1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
|
/* Copyright (C) 2002-2005 RealVNC Ltd. All Rights Reserved.
*
* This is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This software is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this software; if not, write to the Free Software
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301,
* USA.
*/
package com.tigervnc.rfb;
import com.tigervnc.rdr.*;
import com.tigervnc.vncviewer.*;
public class CSecurityVncAuth extends CSecurity {
public CSecurityVncAuth() { }
private static final int vncAuthChallengeSize = 16;
public boolean processMsg(CConnection cc)
{
InStream is = cc.getInStream();
OutStream os = cc.getOutStream();
// Read the challenge & obtain the user's password
byte[] challenge = new byte[vncAuthChallengeSize];
is.readBytes(challenge, 0, vncAuthChallengeSize);
StringBuffer passwd = new StringBuffer();
CConn.upg.getUserPasswd(null, passwd);
// Calculate the correct response
byte[] key = new byte[8];
int pwdLen = passwd.length();
byte[] utf8str = new byte[pwdLen];
try {
utf8str = passwd.toString().getBytes("UTF8");
} catch(java.io.UnsupportedEncodingException e) {
e.printStackTrace();
}
for (int i=0; i<8; i++)
key[i] = i<pwdLen ? utf8str[i] : 0;
DesCipher des = new DesCipher(key);
for (int j = 0; j < vncAuthChallengeSize; j += 8)
des.encrypt(challenge,j,challenge,j);
// Return the response to the server
os.writeBytes(challenge, 0, vncAuthChallengeSize);
os.flush();
return true;
}
public int getType() { return Security.secTypeVncAuth; }
public String description() { return "No Encryption"; }
static LogWriter vlog = new LogWriter("VncAuth");
}
|