[cifs-protocol] [Pfif] CAR: Error in SMB2 Netprot description.
Hongwei Sun
hongweis at microsoft.com
Thu Jun 4 18:51:32 GMT 2009
Jeremy,
Thanks for submitting the request. We will start working on this request. If possible, could you please provide us a network trace ?
Thanks!
--------------------------------------------------------------------
Hongwei Sun - Sr. Support Escalation Engineer
DSC Protocol Team, Microsoft
hongweis at microsoft.com
Tel: 469-7757027 x 57027
---------------------------------------------------------------------
-----Original Message-----
From: cifs-protocol-bounces+hongweis=microsoft.com at cifs.org [mailto:cifs-protocol-bounces+hongweis=microsoft.com at cifs.org] On Behalf Of Jeremy Allison
Sent: Thursday, June 04, 2009 1:34 PM
To: Interoperability Documentation Help
Cc: cifs-protocol at samba.org
Subject: [cifs-protocol] [Pfif] CAR: Error in SMB2 Netprot description.
Hi all,
I believe there is an error in [MS-SMB2] — v20090521 in the
description of 2.2.4 SMB2 NEGOTIATE Response.
At the end of this section on page 35 it says:
"Buffer (variable): The variable-length buffer that contains the security buffer for the response, as specified by SecurityBufferOffset and SecurityBufferLength. The buffer MUST contain a token as produced by the GSS protocol as specified in section 3.3.5.3."
The "MUST" statement is incorrect. The Windows client
behavior is that if a null buffer is returned in this
field, then the client will downgrade to using raw-NTLMSSP
blobs for sessionsetup instead of SPNEGO wrapped blobs.
I can provide proof of this as a packet trace on request.
I think this is important to fix for the SMB2 client implementations,
which otherwise are forced to implement SPNEGO ASN.1 parsing.
Jeremy Allison,
Samba Team/Pfif member.
_______________________________________________
cifs-protocol mailing list
cifs-protocol at cifs.org
https://lists.samba.org/mailman/listinfo/cifs-protocol
More information about the cifs-protocol
mailing list