2023-02-14 18:16:24 +03:00
|
|
|
/**
|
|
|
|
* FreeRDP: A Remote Desktop Protocol Implementation
|
|
|
|
* SDL Client helper dialogs
|
|
|
|
*
|
|
|
|
* Copyright 2023 Armin Novak <armin.novak@thincast.com>
|
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <vector>
|
|
|
|
#include <string>
|
2024-02-13 11:52:47 +03:00
|
|
|
#include <cassert>
|
2023-02-14 18:16:24 +03:00
|
|
|
|
|
|
|
#include <freerdp/log.h>
|
|
|
|
#include <freerdp/utils/smartcardlogon.h>
|
|
|
|
|
|
|
|
#include <SDL.h>
|
|
|
|
|
2023-12-15 17:55:27 +03:00
|
|
|
#include "../sdl_freerdp.hpp"
|
2023-02-14 18:16:24 +03:00
|
|
|
#include "sdl_dialogs.hpp"
|
|
|
|
#include "sdl_input.hpp"
|
|
|
|
#include "sdl_input_widgets.hpp"
|
|
|
|
#include "sdl_select.hpp"
|
|
|
|
#include "sdl_selectlist.hpp"
|
|
|
|
|
|
|
|
#define TAG CLIENT_TAG("SDL.dialogs")
|
|
|
|
|
|
|
|
enum
|
|
|
|
{
|
|
|
|
SHOW_DIALOG_ACCEPT_REJECT = 1,
|
|
|
|
SHOW_DIALOG_TIMED_ACCEPT = 2
|
|
|
|
};
|
|
|
|
|
|
|
|
static const char* type_str_for_flags(UINT32 flags)
|
|
|
|
{
|
|
|
|
const char* type = "RDP-Server";
|
|
|
|
|
|
|
|
if (flags & VERIFY_CERT_FLAG_GATEWAY)
|
|
|
|
type = "RDP-Gateway";
|
|
|
|
|
|
|
|
if (flags & VERIFY_CERT_FLAG_REDIRECT)
|
|
|
|
type = "RDP-Redirect";
|
|
|
|
return type;
|
|
|
|
}
|
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
static BOOL sdl_wait_for_result(rdpContext* context, Uint32 type, SDL_Event* result)
|
2023-02-14 18:16:24 +03:00
|
|
|
{
|
2023-12-15 10:50:40 +03:00
|
|
|
const SDL_Event empty = { 0 };
|
|
|
|
|
|
|
|
WINPR_ASSERT(context);
|
|
|
|
WINPR_ASSERT(result);
|
2023-02-14 18:16:24 +03:00
|
|
|
|
|
|
|
while (!freerdp_shall_disconnect_context(context))
|
|
|
|
{
|
2023-12-15 10:50:40 +03:00
|
|
|
*result = empty;
|
|
|
|
const int rc = SDL_PeepEvents(result, 1, SDL_GETEVENT, type, type);
|
2023-02-14 18:16:24 +03:00
|
|
|
if (rc > 0)
|
2023-12-15 10:50:40 +03:00
|
|
|
return TRUE;
|
2023-02-14 18:16:24 +03:00
|
|
|
Sleep(1);
|
|
|
|
}
|
2023-12-15 10:50:40 +03:00
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
|
|
|
|
static int sdl_show_dialog(rdpContext* context, const char* title, const char* message,
|
|
|
|
Sint32 flags)
|
|
|
|
{
|
|
|
|
SDL_Event event = { 0 };
|
|
|
|
|
|
|
|
if (!sdl_push_user_event(SDL_USEREVENT_SHOW_DIALOG, title, message, flags))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
if (!sdl_wait_for_result(context, SDL_USEREVENT_SHOW_RESULT, &event))
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
return event.user.code;
|
2023-02-14 18:16:24 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
BOOL sdl_authenticate_ex(freerdp* instance, char** username, char** password, char** domain,
|
|
|
|
rdp_auth_reason reason)
|
|
|
|
{
|
2023-12-15 10:50:40 +03:00
|
|
|
SDL_Event event = { 0 };
|
2023-02-14 18:16:24 +03:00
|
|
|
BOOL res = FALSE;
|
|
|
|
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(instance);
|
|
|
|
|
2023-02-14 18:16:24 +03:00
|
|
|
const char* target = freerdp_settings_get_server_name(instance->context->settings);
|
|
|
|
switch (reason)
|
|
|
|
{
|
2023-12-19 15:11:03 +03:00
|
|
|
case AUTH_NLA:
|
|
|
|
break;
|
|
|
|
|
|
|
|
case AUTH_TLS:
|
|
|
|
case AUTH_RDP:
|
|
|
|
case AUTH_SMARTCARD_PIN: /* in this case password is pin code */
|
|
|
|
if ((*username) && (*password))
|
|
|
|
return TRUE;
|
|
|
|
break;
|
2023-02-14 18:16:24 +03:00
|
|
|
case GW_AUTH_HTTP:
|
|
|
|
case GW_AUTH_RDG:
|
|
|
|
case GW_AUTH_RPC:
|
|
|
|
target =
|
|
|
|
freerdp_settings_get_string(instance->context->settings, FreeRDP_GatewayHostname);
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
char* title = nullptr;
|
|
|
|
size_t titlesize = 0;
|
|
|
|
winpr_asprintf(&title, &titlesize, "Credentials required for %s", target);
|
|
|
|
|
|
|
|
char* u = nullptr;
|
|
|
|
char* d = nullptr;
|
|
|
|
char* p = nullptr;
|
|
|
|
|
2023-07-28 11:57:55 +03:00
|
|
|
assert(username);
|
|
|
|
assert(domain);
|
|
|
|
assert(password);
|
|
|
|
|
|
|
|
u = *username;
|
|
|
|
d = *domain;
|
|
|
|
p = *password;
|
|
|
|
|
2023-02-14 18:16:24 +03:00
|
|
|
if (!sdl_push_user_event(SDL_USEREVENT_AUTH_DIALOG, title, u, d, p, reason))
|
|
|
|
goto fail;
|
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
if (!sdl_wait_for_result(instance->context, SDL_USEREVENT_AUTH_RESULT, &event))
|
|
|
|
goto fail;
|
|
|
|
else
|
2023-02-14 18:16:24 +03:00
|
|
|
{
|
2024-02-13 11:52:47 +03:00
|
|
|
auto arg = reinterpret_cast<SDL_UserAuthArg*>(event.padding);
|
2023-02-14 18:16:24 +03:00
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
res = arg->result > 0 ? TRUE : FALSE;
|
2023-02-14 18:16:24 +03:00
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
free(*username);
|
|
|
|
free(*domain);
|
|
|
|
free(*password);
|
|
|
|
*username = arg->user;
|
|
|
|
*domain = arg->domain;
|
|
|
|
*password = arg->password;
|
2023-02-14 18:16:24 +03:00
|
|
|
}
|
2023-12-15 10:50:40 +03:00
|
|
|
|
2023-02-14 18:16:24 +03:00
|
|
|
fail:
|
|
|
|
free(title);
|
|
|
|
return res;
|
|
|
|
}
|
|
|
|
|
|
|
|
BOOL sdl_choose_smartcard(freerdp* instance, SmartcardCertInfo** cert_list, DWORD count,
|
|
|
|
DWORD* choice, BOOL gateway)
|
|
|
|
{
|
|
|
|
BOOL res = FALSE;
|
|
|
|
|
2023-12-16 12:51:10 +03:00
|
|
|
WINPR_ASSERT(instance);
|
|
|
|
WINPR_ASSERT(cert_list);
|
|
|
|
WINPR_ASSERT(choice);
|
|
|
|
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(instance);
|
2023-02-14 18:16:24 +03:00
|
|
|
std::vector<std::string> strlist;
|
|
|
|
std::vector<const char*> list;
|
|
|
|
for (DWORD i = 0; i < count; i++)
|
|
|
|
{
|
|
|
|
const SmartcardCertInfo* cert = cert_list[i];
|
|
|
|
char* reader = ConvertWCharToUtf8Alloc(cert->reader, nullptr);
|
|
|
|
char* container_name = ConvertWCharToUtf8Alloc(cert->containerName, nullptr);
|
|
|
|
|
|
|
|
char* msg = nullptr;
|
|
|
|
size_t len = 0;
|
|
|
|
|
|
|
|
winpr_asprintf(&msg, &len,
|
|
|
|
"%s\n\tReader: %s\n\tUser: %s@%s\n\tSubject: %s\n\tIssuer: %s\n\tUPN: %s",
|
|
|
|
container_name, reader, cert->userHint, cert->domainHint, cert->subject,
|
|
|
|
cert->issuer, cert->upn);
|
|
|
|
|
2024-02-13 11:52:47 +03:00
|
|
|
strlist.emplace_back(msg);
|
2023-02-14 18:16:24 +03:00
|
|
|
free(msg);
|
|
|
|
free(reader);
|
|
|
|
free(container_name);
|
|
|
|
|
2023-12-16 12:51:10 +03:00
|
|
|
auto& m = strlist.back();
|
2023-02-14 18:16:24 +03:00
|
|
|
list.push_back(m.c_str());
|
|
|
|
}
|
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
SDL_Event event = { 0 };
|
2023-02-14 18:16:24 +03:00
|
|
|
const char* title = "Select a logon smartcard certificate";
|
|
|
|
if (gateway)
|
|
|
|
title = "Select a gateway logon smartcard certificate";
|
|
|
|
if (!sdl_push_user_event(SDL_USEREVENT_SCARD_DIALOG, title, list.data(), count))
|
|
|
|
goto fail;
|
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
if (!sdl_wait_for_result(instance->context, SDL_USEREVENT_SCARD_RESULT, &event))
|
|
|
|
goto fail;
|
|
|
|
|
|
|
|
res = (event.user.code >= 0) ? TRUE : FALSE;
|
|
|
|
*choice = static_cast<DWORD>(event.user.code);
|
2023-02-14 18:16:24 +03:00
|
|
|
|
|
|
|
fail:
|
|
|
|
return res;
|
|
|
|
}
|
|
|
|
|
2023-12-15 17:55:27 +03:00
|
|
|
SSIZE_T sdl_retry_dialog(freerdp* instance, const char* what, size_t current, void* userarg)
|
|
|
|
{
|
|
|
|
WINPR_ASSERT(instance);
|
|
|
|
WINPR_ASSERT(instance->context);
|
|
|
|
WINPR_ASSERT(what);
|
|
|
|
|
|
|
|
auto sdl = get_context(instance->context);
|
2023-12-19 22:21:44 +03:00
|
|
|
std::lock_guard<CriticalSection> lock(sdl->critical);
|
2023-12-15 17:55:27 +03:00
|
|
|
WINPR_ASSERT(sdl->connection_dialog);
|
|
|
|
|
|
|
|
sdl->connection_dialog->setTitle("Retry connection to %s",
|
|
|
|
freerdp_settings_get_server_name(instance->context->settings));
|
|
|
|
|
|
|
|
if ((strcmp(what, "arm-transport") != 0) && (strcmp(what, "connection") != 0))
|
|
|
|
{
|
|
|
|
sdl->connection_dialog->showError("Unknown module %s, aborting", what);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (current == 0)
|
|
|
|
{
|
|
|
|
if (strcmp(what, "arm-transport") == 0)
|
|
|
|
sdl->connection_dialog->showWarn("[%s] Starting your VM. It may take up to 5 minutes",
|
|
|
|
what);
|
|
|
|
}
|
|
|
|
|
|
|
|
auto settings = instance->context->settings;
|
|
|
|
const BOOL enabled = freerdp_settings_get_bool(settings, FreeRDP_AutoReconnectionEnabled);
|
|
|
|
|
|
|
|
if (!enabled)
|
|
|
|
{
|
|
|
|
sdl->connection_dialog->showError(
|
|
|
|
"Automatic reconnection disabled, terminating. Try to connect again later");
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
const size_t max = freerdp_settings_get_uint32(settings, FreeRDP_AutoReconnectMaxRetries);
|
|
|
|
const size_t delay = freerdp_settings_get_uint32(settings, FreeRDP_TcpConnectTimeout);
|
|
|
|
if (current >= max)
|
|
|
|
{
|
|
|
|
sdl->connection_dialog->showError(
|
|
|
|
"[%s] retries exceeded. Your VM failed to start. Try again later or contact your "
|
|
|
|
"tech support for help if this keeps happening.",
|
|
|
|
what);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
sdl->connection_dialog->showInfo("[%s] retry %" PRIuz "/%" PRIuz ", delaying %" PRIuz
|
|
|
|
"ms before next attempt",
|
|
|
|
what, current, max, delay);
|
|
|
|
return delay;
|
|
|
|
}
|
|
|
|
|
2023-02-14 18:16:24 +03:00
|
|
|
BOOL sdl_present_gateway_message(freerdp* instance, UINT32 type, BOOL isDisplayMandatory,
|
|
|
|
BOOL isConsentMandatory, size_t length, const WCHAR* wmessage)
|
|
|
|
{
|
|
|
|
if (!isDisplayMandatory)
|
|
|
|
return TRUE;
|
|
|
|
|
|
|
|
char* title = nullptr;
|
|
|
|
size_t len = 0;
|
|
|
|
winpr_asprintf(&title, &len, "[gateway]");
|
|
|
|
|
|
|
|
Sint32 flags = 0;
|
|
|
|
if (isConsentMandatory)
|
|
|
|
flags = SHOW_DIALOG_ACCEPT_REJECT;
|
|
|
|
else if (isDisplayMandatory)
|
|
|
|
flags = SHOW_DIALOG_TIMED_ACCEPT;
|
|
|
|
char* message = ConvertWCharNToUtf8Alloc(wmessage, length, nullptr);
|
|
|
|
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(instance);
|
2023-02-14 18:16:24 +03:00
|
|
|
const int rc = sdl_show_dialog(instance->context, title, message, flags);
|
|
|
|
free(title);
|
|
|
|
free(message);
|
|
|
|
return rc > 0 ? TRUE : FALSE;
|
|
|
|
}
|
|
|
|
|
|
|
|
int sdl_logon_error_info(freerdp* instance, UINT32 data, UINT32 type)
|
|
|
|
{
|
|
|
|
int rc = -1;
|
|
|
|
const char* str_data = freerdp_get_logon_error_info_data(data);
|
|
|
|
const char* str_type = freerdp_get_logon_error_info_type(type);
|
|
|
|
|
|
|
|
if (!instance || !instance->context)
|
|
|
|
return -1;
|
|
|
|
|
2023-11-02 18:50:53 +03:00
|
|
|
/* ignore LOGON_MSG_SESSION_CONTINUE message */
|
|
|
|
if (type == LOGON_MSG_SESSION_CONTINUE)
|
|
|
|
return 0;
|
|
|
|
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(instance);
|
|
|
|
|
2023-02-14 18:16:24 +03:00
|
|
|
char* title = nullptr;
|
|
|
|
size_t tlen = 0;
|
|
|
|
winpr_asprintf(&title, &tlen, "[%s] info",
|
|
|
|
freerdp_settings_get_server_name(instance->context->settings));
|
|
|
|
|
|
|
|
char* message = nullptr;
|
|
|
|
size_t mlen = 0;
|
|
|
|
winpr_asprintf(&message, &mlen, "Logon Error Info %s [%s]", str_data, str_type);
|
|
|
|
|
|
|
|
rc = sdl_show_dialog(instance->context, title, message, SHOW_DIALOG_ACCEPT_REJECT);
|
|
|
|
free(title);
|
|
|
|
free(message);
|
|
|
|
return rc;
|
|
|
|
}
|
|
|
|
|
|
|
|
static DWORD sdl_show_ceritifcate_dialog(rdpContext* context, const char* title,
|
|
|
|
const char* message)
|
|
|
|
{
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(context);
|
2023-02-14 18:16:24 +03:00
|
|
|
if (!sdl_push_user_event(SDL_USEREVENT_CERT_DIALOG, title, message))
|
|
|
|
return 0;
|
|
|
|
|
2023-12-15 10:50:40 +03:00
|
|
|
SDL_Event event = { 0 };
|
|
|
|
if (!sdl_wait_for_result(context, SDL_USEREVENT_CERT_RESULT, &event))
|
|
|
|
return 0;
|
|
|
|
return static_cast<DWORD>(event.user.code);
|
2023-02-14 18:16:24 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
DWORD sdl_verify_changed_certificate_ex(freerdp* instance, const char* host, UINT16 port,
|
|
|
|
const char* common_name, const char* subject,
|
|
|
|
const char* issuer, const char* new_fingerprint,
|
|
|
|
const char* old_subject, const char* old_issuer,
|
|
|
|
const char* old_fingerprint, DWORD flags)
|
|
|
|
{
|
|
|
|
const char* type = type_str_for_flags(flags);
|
|
|
|
|
|
|
|
WINPR_ASSERT(instance);
|
|
|
|
WINPR_ASSERT(instance->context);
|
|
|
|
WINPR_ASSERT(instance->context->settings);
|
|
|
|
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(instance);
|
2023-02-14 18:16:24 +03:00
|
|
|
/* Newer versions of FreeRDP allow exposing the whole PEM by setting
|
|
|
|
* FreeRDP_CertificateCallbackPreferPEM to TRUE
|
|
|
|
*/
|
|
|
|
char* new_fp_str = nullptr;
|
|
|
|
size_t len = 0;
|
|
|
|
if (flags & VERIFY_CERT_FLAG_FP_IS_PEM)
|
|
|
|
{
|
|
|
|
winpr_asprintf(&new_fp_str, &len,
|
|
|
|
"----------- Certificate --------------\n"
|
|
|
|
"%s\n"
|
|
|
|
"--------------------------------------\n",
|
|
|
|
new_fingerprint);
|
|
|
|
}
|
|
|
|
else
|
|
|
|
winpr_asprintf(&new_fp_str, &len, "Thumbprint: %s\n", new_fingerprint);
|
|
|
|
|
|
|
|
/* Newer versions of FreeRDP allow exposing the whole PEM by setting
|
|
|
|
* FreeRDP_CertificateCallbackPreferPEM to TRUE
|
|
|
|
*/
|
|
|
|
char* old_fp_str = nullptr;
|
|
|
|
size_t olen = 0;
|
|
|
|
if (flags & VERIFY_CERT_FLAG_FP_IS_PEM)
|
|
|
|
{
|
|
|
|
winpr_asprintf(&old_fp_str, &olen,
|
|
|
|
"----------- Certificate --------------\n"
|
|
|
|
"%s\n"
|
|
|
|
"--------------------------------------\n",
|
|
|
|
old_fingerprint);
|
|
|
|
}
|
|
|
|
else
|
|
|
|
winpr_asprintf(&old_fp_str, &olen, "Thumbprint: %s\n", old_fingerprint);
|
|
|
|
|
|
|
|
const char* collission_str = "";
|
|
|
|
if (flags & VERIFY_CERT_FLAG_MATCH_LEGACY_SHA1)
|
|
|
|
{
|
|
|
|
collission_str =
|
|
|
|
"A matching entry with legacy SHA1 was found in local known_hosts2 store.\n"
|
|
|
|
"If you just upgraded from a FreeRDP version before 2.0 this is expected.\n"
|
|
|
|
"The hashing algorithm has been upgraded from SHA1 to SHA256.\n"
|
|
|
|
"All manually accepted certificates must be reconfirmed!\n"
|
|
|
|
"\n";
|
|
|
|
}
|
|
|
|
|
|
|
|
char* title = nullptr;
|
|
|
|
size_t tlen = 0;
|
|
|
|
winpr_asprintf(&title, &tlen, "Certificate for %s:%" PRIu16 " (%s) has changed", host, port,
|
|
|
|
type);
|
|
|
|
|
|
|
|
char* message = nullptr;
|
|
|
|
size_t mlen = 0;
|
|
|
|
winpr_asprintf(&message, &mlen,
|
|
|
|
"New Certificate details:\n"
|
|
|
|
"Common Name: %s\n"
|
|
|
|
"Subject: %s\n"
|
|
|
|
"Issuer: %s\n"
|
|
|
|
"%s\n"
|
|
|
|
"Old Certificate details:\n"
|
|
|
|
"Subject: %s\n"
|
|
|
|
"Issuer: %s\n"
|
|
|
|
"%s\n"
|
|
|
|
"%s\n"
|
|
|
|
"The above X.509 certificate does not match the certificate used for previous "
|
|
|
|
"connections.\n"
|
|
|
|
"This may indicate that the certificate has been tampered with.\n"
|
|
|
|
"Please contact the administrator of the RDP server and clarify.\n",
|
|
|
|
common_name, subject, issuer, new_fp_str, old_subject, old_issuer, old_fp_str,
|
|
|
|
collission_str);
|
|
|
|
|
|
|
|
const DWORD rc = sdl_show_ceritifcate_dialog(instance->context, title, message);
|
|
|
|
free(title);
|
|
|
|
free(message);
|
|
|
|
free(new_fp_str);
|
|
|
|
free(old_fp_str);
|
|
|
|
|
|
|
|
return rc;
|
|
|
|
}
|
|
|
|
|
|
|
|
DWORD sdl_verify_certificate_ex(freerdp* instance, const char* host, UINT16 port,
|
|
|
|
const char* common_name, const char* subject, const char* issuer,
|
|
|
|
const char* fingerprint, DWORD flags)
|
|
|
|
{
|
|
|
|
const char* type = type_str_for_flags(flags);
|
|
|
|
|
|
|
|
/* Newer versions of FreeRDP allow exposing the whole PEM by setting
|
|
|
|
* FreeRDP_CertificateCallbackPreferPEM to TRUE
|
|
|
|
*/
|
|
|
|
char* fp_str = nullptr;
|
|
|
|
size_t len = 0;
|
|
|
|
if (flags & VERIFY_CERT_FLAG_FP_IS_PEM)
|
|
|
|
{
|
|
|
|
winpr_asprintf(&fp_str, &len,
|
|
|
|
"----------- Certificate --------------\n"
|
|
|
|
"%s\n"
|
|
|
|
"--------------------------------------\n",
|
|
|
|
fingerprint);
|
|
|
|
}
|
|
|
|
else
|
|
|
|
winpr_asprintf(&fp_str, &len, "Thumbprint: %s\n", fingerprint);
|
|
|
|
|
|
|
|
char* title = nullptr;
|
|
|
|
size_t tlen = 0;
|
|
|
|
winpr_asprintf(&title, &tlen, "New certificate for %s:%" PRIu16 " (%s)", host, port, type);
|
|
|
|
|
|
|
|
char* message = nullptr;
|
|
|
|
size_t mlen = 0;
|
|
|
|
winpr_asprintf(
|
|
|
|
&message, &mlen,
|
|
|
|
"Common Name: %s\n"
|
|
|
|
"Subject: %s\n"
|
|
|
|
"Issuer: %s\n"
|
|
|
|
"%s\n"
|
|
|
|
"The above X.509 certificate could not be verified, possibly because you do not have\n"
|
|
|
|
"the CA certificate in your certificate store, or the certificate has expired.\n"
|
|
|
|
"Please look at the OpenSSL documentation on how to add a private CA to the store.\n",
|
|
|
|
common_name, subject, issuer, fp_str);
|
|
|
|
|
2023-12-15 23:40:37 +03:00
|
|
|
SDLConnectionDialogHider hider(instance);
|
2023-02-14 18:16:24 +03:00
|
|
|
const DWORD rc = sdl_show_ceritifcate_dialog(instance->context, title, message);
|
|
|
|
free(fp_str);
|
|
|
|
free(title);
|
|
|
|
free(message);
|
|
|
|
return rc;
|
|
|
|
}
|
|
|
|
|
|
|
|
BOOL sdl_cert_dialog_show(const char* title, const char* message)
|
|
|
|
{
|
|
|
|
int buttonid = -1;
|
|
|
|
enum
|
|
|
|
{
|
|
|
|
BUTTONID_CERT_ACCEPT_PERMANENT = 23,
|
|
|
|
BUTTONID_CERT_ACCEPT_TEMPORARY = 24,
|
|
|
|
BUTTONID_CERT_DENY = 25
|
|
|
|
};
|
|
|
|
const SDL_MessageBoxButtonData buttons[] = {
|
|
|
|
{ 0, BUTTONID_CERT_ACCEPT_PERMANENT, "permanent" },
|
|
|
|
{ SDL_MESSAGEBOX_BUTTON_RETURNKEY_DEFAULT, BUTTONID_CERT_ACCEPT_TEMPORARY, "temporary" },
|
|
|
|
{ SDL_MESSAGEBOX_BUTTON_ESCAPEKEY_DEFAULT, BUTTONID_CERT_DENY, "cancel" }
|
|
|
|
};
|
|
|
|
|
|
|
|
const SDL_MessageBoxData data = { SDL_MESSAGEBOX_WARNING, nullptr, title, message,
|
|
|
|
ARRAYSIZE(buttons), buttons, nullptr };
|
|
|
|
const int rc = SDL_ShowMessageBox(&data, &buttonid);
|
|
|
|
|
|
|
|
Sint32 value = -1;
|
|
|
|
if (rc < 0)
|
|
|
|
value = 0;
|
|
|
|
else
|
|
|
|
{
|
|
|
|
switch (buttonid)
|
|
|
|
{
|
|
|
|
case BUTTONID_CERT_ACCEPT_PERMANENT:
|
|
|
|
value = 1;
|
|
|
|
break;
|
|
|
|
case BUTTONID_CERT_ACCEPT_TEMPORARY:
|
|
|
|
value = 2;
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
value = 0;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return sdl_push_user_event(SDL_USEREVENT_CERT_RESULT, value);
|
|
|
|
}
|
|
|
|
|
|
|
|
BOOL sdl_message_dialog_show(const char* title, const char* message, Sint32 flags)
|
|
|
|
{
|
|
|
|
int buttonid = -1;
|
|
|
|
enum
|
|
|
|
{
|
|
|
|
BUTTONID_SHOW_ACCEPT = 24,
|
|
|
|
BUTTONID_SHOW_DENY = 25
|
|
|
|
};
|
|
|
|
const SDL_MessageBoxButtonData buttons[] = {
|
|
|
|
{ SDL_MESSAGEBOX_BUTTON_RETURNKEY_DEFAULT, BUTTONID_SHOW_ACCEPT, "accept" },
|
|
|
|
{ SDL_MESSAGEBOX_BUTTON_ESCAPEKEY_DEFAULT, BUTTONID_SHOW_DENY, "cancel" }
|
|
|
|
};
|
|
|
|
|
|
|
|
const int button_cnt = (flags & SHOW_DIALOG_ACCEPT_REJECT) ? 2 : 1;
|
|
|
|
const SDL_MessageBoxData data = {
|
|
|
|
SDL_MESSAGEBOX_WARNING, nullptr, title, message, button_cnt, buttons, nullptr
|
|
|
|
};
|
|
|
|
const int rc = SDL_ShowMessageBox(&data, &buttonid);
|
|
|
|
|
|
|
|
Sint32 value = -1;
|
|
|
|
if (rc < 0)
|
|
|
|
value = 0;
|
|
|
|
else
|
|
|
|
{
|
|
|
|
switch (buttonid)
|
|
|
|
{
|
|
|
|
case BUTTONID_SHOW_ACCEPT:
|
|
|
|
value = 1;
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
value = 0;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return sdl_push_user_event(SDL_USEREVENT_SHOW_RESULT, value);
|
|
|
|
}
|
|
|
|
|
|
|
|
BOOL sdl_auth_dialog_show(const SDL_UserAuthArg* args)
|
|
|
|
{
|
|
|
|
const std::vector<std::string> auth = { "Username: ", "Domain: ",
|
|
|
|
"Password: " };
|
|
|
|
const std::vector<std::string> authPin = { "Device: ", "PIN: " };
|
|
|
|
const std::vector<std::string> gw = { "GatewayUsername: ", "GatewayDomain: ",
|
|
|
|
"GatewayPassword: " };
|
|
|
|
std::vector<std::string> prompt;
|
|
|
|
Sint32 rc = -1;
|
|
|
|
|
|
|
|
switch (args->result)
|
|
|
|
{
|
|
|
|
case AUTH_SMARTCARD_PIN:
|
|
|
|
prompt = authPin;
|
|
|
|
break;
|
|
|
|
case AUTH_TLS:
|
|
|
|
case AUTH_RDP:
|
|
|
|
case AUTH_NLA:
|
|
|
|
prompt = auth;
|
|
|
|
break;
|
|
|
|
case GW_AUTH_HTTP:
|
|
|
|
case GW_AUTH_RDG:
|
|
|
|
case GW_AUTH_RPC:
|
|
|
|
prompt = gw;
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
std::vector<std::string> result;
|
|
|
|
|
|
|
|
if (!prompt.empty())
|
|
|
|
{
|
|
|
|
std::vector<std::string> initial{ args->user ? args->user : "Smartcard", "" };
|
|
|
|
std::vector<Uint32> flags = { SdlInputWidget::SDL_INPUT_READONLY,
|
|
|
|
SdlInputWidget::SDL_INPUT_MASK };
|
|
|
|
if (args->result != AUTH_SMARTCARD_PIN)
|
|
|
|
{
|
|
|
|
initial = { args->user ? args->user : "", args->domain ? args->domain : "",
|
|
|
|
args->password ? args->password : "" };
|
|
|
|
flags = { 0, 0, SdlInputWidget::SDL_INPUT_MASK };
|
|
|
|
}
|
|
|
|
SdlInputWidgetList ilist(args->title, prompt, initial, flags);
|
|
|
|
rc = ilist.run(result);
|
|
|
|
}
|
|
|
|
|
2023-12-15 05:09:04 +03:00
|
|
|
if ((result.size() < prompt.size()))
|
|
|
|
rc = -1;
|
2023-02-14 18:16:24 +03:00
|
|
|
|
2023-12-15 05:09:04 +03:00
|
|
|
char* user = nullptr;
|
|
|
|
char* domain = nullptr;
|
|
|
|
char* pwd = nullptr;
|
|
|
|
if (rc > 0)
|
|
|
|
{
|
|
|
|
user = _strdup(result[0].c_str());
|
|
|
|
domain = _strdup(result[1].c_str());
|
|
|
|
pwd = _strdup(result[2].c_str());
|
|
|
|
}
|
|
|
|
return sdl_push_user_event(SDL_USEREVENT_AUTH_RESULT, user, domain, pwd, rc);
|
2023-02-14 18:16:24 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
BOOL sdl_scard_dialog_show(const char* title, Sint32 count, const char** list)
|
|
|
|
{
|
|
|
|
std::vector<std::string> vlist;
|
2024-02-13 11:52:47 +03:00
|
|
|
vlist.reserve(count);
|
2023-02-14 18:16:24 +03:00
|
|
|
for (Sint32 x = 0; x < count; x++)
|
2024-02-13 11:52:47 +03:00
|
|
|
vlist.emplace_back(list[x]);
|
2023-02-14 18:16:24 +03:00
|
|
|
SdlSelectList slist(title, vlist);
|
|
|
|
Sint32 value = slist.run();
|
|
|
|
return sdl_push_user_event(SDL_USEREVENT_SCARD_RESULT, value);
|
|
|
|
}
|