2.2.7.6.1 Request

The NT_TRANSACT_QUERY_SECURITY_DESC request format is a special case of SMB_COM_NT_TRANSACT (section 2.2.4.62) SMB. Only the NT_TRANSACT_QUERY_SECURITY_DESC request specifics are described here.

 NT_Trans_Parameters
   {
   USHORT FID;
   USHORT Reserved;
   ULONG SecurityInfoFields;
   }
  

SMB_Parameters:

WordCount (1 byte): UCHAR This field MUST be 0x13.

Words (38 bytes): Array of USHORT.

MaxSetupCount (1 byte): This field MUST be 0x00.

MaxParameterCount (4 bytes): This field MUST be 0x00000004.

Function (2 bytes): USHORT This field MUST be NT_TRANSACT_QUERY_SECURITY_DESC (0x0006).

SetupCount (1 byte): UCHAR This field MUST be 0x00.

0	1	2	3	4	5	6	7	8	9	1 0	1	2	3	4	5	6	7	8	9	2 0	1	2	3	4	5	6	7	8	9	3 0	1
NT_Trans_Parameters
...

NT_Trans_Parameters (8 bytes):

0	1	2	3	4	5	6	7	8	9	1 0	1	2	3	4	5	6	7	8	9	2 0	1	2	3	4	5	6	7	8	9	3 0	1
FID																Reserved
SecurityInfoFields

FID (2 bytes): USHORT FID of the target file. The FID MUST have been obtained through a previously successful SMB open request.

Reserved (2 bytes): USHORT Reserved. This value MUST be 0x0000.

SecurityInfoFields (4 bytes): ULONG A 32-bit field representing the requested fields of the security descriptor to be retrieved. These values can be logically OR-ed together to request several descriptors in one request. The descriptor response format contains storage for all of the descriptors. The client MUST ignore the values returned for descriptors corresponding to bits that were not included in this field as part of the request.

Name and bitmask	Meaning
OWNER_SECURITY_INFORMATION 0x00000001	Owner of the object or resource.
GROUP_SECURITY_INFORMATION 0x00000002	Group associated with the object or resource.
DACL_SECURITY_INFORMATION 0x00000004	Discretionary access control list (DACL) associated with the object or resource.
SACL_SECURITY_INFORMATION 0x00000008	System access control list (SACL) associated with the object or resource.

NT_Trans_Data

The client does not provide any data in the request.