Project

General

Profile

Actions
Copy link

Feature #12513

closed

SMB 3.1.1 support for server

Added by Alexander Stetsenko about 3 years ago. Updated almost 3 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Alexander Stetsenko
Category:
kernel
Start date:
Due date:
% Done:

100%

Estimated time:
Difficulty:
Hard
Tags:
Gerrit CR:
External Bug:

Description

New features:
  • Negotiation of encryption and integrity algorithms.
  • Preauthentication integrity.
  • Encryption AES-128-GCM algorithm.
Actions
Copy link
 #1

Updated by Alexander Stetsenko almost 3 years ago

  • % Done changed from 80 to 100

Testing: It was done by hand with win10 client and omniosce as
server. The changes were tested with different values of parameters for
smbd:

smbd/max_protocol: "", "2.1", "3.02", "3.11"

smbd/encrypt: "", "disabled","enabled","required"

smbd/encrypt_cipher, "", "aes128-ccm", "aes128-gcm"

There were checked a negotiation, session setup, creation, attributes
retrieval and removing of files and directories.

Also, wireshark was used to make sure correct dialect and encryption
cipher was selected.

Actions
Copy link
 #2

Updated by Electric Monk almost 3 years ago

  • Status changed from In Progress to Closed

git commit 4e065a9f6a4471f1001853cd10a093bc5beb58a5

commit  4e065a9f6a4471f1001853cd10a093bc5beb58a5
Author: Alexander Stetsenko <alex.stetsenko@gmail.com>
Date:   2020-07-10T14:29:28.000Z

    12513 SMB 3.1.1 support for server
    Reviewed by: Matt Barden <mbarden@tintri.com>
    Reviewed by: Gordon Ross <gordon.w.ross@gmail.com>
    Approved by: Robert Mustacchi <rm@fingolfin.org>

Actions
Copy link

Also available in: Atom PDF