mirrors
/
tigervnc
mirror of https://github.com/TigerVNC/tigervnc.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 37 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4487 Commits
15 Branches
Tree: 1a729dc012
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1a729dc012'
${ noResults }
tigervnc/common/rfb/CSecurityVncAuth.cxx

CSecurityVncAuth.cxx 2.0KB
Raw Blame History

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. /* Copyright (C) 2002-2005 RealVNC Ltd.  All Rights Reserved.

  2.  * 

  3.  * This is free software; you can redistribute it and/or modify

  4.  * it under the terms of the GNU General Public License as published by

  5.  * the Free Software Foundation; either version 2 of the License, or

  6.  * (at your option) any later version.

  7.  * 

  8.  * This software is distributed in the hope that it will be useful,

  9.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  10.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  11.  * GNU General Public License for more details.

  12.  * 

  13.  * You should have received a copy of the GNU General Public License

  14.  * along with this software; if not, write to the Free Software

  15.  * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307,

  16.  * USA.

  17.  */

  18. //

  19. // CSecurityVncAuth

  20. //

  21. // XXX not thread-safe, because d3des isn't - do we need to worry about this?

  22. //

  23. 

  24. #ifdef HAVE_CONFIG_H

  25. #include <config.h>

  26. #endif

  27. 

  28. #include <string.h>

  29. #include <stdio.h>

  30. 

  31. #include <rfb/CConnection.h>

  32. #include <rfb/Password.h>

  33. #include <rfb/CSecurityVncAuth.h>

  34. #include <rfb/util.h>

  35. #include <rfb/Security.h>

  36. extern "C" {

  37. #include <rfb/d3des.h>

  38. }

  39. 

  40. #include <rdr/InStream.h>

  41. #include <rdr/OutStream.h>

  42. 

  43. using namespace rfb;

  44. 

  45. static const int vncAuthChallengeSize = 16;

  46. 

  47. bool CSecurityVncAuth::processMsg()

  48. {

  49.   rdr::InStream* is = cc->getInStream();

  50.   rdr::OutStream* os = cc->getOutStream();

  51. 

  52.   if (!is->hasData(vncAuthChallengeSize))

  53.     return false;

  54. 

  55.   // Read the challenge & obtain the user's password

  56.   rdr::U8 challenge[vncAuthChallengeSize];

  57.   is->readBytes(challenge, vncAuthChallengeSize);

  58.   PlainPasswd passwd;

  59.   (CSecurity::upg)->getUserPasswd(cc->isSecure(), 0, &passwd.buf);

  60. 

  61.   // Calculate the correct response

  62.   rdr::U8 key[8];

  63.   int pwdLen = strlen(passwd.buf);

  64.   for (int i=0; i<8; i++)

  65.     key[i] = i<pwdLen ? passwd.buf[i] : 0;

  66.   deskey(key, EN0);

  67.   for (int j = 0; j < vncAuthChallengeSize; j += 8)

  68.     des(challenge+j, challenge+j);

  69. 

  70.   // Return the response to the server

  71.   os->writeBytes(challenge, vncAuthChallengeSize);

  72.   os->flush();

  73.   return true;

  74. }