none
Metro Mail Office 365 provider RRS feed

  • Question

  • Hi, I'm trying to pull apart the data transmitted via xmlhttp.

    It appears like wbxml, but its not consistent.  I see multiple wbxml start markers:  03 01 6A. Is it something else?

    WBXML Version 1.3, Unknown Public Id and UTF-8 Marker Found at index

    but then there is a 00 00 FF 45 47.  where the second 00 is I'd expect a code page id.  What is the following FF?

    How can I decode this?  Where is the spec for it?  Nothing in here: http://interoperability.blob.core.windows.net/files/MS-ASWBXML/[MS-ASWBXML].pdf

    Seems to match up.

    The first guid for example: 8DF153AF-CCCB-43DB-AE20-703A920E96C4 What does it mean?  trying to use the Code Page for the bit masked 0x49 (content) gives me 9  None of the code pages with 9 seem to have anything that would be a guid?

    Thanks

    00000000h: 13 7E 53 74 61 72 74 4F 75 74 6C 6F 6F 6B 46 72 ; .~StartOutlookFr
    00000010h: 61 6D 65 7E 2F 01 00 00 22 00 00 00 51 01 00 00 ; ame~/..."...Q...
    00000020h: 03 01 6A 00 00 FF 45 47 C2 00 01 46 C2 01 01 48 ; ..j..ÿEGÂ..FÂ..H
    00000030h: 03 73 79 6E 63 00 01 49 03 38 44 46 31 35 33 41 ; .sync..I.8DF153A
    00000040h: 46 2D 43 43 43 42 2D 34 33 44 42 2D 41 45 32 30 ; F-CCCB-43DB-AE20
    00000050h: 2D 37 30 33 41 39 32 30 45 39 36 43 34 00 01 4D ; -703A920E96C4..M
    00000060h: C2 04 01 4E C2 59 01 4F C2 81 7C 01 59 03 36 35 ; Â..NÂY.O|.Y.65
    00000070h: 45 30 37 33 42 33 2D 41 30 46 30 2D 30 30 30 30 ; E073B3-A0F0-0000
    00000080h: 2D 38 39 34 32 2D 46 32 36 35 46 30 41 30 44 33 ; -8942-F265F0A0D3
    00000090h: 30 31 00 01 16 58 03 31 36 2E 30 2E 38 38 32 37 ; 01...X.16.0.8827
    000000a0h: 2E 32 31 38 35 00 01 5A 03 57 49 4E 44 4F 57 53 ; .2185..Z.WINDOWS
    000000b0h: 00 01 5B 03 57 69 6E 64 6F 77 73 2E 44 65 73 6B ; ..[.Windows.Desk
    000000c0h: 74 6F 70 00 01 5F 03 32 30 35 32 30 36 34 37 30 ; top.._.205206470
    000000d0h: 34 00 01 60 61 62 C2 01 01 63 03 34 46 41 45 43 ; 4..`abÂ..c.4FAEC
    000000e0h: 41 41 36 2D 38 44 37 35 2D 34 35 43 35 2D 39 38 ; AA6-8D75-45C5-98
    000000f0h: 32 36 2D 42 39 41 43 36 46 38 44 33 42 32 37 00 ; 26-B9AC6F8D3B27.
    00000100h: 01 01 61 62 C2 02 01 63 03 74 72 75 65 00 01 01 ; ..abÂ..c.true...
    00000110h: 61 62 C2 03 01 63 03 30 00 01 01 61 62 C2 06 01 ; abÂ..c.0...abÂ..
    00000120h: 63 03 74 72 75 65 00 01 01 61 62 C2 04 01 63 03 ; c.true...abÂ..c.
    00000130h: 74 72 75 65 00 01 01 61 62 C2 08 01 63 03 74 72 ; true...abÂ..c.tr
    00000140h: 75 65 00 01 01 01 66 C2 04 01 65 C2 00 01 01 03 ; ue....fÂ..eÂ....
    00000150h: 01 6A 00 00 0A 66 67 C2 0C 01 67 C2 07 01 67 C2 ; .j...fgÂ..gÂ..gÂ
    00000160h: 81 07 01 67 C2 81 08 01 67 C2 0B 01 67 C2 05 01 ; ..g..gÂ..gÂ..
    00000170h: 01 11 7E 45 6E 64 4F 75 74 6C 6F 6F 6B 46 72 61 ; ..~EndOutlookFra
    00000180h: 6D 65 7E                                        ; me~

    Monday, February 12, 2018 5:26 PM

All replies

  • Hi,

    The MS-AS* ActiveSync specifications do not address Office365 implementations. Only on-premise Exchange scenarios are documented. As such, the Open Specifications Support team does not provide direct support for using the MS-AS* specifications in the Office365 scenario. However a member of the Open Specifications Support team can attempt a comparison to an on-premise installation of Exchange Server and see whether or not the behavior you are seeing in the Office365 scenario is also occurring in the on-premise scenario, and if so we can investigate the issue fully.

    Thanks,

    Edgar

    Monday, February 12, 2018 9:45 PM
    Moderator
  • Hello chupperDG:

    I'm looking into your following query and will get back.

    >>>'The first guid for example: 8DF153AF-CCCB-43DB-AE20-703A920E96C4 What does it mean?  trying to use the Code Page for the bit masked 0x49 (content) gives me 9  None of the code pages with 9 seem to have anything that would be a guid?'

    Thanks


    Tarun Chopra | Escalation Engineer | Open Specifications Support Team

    Tuesday, February 13, 2018 7:19 AM
  • It seems if u base64 decode the auth token that fiddler gave you from earlier request / response you'll see the guids.  I'm starting to think the first section of possible wbxml is more comm / session info than app payload.  But even the second section of wbml (after the second 03 01 6A) doesn't make sense.

    00000140h: 75 65 00 01 01 01 66 C2 04 01 65 C2 00 01 01 03 ; ue....fÂ..eÂ....
    00000150h: 01 6A 00 00 0A 66 67 C2 0C 01 67 C2 07 01 67 C2 ; .j...fgÂ..gÂ..gÂ

    The string table is 00, but then, what is the next 00?  Is the first code page 0A ResolveRecipients ?

    That code page doesn't have anything that high (0x66 - content bit) == 0x26)  (it stops at 1D)

    Thanks


    • Edited by chupperDG Tuesday, February 13, 2018 1:36 PM
    Tuesday, February 13, 2018 12:24 PM
  • Edgar, are you saying that MS is using an API that it doesn't share with the rest of the world?

    The docs state the following is used, and I can see the exchange provider, google, yahoo all use it

    https://docs.microsoft.com/en-us/uwp/api/windows.applicationmodel.email.emailmailbox

    However the office365 provider is not using it, it is using what looks like proprietary invocations to msxmlhttp via these StartOutlookFrame and pseudo wbxml 


    Tuesday, February 13, 2018 12:29 PM
  • Hello chupperDG: 

    I decoded the byte stream '03 01 6A 00 00 0A 66' and can see that we are getting an unknown tag. I reviewed exchange server along with Metro Mail source code and they both have no definition for tag '0x26'.

    <?xml version="1.0" encoding="utf-8"?>
    <resolverecipients:UNKNOWN_TAG_26 xmlns:resolverecipients="ResolveRecipients:" />

    Kindly collect 0365 (refer following link and section 'OWA\ECP method') logs along with fiddler trace and share with us for further analysis. Please send logs to my attention at  - dochelp at Microsoft.com

    Thanks


    Tarun Chopra | Escalation Engineer | Open Specifications Support Team

    Tuesday, February 13, 2018 6:22 PM
  • How do I enable the logging specified in that link against office365?  Isn't that all MS managed?

    Is it even exchange?

    BTW, I'm sure you can repro this in house.  It seems like it is never the spec'd format.

    Thanks

    Wednesday, February 14, 2018 10:13 AM
  • Hello chupperDG - 

    Kindly drop me an email; dochelp at Microsoft.com; and I will walk you through the steps to collect the logs as stated in the link above. Logging has to be initiated by the user and logs will be sent as an email attachment to your inbox.

    We need to analyze both fiddler and 0365 logs to ensure that we are parsing the bytes correctly. As mentioned earlier; I reviewed both exchange server and metro app code and didn't find 0x26 tag for this code page.

    Will look forward to your email to assist further. Once we resolve the issue; we will circle back and update this forum thread with our findings.

    Thanks 


    Tarun Chopra | Escalation Engineer | Open Specifications Support Team

    Wednesday, February 14, 2018 4:53 PM