cifs client not forgiving enough when neg prot smb1 (with extended security)

Steve French smfrench at
Thu May 28 16:18:17 MDT 2015

Merged into cifs-2.6.git

On Wed, May 27, 2015 at 7:06 AM, Noel Power <nopower at> wrote:
> Hi Steve,
> Just came across a situation where cifs client was failing to mount a
> share with ntlmssp served by cifsd based server.
> The server is misbehaving in that is should have set the
> EncryptionKeyLength to zero (when offering extended security).
> Regardless though, a windows client will happily continue whereas the
> cifs client will return IO(5) error. Looking in the MS-SMB spec
> ( mentions
> "ChallengeLength (1 byte): When the CAP_EXTENDED_SECURITY bit is set,
> the server MUST set this value to zero and clients MUST ignore this value."
> I attach a patch to cifs for this
> thanks,
> Noel



More information about the samba-technical mailing list