2011-07-12 02:46:36 +04:00
|
|
|
/**
|
2012-10-09 07:02:04 +04:00
|
|
|
* FreeRDP: A Remote Desktop Protocol Implementation
|
2011-07-12 02:46:36 +04:00
|
|
|
* RDP Client Info
|
|
|
|
*
|
|
|
|
* Copyright 2011 Marc-Andre Moreau <marcandre.moreau@gmail.com>
|
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
2012-08-15 01:09:01 +04:00
|
|
|
#ifdef HAVE_CONFIG_H
|
|
|
|
#include "config.h"
|
|
|
|
#endif
|
|
|
|
|
2012-12-17 08:34:07 +04:00
|
|
|
#include <winpr/crt.h>
|
2013-10-22 19:14:29 +04:00
|
|
|
#include <freerdp/crypto/crypto.h>
|
2014-09-12 16:36:29 +04:00
|
|
|
#include <freerdp/log.h>
|
2013-10-22 19:14:29 +04:00
|
|
|
#include <stdio.h>
|
2012-12-17 08:34:07 +04:00
|
|
|
|
2012-02-16 10:53:58 +04:00
|
|
|
#include "timezone.h"
|
|
|
|
|
2011-07-12 02:46:36 +04:00
|
|
|
#include "info.h"
|
|
|
|
|
2014-09-12 16:36:29 +04:00
|
|
|
#define TAG FREERDP_TAG("core")
|
|
|
|
|
2011-07-25 21:42:14 +04:00
|
|
|
#define INFO_TYPE_LOGON 0x00000000
|
|
|
|
#define INFO_TYPE_LOGON_LONG 0x00000001
|
|
|
|
#define INFO_TYPE_LOGON_PLAIN_NOTIFY 0x00000002
|
|
|
|
#define INFO_TYPE_LOGON_EXTENDED_INF 0x00000003
|
|
|
|
|
2011-11-30 05:15:50 +04:00
|
|
|
/*
|
|
|
|
static const char* const INFO_TYPE_LOGON_STRINGS[] =
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
|
|
|
"Logon Info V1",
|
|
|
|
"Logon Info V2",
|
|
|
|
"Logon Plain Notify",
|
|
|
|
"Logon Extended Info"
|
|
|
|
};
|
2011-11-30 05:15:50 +04:00
|
|
|
*/
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2011-07-12 02:46:36 +04:00
|
|
|
/**
|
2011-07-25 21:42:14 +04:00
|
|
|
* Read Server Auto Reconnect Cookie (ARC_SC_PRIVATE_PACKET).\n
|
|
|
|
* @msdn{cc240540}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_read_server_auto_reconnect_cookie(wStream* s, rdpSettings* settings)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
|
|
|
ARC_SC_PRIVATE_PACKET* autoReconnectCookie;
|
2012-11-08 00:13:14 +04:00
|
|
|
autoReconnectCookie = settings->ServerAutoReconnectCookie;
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 4+4+4+16)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, autoReconnectCookie->cbLen); /* cbLen (4 bytes) */
|
|
|
|
Stream_Read_UINT32(s, autoReconnectCookie->version); /* version (4 bytes) */
|
|
|
|
Stream_Read_UINT32(s, autoReconnectCookie->logonId); /* LogonId (4 bytes) */
|
|
|
|
Stream_Read(s, autoReconnectCookie->arcRandomBits, 16); /* arcRandomBits (16 bytes) */
|
2013-10-22 19:14:29 +04:00
|
|
|
if ((settings->PrintReconnectCookie) && (autoReconnectCookie->cbLen > 0))
|
|
|
|
{
|
|
|
|
char *base64;
|
|
|
|
base64 = crypto_base64_encode((BYTE *) autoReconnectCookie,
|
|
|
|
sizeof(ARC_SC_PRIVATE_PACKET));
|
2014-09-15 21:52:19 +04:00
|
|
|
WLog_INFO(TAG, "Reconnect-cookie: %s", base64);
|
2013-10-22 19:14:29 +04:00
|
|
|
free(base64);
|
|
|
|
}
|
2013-01-11 04:18:11 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
/**
|
|
|
|
* Read Client Auto Reconnect Cookie (ARC_CS_PRIVATE_PACKET).\n
|
|
|
|
* @msdn{cc240541}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_read_client_auto_reconnect_cookie(wStream* s, rdpSettings* settings)
|
2011-08-20 14:22:14 +04:00
|
|
|
{
|
|
|
|
ARC_CS_PRIVATE_PACKET* autoReconnectCookie;
|
2012-11-08 00:13:14 +04:00
|
|
|
autoReconnectCookie = settings->ClientAutoReconnectCookie;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 28)
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, autoReconnectCookie->cbLen); /* cbLen (4 bytes) */
|
|
|
|
Stream_Read_UINT32(s, autoReconnectCookie->version); /* version (4 bytes) */
|
|
|
|
Stream_Read_UINT32(s, autoReconnectCookie->logonId); /* LogonId (4 bytes) */
|
|
|
|
Stream_Read(s, autoReconnectCookie->securityVerifier, 16); /* SecurityVerifier */
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2012-10-09 10:31:28 +04:00
|
|
|
return TRUE;
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
|
|
|
|
2011-07-25 21:42:14 +04:00
|
|
|
/**
|
|
|
|
* Write Client Auto Reconnect Cookie (ARC_CS_PRIVATE_PACKET).\n
|
2011-07-12 02:46:36 +04:00
|
|
|
* @msdn{cc240541}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
void rdp_write_client_auto_reconnect_cookie(wStream* s, rdpSettings* settings)
|
2011-07-12 02:46:36 +04:00
|
|
|
{
|
2014-08-11 19:23:23 +04:00
|
|
|
CryptoHmac hmac;
|
|
|
|
BYTE nullRandom[32];
|
|
|
|
BYTE cryptSecurityVerifier[16];
|
2011-07-12 02:46:36 +04:00
|
|
|
ARC_CS_PRIVATE_PACKET* autoReconnectCookie;
|
2012-11-08 00:13:14 +04:00
|
|
|
autoReconnectCookie = settings->ClientAutoReconnectCookie;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2014-08-11 19:23:23 +04:00
|
|
|
/* SecurityVerifier = HMAC(AutoReconnectRandom, ClientRandom) */
|
|
|
|
|
|
|
|
hmac = crypto_hmac_new();
|
|
|
|
ZeroMemory(nullRandom, sizeof(nullRandom));
|
|
|
|
|
|
|
|
crypto_hmac_md5_init(hmac, autoReconnectCookie->securityVerifier, 16);
|
|
|
|
|
|
|
|
if (settings->ClientRandomLength > 0)
|
|
|
|
crypto_hmac_update(hmac, settings->ClientRandom, settings->ClientRandomLength);
|
|
|
|
else
|
|
|
|
crypto_hmac_update(hmac, nullRandom, sizeof(nullRandom));
|
|
|
|
|
|
|
|
crypto_hmac_final(hmac, cryptSecurityVerifier, 16);
|
|
|
|
crypto_hmac_free(hmac);
|
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT32(s, autoReconnectCookie->cbLen); /* cbLen (4 bytes) */
|
|
|
|
Stream_Write_UINT32(s, autoReconnectCookie->version); /* version (4 bytes) */
|
|
|
|
Stream_Write_UINT32(s, autoReconnectCookie->logonId); /* LogonId (4 bytes) */
|
2014-08-11 19:23:23 +04:00
|
|
|
Stream_Write(s, cryptSecurityVerifier, 16); /* SecurityVerifier */
|
2011-07-12 02:46:36 +04:00
|
|
|
}
|
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
/**
|
|
|
|
* Read Extended Info Packet (TS_EXTENDED_INFO_PACKET).\n
|
|
|
|
* @msdn{cc240476}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_read_extended_info_packet(wStream* s, rdpSettings* settings)
|
2011-08-20 14:22:14 +04:00
|
|
|
{
|
2012-10-09 11:01:37 +04:00
|
|
|
UINT16 clientAddressFamily;
|
|
|
|
UINT16 cbClientAddress;
|
|
|
|
UINT16 cbClientDir;
|
|
|
|
UINT16 cbAutoReconnectLen;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 4)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-09-06 02:53:55 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT16(s, clientAddressFamily); /* clientAddressFamily */
|
|
|
|
Stream_Read_UINT16(s, cbClientAddress); /* cbClientAddress */
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2012-11-08 03:23:25 +04:00
|
|
|
settings->IPv6Enabled = (clientAddressFamily == ADDRESS_FAMILY_INET6 ? TRUE : FALSE);
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < cbClientAddress)
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2013-11-01 07:35:24 +04:00
|
|
|
if (settings->ClientAddress)
|
|
|
|
{
|
|
|
|
free(settings->ClientAddress);
|
|
|
|
settings->ClientAddress = NULL;
|
|
|
|
}
|
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbClientAddress / 2, &settings->ClientAddress, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbClientAddress);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 2)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-11-01 07:35:24 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT16(s, cbClientDir); /* cbClientDir */
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < cbClientDir)
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2012-11-08 03:23:25 +04:00
|
|
|
if (settings->ClientDir)
|
2013-11-01 07:35:24 +04:00
|
|
|
{
|
2012-11-08 03:23:25 +04:00
|
|
|
free(settings->ClientDir);
|
2013-11-01 07:35:24 +04:00
|
|
|
settings->ClientDir = NULL;
|
|
|
|
}
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbClientDir / 2, &settings->ClientDir, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbClientDir);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
|
|
|
if (!rdp_read_client_time_zone(s, settings))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 10)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-09-06 02:53:55 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek_UINT32(s); /* clientSessionId, should be set to 0 */
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, settings->PerformanceFlags); /* performanceFlags */
|
2013-09-17 22:56:23 +04:00
|
|
|
freerdp_performance_flags_split(settings);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT16(s, cbAutoReconnectLen); /* cbAutoReconnectLen */
|
2011-08-20 14:22:14 +04:00
|
|
|
|
|
|
|
if (cbAutoReconnectLen > 0)
|
|
|
|
return rdp_read_client_auto_reconnect_cookie(s, settings); /* autoReconnectCookie */
|
|
|
|
|
|
|
|
/* reserved1 (2 bytes) */
|
|
|
|
/* reserved2 (2 bytes) */
|
|
|
|
|
2012-10-09 10:31:28 +04:00
|
|
|
return TRUE;
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
|
|
|
|
2011-07-12 02:46:36 +04:00
|
|
|
/**
|
|
|
|
* Write Extended Info Packet (TS_EXTENDED_INFO_PACKET).\n
|
|
|
|
* @msdn{cc240476}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
void rdp_write_extended_info_packet(wStream* s, rdpSettings* settings)
|
2011-07-12 02:46:36 +04:00
|
|
|
{
|
2012-09-24 03:49:13 +04:00
|
|
|
int clientAddressFamily;
|
2013-01-11 00:30:32 +04:00
|
|
|
WCHAR* clientAddress = NULL;
|
2012-09-24 03:49:13 +04:00
|
|
|
int cbClientAddress;
|
2013-01-11 00:30:32 +04:00
|
|
|
WCHAR* clientDir = NULL;
|
2012-09-24 03:49:13 +04:00
|
|
|
int cbClientDir;
|
|
|
|
int cbAutoReconnectLen;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2012-11-08 03:23:25 +04:00
|
|
|
clientAddressFamily = settings->IPv6Enabled ? ADDRESS_FAMILY_INET6 : ADDRESS_FAMILY_INET;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2012-12-17 19:20:25 +04:00
|
|
|
cbClientAddress = ConvertToUnicode(CP_UTF8, 0, settings->ClientAddress, -1, &clientAddress, 0) * 2;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2012-12-17 19:20:25 +04:00
|
|
|
cbClientDir = ConvertToUnicode(CP_UTF8, 0, settings->ClientDir, -1, &clientDir, 0) * 2;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-10-22 19:14:29 +04:00
|
|
|
cbAutoReconnectLen = (int) settings->ServerAutoReconnectCookie->cbLen;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, clientAddressFamily); /* clientAddressFamily */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, cbClientAddress + 2); /* cbClientAddress */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbClientAddress > 0)
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write(s, clientAddress, cbClientAddress); /* clientAddress */
|
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, cbClientDir + 2); /* cbClientDir */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbClientDir > 0)
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write(s, clientDir, cbClientDir); /* clientDir */
|
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
rdp_write_client_time_zone(s, settings); /* clientTimeZone */
|
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT32(s, 0); /* clientSessionId, should be set to 0 */
|
2013-09-17 22:56:23 +04:00
|
|
|
|
|
|
|
freerdp_performance_flags_make(settings);
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT32(s, settings->PerformanceFlags); /* performanceFlags */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, cbAutoReconnectLen); /* cbAutoReconnectLen */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbAutoReconnectLen > 0)
|
2013-10-22 19:14:29 +04:00
|
|
|
{
|
|
|
|
CryptoHmac hmac;
|
|
|
|
ARC_SC_PRIVATE_PACKET* serverCookie;
|
|
|
|
ARC_CS_PRIVATE_PACKET* clientCookie;
|
2014-09-12 16:36:29 +04:00
|
|
|
WLog_DBG(TAG, "Sending auto reconnect");
|
2013-10-22 19:14:29 +04:00
|
|
|
serverCookie = settings->ServerAutoReconnectCookie;
|
|
|
|
clientCookie = settings->ClientAutoReconnectCookie;
|
|
|
|
|
|
|
|
clientCookie->cbLen = serverCookie->cbLen;
|
|
|
|
clientCookie->version = serverCookie->version;
|
|
|
|
clientCookie->logonId = serverCookie->logonId;
|
|
|
|
|
|
|
|
hmac = crypto_hmac_new();
|
2014-03-26 02:13:08 +04:00
|
|
|
if (!hmac)
|
|
|
|
{
|
2014-09-12 16:36:29 +04:00
|
|
|
WLog_ERR(TAG, "unable to allocate hmac");
|
2014-03-26 02:13:08 +04:00
|
|
|
goto out_free;
|
|
|
|
}
|
2013-11-01 07:35:24 +04:00
|
|
|
|
2013-10-22 19:14:29 +04:00
|
|
|
crypto_hmac_md5_init(hmac, serverCookie->arcRandomBits, 16);
|
2013-11-01 07:35:24 +04:00
|
|
|
|
2013-10-22 19:14:29 +04:00
|
|
|
if (settings->SelectedProtocol == PROTOCOL_RDP)
|
|
|
|
{
|
2013-11-01 07:35:24 +04:00
|
|
|
crypto_hmac_update(hmac, (BYTE*) (settings->ClientRandom), 32);
|
2013-10-22 19:14:29 +04:00
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* Anthony Tong's version had 16 zeroes here; I'm not sure why.
|
|
|
|
* I do know that 16 did not reconnect correctly vs Win2008RDVH,
|
|
|
|
* and 32 did.
|
|
|
|
*/
|
|
|
|
const BYTE zeros[32] = { 0,0,0,0, 0,0,0,0, 0,0,0,0, 0,0,0,0,
|
|
|
|
0,0,0,0, 0,0,0,0, 0,0,0,0, 0,0,0,0 };
|
|
|
|
crypto_hmac_update(hmac, zeros, 32);
|
|
|
|
}
|
|
|
|
crypto_hmac_final(hmac, clientCookie->securityVerifier, 16);
|
|
|
|
|
2011-07-25 21:42:14 +04:00
|
|
|
rdp_write_client_auto_reconnect_cookie(s, settings); /* autoReconnectCookie */
|
2013-10-22 19:14:29 +04:00
|
|
|
/* mark as used */
|
|
|
|
settings->ServerAutoReconnectCookie->cbLen = 0;
|
2014-03-26 02:13:08 +04:00
|
|
|
crypto_hmac_free(hmac);
|
2013-10-22 19:14:29 +04:00
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
/* reserved1 (2 bytes) */
|
|
|
|
/* reserved2 (2 bytes) */
|
2014-03-26 02:13:08 +04:00
|
|
|
out_free:
|
2012-10-09 07:21:26 +04:00
|
|
|
free(clientAddress);
|
|
|
|
free(clientDir);
|
2011-07-12 02:46:36 +04:00
|
|
|
}
|
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
/**
|
|
|
|
* Read Info Packet (TS_INFO_PACKET).\n
|
|
|
|
* @msdn{cc240475}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_read_info_packet(wStream* s, rdpSettings* settings)
|
2011-08-20 14:22:14 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 flags;
|
2012-10-09 11:01:37 +04:00
|
|
|
UINT16 cbDomain;
|
|
|
|
UINT16 cbUserName;
|
|
|
|
UINT16 cbPassword;
|
|
|
|
UINT16 cbAlternateShell;
|
|
|
|
UINT16 cbWorkingDir;
|
2014-03-10 19:16:36 +04:00
|
|
|
UINT32 CompressionLevel;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-03-10 19:16:36 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 18)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek_UINT32(s); /* CodePage */
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, flags); /* flags */
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-10-10 06:38:26 +04:00
|
|
|
settings->AudioCapture = ((flags & INFO_AUDIOCAPTURE) ? TRUE : FALSE);
|
2013-05-24 00:35:24 +04:00
|
|
|
settings->AudioPlayback = ((flags & INFO_NOAUDIOPLAYBACK) ? FALSE : TRUE);
|
2012-11-08 03:23:25 +04:00
|
|
|
settings->AutoLogonEnabled = ((flags & INFO_AUTOLOGON) ? TRUE : FALSE);
|
2012-11-08 00:13:14 +04:00
|
|
|
settings->RemoteApplicationMode = ((flags & INFO_RAIL) ? TRUE : FALSE);
|
2012-11-08 03:23:25 +04:00
|
|
|
settings->RemoteConsoleAudio = ((flags & INFO_REMOTECONSOLEAUDIO) ? TRUE : FALSE);
|
|
|
|
settings->CompressionEnabled = ((flags & INFO_COMPRESSION) ? TRUE : FALSE);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-03-10 19:16:36 +04:00
|
|
|
if (flags & INFO_COMPRESSION)
|
|
|
|
{
|
|
|
|
CompressionLevel = ((flags & 0x00001E00) >> 9);
|
|
|
|
settings->CompressionLevel = CompressionLevel;
|
|
|
|
}
|
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT16(s, cbDomain); /* cbDomain */
|
|
|
|
Stream_Read_UINT16(s, cbUserName); /* cbUserName */
|
|
|
|
Stream_Read_UINT16(s, cbPassword); /* cbPassword */
|
|
|
|
Stream_Read_UINT16(s, cbAlternateShell); /* cbAlternateShell */
|
|
|
|
Stream_Read_UINT16(s, cbWorkingDir); /* cbWorkingDir */
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-02-11 07:12:13 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (size_t) (cbDomain + 2))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
if (cbDomain > 0)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbDomain / 2, &settings->Domain, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbDomain);
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 2);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-02-11 07:12:13 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (size_t) (cbUserName + 2))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
if (cbUserName > 0)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbUserName / 2, &settings->Username, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbUserName);
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 2);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-02-11 07:12:13 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (size_t) (cbPassword + 2))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
if (cbPassword > 0)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbPassword / 2, &settings->Password, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbPassword);
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 2);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-02-11 07:12:13 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (size_t) (cbAlternateShell + 2))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
if (cbAlternateShell > 0)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbAlternateShell / 2, &settings->AlternateShell, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbAlternateShell);
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 2);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2014-02-11 07:12:13 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (size_t) (cbWorkingDir + 2))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-09-24 04:11:50 +04:00
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
if (cbWorkingDir > 0)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
ConvertFromUnicode(CP_UTF8, 0, (WCHAR*) Stream_Pointer(s), cbWorkingDir / 2, &settings->ShellWorkingDirectory, 0, NULL, NULL);
|
|
|
|
Stream_Seek(s, cbWorkingDir);
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 2);
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2012-11-07 19:33:06 +04:00
|
|
|
if (settings->RdpVersion >= 5)
|
2011-08-20 14:22:14 +04:00
|
|
|
return rdp_read_extended_info_packet(s, settings); /* extraInfo */
|
|
|
|
|
2012-10-09 10:31:28 +04:00
|
|
|
return TRUE;
|
2011-08-20 14:22:14 +04:00
|
|
|
}
|
|
|
|
|
2011-07-12 02:46:36 +04:00
|
|
|
/**
|
|
|
|
* Write Info Packet (TS_INFO_PACKET).\n
|
|
|
|
* @msdn{cc240475}
|
|
|
|
* @param s stream
|
|
|
|
* @param settings settings
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
void rdp_write_info_packet(wStream* s, rdpSettings* settings)
|
2011-07-12 02:46:36 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 flags;
|
2014-06-29 02:33:46 +04:00
|
|
|
WCHAR* domainW = NULL;
|
2012-12-17 19:20:25 +04:00
|
|
|
int cbDomain = 0;
|
2014-06-29 02:33:46 +04:00
|
|
|
WCHAR* userNameW = NULL;
|
2012-12-17 19:20:25 +04:00
|
|
|
int cbUserName = 0;
|
2014-06-29 02:33:46 +04:00
|
|
|
WCHAR* passwordW = NULL;
|
2012-12-17 19:20:25 +04:00
|
|
|
int cbPassword = 0;
|
2014-06-29 02:33:46 +04:00
|
|
|
WCHAR* alternateShellW = NULL;
|
2012-12-17 19:20:25 +04:00
|
|
|
int cbAlternateShell = 0;
|
2014-06-29 02:33:46 +04:00
|
|
|
WCHAR* workingDirW = NULL;
|
2012-12-17 19:20:25 +04:00
|
|
|
int cbWorkingDir = 0;
|
2012-10-09 10:38:39 +04:00
|
|
|
BOOL usedPasswordCookie = FALSE;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
flags = INFO_MOUSE |
|
|
|
|
INFO_UNICODE |
|
|
|
|
INFO_LOGONERRORS |
|
|
|
|
INFO_LOGONNOTIFY |
|
|
|
|
INFO_MAXIMIZESHELL |
|
|
|
|
INFO_ENABLEWINDOWSKEY |
|
2012-03-13 13:05:14 +04:00
|
|
|
INFO_DISABLECTRLALTDEL;
|
|
|
|
|
2012-11-08 00:13:14 +04:00
|
|
|
if (settings->AudioCapture)
|
2013-10-10 06:38:26 +04:00
|
|
|
flags |= INFO_AUDIOCAPTURE;
|
2012-03-13 13:05:14 +04:00
|
|
|
|
2012-11-08 00:13:14 +04:00
|
|
|
if (!settings->AudioPlayback)
|
2012-03-13 13:05:14 +04:00
|
|
|
flags |= INFO_NOAUDIOPLAYBACK;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-10-10 06:38:26 +04:00
|
|
|
if (settings->VideoDisable)
|
|
|
|
flags |= INFO_VIDEO_DISABLE;
|
|
|
|
|
2012-11-08 03:23:25 +04:00
|
|
|
if (settings->AutoLogonEnabled)
|
2011-07-12 02:46:36 +04:00
|
|
|
flags |= INFO_AUTOLOGON;
|
|
|
|
|
2012-11-08 00:13:14 +04:00
|
|
|
if (settings->RemoteApplicationMode)
|
2011-08-08 23:06:07 +04:00
|
|
|
flags |= INFO_RAIL;
|
|
|
|
|
2012-11-08 03:23:25 +04:00
|
|
|
if (settings->RemoteConsoleAudio)
|
2011-07-12 02:46:36 +04:00
|
|
|
flags |= INFO_REMOTECONSOLEAUDIO;
|
|
|
|
|
2014-07-29 00:47:42 +04:00
|
|
|
if (settings->HiDefRemoteApp)
|
|
|
|
flags |= INFO_HIDEF_RAIL_SUPPORTED;
|
|
|
|
|
2012-11-08 03:23:25 +04:00
|
|
|
if (settings->CompressionEnabled)
|
2014-03-10 19:16:36 +04:00
|
|
|
{
|
|
|
|
flags |= INFO_COMPRESSION;
|
|
|
|
flags |= ((settings->CompressionLevel << 9) & 0x00001E00);
|
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2012-11-08 00:13:14 +04:00
|
|
|
if (settings->Domain)
|
2012-09-24 03:49:13 +04:00
|
|
|
{
|
2014-06-29 02:33:46 +04:00
|
|
|
cbDomain = ConvertToUnicode(CP_UTF8, 0, settings->Domain, -1, &domainW, 0) * 2;
|
2012-09-24 03:49:13 +04:00
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
2014-06-29 02:33:46 +04:00
|
|
|
domainW = NULL;
|
2012-09-24 03:49:13 +04:00
|
|
|
cbDomain = 0;
|
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2014-06-29 02:33:46 +04:00
|
|
|
if (!settings->RemoteAssistanceMode)
|
|
|
|
{
|
|
|
|
cbUserName = ConvertToUnicode(CP_UTF8, 0, settings->Username, -1, &userNameW, 0) * 2;
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* user name provided by the expert for connecting to the novice computer */
|
|
|
|
cbUserName = ConvertToUnicode(CP_UTF8, 0, settings->Username, -1, &userNameW, 0) * 2;
|
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2014-06-29 02:33:46 +04:00
|
|
|
if (!settings->RemoteAssistanceMode)
|
2012-01-31 05:54:46 +04:00
|
|
|
{
|
2014-06-29 02:33:46 +04:00
|
|
|
if (settings->RedirectionPassword && settings->RedirectionPasswordLength > 0)
|
|
|
|
{
|
|
|
|
usedPasswordCookie = TRUE;
|
|
|
|
passwordW = (WCHAR*) settings->RedirectionPassword;
|
|
|
|
cbPassword = settings->RedirectionPasswordLength - 2; /* Strip double zero termination */
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
cbPassword = ConvertToUnicode(CP_UTF8, 0, settings->Password, -1, &passwordW, 0) * 2;
|
|
|
|
}
|
2012-01-31 05:54:46 +04:00
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
2014-06-29 02:33:46 +04:00
|
|
|
/* This field MUST be filled with "*" */
|
|
|
|
cbPassword = ConvertToUnicode(CP_UTF8, 0, "*", -1, &passwordW, 0) * 2;
|
2012-01-31 05:54:46 +04:00
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2014-06-29 02:33:46 +04:00
|
|
|
if (!settings->RemoteAssistanceMode)
|
|
|
|
{
|
|
|
|
cbAlternateShell = ConvertToUnicode(CP_UTF8, 0, settings->AlternateShell, -1, &alternateShellW, 0) * 2;
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
2014-08-15 22:15:53 +04:00
|
|
|
if (settings->RemoteAssistancePassStub)
|
|
|
|
{
|
|
|
|
/* This field MUST be filled with "*" */
|
|
|
|
cbAlternateShell = ConvertToUnicode(CP_UTF8, 0, "*", -1, &alternateShellW, 0) * 2;
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* This field must contain the remote assistance password */
|
|
|
|
cbAlternateShell = ConvertToUnicode(CP_UTF8, 0, settings->RemoteAssistancePassword, -1, &alternateShellW, 0) * 2;
|
|
|
|
}
|
2014-06-29 02:33:46 +04:00
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2014-06-29 02:33:46 +04:00
|
|
|
if (!settings->RemoteAssistanceMode)
|
|
|
|
{
|
|
|
|
cbWorkingDir = ConvertToUnicode(CP_UTF8, 0, settings->ShellWorkingDirectory, -1, &workingDirW, 0) * 2;
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
/* Remote Assistance Session Id */
|
|
|
|
cbWorkingDir = ConvertToUnicode(CP_UTF8, 0, settings->RemoteAssistanceSessionId, -1, &workingDirW, 0) * 2;
|
|
|
|
}
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT32(s, 0); /* CodePage */
|
|
|
|
Stream_Write_UINT32(s, flags); /* flags */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, cbDomain); /* cbDomain */
|
|
|
|
Stream_Write_UINT16(s, cbUserName); /* cbUserName */
|
|
|
|
Stream_Write_UINT16(s, cbPassword); /* cbPassword */
|
|
|
|
Stream_Write_UINT16(s, cbAlternateShell); /* cbAlternateShell */
|
|
|
|
Stream_Write_UINT16(s, cbWorkingDir); /* cbWorkingDir */
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbDomain > 0)
|
2014-06-29 02:33:46 +04:00
|
|
|
Stream_Write(s, domainW, cbDomain);
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbUserName > 0)
|
2014-06-29 02:33:46 +04:00
|
|
|
Stream_Write(s, userNameW, cbUserName);
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbPassword > 0)
|
2014-06-29 02:33:46 +04:00
|
|
|
Stream_Write(s, passwordW, cbPassword);
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbAlternateShell > 0)
|
2014-06-29 02:33:46 +04:00
|
|
|
Stream_Write(s, alternateShellW, cbAlternateShell);
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
|
|
|
if (cbWorkingDir > 0)
|
2014-06-29 02:33:46 +04:00
|
|
|
Stream_Write(s, workingDirW, cbWorkingDir);
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Write_UINT16(s, 0);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2014-06-29 02:33:46 +04:00
|
|
|
free(domainW);
|
|
|
|
free(userNameW);
|
|
|
|
free(alternateShellW);
|
|
|
|
free(workingDirW);
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2012-02-01 20:58:06 +04:00
|
|
|
if (!usedPasswordCookie)
|
2014-06-29 02:33:46 +04:00
|
|
|
free(passwordW);
|
2012-02-01 20:58:06 +04:00
|
|
|
|
2012-11-07 19:33:06 +04:00
|
|
|
if (settings->RdpVersion >= 5)
|
2011-07-12 02:46:36 +04:00
|
|
|
rdp_write_extended_info_packet(s, settings); /* extraInfo */
|
|
|
|
}
|
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
/**
|
|
|
|
* Read Client Info PDU (CLIENT_INFO_PDU).\n
|
|
|
|
* @msdn{cc240474}
|
|
|
|
* @param rdp RDP module
|
|
|
|
* @param s stream
|
|
|
|
*/
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_client_info(rdpRdp* rdp, wStream* s)
|
2011-08-20 14:22:14 +04:00
|
|
|
{
|
2012-10-09 11:01:37 +04:00
|
|
|
UINT16 length;
|
|
|
|
UINT16 channelId;
|
|
|
|
UINT16 securityFlags;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
|
|
|
if (!rdp_read_header(rdp, s, &length, &channelId))
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
2013-01-15 02:40:34 +04:00
|
|
|
if (!rdp_read_security_header(s, &securityFlags))
|
|
|
|
return FALSE;
|
|
|
|
|
2012-01-25 19:30:54 +04:00
|
|
|
if ((securityFlags & SEC_INFO_PKT) == 0)
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2011-08-20 14:22:14 +04:00
|
|
|
|
Standard RDP Security Layer Levels/Method Overhaul
[MS-RDPBCGR] Section 5.3 describes the encryption level and method values for
standard RDP security.
Looking at the current usage of these values in the FreeRDP code gives me
reason to believe that there is a certain lack of understanding of how these
values should be handled.
The encryption level is only configured on the server side in the "Encryption
Level" setting found in the Remote Desktop Session Host Configuration RDP-Tcp
properties dialog and this value is never transferred from the client to the
server over the wire.
The possible options are "None", "Low", "Client Compatible", "High" and
"FIPS Compliant". The client receices this value in the Server Security Data
block (TS_UD_SC_SEC1), probably only for informational purposes and maybe to
give the client the possibility to verify if the server's decision for the
encryption method confirms to the server's encryption level.
The possible encryption methods are "NONE", "40BIT", "56BIT", "128BIT" and
"FIPS" and the RDP client advertises the ones it supports to the server in the
Client Security Data block (TS_UD_CS_SEC).
The server's configured encryption level value restricts the possible final
encryption method.
Something that I was not able to find in the documentation is the priority
level of the individual encryption methods based on which the server makes its
final method decision if there are several options.
My analysis with Windows Servers reveiled that the order is 128, 56, 40, FIPS.
The server only chooses FIPS if the level is "FIPS Comliant" or if it is the
only method advertised by the client.
Bottom line:
* FreeRDP's client side does not need to set settings->EncryptionLevel
(which was done quite frequently).
* FreeRDP's server side does not have to set the supported encryption methods
list in settings->EncryptionMethods
Changes in this commit:
Removed unnecessary/confusing changes of EncryptionLevel/Methods settings
Refactor settings->DisableEncryption
* This value actually means "Advanced RDP Encryption (NLA/TLS) is NOT used"
* The old name caused lots of confusion among developers
* Renamed it to "UseRdpSecurityLayer" (the compare logic stays untouched)
Any client's setting of settings->EncryptionMethods were annihilated
* All clients "want" to set all supported methods
* Some clients forgot 56bit because 56bit was not supported at the time the
code was written
* settings->EncryptionMethods was overwritten anyways in nego_connect()
* Removed all client side settings of settings->EncryptionMethods
The default is "None" (0)
* Changed nego_connect() to advertise all supported methods if
settings->EncryptionMethods is 0 (None)
* Added a commandline option /encryption-methods:comma separated list of the
values "40", "56", "128", "FIPS". E.g. /encryption-methods:56,128
* Print warning if server chooses non-advertised method
Verify received level and method in client's gcc_read_server_security_data
* Only accept valid/known encryption methods
* Verify encryption level/method combinations according to MS-RDPBCGR 5.3.2
Server implementations can now set settings->EncryptionLevel
* The default for settings->EncryptionLevel is 0 (None)
* nego_send_negotiation_response() changes it to ClientCompatible in that case
* default to ClientCompatible if the server implementation set an invalid level
Fix server's gcc_write_server_security_data
* Verify server encryption level value set by server implementations
* Choose rdp encryption method based on level and supported client methods
* Moved FIPS to the lowest priority (only used if other methods are possible)
Updated sample server
* Support RDP Security (RdpKeyFile was not set)
* Added commented sample code for setting the security level
2014-12-12 04:17:12 +03:00
|
|
|
if (rdp->settings->UseRdpSecurityLayer)
|
2012-01-25 19:30:54 +04:00
|
|
|
{
|
|
|
|
if (securityFlags & SEC_REDIRECTION_PKT)
|
|
|
|
{
|
2014-09-12 16:36:29 +04:00
|
|
|
WLog_ERR(TAG, "Error: SEC_REDIRECTION_PKT unsupported");
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-01-25 19:30:54 +04:00
|
|
|
}
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2012-01-25 19:30:54 +04:00
|
|
|
if (securityFlags & SEC_ENCRYPT)
|
|
|
|
{
|
|
|
|
if (!rdp_decrypt(rdp, s, length - 4, securityFlags))
|
|
|
|
{
|
2014-09-12 16:36:29 +04:00
|
|
|
WLog_ERR(TAG, "rdp_decrypt failed");
|
2012-10-09 10:31:28 +04:00
|
|
|
return FALSE;
|
2012-01-25 19:30:54 +04:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2011-08-20 14:22:14 +04:00
|
|
|
return rdp_read_info_packet(s, rdp->settings);
|
|
|
|
}
|
|
|
|
|
2011-07-12 02:46:36 +04:00
|
|
|
/**
|
|
|
|
* Send Client Info PDU (CLIENT_INFO_PDU).\n
|
|
|
|
* @msdn{cc240474}
|
|
|
|
* @param rdp RDP module
|
|
|
|
*/
|
|
|
|
|
2012-10-09 10:38:39 +04:00
|
|
|
BOOL rdp_send_client_info(rdpRdp* rdp)
|
2011-07-12 02:46:36 +04:00
|
|
|
{
|
2013-03-21 23:19:33 +04:00
|
|
|
wStream* s;
|
2013-05-15 23:54:33 +04:00
|
|
|
BOOL status;
|
2011-07-12 02:46:36 +04:00
|
|
|
|
2011-09-13 10:40:27 +04:00
|
|
|
rdp->sec_flags |= SEC_INFO_PKT;
|
2013-05-15 23:54:33 +04:00
|
|
|
|
|
|
|
s = Stream_New(NULL, 2048);
|
|
|
|
rdp_init_stream(rdp, s);
|
|
|
|
|
2011-07-12 02:46:36 +04:00
|
|
|
rdp_write_info_packet(s, rdp->settings);
|
2013-05-15 23:54:33 +04:00
|
|
|
|
|
|
|
status = rdp_send(rdp, s, MCS_GLOBAL_CHANNEL_ID);
|
|
|
|
|
|
|
|
Stream_Free(s, TRUE);
|
|
|
|
|
|
|
|
return status;
|
2011-07-12 02:46:36 +04:00
|
|
|
}
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_logon_info_v1(rdpRdp* rdp, wStream* s)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 cbDomain;
|
|
|
|
UINT32 cbUserName;
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (4 + 52 + 4 + 512 + 4))
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, cbDomain); /* cbDomain (4 bytes) */
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 52); /* domain (52 bytes) */
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, cbUserName); /* cbUserName (4 bytes) */
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 512); /* userName (512 bytes) */
|
|
|
|
Stream_Seek_UINT32(s); /* sessionId (4 bytes) */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-01-11 04:18:11 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_logon_info_v2(rdpRdp* rdp, wStream* s)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 cbDomain;
|
|
|
|
UINT32 cbUserName;
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < (2 + 4 + 4 + 4 + 4 + 558))
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek_UINT16(s); /* version (2 bytes) */
|
|
|
|
Stream_Seek_UINT32(s); /* size (4 bytes) */
|
|
|
|
Stream_Seek_UINT32(s); /* sessionId (4 bytes) */
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, cbDomain); /* cbDomain (4 bytes) */
|
|
|
|
Stream_Read_UINT32(s, cbUserName); /* cbUserName (4 bytes) */
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 558); /* pad */
|
2013-01-11 04:18:11 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < cbDomain+cbUserName)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, cbDomain); /* domain */
|
|
|
|
Stream_Seek(s, cbUserName); /* userName */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-01-11 04:18:11 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_logon_plain_notify(rdpRdp* rdp, wStream* s)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 576)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 576); /* pad */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-01-11 04:18:11 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_logon_error_info(rdpRdp* rdp, wStream* s)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 errorNotificationData;
|
2013-03-29 06:26:28 +04:00
|
|
|
UINT32 errorNotificationType;
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 4)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, errorNotificationData); /* errorNotificationData (4 bytes) */
|
|
|
|
Stream_Read_UINT32(s, errorNotificationType); /* errorNotificationType (4 bytes) */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
|
|
|
IFCALL(rdp->instance->LogonErrorInfo, rdp->instance, errorNotificationData, errorNotificationType);
|
|
|
|
|
2013-01-11 04:18:11 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_logon_info_extended(rdpRdp* rdp, wStream* s)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 cbFieldData;
|
|
|
|
UINT32 fieldsPresent;
|
2012-10-09 11:01:37 +04:00
|
|
|
UINT16 Length;
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 6)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT16(s, Length); /* The total size in bytes of this structure */
|
|
|
|
Stream_Read_UINT32(s, fieldsPresent); /* fieldsPresent (4 bytes) */
|
2011-07-25 21:42:14 +04:00
|
|
|
|
|
|
|
/* logonFields */
|
|
|
|
|
|
|
|
if (fieldsPresent & LOGON_EX_AUTORECONNECTCOOKIE)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 4)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, cbFieldData); /* cbFieldData (4 bytes) */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
|
|
|
if (rdp_read_server_auto_reconnect_cookie(s, rdp->settings) == FALSE)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
|
|
|
if (fieldsPresent & LOGON_EX_LOGONERRORS)
|
|
|
|
{
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 4)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, cbFieldData); /* cbFieldData (4 bytes) */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
|
|
|
if (rdp_recv_logon_error_info(rdp, s) == FALSE)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 570)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
Stream_Seek(s, 570); /* pad */
|
2013-03-29 06:26:28 +04:00
|
|
|
|
2013-01-11 04:18:11 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|
2013-03-21 23:19:33 +04:00
|
|
|
BOOL rdp_recv_save_session_info(rdpRdp* rdp, wStream* s)
|
2011-07-25 21:42:14 +04:00
|
|
|
{
|
2012-10-09 11:26:39 +04:00
|
|
|
UINT32 infoType;
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2013-04-30 06:35:15 +04:00
|
|
|
if (Stream_GetRemainingLength(s) < 4)
|
2013-01-11 04:18:11 +04:00
|
|
|
return FALSE;
|
2013-05-09 00:09:16 +04:00
|
|
|
Stream_Read_UINT32(s, infoType); /* infoType (4 bytes) */
|
2011-07-25 21:42:14 +04:00
|
|
|
|
2015-01-20 13:06:26 +03:00
|
|
|
//WLog_ERR(TAG, "%s", INFO_TYPE_LOGON_STRINGS[infoType]);
|
2011-07-25 21:42:14 +04:00
|
|
|
|
|
|
|
switch (infoType)
|
|
|
|
{
|
|
|
|
case INFO_TYPE_LOGON:
|
2013-01-11 04:18:11 +04:00
|
|
|
return rdp_recv_logon_info_v1(rdp, s);
|
2011-07-25 21:42:14 +04:00
|
|
|
|
|
|
|
case INFO_TYPE_LOGON_LONG:
|
2013-01-11 04:18:11 +04:00
|
|
|
return rdp_recv_logon_info_v2(rdp, s);
|
2011-07-25 21:42:14 +04:00
|
|
|
|
|
|
|
case INFO_TYPE_LOGON_PLAIN_NOTIFY:
|
2013-01-11 04:18:11 +04:00
|
|
|
return rdp_recv_logon_plain_notify(rdp, s);
|
2011-07-25 21:42:14 +04:00
|
|
|
|
|
|
|
case INFO_TYPE_LOGON_EXTENDED_INF:
|
2013-01-11 04:18:11 +04:00
|
|
|
return rdp_recv_logon_info_extended(rdp, s);
|
2011-07-25 21:42:14 +04:00
|
|
|
|
|
|
|
default:
|
|
|
|
break;
|
|
|
|
}
|
2011-08-22 13:49:39 +04:00
|
|
|
|
2012-10-09 10:31:28 +04:00
|
|
|
return TRUE;
|
2011-07-25 21:42:14 +04:00
|
|
|
}
|
|
|
|
|