/* * Copyright (C) 2006 OCCAM Financial Technology * Copyright (C) 2005-2006 Martin Koegler * Copyright (C) 2010 TigerVNC Team * * This is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. * * This software is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this software; if not, write to the Free Software * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, * USA. */ // // CSecurityVeNCrypt // #ifdef HAVE_CONFIG_H #include #endif #include #include #include #include #include #include #include #include using namespace rfb; static core::LogWriter vlog("CVeNCrypt"); CSecurityVeNCrypt::CSecurityVeNCrypt(CConnection* cc_, SecurityClient* sec) : CSecurity(cc_), csecurity(nullptr), security(sec) { haveRecvdMajorVersion = false; haveRecvdMinorVersion = false; haveSentVersion = false; haveAgreedVersion = false; haveListOfTypes = false; haveNumberOfTypes = false; haveChosenType = false; majorVersion = 0; minorVersion = 0; chosenType = secTypeVeNCrypt; nAvailableTypes = 0; availableTypes = nullptr; } CSecurityVeNCrypt::~CSecurityVeNCrypt() { delete[] availableTypes; delete csecurity; } bool CSecurityVeNCrypt::processMsg() { rdr::InStream* is = cc->getInStream(); rdr::OutStream* os = cc->getOutStream(); /* get major, minor versions, send what we can support (or 0.0 for can't support it) */ if (!haveRecvdMajorVersion) { if (!is->hasData(1)) return false; majorVersion = is->readU8(); haveRecvdMajorVersion = true; } if (!haveRecvdMinorVersion) { if (!is->hasData(1)) return false; minorVersion = is->readU8(); haveRecvdMinorVersion = true; } /* major version in upper 8 bits and minor version in lower 8 bits */ uint16_t Version = (((uint16_t) majorVersion) << 8) | ((uint16_t) minorVersion); if (!haveSentVersion) { /* Currently we don't support former VeNCrypt 0.1 */ if (Version >= 0x0002) { majorVersion = 0; minorVersion = 2; os->writeU8(majorVersion); os->writeU8(minorVersion); os->flush(); } else { /* Send 0.0 to indicate no support */ majorVersion = 0; minorVersion = 0; os->writeU8(0); os->writeU8(0); os->flush(); throw protocol_error("The server reported an unsupported VeNCrypt version"); } haveSentVersion = true; } /* Check that the server is OK */ if (!haveAgreedVersion) { if (!is->hasData(1)) return false; if (is->readU8()) throw protocol_error("The server reported it could not " "support the VeNCrypt version"); haveAgreedVersion = true; } /* get a number of types */ if (!haveNumberOfTypes) { if (!is->hasData(1)) return false; nAvailableTypes = is->readU8(); if (!nAvailableTypes) throw protocol_error("The server reported no VeNCrypt sub-types"); availableTypes = new uint32_t[nAvailableTypes]; haveNumberOfTypes = true; } if (nAvailableTypes) { /* read in the types possible */ if (!haveListOfTypes) { if (!is->hasData(4 * nAvailableTypes)) return false; for (int i = 0;i < nAvailableTypes;i++) { availableTypes[i] = is->readU32(); vlog.debug("Server offers security type %s (%d)", secTypeName(availableTypes[i]), availableTypes[i]); } haveListOfTypes = true; } /* make a choice and send it to the server, meanwhile set up the stack */ if (!haveChosenType) { chosenType = secTypeInvalid; uint8_t i; std::list secTypes; secTypes = security->GetEnabledExtSecTypes(); /* Honor server's security type order */ for (i = 0; i < nAvailableTypes; i++) { if (std::find(secTypes.begin(), secTypes.end(), availableTypes[i]) != secTypes.end()) { chosenType = availableTypes[i]; break; } } /* Set up the stack according to the chosen type: */ if (chosenType == secTypeInvalid || chosenType == secTypeVeNCrypt) throw protocol_error("No valid VeNCrypt sub-type"); vlog.info("Choosing security type %s (%d)", secTypeName(chosenType), chosenType); csecurity = security->GetCSecurity(cc, chosenType); /* send chosen type to server */ os->writeU32(chosenType); os->flush(); haveChosenType = true; } } else { /* * Server told us that there are 0 types it can support - this should not * happen, since if the server supports 0 sub-types, it doesn't support * this security type */ throw protocol_error("The server reported 0 VeNCrypt sub-types"); } return csecurity->processMsg(); } bool CSecurityVeNCrypt::isSecure() const { if (csecurity && csecurity->isSecure()) return true; return false; } fff6dbe976b11178ca217995dba7e806e64'>commitdiffstats
path: root/.gitignore
blob: d83bd7522a782ac307b98d9b746f36810517816f (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62

# ---- Gradle
build/
.gradle/
.gradletasknamecache
classes/
out/

# ---- Maven (in integration tests)
target/

# ---- IntelliJ IDEA
*.iws
*.iml
*.ipr
.idea/
out/

# Directories generated on build on Windows
bin/

# npm logs
npm-debug.log*
npm.tar.gz
yarn-debug.log*
yarn-error.log*

# ---- Eclipse
.classpath
.project
.settings
.externalToolBuilders

# ---- Mac OS X
.DS_Store
Icon?
# Thumbnails
._*
# Files that might appear on external disk
.Spotlight-V100
.Trashes

# ---- Windows
# Windows image file caches
Thumbs.db 
# Folder config file
Desktop.ini

# ---- frontend
node/
node_modules/
.vscode/

# ---- SonarQube
.sonar/

# scripts patches, they are local to each developer
scripts/patches/*.*
scripts/patches/*license*.txt
!scripts/patches/debug_ce.sh
!scripts/patches/debug_web.sh
!scripts/patches/mysql.sh
!scripts/patches/postgres.sh