2.2.3.1.2 SMB2_ENCRYPTION_CAPABILITIES
The SMB2_ENCRYPTION_CAPABILITIES context is specified in an SMB2 NEGOTIATE request by the client to indicate which encryption algorithms the client supports. The format of the data in the Data field of this SMB2_NEGOTIATE_CONTEXT is as follows.
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
CipherCount |
Ciphers (variable) |
||||||||||||||||||||||||||||||
|
... |
|||||||||||||||||||||||||||||||
CipherCount (2 bytes): The number of ciphers in the Ciphers array. This value MUST be greater than zero.
Ciphers (variable): An array of CipherCount 16-bit integer IDs specifying the supported encryption algorithms. These IDs MUST be in an order such that the most preferred cipher MUST be at the beginning of the array and least preferred cipher at the end of the array. The following IDs are defined.
-
Value
Meaning
0x0001
AES-128-CCM
0x0002
AES-128-GCM
0x0003
AES-256-CCM
0x0004
AES-256-GCM