Hardening
2edd8bee12
Misc fixes to check OOM
2014-04-10 21:10:19 +02:00
Bernhard Miklautz
3720e205b4
core: fixed client random size
...
client random must be (bitlen / 8) + 8 - see [MS-RDPBCGR] 5.3.4.1
fixes #1771
2014-04-08 19:38:01 +02:00
Bernhard Miklautz
16bc9f4bd1
sec-rdp: fixed cleanup in key error case
2014-04-03 12:18:08 +02:00
Bernhard Miklautz
9436d64ff5
sec-rdp: fixed *_establish_keys for keys > 256 bit
2014-04-03 11:36:51 +02:00
Norbert Federa
18cb418c81
core: FIPS for fastpath and RDP security fixes
...
- fixed invalid stream position if extEncryptionMethods is not used
- enabled 56bit rdp security method
- fixed entropy reduction of the keys for 40 bit and 56 bit
- added rdp security incl. FIPS for fastpath output
- added FIPS encryption to fast path input
- fixed FIPS key generation in server mode
- fixed stream length correction in FIPS mode
- added rdp encryption for licensing packets (apparently some clients,
specifically cetsc, require the license packets received from the
server to be encrypted under certain RDP encryption levels)
- replace errnous virtual extended mouse event in focus in event
2014-04-02 14:17:39 +02:00
Marc-André Moreau
2524cebfa2
Merge branch 'master' of github.com:mrthebunny/FreeRDP
2014-03-28 12:30:24 -04:00
Benoît LeBlanc
6d55d8859d
Added context error codes
2014-03-28 12:23:16 -04:00
Hardening
ac7507ab8d
Adds some check to treat OOM problems + RDP security fix
...
Malloc can fail so it will, this patch adds some check in some places
where malloc/strdup results were not checked.
This patch also contains a server side fix for RDP security (credit to nfedera).
The signature len was badly set in the GCC packet. And some other RDP security
oriented fixes are also there.
2014-03-25 23:13:08 +01:00
Marc-André Moreau
4c920506ed
libfreerdp-core: add 'Bypass RD Gateway server for local addresses' feature
2014-03-24 14:44:18 -04:00
Benoît LeBlanc
d1b9565f51
Added context-specific error management.
...
Added error codes to replace connectErrorCode.
2014-03-20 18:19:54 -04:00
William Cheong Weelau
4e588ac331
Update connection.c
...
it's better to check and resolve the connection use the FQDN first instead of ip address, due to the issue of getting internal ip address that's getting "Resource Access Denied" response.
2014-03-10 11:18:31 +08:00
Marc-André Moreau
db7a9d2e77
libfreerdp-core: start moving internal MCS variables out of rdpSettings*
2014-02-15 16:32:38 -05:00
Marc-André Moreau
e5990fa60c
libfreerdp-core: MCS cleanup, better handling of domain parameters
2014-02-13 17:06:33 -05:00
Marc-André Moreau
cdcd290c44
wfreerdp: fix most build warnings
2014-02-10 22:12:13 -05:00
Mike McDonald
02c9d07bcf
Fixes to process new command line options (autodetect, heartbeat, multitransport), join the MCS message channel and process auto-detect PDUs during the connection sequence.
2014-01-29 22:53:32 -05:00
Mike McDonald
c4f6dcc24f
Added auto reconnect to FreeRDP core and X11 client
2014-01-16 17:38:56 -05:00
Marc-André Moreau
a3d0e271b5
freerdp: add restricted admin option
2013-11-06 01:51:55 -05:00
Marc-André Moreau
3d339b04d9
libfreerdp-core: modify parsing functions to return int instead of BOOL to propagate session redirection return code
2013-11-04 15:52:29 -05:00
Marc-André Moreau
5406ebd5d8
channels/drive: refactoring
2013-11-03 19:10:33 -05:00
Marc-André Moreau
13b6678977
libfreerdp-core: start untangling session redirection
2013-11-03 16:25:56 -05:00
Marc-André Moreau
76414588b1
libfreerdp-core: fix transport failure case with session redirection
2013-11-01 14:13:09 -04:00
Marc-André Moreau
aea4960924
libfreerdp-core: get rid of rdpString in redirection module
2013-11-01 10:59:30 -04:00
Marc-André Moreau
3cdc490bf4
libfreerdp-cache: refactor glyph cache and add logging
2013-11-01 10:01:16 -04:00
Marc-André Moreau
1fc2d780f7
libfreerdp-core: fix memory leaks reported by valgrind
2013-10-31 23:35:24 -04:00
Dan Bungert
66ecabb647
Final cleanups - merge ready.
2013-10-28 16:59:02 -06:00
Dan Bungert
f02daaa2d5
More cleanups - remove LWD and all references.
2013-10-28 15:46:28 -06:00
Dan Bungert
c025042d07
NLA over TLS support
...
Improve credssp transport layer handling, so that it works
with the correct TLS object.
2013-10-28 14:39:10 -06:00
Dan Bungert
db890d9bf2
TLS over TLS baseline functionality.
...
TLS over TLS works and we get screen drawing and server interaction.
Network traffic flows in spurts with frequent apparent hangups.
2013-10-24 12:58:06 -06:00
Dan Bungert
eb25e45149
TLS over TLS maybe working.
2013-10-24 12:58:06 -06:00
Daryl Poe
076b8a84c2
commandline session reconnect
2013-10-22 09:14:29 -06:00
Vic Lee
b04544121c
server: fix double demand active pdu during reactivation.
2013-09-03 19:09:53 +08:00
Marc-André Moreau
efff23acb5
Merge pull request #1395 from richterger/client_redir
...
Fix memory corruption in client redirection
2013-08-15 10:15:11 -07:00
richterger
3246dcff22
Fixed memory corruption problems within client redirect
...
- set freed pointers to NULL to avoid double free
- realloc mppc to cleanly restart compression
- avoid releaseing StreamPool from already freed transport after client redirect
2013-08-07 07:58:34 +02:00
Marc-André Moreau
69128d8018
libfreerdp-core: improvements to the server-side activation/reactivation code
2013-07-19 21:52:28 -04:00
Marc-André Moreau
91103b76b3
libfreerdp-core: modify server-side confirm active pdu receiving logic
2013-07-19 18:24:56 -04:00
Marc-André Moreau
6cde25937d
libfreerdp-core: wrap state transition actions
2013-07-18 17:15:10 -04:00
Marc-André Moreau
f27ab422e3
libfreerdp-core: expand comments for connection sequence, split in more steps server-side connection code
2013-07-18 15:18:59 -04:00
Marc-André Moreau
7e63668090
libfreerdp-core: split licensing/capability steps in server-side RDP state machine
2013-07-17 17:46:58 -04:00
Benoît LeBlanc
c17c2f811b
FreeRDP:
...
- replaced char* by const char* in function prototypes
- MacFreeRDP: moved assignation of context function pointers
- freerdp: added more pointer and return value validations to prevent crashes
2013-07-04 14:42:40 -04:00
Marc-André Moreau
bc631c93a8
freerdp: separate GatewayUsageMethod from GatewayEnabled
2013-07-03 15:07:12 -04:00
Bernhard Miklautz
72c6ecdd3b
core: Don't sent persistent key list if deact/react
...
Client persistent key list should not be sent if deactivation-
reactivation sequence is in progress. See [MS-RDPBCGR] 2.2.1.17
for details.
fixes #1229
2013-06-13 20:27:10 +02:00
Marc-André Moreau
5c37356506
libfreerdp-core: reduce reuse of the same send buffer
2013-05-15 13:17:29 -04:00
Marc-André Moreau
367ebf32a3
freerdp: make use of stream macros to access members
2013-05-15 12:14:26 -04:00
Marc-André Moreau
fd230443c5
freerdp: purge old stream utils
2013-05-08 16:27:21 -04:00
Marc-André Moreau
5b92413843
freerdp: purge deprecated stream utils
2013-05-08 16:09:16 -04:00
Marc-André Moreau
51715636a5
freerdp: remove some deprecated stream utils
2013-04-29 22:35:15 -04:00
Marc-André Moreau
d0e989a549
libfreerdp-core: add support for load balance info
2013-04-11 11:51:10 -04:00
Daryl Poe
551cb22975
fix for PDU_TYPE_DEMAND_ACTIVE 0001, got 0007 error
2013-04-05 12:53:22 -06:00
Hardening
7701c9d934
Replace printf(...) by fprintf(stderr, ...)
2013-03-28 23:06:34 +01:00
Marc-André Moreau
a8201b0d1b
libwinpr-utils: combine old and new stream utils
2013-03-21 15:19:33 -04:00