ruby_smb 3.3.16 → 3.3.17

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d5f3e7d4b38a0c2cbae5b04d401f988e0eb90585374877983c5d0f249935379b
-  data.tar.gz: dc98770e931bf9c6ee4edd80a0a1bba2a2ac6ff75aef12b96f5c00efa1612074
+  metadata.gz: 3a184f6972edec8968cd3c69c2c4adb46f62f1ebd652c5b0013ba87d074f3cc8
+  data.tar.gz: e48dc3bf1a1a1771672ac7fbce126da175a596ce3fe4951f8b83e4aec2dcca50
 SHA512:
-  metadata.gz: bb9b0288dc73c844c6707aa1bbd5e7db38a8f1a92240695e4fda6ecbe94bddcb049270a4b6ad96038cabda1a871ebb026ad1ef868c366fe17f804f9c107ba3ee
-  data.tar.gz: 3fc829b270e287d4e87de00b08c17ed9fa9bf325191582f88cb252a0b64f9b0ec4c1b8d2ffae6ef7200ad42ea3daa7192f54edd8c829540783a980ae920b92e3
+  metadata.gz: bb45e333f0167db6b3a8d9cacb398d10cc2f5f611d4696c98b76f4daa8b2b1ed9ab03c3e1de83d78114d92f25c6803774fd0204a91e509ad755d4ea891986620
+  data.tar.gz: 81e33299c43682283cd663128ac1a765fdc460e04d57468004965662439d4193f2c422de6f20754b4e77f99461ef317b0b373ffd6c4851b014d4504927d3e05f

data/lib/ruby_smb/client/authentication.rb

@@ -31,6 +31,7 @@ module RubySMB
       #
       # @return [WindowsError::ErrorCode] the status code the server returned
       def smb1_anonymous_auth
+        @mech_type = :anonymous
         request       = smb1_anonymous_auth_request
         raw_response  = send_recv(request)
         response      = smb1_anonymous_auth_response(raw_response)
@@ -73,6 +74,7 @@ module RubySMB
       # Handles the SMB1 NTLMSSP 4-way handshake for Authentication and store
       # information about the peer/server.
       def smb1_authenticate
+        @mech_type = :ntlm
         response = smb1_ntlmssp_negotiate
         challenge_packet = smb1_ntlmssp_challenge_packet(response)
 
@@ -205,6 +207,7 @@ module RubySMB
       # Handles the SMB2 NTLMSSP 4-way handshake for Authentication and store
       # information about the peer/server.
       def smb2_authenticate
+        @mech_type = :ntlm
         response = smb2_ntlmssp_negotiate
         challenge_packet = smb2_ntlmssp_challenge_packet(response)
         if @dialect == '0x0311'

data/lib/ruby_smb/client.rb

@@ -517,6 +517,18 @@ module RubySMB
         break
       end unless version == 'SMB1'
 
+      # Handle STATUS_NETWORK_SESSION_EXPIRED. The 'net use' client upon receiving this error will automatically attempt
+      # to re-authenticate, which makes relaying ntlm authentication to multiple targets possible. This block ensures
+      # ruby_smb behaves in the same manner as 'net use'.
+      if smb2_header && smb2_header.nt_status == WindowsError::NTStatus::STATUS_NETWORK_SESSION_EXPIRED && !@mech_type.nil?
+        if @mech_type == :ntlm || @mech_type == :anonymous
+          session_setup(self.username, self.password, self.domain, local_workstation: self.local_workstation, ntlm_flags: NTLM::DEFAULT_CLIENT_FLAGS)
+          raw_response = send_recv(packet, encrypt: encrypt) # Retry the request after re-authentication
+        elsif  @mech_type == :kerberos
+          raise RubySMB::Error::RubySMBError, 'WindowsError::NTStatus::STATUS_NETWORK_SESSION_EXPIRED received, but kerberos authentication is being used, so automatic re-authentication cannot be attempted.'
+        end
+      end
+
       self.sequence_counter += 1 if signing_required && !session_key.empty?
       # update the SMB2 message ID according to the received Credit Charged
       self.smb2_message_id += smb2_header.credit_charge - 1 if smb2_header && self.server_supports_multi_credit

data/lib/ruby_smb/version.rb

@@ -1,3 +1,3 @@
 module RubySMB
-  VERSION = '3.3.16'.freeze
+  VERSION = '3.3.17'.freeze
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ruby_smb
 version: !ruby/object:Gem::Version
-  version: 3.3.16
+  version: 3.3.17
 platform: ruby
 authors:
 - Metasploit Hackers
@@ -13,7 +13,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-05-06 00:00:00.000000000 Z
+date: 2026-03-24 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: redcarpet