s3:smbd: unimplement FSCTL_VALIDATE_NEGOTIATE_INFO with "server max protocol = SMB2_02"

author Stefan Metzmacher <metze@samba.org>

Fri, 5 May 2017 16:49:37 +0000 (18:49 +0200)

committer Stefan Metzmacher <metze@samba.org>

Mon, 18 Feb 2019 11:55:14 +0000 (12:55 +0100)
author Stefan Metzmacher <metze@samba.org>
Fri, 5 May 2017 16:49:37 +0000 (18:49 +0200)
committer Stefan Metzmacher <metze@samba.org>
Mon, 18 Feb 2019 11:55:14 +0000 (12:55 +0100)
diff --git a/source3/smbd/smb2_ioctl_network_fs.c b/source3/smbd/smb2_ioctl_network_fs.c

index 31b3c95c4b0de3f6ffe1275300adb481bfd706f0..c0d175609ec7e9359208ab19cfa917f2546a0857 100644 (file)
--- a/source3/smbd/smb2_ioctl_network_fs.c
+++ b/source3/smbd/smb2_ioctl_network_fs.c
@@ -420,6 +420,23 @@ static NTSTATUS fsctl_validate_neg_info(TALLOC_CTX *mem_ctx,
         NTSTATUS status;
         enum protocol_types protocol = PROTOCOL_NONE;
  
+       if (lp_server_max_protocol() <= PROTOCOL_SMB2_02) {
+               /*
+                * With SMB 2.02 we didn't get the
+                * capabitities, client guid, security mode
+                * and dialects the client would have offered.
+                *
+                * So we behave compatible with a true
+                * SMB 2.02 server and return NT_STATUS_FILE_CLOSED.
+                *
+                * As SMB >= 2.10 offers the two phase SMB2 Negotiate
+                * we keep supporting FSCTL_VALIDATE_NEGOTIATE_INFO
+                * starting with SMB 2.10, while Windows only supports
+                * it starting with SMB > 2.10.
+                */
+               return NT_STATUS_FILE_CLOSED;
+       }
+
         if (in_input->length < 0x18) {
                 return NT_STATUS_INVALID_PARAMETER;
         }
author	Stefan Metzmacher <metze@samba.org>
	Fri, 5 May 2017 16:49:37 +0000 (18:49 +0200)
committer	Stefan Metzmacher <metze@samba.org>
	Mon, 18 Feb 2019 11:55:14 +0000 (12:55 +0100)