[cifs-protocol] SMB1 maximum packet size with signing enabled

Hongwei Sun hongweis at microsoft.com
Mon Jun 20 08:59:24 MDT 2011


  Thanks for sending the questions.  One of our team member will work on it and respond to you soon.


Hongwei  Sun - Sr. Escalation Engineer
DSC Protocol  Team, Microsoft
hongweis at microsoft.com
Tel:  469-7757027 x 57027

Exceeding your expectations is my highest priority.  If you would like to provide feedback on your case you may contact my manager at allisong at microsoft.com.


-----Original Message-----
From: cifs-protocol-bounces at cifs.org [mailto:cifs-protocol-bounces at cifs.org] On Behalf Of Jeff Layton
Sent: Monday, June 20, 2011 8:43 AM
To: Interoperability Documentation Help; cifs-protocol at samba.org
Subject: [cifs-protocol] SMB1 maximum packet size with signing enabled

Hash: SHA1

I've been doing some testing with signing enabled and have found that
win2k8 seems to consistently return STATUS_ACCESS_DENIED whenever I send it a SMB that's larger than 16704 bytes. It seems to have no issue with larger sized SMBs when signing is disabled.

It seems sort of like a protocol violation since the NEGOTIATE response from the server has the CAP_LARGE_READX and WRITEX bits set. It's possible though that I've missed something in the spec.

In any case, my questions:

1) is this a known limitation in windows, or a bug?

2) is this common to all (most?) versions of windows?

3) is there some way we can detect what the server's limit is in this situation?

Thanks and let me know if you need clarification on these questions,
- --
Jeff Layton <jlayton at samba.org>
Version: GnuPG v2.0.17 (GNU/Linux)

cifs-protocol mailing list
cifs-protocol at cifs.org

More information about the cifs-protocol mailing list