ruby_smb 2.0.13 → 3.0.3

data/lib/ruby_smb/smb2/packet/query_directory_response.rb

@@ -9,8 +9,8 @@ module RubySMB
         endian       :little
         smb2_header  :smb2_header
         uint16       :structure_size,  label: 'Structure Size',       initial_value: 9
-        uint16       :buffer_offset,   label: 'Output Buffer Offset', initial_value: -> { buffer.abs_offset }
-        uint32       :buffer_length,   label: 'Output Buffer Length', initial_value: -> { buffer.do_num_bytes }
+        uint16       :buffer_offset,   label: 'Output Buffer Offset', initial_value: -> { buffer.empty? ? 0 : buffer.abs_offset }
+        uint32       :buffer_length,   label: 'Output Buffer Length', initial_value: -> { buffer.empty? ? 0 : buffer.do_num_bytes }
         string       :buffer,          read_length: -> { buffer_length }
 
         def initialize_instance

data/lib/ruby_smb/smb2/packet/query_info_request.rb

@@ -0,0 +1,43 @@
+module RubySMB
+  module SMB2
+    module Packet
+      # An SMB2 Query Info Request Packet as defined in
+      # [2.2.37 SMB2 QUERY_INFO Request](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb2/d623b2f7-a5cd-4639-8cc9-71fa7d9f9ba9)
+      class QueryInfoRequest < RubySMB::GenericPacket
+        COMMAND = RubySMB::SMB2::Commands::QUERY_INFO
+
+        endian       :little
+        smb2_header  :smb2_header
+        uint16       :structure_size,          label: 'Structure Size', initial_value: 41
+        uint8        :info_type,               label: 'Information Type'
+        uint8        :file_information_class,  label: 'File Information Class'
+        uint32       :output_buffer_length,    label: 'Output Buffer Length'
+        uint16       :input_buffer_offset,     label: 'Input Buffer Offset'
+        uint16       :reserved,                label: 'Reserved Space'
+        uint32       :input_buffer_length,     label: 'Input Buffer Length'
+        struct       :additional_information do
+          bit1       :reserved1
+          bit1       :scope_security_information,     label: 'Scope Security Information'
+          bit1       :attribute_security_information, label: 'Attribute Security Information'
+          bit1       :label_security_information,     label: 'Label Security Information'
+          bit1       :sacl_security_information,      label: 'SACL Security Information'
+          bit1       :dacl_security_information,      label: 'DACL Security Information'
+          bit1       :group_security_information,     label: 'Group Security Information'
+          bit1       :owner_security_information,     label: 'Owner Security Information'
+          bit7       :reserved2
+          bit1       :backup_security_information,    label: 'Backup Security Information'
+          skip       length: 2
+        end
+        struct       :flags do
+          bit5       :reserved
+          bit1       :sl_index_specified,      label: 'Index Specified'
+          bit1       :sl_return_single_entry,  label: 'Return Single Entry'
+          bit1       :sl_restart_scan,         label: 'Restart Scan'
+          skip       length: 3
+        end
+        smb2_fileid  :file_id,                 label: 'File ID'
+        string       :buffer,                  label: 'Buffer'
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet/query_info_response.rb

@@ -0,0 +1,23 @@
+module RubySMB
+  module SMB2
+    module Packet
+      # An SMB2 Query Info Response Packet as defined in
+      # [2.2.38 SMB2 QUERY_INFO Response](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb2/3b1b3598-a898-44ca-bfac-2dcae065247f)
+      class QueryInfoResponse < RubySMB::GenericPacket
+        COMMAND = RubySMB::SMB2::Commands::QUERY_INFO
+
+        endian       :little
+        smb2_header  :smb2_header
+        uint16       :structure_size,  label: 'Structure Size', initial_value: 9
+        uint16       :buffer_offset,   label: 'Output Buffer Offset', initial_value: -> { buffer.empty? ? 0 : buffer.abs_offset }
+        uint32       :buffer_length,   label: 'Output Buffer Length', initial_value: -> { buffer.empty? ? 0 : buffer.do_num_bytes }
+        string       :buffer,          read_length: -> { buffer_length }
+
+        def initialize_instance
+          super
+          smb2_header.flags.reply = 1
+        end
+      end
+    end
+  end
+end

data/lib/ruby_smb/smb2/packet/tree_connect_response.rb

@@ -21,7 +21,7 @@ module RubySMB
         uint8                 :reserved,       label: 'Reserved Space', initial_value: 0x00
         share_flags           :share_flags
         share_capabilities    :capabilities
-        directory_access_mask :maximal_access, label: 'Maximal Access'
+        file_access_mask      :maximal_access, label: 'Maximal Access'
 
         def initialize_instance
           super

data/lib/ruby_smb/smb2/packet/tree_disconnect_response.rb

@@ -9,6 +9,7 @@ module RubySMB
         endian       :little
         smb2_header  :smb2_header
         uint16       :structure_size, label: 'Structure Size', initial_value: 4
+        uint16       :reserved, label: 'Reserved', initial_value: 0
 
         def initialize_instance
           super

data/lib/ruby_smb/smb2/packet.rb

@@ -32,6 +32,8 @@ module RubySMB
       require 'ruby_smb/smb2/packet/ioctl_response'
       require 'ruby_smb/smb2/packet/transform_header'
       require 'ruby_smb/smb2/packet/compression_transform_header'
+      require 'ruby_smb/smb2/packet/query_info_request'
+      require 'ruby_smb/smb2/packet/query_info_response'
     end
   end
 end

data/lib/ruby_smb/smb2/tree.rb

@@ -60,78 +60,16 @@ module RubySMB
         # Make sure we don't modify the caller's hash options
         opts = opts.dup
         opts[:filename] = opts[:filename].dup
-        opts[:filename] = opts[:filename][1..-1] if opts[:filename].start_with? '\\'
-        open_file(**opts)
+        opts[:filename] = opts[:filename][1..-1] if opts[:filename].start_with?('\\'.encode(opts[:filename].encoding))
+        _open(**opts)
       end
 
-      def open_file(filename:, attributes: nil, options: nil, disposition: RubySMB::Dispositions::FILE_OPEN,
-                    impersonation: RubySMB::ImpersonationLevels::SEC_IMPERSONATE, read: true, write: false, delete: false)
-
-        create_request = RubySMB::SMB2::Packet::CreateRequest.new
-        create_request = set_header_fields(create_request)
-
-        # If the user supplied file attributes, use those, otherwise set some
-        # sane defaults.
-        if attributes
-          create_request.file_attributes = attributes
-        else
-          create_request.file_attributes.directory  = 0
-          create_request.file_attributes.normal     = 1
-        end
-
-        # If the user supplied Create Options, use those, otherwise set some
-        # sane defaults.
-        if options
-          create_request.create_options = options
-        else
-          create_request.create_options.directory_file      = 0
-          create_request.create_options.non_directory_file  = 1
-        end
-
-        if read
-          create_request.share_access.read_access = 1
-          create_request.desired_access.read_data = 1
-        end
-
-        if write
-          create_request.share_access.write_access   = 1
-          create_request.desired_access.write_data   = 1
-          create_request.desired_access.append_data  = 1
-        end
-
-        if delete
-          create_request.share_access.delete_access   = 1
-          create_request.desired_access.delete_access = 1
-        end
-
-        create_request.requested_oplock     = 0xff
-        create_request.impersonation_level  = impersonation
-        create_request.create_disposition   = disposition
-        create_request.name                 = filename
-
-        raw_response  = client.send_recv(create_request, encrypt: @tree_connect_encrypt_data)
-        response      = RubySMB::SMB2::Packet::CreateResponse.read(raw_response)
-        unless response.valid?
-          raise RubySMB::Error::InvalidPacket.new(
-            expected_proto: RubySMB::SMB2::SMB2_PROTOCOL_ID,
-            expected_cmd:   RubySMB::SMB2::Packet::CreateResponse::COMMAND,
-            packet:         response
-          )
-        end
-        unless response.status_code == WindowsError::NTStatus::STATUS_SUCCESS
-          raise RubySMB::Error::UnexpectedStatusCode, response.status_code
-        end
-
-        case @share_type
-        when RubySMB::SMB2::Packet::TreeConnectResponse::SMB2_SHARE_TYPE_DISK
-          RubySMB::SMB2::File.new(name: filename, tree: self, response: response, encrypt: @tree_connect_encrypt_data)
-        when RubySMB::SMB2::Packet::TreeConnectResponse::SMB2_SHARE_TYPE_PIPE
-          RubySMB::SMB2::Pipe.new(name: filename, tree: self, response: response)
-        # when RubySMB::SMB2::TreeConnectResponse::SMB2_SHARE_TYPE_PRINT
-        #   it's a printer!
-        else
-          raise RubySMB::Error::RubySMBError, 'Unsupported share type'
-        end
+      def open_file(opts)
+        # Make sure we don't modify the caller's hash options
+        opts = opts.dup
+        opts[:filename] = opts[:filename].dup
+        opts[:filename] = opts[:filename][1..-1] if opts[:filename].start_with?('\\'.encode(opts[:filename].encoding))
+        _open(**opts)
       end
 
       # List `directory` on the remote share.
@@ -270,6 +208,78 @@ module RubySMB
         request.smb2_header.credits = 256
         request
       end
+
+      private
+
+      def _open(filename:, attributes: nil, options: nil, disposition: RubySMB::Dispositions::FILE_OPEN,
+                    impersonation: RubySMB::ImpersonationLevels::SEC_IMPERSONATE, read: true, write: false, delete: false)
+
+        create_request = RubySMB::SMB2::Packet::CreateRequest.new
+        create_request = set_header_fields(create_request)
+
+        # If the user supplied file attributes, use those, otherwise set some
+        # sane defaults.
+        if attributes
+          create_request.file_attributes = attributes
+        else
+          create_request.file_attributes.directory  = 0
+          create_request.file_attributes.normal     = 1
+        end
+
+        # If the user supplied Create Options, use those, otherwise set some
+        # sane defaults.
+        if options
+          create_request.create_options = options
+        else
+          create_request.create_options.directory_file      = 0
+          create_request.create_options.non_directory_file  = 1
+        end
+
+        if read
+          create_request.share_access.read_access = 1
+          create_request.desired_access.read_data = 1
+        end
+
+        if write
+          create_request.share_access.write_access   = 1
+          create_request.desired_access.write_data   = 1
+          create_request.desired_access.append_data  = 1
+        end
+
+        if delete
+          create_request.share_access.delete_access   = 1
+          create_request.desired_access.delete_access = 1
+        end
+
+        create_request.requested_oplock     = 0xff
+        create_request.impersonation_level  = impersonation
+        create_request.create_disposition   = disposition
+        create_request.name                 = filename
+
+        raw_response  = client.send_recv(create_request, encrypt: @tree_connect_encrypt_data)
+        response      = RubySMB::SMB2::Packet::CreateResponse.read(raw_response)
+        unless response.valid?
+          raise RubySMB::Error::InvalidPacket.new(
+            expected_proto: RubySMB::SMB2::SMB2_PROTOCOL_ID,
+            expected_cmd:   RubySMB::SMB2::Packet::CreateResponse::COMMAND,
+            packet:         response
+          )
+        end
+        unless response.status_code == WindowsError::NTStatus::STATUS_SUCCESS
+          raise RubySMB::Error::UnexpectedStatusCode, response.status_code
+        end
+
+        case @share_type
+        when RubySMB::SMB2::Packet::TreeConnectResponse::SMB2_SHARE_TYPE_DISK
+          RubySMB::SMB2::File.new(name: filename, tree: self, response: response, encrypt: @tree_connect_encrypt_data)
+        when RubySMB::SMB2::Packet::TreeConnectResponse::SMB2_SHARE_TYPE_PIPE
+          RubySMB::SMB2::Pipe.new(name: filename, tree: self, response: response)
+        # when RubySMB::SMB2::TreeConnectResponse::SMB2_SHARE_TYPE_PRINT
+        #   it's a printer!
+        else
+          raise RubySMB::Error::RubySMBError, 'Unsupported share type'
+        end
+      end
     end
   end
 end

data/lib/ruby_smb/smb2.rb

@@ -8,6 +8,17 @@ module RubySMB
     # Wildcard revision, see: https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb2/63abf97c-0d09-47e2-88d6-6bfa552949a5
     SMB2_WILDCARD_REVISION = 0x02ff
 
+    # Channel types, see: https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb2/320f04f3-1b28-45cd-aaa1-9e5aed810dca
+    SMB2_CHANNEL_NONE = 0
+    SMB2_CHANNEL_RDMA_V1 = 1
+    SMB2_CHANNEL_RDMA_V1_INVALIDATE = 2
+
+    # Information types, see: https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb2/d623b2f7-a5cd-4639-8cc9-71fa7d9f9ba9
+    SMB2_INFO_FILE = 1
+    SMB2_INFO_FILESYSTEM = 2
+    SMB2_INFO_SECURITY = 3
+    SMB2_INFO_QUOTA = 4
+
     require 'ruby_smb/smb2/info_type'
     require 'ruby_smb/smb2/commands'
     require 'ruby_smb/smb2/create_context'

data/lib/ruby_smb/smb_error.rb

@@ -0,0 +1,110 @@
+require 'windows_error'
+
+module RubySMB
+  # SMB Error codes as defined in
+  # [2.2.2.4 SMB Error Classes and Codes](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-smb/6ab6ca20-b404-41fd-b91a-2ed39e3762ea)
+  module SMBError
+    # Returns all the {WindowsError::ErrorCode} objects that match
+    # the return value supplied.
+    #
+    # @param [Integer] retval the return value you want the error code for
+    # @raise [ArgumentError] if something other than a Integer is supplied
+    # @return [Array<WindowsError::ErrorCode>] all Win32 ErrorCodes that matched
+    def self.find_by_retval(retval)
+      raise ArgumentError, "Invalid Return Code!" unless retval.kind_of? Integer
+      error_codes = []
+      self.constants.each do |constant_name|
+        error_code = self.const_get(constant_name)
+        if error_code == retval
+          error_codes << error_code
+        end
+      end
+      error_codes
+    end
+
+    #
+    # CONSTANTS
+    #
+
+    # (0x00000000) The client request is successful.
+    STATUS_SUCCESS = WindowsError::ErrorCode.new('STATUS_SUCCESS', 0x00000000, 'The client request is successful.')
+
+    # (0x00010002) An invalid SMB client request is received by the server.
+    STATUS_INVALID_SMB = WindowsError::ErrorCode.new('STATUS_INVALID_SMB', 0x00010002, 'An invalid SMB client request is received by the server.')
+
+    # (0x00050002) The client request received by the server contains an invalid TID value.
+    STATUS_SMB_BAD_TID = WindowsError::ErrorCode.new('STATUS_SMB_BAD_TID', 0x00050002, 'The client request received by the server contains an invalid TID value.')
+
+    # (0x00160002) The client request received by the server contains an unknown SMB command code.
+    STATUS_SMB_BAD_COMMAND = WindowsError::ErrorCode.new('STATUS_SMB_BAD_COMMAND', 0x00160002, 'The client request received by the server contains an unknown SMB command code.')
+
+    # (0x005B0002) The client request to the server contains an invalid UID value.
+    STATUS_SMB_BAD_UID = WindowsError::ErrorCode.new('STATUS_SMB_BAD_UID', 0x005B0002, 'The client request to the server contains an invalid UID value.')
+
+    # (0x00FB0002) The client request received by the server is for a non-standard SMB operation (for example, an SMB_COM_READ_MPX request on a non-disk share). The client SHOULD send another request with a different SMB command to perform this operation.
+    STATUS_SMB_USE_STANDARD = WindowsError::ErrorCode.new('STATUS_SMB_USE_STANDARD', 0x00FB0002, 'The client request received by the server is for a non-standard SMB operation (for example, an SMB_COM_READ_MPX request on a non-disk share). The client SHOULD send another request with a different SMB command to perform this operation.')
+
+    # (0x80000005) The data was too large to fit into the specified buffer.
+    STATUS_BUFFER_OVERFLOW = WindowsError::ErrorCode.new('STATUS_BUFFER_OVERFLOW', 0x80000005, 'The data was too large to fit into the specified buffer.')
+
+    # (0x80000006) No more files were found that match the file specification.
+    STATUS_NO_MORE_FILES = WindowsError::ErrorCode.new('STATUS_NO_MORE_FILES', 0x80000006, 'No more files were found that match the file specification.')
+
+    # (0x8000002D) The create operation stopped after reaching a symbolic link.
+    STATUS_STOPPED_ON_SYMLINK = WindowsError::ErrorCode.new('STATUS_STOPPED_ON_SYMLINK', 0x8000002D, 'The create operation stopped after reaching a symbolic link.')
+
+    # (0xC0000002) The requested operation is not implemented.
+    STATUS_NOT_IMPLEMENTED = WindowsError::ErrorCode.new('STATUS_NOT_IMPLEMENTED', 0xC0000002, 'The requested operation is not implemented.')
+
+    # (0xC000000D) The parameter specified in the request is not valid.
+    STATUS_INVALID_PARAMETER = WindowsError::ErrorCode.new('STATUS_INVALID_PARAMETER', 0xC000000D, 'The parameter specified in the request is not valid.')
+
+    # (0xC000000E) A device that does not exist was specified.
+    STATUS_NO_SUCH_DEVICE = WindowsError::ErrorCode.new('STATUS_NO_SUCH_DEVICE', 0xC000000E, 'A device that does not exist was specified.')
+
+    # (0xC0000010) The specified request is not a valid operation for the target device.
+    STATUS_INVALID_DEVICE_REQUEST = WindowsError::ErrorCode.new('STATUS_INVALID_DEVICE_REQUEST', 0xC0000010, 'The specified request is not a valid operation for the target device.')
+
+    # (0xC0000016) If extended security has been negotiated, then this error code can be returned in the SMB_COM_SESSION_SETUP_ANDX response from the server to indicate that additional authentication information is to be exchanged. See section 2.2.4.6 for details.
+    STATUS_MORE_PROCESSING_REQUIRED = WindowsError::ErrorCode.new('STATUS_MORE_PROCESSING_REQUIRED', 0xC0000016, 'If extended security has been negotiated, then this error code can be returned in the SMB_COM_SESSION_SETUP_ANDX response from the server to indicate that additional authentication information is to be exchanged. See section 2.2.4.6 for details.')
+
+    # (0xC0000022) The client did not have the required permission needed for the operation.
+    STATUS_ACCESS_DENIED = WindowsError::ErrorCode.new('STATUS_ACCESS_DENIED', 0xC0000022, 'The client did not have the required permission needed for the operation.')
+
+    # (0xC0000023) The buffer is too small to contain the entry. No information has been written to the buffer.
+    STATUS_BUFFER_TOO_SMALL = WindowsError::ErrorCode.new('STATUS_BUFFER_TOO_SMALL', 0xC0000023, 'The buffer is too small to contain the entry. No information has been written to the buffer.')
+
+    # (0xC0000034) The object name is not found.
+    STATUS_OBJECT_NAME_NOT_FOUND = WindowsError::ErrorCode.new('STATUS_OBJECT_NAME_NOT_FOUND', 0xC0000034, 'The object name is not found.')
+
+    # (0xC0000035) The object name already exists.
+    STATUS_OBJECT_NAME_COLLISION = WindowsError::ErrorCode.new('STATUS_OBJECT_NAME_COLLISION', 0xC0000035, 'The object name already exists.')
+
+    # (0xC000003A) The path to the directory specified was not found. This error is also returned on a create request if the operation requires the creation of more than one new directory level for the path specified.
+    STATUS_OBJECT_PATH_NOT_FOUND = WindowsError::ErrorCode.new('STATUS_OBJECT_PATH_NOT_FOUND', 0xC000003A, 'The path to the directory specified was not found. This error is also returned on a create request if the operation requires the creation of more than one new directory level for the path specified.')
+
+    # (0xC00000A5) A specified impersonation level is invalid. This error is also used to indicate that a required impersonation level was not provided.
+    STATUS_BAD_IMPERSONATION_LEVEL = WindowsError::ErrorCode.new('STATUS_BAD_IMPERSONATION_LEVEL', 0xC00000A5, 'A specified impersonation level is invalid. This error is also used to indicate that a required impersonation level was not provided.')
+
+    # (0xC00000B5) The specified I/O operation was not completed before the time-out period expired.
+    STATUS_IO_TIMEOUT = WindowsError::ErrorCode.new('STATUS_IO_TIMEOUT', 0xC00000B5, 'The specified I/O operation was not completed before the time-out period expired.')
+
+    # (0xC00000BA) The file that was specified as a target is a directory and the caller specified that it could be anything but a directory.
+    STATUS_FILE_IS_A_DIRECTORY = WindowsError::ErrorCode.new('STATUS_FILE_IS_A_DIRECTORY', 0xC00000BA, 'The file that was specified as a target is a directory and the caller specified that it could be anything but a directory.')
+
+    # (0xC00000BB) The client request is not supported.
+    STATUS_NOT_SUPPORTED = WindowsError::ErrorCode.new('STATUS_NOT_SUPPORTED', 0xC00000BB, 'The client request is not supported.')
+
+    # (0xC00000C9) The network name specified by the client has been deleted on the server. This error is returned if the client specifies an incorrect TID or the share on the server represented by the TID was deleted.
+    STATUS_NETWORK_NAME_DELETED = WindowsError::ErrorCode.new('STATUS_NETWORK_NAME_DELETED', 0xC00000C9, 'The network name specified by the client has been deleted on the server. This error is returned if the client specifies an incorrect TID or the share on the server represented by the TID was deleted.')
+
+    # (0xC0000203) The user session specified by the client has been deleted on the server. This error is returned by the server if the client sends an incorrect UID.
+    STATUS_USER_SESSION_DELETED = WindowsError::ErrorCode.new('STATUS_USER_SESSION_DELETED', 0xC0000203, 'The user session specified by the client has been deleted on the server. This error is returned by the server if the client sends an incorrect UID.')
+
+    # (0xC000035C) The client's session has expired; therefore, the client MUST re-authenticate to continue accessing remote resources.
+    STATUS_NETWORK_SESSION_EXPIRED = WindowsError::ErrorCode.new('STATUS_NETWORK_SESSION_EXPIRED', 0xC000035C, 'The client\'s session has expired; therefore, the client MUST re-authenticate to continue accessing remote resources.')
+
+    # (0xC000205A) The client has requested too many UID values from the server or the client already has an SMB session setup with this UID value.
+    STATUS_SMB_TOO_MANY_UIDS = WindowsError::ErrorCode.new('STATUS_SMB_TOO_MANY_UIDS', 0xC000205A, 'The client has requested too many UID values from the server or the client already has an SMB session setup with this UID value.')
+  end
+end

data/lib/ruby_smb/version.rb

@@ -1,3 +1,3 @@
 module RubySMB
-  VERSION = '2.0.13'.freeze
+  VERSION = '3.0.3'.freeze
 end

data/lib/ruby_smb.rb

@@ -12,6 +12,7 @@ require 'windows_error/nt_status'
 # [[MS-SMB2] Server Message Block (SMB) Protocol Versions 2 and 3](https://msdn.microsoft.com/en-us/library/cc246482.aspx)
 module RubySMB
   require 'ruby_smb/error'
+  require 'ruby_smb/create_actions'
   require 'ruby_smb/dispositions'
   require 'ruby_smb/impersonation_levels'
   require 'ruby_smb/gss'
@@ -28,4 +29,5 @@ module RubySMB
   require 'ruby_smb/compression'
   require 'ruby_smb/server'
   require 'ruby_smb/dialect'
+  require 'ruby_smb/smb_error'
 end

data/ruby_smb.gemspec

@@ -34,7 +34,7 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency 'yard'
 
   spec.add_runtime_dependency 'rubyntlm'
-  spec.add_runtime_dependency 'windows_error'
+  spec.add_runtime_dependency 'windows_error', '>= 0.1.3'
   spec.add_runtime_dependency 'bindata'
   spec.add_runtime_dependency 'openssl-ccm'
   spec.add_runtime_dependency 'openssl-cmac'

data/spec/lib/ruby_smb/dcerpc/encrypting_file_system/efs_rpc_encrypt_file_srv_request_spec.rb

@@ -0,0 +1,30 @@
+RSpec.describe RubySMB::Dcerpc::EncryptingFileSystem::EfsRpcEncryptFileSrvRequest do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :file_name }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#file_name' do
+    it 'is a NdrConfVarWideStringz' do
+      expect(packet.file_name).to be_a RubySMB::Dcerpc::Ndr::NdrConfVarWideStringz
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to EFS_RPC_ENCRYPT_FILE_SRV constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::EncryptingFileSystem::EFS_RPC_ENCRYPT_FILE_SRV)
+    end
+  end
+
+  it 'reads its own binary representation and outputs the same packet' do
+    packet = described_class.new(
+      file_name: 'file_name'
+    )
+    binary = packet.to_binary_s
+    expect(described_class.read(binary)).to eq(packet)
+  end
+end
+

data/spec/lib/ruby_smb/dcerpc/encrypting_file_system/efs_rpc_encrypt_file_srv_response_spec.rb

@@ -0,0 +1,30 @@
+RSpec.describe RubySMB::Dcerpc::EncryptingFileSystem::EfsRpcEncryptFileSrvResponse do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :error_status }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#error_status' do
+    it 'is a NdrUint32' do
+      expect(packet.error_status).to be_a RubySMB::Dcerpc::Ndr::NdrUint32
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to EFS_RPC_ENCRYPT_FILE_SRV constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::EncryptingFileSystem::EFS_RPC_ENCRYPT_FILE_SRV)
+    end
+  end
+
+  it 'reads its own binary representation and outputs the same packet' do
+    packet = described_class.new(
+      error_status: 0
+    )
+    binary = packet.to_binary_s
+    expect(described_class.read(binary)).to eq(packet)
+  end
+end
+

data/spec/lib/ruby_smb/dcerpc/encrypting_file_system/efs_rpc_open_file_raw_request_spec.rb

@@ -0,0 +1,38 @@
+RSpec.describe RubySMB::Dcerpc::EncryptingFileSystem::EfsRpcOpenFileRawRequest do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :file_name }
+  it { is_expected.to respond_to :flags }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#file_name' do
+    it 'is a NdrConfVarWideStringz' do
+      expect(packet.file_name).to be_a RubySMB::Dcerpc::Ndr::NdrConfVarWideStringz
+    end
+  end
+
+  describe '#flags' do
+    it 'is a NdrUint32' do
+      expect(packet.flags).to be_a RubySMB::Dcerpc::Ndr::NdrUint32
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to EFS_RPC_OPEN_FILE_RAW constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::EncryptingFileSystem::EFS_RPC_OPEN_FILE_RAW)
+    end
+  end
+
+  it 'reads its own binary representation and outputs the same packet' do
+    packet = described_class.new(
+      file_name: 'file_name',
+      flags: 0
+    )
+    binary = packet.to_binary_s
+    expect(described_class.read(binary)).to eq(packet)
+  end
+end
+

data/spec/lib/ruby_smb/dcerpc/encrypting_file_system/efs_rpc_open_file_raw_response_spec.rb

@@ -0,0 +1,38 @@
+RSpec.describe RubySMB::Dcerpc::EncryptingFileSystem::EfsRpcOpenFileRawResponse do
+  subject(:packet) { described_class.new }
+
+  it { is_expected.to respond_to :h_context }
+  it { is_expected.to respond_to :error_status }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#h_context' do
+    it 'is a NdrContextHandle' do
+      expect(packet.h_context).to be_a RubySMB::Dcerpc::Ndr::NdrContextHandle
+    end
+  end
+
+  describe '#error_status' do
+    it 'is a NdrUint32' do
+      expect(packet.error_status).to be_a RubySMB::Dcerpc::Ndr::NdrUint32
+    end
+  end
+
+  describe '#initialize_instance' do
+    it 'sets #opnum to EFS_RPC_OPEN_FILE_RAW constant' do
+      expect(packet.opnum).to eq(RubySMB::Dcerpc::EncryptingFileSystem::EFS_RPC_OPEN_FILE_RAW)
+    end
+  end
+
+  it 'reads its own binary representation and outputs the same packet' do
+    packet = described_class.new(
+      h_context: RubySMB::Dcerpc::Ndr::NdrContextHandle.new,
+      error_status: 0
+    )
+    binary = packet.to_binary_s
+    expect(described_class.read(binary)).to eq(packet)
+  end
+end
+

data/spec/lib/ruby_smb/dcerpc/print_system/driver_container_spec.rb

@@ -0,0 +1,41 @@
+RSpec.describe RubySMB::Dcerpc::PrintSystem::DriverContainer do
+  subject(:struct) { described_class.new }
+
+  it { is_expected.to respond_to :level }
+  it { is_expected.to respond_to :tag }
+  it { is_expected.to respond_to :driver_info }
+
+  it 'is little endian' do
+    expect(described_class.fields.instance_variable_get(:@hints)[:endian]).to eq :little
+  end
+
+  describe '#level' do
+    it 'is a NdrUint32' do
+      expect(struct.level).to be_a RubySMB::Dcerpc::Ndr::NdrUint32
+    end
+  end
+
+  describe '#tag' do
+    it 'is a NdrUint32' do
+      expect(struct.tag).to be_a RubySMB::Dcerpc::Ndr::NdrUint32
+    end
+  end
+
+  it 'reads its own binary representation and outputs the same struct' do
+    struct = described_class.new(
+      level: 2,
+      tag: 0,
+      driver_info: RubySMB::Dcerpc::PrintSystem::DriverInfo2.new(
+        c_version: 0,
+        p_name: 'p_name',
+        p_environment: 'p_environment',
+        p_driver_path: 'p_driver_path',
+        p_data_file: 'p_data_file',
+        p_config_file: 'p_config_file'
+      )
+    )
+    binary = struct.to_binary_s
+    expect(described_class.read(binary)).to eq(struct)
+  end
+end
+