2015-06-09 19:03:32 +03:00
|
|
|
/**
|
|
|
|
* FreeRDP: A Remote Desktop Protocol Implementation
|
|
|
|
*
|
|
|
|
* Copyright 2015 Thincast Technologies GmbH
|
|
|
|
* Copyright 2015 Armin Novak <armin.novak@thincast.com>
|
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
* you may not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <winpr/path.h>
|
|
|
|
#include <winpr/file.h>
|
2018-12-03 19:23:55 +03:00
|
|
|
#include <winpr/sysinfo.h>
|
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
#include <freerdp/crypto/certificate.h>
|
|
|
|
|
|
|
|
static int prepare(const char* currentFileV2, const char* legacyFileV2, const char* legacyFile)
|
|
|
|
{
|
2018-12-03 19:23:55 +03:00
|
|
|
char* legacy[] =
|
|
|
|
{
|
|
|
|
"someurl ff:11:22:dd\r\n",
|
|
|
|
"otherurl aa:bb:cc:dd\r",
|
|
|
|
"legacyurl aa:bb:cc:dd\n"
|
2015-06-10 10:15:38 +03:00
|
|
|
};
|
2018-12-03 19:23:55 +03:00
|
|
|
char* hosts[] =
|
|
|
|
{
|
2018-05-11 12:09:54 +03:00
|
|
|
"#somecomment\r\n"
|
|
|
|
"someurl 3389 ff:11:22:dd subject issuer\r\n"
|
|
|
|
" \t#anothercomment\r\n"
|
2018-12-03 19:23:55 +03:00
|
|
|
"otherurl\t3389\taa:bb:cc:dd\tsubject2\tissuer2\r"
|
2015-06-10 10:15:38 +03:00
|
|
|
};
|
|
|
|
FILE* fl = NULL;
|
|
|
|
FILE* fc = NULL;
|
|
|
|
size_t i;
|
|
|
|
fc = fopen(currentFileV2, "w+");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!fc)
|
|
|
|
goto finish;
|
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
fl = fopen(legacyFileV2, "w+");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!fl)
|
|
|
|
goto finish;
|
|
|
|
|
2018-12-03 19:23:55 +03:00
|
|
|
for (i = 0; i < sizeof(hosts) / sizeof(hosts[0]); i++)
|
2015-06-09 19:03:32 +03:00
|
|
|
{
|
2015-07-01 13:22:32 +03:00
|
|
|
if (fwrite(hosts[i], strlen(hosts[i]), 1, fl) != 1 ||
|
2017-11-15 11:11:12 +03:00
|
|
|
fwrite(hosts[i], strlen(hosts[i]), 1, fc) != 1)
|
2015-06-26 16:58:01 +03:00
|
|
|
goto finish;
|
2015-06-09 19:03:32 +03:00
|
|
|
}
|
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
fclose(fc);
|
2015-06-09 19:03:32 +03:00
|
|
|
fc = NULL;
|
2015-06-10 10:15:38 +03:00
|
|
|
fclose(fl);
|
2015-06-09 19:03:32 +03:00
|
|
|
fl = NULL;
|
2015-06-10 10:15:38 +03:00
|
|
|
fl = fopen(legacyFile, "w+");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!fl)
|
|
|
|
goto finish;
|
|
|
|
|
2018-12-03 19:23:55 +03:00
|
|
|
for (i = 0; i < sizeof(legacy) / sizeof(legacy[0]); i++)
|
2015-06-26 16:58:01 +03:00
|
|
|
{
|
2015-07-01 13:22:32 +03:00
|
|
|
if (fwrite(legacy[i], strlen(legacy[i]), 1, fl) != 1)
|
2015-06-26 16:58:01 +03:00
|
|
|
goto finish;
|
|
|
|
}
|
2015-06-09 19:03:32 +03:00
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
fclose(fl);
|
2015-06-09 19:03:32 +03:00
|
|
|
return 0;
|
|
|
|
finish:
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-26 16:58:01 +03:00
|
|
|
if (fl)
|
|
|
|
fclose(fl);
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-26 16:58:01 +03:00
|
|
|
if (fc)
|
|
|
|
fclose(fc);
|
2015-06-09 19:03:32 +03:00
|
|
|
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
int TestKnownHosts(int argc, char* argv[])
|
|
|
|
{
|
|
|
|
int rc = -1;
|
|
|
|
rdpSettings current;
|
|
|
|
rdpSettings legacy;
|
|
|
|
rdpCertificateData* data = NULL;
|
|
|
|
rdpCertificateStore* store = NULL;
|
|
|
|
char* currentFileV2 = NULL;
|
|
|
|
char* legacyFileV2 = NULL;
|
|
|
|
char* legacyFile = NULL;
|
2015-06-11 12:16:45 +03:00
|
|
|
char* subject = NULL;
|
|
|
|
char* issuer = NULL;
|
2015-06-11 10:23:50 +03:00
|
|
|
char* fp = NULL;
|
2018-12-03 19:23:55 +03:00
|
|
|
char sname[8192];
|
|
|
|
char dname[8192];
|
|
|
|
SYSTEMTIME systemTime;
|
2019-05-08 13:20:43 +03:00
|
|
|
WINPR_UNUSED(argc);
|
|
|
|
WINPR_UNUSED(argv);
|
2018-12-03 19:23:55 +03:00
|
|
|
GetSystemTime(&systemTime);
|
|
|
|
sprintf_s(sname, sizeof(sname),
|
|
|
|
"TestKnownHostsCurrent-%04"PRIu16"%02"PRIu16"%02"PRIu16"%02"PRIu16"%02"PRIu16"%02"PRIu16"%04"PRIu16,
|
|
|
|
systemTime.wYear, systemTime.wMonth, systemTime.wDay, systemTime.wHour, systemTime.wMinute,
|
|
|
|
systemTime.wSecond, systemTime.wMilliseconds);
|
|
|
|
sprintf_s(dname, sizeof(dname),
|
|
|
|
"TestKnownHostsLegacy-%04"PRIu16"%02"PRIu16"%02"PRIu16"%02"PRIu16"%02"PRIu16"%02"PRIu16"%04"PRIu16,
|
|
|
|
systemTime.wYear, systemTime.wMonth, systemTime.wDay, systemTime.wHour, systemTime.wMinute,
|
|
|
|
systemTime.wSecond, systemTime.wMilliseconds);
|
|
|
|
|
|
|
|
current.ConfigPath = GetKnownSubPath(KNOWN_PATH_TEMP, sname);
|
|
|
|
legacy.ConfigPath = GetKnownSubPath(KNOWN_PATH_TEMP, dname);
|
2015-06-09 19:03:32 +03:00
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
if (!PathFileExistsA(current.ConfigPath))
|
2015-06-09 19:03:32 +03:00
|
|
|
{
|
2015-06-10 10:15:38 +03:00
|
|
|
if (!CreateDirectoryA(current.ConfigPath, NULL))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create %s!\n", current.ConfigPath);
|
|
|
|
goto finish;
|
|
|
|
}
|
2015-06-09 19:03:32 +03:00
|
|
|
}
|
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
if (!PathFileExistsA(legacy.ConfigPath))
|
2015-06-09 19:03:32 +03:00
|
|
|
{
|
2015-06-10 10:15:38 +03:00
|
|
|
if (!CreateDirectoryA(legacy.ConfigPath, NULL))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create %s!\n", legacy.ConfigPath);
|
|
|
|
goto finish;
|
|
|
|
}
|
2015-06-09 19:03:32 +03:00
|
|
|
}
|
|
|
|
|
2015-06-12 10:30:01 +03:00
|
|
|
currentFileV2 = GetCombinedPath(current.ConfigPath, "known_hosts2");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!currentFileV2)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not get file path!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-12 10:30:01 +03:00
|
|
|
legacyFileV2 = GetCombinedPath(legacy.ConfigPath, "known_hosts2");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!legacyFileV2)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not get file path!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
legacyFile = GetCombinedPath(legacy.ConfigPath, "known_hosts");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!legacyFile)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not get file path!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2017-11-15 11:11:12 +03:00
|
|
|
store = certificate_store_new(¤t);
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!store)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate store!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (prepare(currentFileV2, legacyFileV2, legacyFile))
|
|
|
|
goto finish;
|
|
|
|
|
|
|
|
/* Test if host is found in current file. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("someurl", 3389, "subject", "issuer", "ff:11:22:dd");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (0 != certificate_data_match(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not find data in v2 file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-11 10:23:50 +03:00
|
|
|
/* Test if we can read out the old fingerprint. */
|
2015-06-11 12:16:45 +03:00
|
|
|
if (!certificate_get_stored_data(store, data, &subject, &issuer, &fp))
|
2015-06-11 10:23:50 +03:00
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not read old fingerprint!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-11 12:16:45 +03:00
|
|
|
printf("Got %s, %s '%s'\n", subject, issuer, fp);
|
|
|
|
free(subject);
|
|
|
|
free(issuer);
|
2015-06-11 10:23:50 +03:00
|
|
|
free(fp);
|
2015-06-11 12:16:45 +03:00
|
|
|
subject = NULL;
|
|
|
|
issuer = NULL;
|
2015-06-11 10:23:50 +03:00
|
|
|
fp = NULL;
|
2015-06-09 19:03:32 +03:00
|
|
|
certificate_data_free(data);
|
|
|
|
/* Test if host not found in current file. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("somehost", 1234, "", "", "ff:aa:bb:cc");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (0 == certificate_data_match(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Invalid host found in v2 file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-11 10:23:50 +03:00
|
|
|
/* Test if we read out the old fingerprint fails. */
|
2015-06-11 12:16:45 +03:00
|
|
|
if (certificate_get_stored_data(store, data, &subject, &issuer, &fp))
|
2015-06-11 10:23:50 +03:00
|
|
|
{
|
|
|
|
fprintf(stderr, "Read out not existing old fingerprint succeeded?!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
certificate_data_free(data);
|
|
|
|
/* Test host add current file. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("somehost", 1234, "", "", "ff:aa:bb:cc");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!certificate_data_print(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not add host to file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
if (0 != certificate_data_match(store, data))
|
2015-06-09 19:03:32 +03:00
|
|
|
{
|
2015-06-10 10:15:38 +03:00
|
|
|
fprintf(stderr, "Could not find host written in v2 file!\n");
|
2015-06-09 19:03:32 +03:00
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
certificate_data_free(data);
|
|
|
|
/* Test host replace current file. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("somehost", 1234, "", "", "ff:aa:bb:dd:ee");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!certificate_data_replace(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not replace data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
if (0 != certificate_data_match(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Invalid host found in v2 file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
certificate_data_free(data);
|
|
|
|
/* Test host replace invalid entry in current file. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("somehostXXXX", 1234, "", "", "ff:aa:bb:dd:ee");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-10 10:15:38 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (certificate_data_replace(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Invalid return for replace invalid entry!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (0 == certificate_data_match(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Invalid host found in v2 file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
certificate_data_free(data);
|
|
|
|
certificate_store_free(store);
|
|
|
|
store = certificate_store_new(&legacy);
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!store)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "could not create certificate store!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* test if host found in legacy file. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("legacyurl", 1234, "", "", "aa:bb:cc:dd");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (0 != certificate_data_match(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not find host in file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
certificate_data_free(data);
|
|
|
|
/* test if host not found. */
|
2015-06-11 12:34:36 +03:00
|
|
|
data = certificate_data_new("somehost-not-in-file", 1234, "", "", "ff:aa:bb:cc");
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (!data)
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Could not create certificate data!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (0 == certificate_data_match(store, data))
|
|
|
|
{
|
|
|
|
fprintf(stderr, "Invalid host found in file!\n");
|
|
|
|
goto finish;
|
|
|
|
}
|
|
|
|
|
|
|
|
rc = 0;
|
|
|
|
finish:
|
2017-11-15 11:11:12 +03:00
|
|
|
free(current.ConfigPath);
|
|
|
|
free(legacy.ConfigPath);
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (store)
|
|
|
|
certificate_store_free(store);
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
if (data)
|
|
|
|
certificate_data_free(data);
|
2018-12-03 19:23:55 +03:00
|
|
|
|
2015-06-09 19:03:32 +03:00
|
|
|
DeleteFileA(currentFileV2);
|
|
|
|
//RemoveDirectoryA(current.ConfigPath);
|
|
|
|
DeleteFileA(legacyFileV2);
|
|
|
|
DeleteFileA(legacyFile);
|
|
|
|
//RemoveDirectoryA(legacy.ConfigPath);
|
2018-12-03 19:23:55 +03:00
|
|
|
free(currentFileV2);
|
|
|
|
free(legacyFileV2);
|
|
|
|
free(legacyFile);
|
2015-06-11 12:16:45 +03:00
|
|
|
free(subject);
|
|
|
|
free(issuer);
|
2015-06-11 10:23:50 +03:00
|
|
|
free(fp);
|
2015-06-09 19:03:32 +03:00
|
|
|
return rc;
|
|
|
|
}
|