• Commits segmentation : nice
• Commit messages : ✅
• Git ID set : looks fine for me
• CLA : I do not have access, but looks like some commits were already merged
• Doc update : nice
• Redmine ticket : ok
• Rustfmt : was not enforced
• Tests : Suricata-verify tests look fine

Version was not rebased on latest master

[catenacyber]

Is there a more idiomatic way ?
cc @jasonish we want to iterate over all known values of an enumeration

[zer1t0]

These code command constants are not part of an enumeration, but are the defined in the smb1 module.

On the other hand, there is no idiomatic way to iterate over values of enumeration since those couldn't be constants (https://stackoverflow.com/a/21373995)

[zer1t0]

Moved to #7372