/* Copyright (C) 2002-2003 RealVNC Ltd.  All Rights Reserved.
 *    
 * This is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation; either version 2 of the License, or
 * (at your option) any later version.
 * 
 * This software is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 * 
 * You should have received a copy of the GNU General Public License
 * along with this software; if not, write to the Free Software
 * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307,
 * USA.
 */

// -=- WMShatter.h
//
// WMShatter provides the IsSafeWM routine, which returns true iff the
// supplied window message is safe to pass to DispatchMessage, or to
// process in the window procedure.
//
// This is only required, of course, to avoid so-called "shatter" attacks
// to be made against the VNC server, which take advantage of the noddy
// design of the Win32 window messaging system.
//
// The API here is designed to hopefully be future proof, so that if they
// ever come up with a proper way to determine whether a message is safe
// or not then it can just be reimplemented here...

#ifndef __RFB_WIN32_SHATTER_H__
#define __RFB_WIN32_SHATTER_H__

#define WIN32_LEAN_AND_MEAN
#include <windows.h>

namespace rfb {

  namespace win32 {

    bool IsSafeWM(HWND window, UINT msg, WPARAM wParam, LPARAM lParam);

    LRESULT SafeDefWindowProc(HWND wnd, UINT msg, WPARAM wParam, LPARAM lParam);

    LRESULT SafeDispatchMessage(const MSG* msg);

  };

};

#endif // __RFB_WIN32_SHATTER_H__