1 |
/* |
/* -*- c-basic-offset: 8 -*- |
2 |
rdesktop: A Remote Desktop Protocol client. |
rdesktop: A Remote Desktop Protocol client. |
3 |
Protocol services - RDP layer |
Protocol services - RDP layer |
4 |
Copyright (C) Matthew Chapman 1999-2002 |
Copyright (C) Matthew Chapman 1999-2002 |
5 |
|
|
6 |
This program is free software; you can redistribute it and/or modify |
This program is free software; you can redistribute it and/or modify |
7 |
it under the terms of the GNU General Public License as published by |
it under the terms of the GNU General Public License as published by |
8 |
the Free Software Foundation; either version 2 of the License, or |
the Free Software Foundation; either version 2 of the License, or |
9 |
(at your option) any later version. |
(at your option) any later version. |
10 |
|
|
11 |
This program is distributed in the hope that it will be useful, |
This program is distributed in the hope that it will be useful, |
12 |
but WITHOUT ANY WARRANTY; without even the implied warranty of |
but WITHOUT ANY WARRANTY; without even the implied warranty of |
13 |
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
14 |
GNU General Public License for more details. |
GNU General Public License for more details. |
15 |
|
|
16 |
You should have received a copy of the GNU General Public License |
You should have received a copy of the GNU General Public License |
17 |
along with this program; if not, write to the Free Software |
along with this program; if not, write to the Free Software |
18 |
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. |
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. |
20 |
|
|
21 |
#include "rdesktop.h" |
#include "rdesktop.h" |
22 |
|
|
23 |
extern uint16 mcs_userid; |
extern uint16 g_mcs_userid; |
24 |
extern char username[16]; |
extern char g_username[16]; |
25 |
extern BOOL bitmap_compression; |
extern BOOL g_bitmap_compression; |
26 |
extern BOOL orders; |
extern BOOL g_orders; |
27 |
extern BOOL encryption; |
extern BOOL g_encryption; |
28 |
extern BOOL desktop_save; |
extern BOOL g_desktop_save; |
29 |
|
extern BOOL g_use_rdp5; |
30 |
|
extern uint16 g_server_rdp_version; |
31 |
|
extern int g_server_bpp; |
32 |
|
|
33 |
uint8 *next_packet; |
uint8 *g_next_packet; |
34 |
uint32 rdp_shareid; |
uint32 g_rdp_shareid; |
35 |
|
|
36 |
#if WITH_DEBUG |
#if WITH_DEBUG |
37 |
static uint32 packetno; |
static uint32 g_packetno; |
38 |
#endif |
#endif |
|
|
|
|
/* Initialise an RDP packet */ |
|
|
static STREAM |
|
|
rdp_init(int maxlen) |
|
|
{ |
|
|
STREAM s; |
|
|
|
|
|
s = sec_init(encryption ? SEC_ENCRYPT : 0, maxlen + 6); |
|
|
s_push_layer(s, rdp_hdr, 6); |
|
|
|
|
|
return s; |
|
|
} |
|
|
|
|
|
/* Send an RDP packet */ |
|
|
static void |
|
|
rdp_send(STREAM s, uint8 pdu_type) |
|
|
{ |
|
|
uint16 length; |
|
|
|
|
|
s_pop_layer(s, rdp_hdr); |
|
|
length = s->end - s->p; |
|
|
|
|
|
out_uint16_le(s, length); |
|
|
out_uint16_le(s, (pdu_type | 0x10)); /* Version 1 */ |
|
|
out_uint16_le(s, (mcs_userid + 1001)); |
|
|
|
|
|
sec_send(s, encryption ? SEC_ENCRYPT : 0); |
|
|
} |
|
39 |
|
|
40 |
/* Receive an RDP packet */ |
/* Receive an RDP packet */ |
41 |
static STREAM |
static STREAM |
44 |
static STREAM rdp_s; |
static STREAM rdp_s; |
45 |
uint16 length, pdu_type; |
uint16 length, pdu_type; |
46 |
|
|
47 |
if ((rdp_s == NULL) || (next_packet >= rdp_s->end)) |
if ((rdp_s == NULL) || (g_next_packet >= rdp_s->end)) |
48 |
{ |
{ |
49 |
rdp_s = sec_recv(); |
rdp_s = sec_recv(); |
50 |
if (rdp_s == NULL) |
if (rdp_s == NULL) |
51 |
return NULL; |
return NULL; |
52 |
|
|
53 |
next_packet = rdp_s->p; |
g_next_packet = rdp_s->p; |
54 |
} |
} |
55 |
else |
else |
56 |
{ |
{ |
57 |
rdp_s->p = next_packet; |
rdp_s->p = g_next_packet; |
58 |
} |
} |
59 |
|
|
60 |
in_uint16_le(rdp_s, length); |
in_uint16_le(rdp_s, length); |
61 |
/* 32k packets are really 8, keepalive fix */ |
/* 32k packets are really 8, keepalive fix */ |
62 |
if (length == 0x8000) |
if (length == 0x8000) |
63 |
{ |
{ |
64 |
next_packet += 8; |
g_next_packet += 8; |
65 |
*type = 0; |
*type = 0; |
66 |
return rdp_s; |
return rdp_s; |
67 |
} |
} |
70 |
*type = pdu_type & 0xf; |
*type = pdu_type & 0xf; |
71 |
|
|
72 |
#if WITH_DEBUG |
#if WITH_DEBUG |
73 |
DEBUG(("RDP packet #%d, (type %x):\n", ++packetno, *type)); |
DEBUG(("RDP packet #%d, (type %x)\n", ++g_packetno, *type)); |
74 |
hexdump(next_packet, length); |
hexdump(g_next_packet, length); |
75 |
#endif /* */ |
#endif /* */ |
76 |
|
|
77 |
next_packet += length; |
g_next_packet += length; |
78 |
return rdp_s; |
return rdp_s; |
79 |
} |
} |
80 |
|
|
84 |
{ |
{ |
85 |
STREAM s; |
STREAM s; |
86 |
|
|
87 |
s = sec_init(encryption ? SEC_ENCRYPT : 0, maxlen + 18); |
s = sec_init(g_encryption ? SEC_ENCRYPT : 0, maxlen + 18); |
88 |
s_push_layer(s, rdp_hdr, 18); |
s_push_layer(s, rdp_hdr, 18); |
89 |
|
|
90 |
return s; |
return s; |
101 |
|
|
102 |
out_uint16_le(s, length); |
out_uint16_le(s, length); |
103 |
out_uint16_le(s, (RDP_PDU_DATA | 0x10)); |
out_uint16_le(s, (RDP_PDU_DATA | 0x10)); |
104 |
out_uint16_le(s, (mcs_userid + 1001)); |
out_uint16_le(s, (g_mcs_userid + 1001)); |
105 |
|
|
106 |
out_uint32_le(s, rdp_shareid); |
out_uint32_le(s, g_rdp_shareid); |
107 |
out_uint8(s, 0); /* pad */ |
out_uint8(s, 0); /* pad */ |
108 |
out_uint8(s, 1); /* streamid */ |
out_uint8(s, 1); /* streamid */ |
109 |
out_uint16_le(s, (length - 14)); |
out_uint16_le(s, (length - 14)); |
111 |
out_uint8(s, 0); /* compress_type */ |
out_uint8(s, 0); /* compress_type */ |
112 |
out_uint16(s, 0); /* compress_len */ |
out_uint16(s, 0); /* compress_len */ |
113 |
|
|
114 |
sec_send(s, encryption ? SEC_ENCRYPT : 0); |
sec_send(s, g_encryption ? SEC_ENCRYPT : 0); |
115 |
} |
} |
116 |
|
|
117 |
/* Output a string in Unicode */ |
/* Output a string in Unicode */ |
141 |
int len_password = 2 * strlen(password); |
int len_password = 2 * strlen(password); |
142 |
int len_program = 2 * strlen(program); |
int len_program = 2 * strlen(program); |
143 |
int len_directory = 2 * strlen(directory); |
int len_directory = 2 * strlen(directory); |
144 |
uint32 sec_flags = encryption ? (SEC_LOGON_INFO | SEC_ENCRYPT) : SEC_LOGON_INFO; |
int len_ip = 2 * strlen("127.0.0.1"); |
145 |
|
int len_dll = 2 * strlen("C:\\WINNT\\System32\\mstscax.dll"); |
146 |
|
int packetlen = 0; |
147 |
|
uint32 sec_flags = g_encryption ? (SEC_LOGON_INFO | SEC_ENCRYPT) : SEC_LOGON_INFO; |
148 |
STREAM s; |
STREAM s; |
149 |
|
|
150 |
s = sec_init(sec_flags, 18 + len_domain + len_user + len_password |
if (!g_use_rdp5 || 1 == g_server_rdp_version) |
151 |
+ len_program + len_directory + 10); |
{ |
152 |
|
DEBUG_RDP5(("Sending RDP4-style Logon packet\n")); |
153 |
|
|
154 |
out_uint32(s, 0); |
s = sec_init(sec_flags, 18 + len_domain + len_user + len_password |
155 |
out_uint32_le(s, flags); |
+ len_program + len_directory + 10); |
|
out_uint16_le(s, len_domain); |
|
|
out_uint16_le(s, len_user); |
|
|
out_uint16_le(s, len_password); |
|
|
out_uint16_le(s, len_program); |
|
|
out_uint16_le(s, len_directory); |
|
|
rdp_out_unistr(s, domain, len_domain); |
|
|
rdp_out_unistr(s, user, len_user); |
|
|
rdp_out_unistr(s, password, len_password); |
|
|
rdp_out_unistr(s, program, len_program); |
|
|
rdp_out_unistr(s, directory, len_directory); |
|
156 |
|
|
157 |
|
out_uint32(s, 0); |
158 |
|
out_uint32_le(s, flags); |
159 |
|
out_uint16_le(s, len_domain); |
160 |
|
out_uint16_le(s, len_user); |
161 |
|
out_uint16_le(s, len_password); |
162 |
|
out_uint16_le(s, len_program); |
163 |
|
out_uint16_le(s, len_directory); |
164 |
|
rdp_out_unistr(s, domain, len_domain); |
165 |
|
rdp_out_unistr(s, user, len_user); |
166 |
|
rdp_out_unistr(s, password, len_password); |
167 |
|
rdp_out_unistr(s, program, len_program); |
168 |
|
rdp_out_unistr(s, directory, len_directory); |
169 |
|
} |
170 |
|
else |
171 |
|
{ |
172 |
|
flags |= RDP_LOGON_BLOB; |
173 |
|
DEBUG_RDP5(("Sending RDP5-style Logon packet\n")); |
174 |
|
packetlen = 4 + /* Unknown uint32 */ |
175 |
|
4 + /* flags */ |
176 |
|
2 + /* len_domain */ |
177 |
|
2 + /* len_user */ |
178 |
|
(flags & RDP_LOGON_AUTO ? 2 : 0) + /* len_password */ |
179 |
|
(flags & RDP_LOGON_BLOB ? 2 : 0) + /* Length of BLOB */ |
180 |
|
2 + /* len_program */ |
181 |
|
2 + /* len_directory */ |
182 |
|
(0 < len_domain ? len_domain : 2) + /* domain */ |
183 |
|
len_user + (flags & RDP_LOGON_AUTO ? len_password : 0) + 0 + /* We have no 512 byte BLOB. Perhaps we must? */ |
184 |
|
(flags & RDP_LOGON_BLOB && !(flags & RDP_LOGON_AUTO) ? 2 : 0) + /* After the BLOB is a unknown int16. If there is a BLOB, that is. */ |
185 |
|
(0 < len_program ? len_program : 2) + (0 < len_directory ? len_directory : 2) + 2 + /* Unknown (2) */ |
186 |
|
2 + /* Client ip length */ |
187 |
|
len_ip + /* Client ip */ |
188 |
|
2 + /* DLL string length */ |
189 |
|
len_dll + /* DLL string */ |
190 |
|
2 + /* Unknown */ |
191 |
|
2 + /* Unknown */ |
192 |
|
64 + /* Time zone #0 */ |
193 |
|
2 + /* Unknown */ |
194 |
|
64 + /* Time zone #1 */ |
195 |
|
32; /* Unknown */ |
196 |
|
|
197 |
|
s = sec_init(sec_flags, packetlen); |
198 |
|
DEBUG_RDP5(("Called sec_init with packetlen %d\n", packetlen)); |
199 |
|
|
200 |
|
out_uint32(s, 0); /* Unknown */ |
201 |
|
out_uint32_le(s, flags); |
202 |
|
out_uint16_le(s, len_domain); |
203 |
|
out_uint16_le(s, len_user); |
204 |
|
if (flags & RDP_LOGON_AUTO) |
205 |
|
{ |
206 |
|
out_uint16_le(s, len_password); |
207 |
|
|
208 |
|
} |
209 |
|
if (flags & RDP_LOGON_BLOB && !(flags & RDP_LOGON_AUTO)) |
210 |
|
{ |
211 |
|
out_uint16_le(s, 0); |
212 |
|
} |
213 |
|
out_uint16_le(s, len_program); |
214 |
|
out_uint16_le(s, len_directory); |
215 |
|
if (0 < len_domain) |
216 |
|
rdp_out_unistr(s, domain, len_domain); |
217 |
|
else |
218 |
|
out_uint16_le(s, 0); |
219 |
|
rdp_out_unistr(s, user, len_user); |
220 |
|
if (flags & RDP_LOGON_AUTO) |
221 |
|
{ |
222 |
|
rdp_out_unistr(s, password, len_password); |
223 |
|
} |
224 |
|
if (flags & RDP_LOGON_BLOB && !(flags & RDP_LOGON_AUTO)) |
225 |
|
{ |
226 |
|
out_uint16_le(s, 0); |
227 |
|
} |
228 |
|
if (0 < len_program) |
229 |
|
{ |
230 |
|
rdp_out_unistr(s, program, len_program); |
231 |
|
|
232 |
|
} |
233 |
|
else |
234 |
|
{ |
235 |
|
out_uint16_le(s, 0); |
236 |
|
} |
237 |
|
if (0 < len_directory) |
238 |
|
{ |
239 |
|
rdp_out_unistr(s, directory, len_directory); |
240 |
|
} |
241 |
|
else |
242 |
|
{ |
243 |
|
out_uint16_le(s, 0); |
244 |
|
} |
245 |
|
out_uint16_le(s, 2); |
246 |
|
out_uint16_le(s, len_ip + 2); /* Length of client ip */ |
247 |
|
rdp_out_unistr(s, "127.0.0.1", len_ip); |
248 |
|
out_uint16_le(s, len_dll + 2); |
249 |
|
rdp_out_unistr(s, "C:\\WINNT\\System32\\mstscax.dll", len_dll); |
250 |
|
/* |
251 |
|
out_uint16_le(s, tz_offset/60); |
252 |
|
out_uint16_le(s, 0x0000); |
253 |
|
*/ |
254 |
|
out_uint16_le(s, 0xffc4); |
255 |
|
out_uint16_le(s, 0xffff); |
256 |
|
|
257 |
|
rdp_out_unistr(s, "GTB, normaltid", 2 * strlen("GTB, normaltid")); |
258 |
|
out_uint8s(s, 62 - 2 * strlen("GTB, normaltid")); |
259 |
|
|
260 |
|
|
261 |
|
out_uint32_le(s, 0x0a0000); |
262 |
|
out_uint32_le(s, 0x050000); |
263 |
|
out_uint32_le(s, 3); |
264 |
|
out_uint32_le(s, 0); |
265 |
|
out_uint32_le(s, 0); |
266 |
|
|
267 |
|
rdp_out_unistr(s, "GTB, sommartid", 2 * strlen("GTB, sommartid")); |
268 |
|
out_uint8s(s, 62 - 2 * strlen("GTB, sommartid")); |
269 |
|
|
270 |
|
out_uint32_le(s, 0x30000); |
271 |
|
out_uint32_le(s, 0x050000); |
272 |
|
out_uint32_le(s, 2); |
273 |
|
out_uint32(s, 0); |
274 |
|
out_uint32_le(s, 0xffffffc4); |
275 |
|
out_uint32_le(s, 0xfffffffe); |
276 |
|
out_uint32_le(s, 0x0f); |
277 |
|
out_uint32(s, 0); |
278 |
|
|
279 |
|
|
280 |
|
} |
281 |
s_mark_end(s); |
s_mark_end(s); |
282 |
sec_send(s, sec_flags); |
sec_send(s, sec_flags); |
283 |
} |
} |
363 |
out_uint16_le(s, 0x200); /* Protocol version */ |
out_uint16_le(s, 0x200); /* Protocol version */ |
364 |
out_uint16(s, 0); /* Pad */ |
out_uint16(s, 0); /* Pad */ |
365 |
out_uint16(s, 0); /* Compression types */ |
out_uint16(s, 0); /* Compression types */ |
366 |
out_uint16(s, 0); /* Pad */ |
out_uint16_le(s, g_use_rdp5 ? 0x40d : 0); |
367 |
|
/* Pad, according to T.128. 0x40d seems to |
368 |
|
trigger |
369 |
|
the server to start sending RDP5 packets. |
370 |
|
However, the value is 0x1d04 with W2KTSK and |
371 |
|
NT4MS. Hmm.. Anyway, thankyou, Microsoft, |
372 |
|
for sending such information in a padding |
373 |
|
field.. */ |
374 |
out_uint16(s, 0); /* Update capability */ |
out_uint16(s, 0); /* Update capability */ |
375 |
out_uint16(s, 0); /* Remote unshare capability */ |
out_uint16(s, 0); /* Remote unshare capability */ |
376 |
out_uint16(s, 0); /* Compression level */ |
out_uint16(s, 0); /* Compression level */ |
392 |
out_uint16_le(s, 600); /* Desktop height */ |
out_uint16_le(s, 600); /* Desktop height */ |
393 |
out_uint16(s, 0); /* Pad */ |
out_uint16(s, 0); /* Pad */ |
394 |
out_uint16(s, 0); /* Allow resize */ |
out_uint16(s, 0); /* Allow resize */ |
395 |
out_uint16_le(s, bitmap_compression ? 1 : 0); /* Support compression */ |
out_uint16_le(s, g_bitmap_compression ? 1 : 0); /* Support compression */ |
396 |
out_uint16(s, 0); /* Unknown */ |
out_uint16(s, 0); /* Unknown */ |
397 |
out_uint16_le(s, 1); /* Unknown */ |
out_uint16_le(s, 1); /* Unknown */ |
398 |
out_uint16(s, 0); /* Pad */ |
out_uint16(s, 0); /* Pad */ |
413 |
order_caps[8] = 1; /* line */ |
order_caps[8] = 1; /* line */ |
414 |
order_caps[9] = 1; /* line */ |
order_caps[9] = 1; /* line */ |
415 |
order_caps[10] = 1; /* rect */ |
order_caps[10] = 1; /* rect */ |
416 |
order_caps[11] = (desktop_save == False ? 0 : 1); /* desksave */ |
order_caps[11] = (g_desktop_save == False ? 0 : 1); /* desksave */ |
417 |
order_caps[13] = 1; /* memblt */ |
order_caps[13] = 1; /* memblt */ |
418 |
order_caps[14] = 1; /* triblt */ |
order_caps[14] = 1; /* triblt */ |
419 |
order_caps[22] = 1; /* polyline */ |
order_caps[22] = 1; /* polyline */ |
431 |
out_uint8p(s, order_caps, 32); /* Orders supported */ |
out_uint8p(s, order_caps, 32); /* Orders supported */ |
432 |
out_uint16_le(s, 0x6a1); /* Text capability flags */ |
out_uint16_le(s, 0x6a1); /* Text capability flags */ |
433 |
out_uint8s(s, 6); /* Pad */ |
out_uint8s(s, 6); /* Pad */ |
434 |
out_uint32_le(s, desktop_save == False ? 0 : 0x38400); /* Desktop cache size */ |
out_uint32_le(s, g_desktop_save == False ? 0 : 0x38400); /* Desktop cache size */ |
435 |
out_uint32(s, 0); /* Unknown */ |
out_uint32(s, 0); /* Unknown */ |
436 |
out_uint32_le(s, 0x4e4); /* Unknown */ |
out_uint32_le(s, 0x4e4); /* Unknown */ |
437 |
} |
} |
440 |
static void |
static void |
441 |
rdp_out_bmpcache_caps(STREAM s) |
rdp_out_bmpcache_caps(STREAM s) |
442 |
{ |
{ |
443 |
|
int Bpp; |
444 |
out_uint16_le(s, RDP_CAPSET_BMPCACHE); |
out_uint16_le(s, RDP_CAPSET_BMPCACHE); |
445 |
out_uint16_le(s, RDP_CAPLEN_BMPCACHE); |
out_uint16_le(s, RDP_CAPLEN_BMPCACHE); |
446 |
|
|
447 |
|
Bpp = (g_server_bpp + 7) / 8; |
448 |
out_uint8s(s, 24); /* unused */ |
out_uint8s(s, 24); /* unused */ |
449 |
out_uint16_le(s, 0x258); /* entries */ |
out_uint16_le(s, 0x258); /* entries */ |
450 |
out_uint16_le(s, 0x100); /* max cell size */ |
out_uint16_le(s, 0x100 * Bpp); /* max cell size */ |
451 |
out_uint16_le(s, 0x12c); /* entries */ |
out_uint16_le(s, 0x12c); /* entries */ |
452 |
out_uint16_le(s, 0x400); /* max cell size */ |
out_uint16_le(s, 0x400 * Bpp); /* max cell size */ |
453 |
out_uint16_le(s, 0x106); /* entries */ |
out_uint16_le(s, 0x106); /* entries */ |
454 |
out_uint16_le(s, 0x1000); /* max cell size */ |
out_uint16_le(s, 0x1000 * Bpp); /* max cell size */ |
455 |
} |
} |
456 |
|
|
457 |
/* Output control capability set */ |
/* Output control capability set */ |
535 |
0x02, 0x00, 0x00, 0x00 |
0x02, 0x00, 0x00, 0x00 |
536 |
}; |
}; |
537 |
|
|
538 |
/* Output unknown capability set */ |
/* Output unknown capability sets (number 13, 12, 14 and 16) */ |
539 |
static void |
static void |
540 |
rdp_out_unknown_caps(STREAM s) |
rdp_out_unknown_caps(STREAM s) |
541 |
{ |
{ |
545 |
out_uint8p(s, canned_caps, RDP_CAPLEN_UNKNOWN - 4); |
out_uint8p(s, canned_caps, RDP_CAPLEN_UNKNOWN - 4); |
546 |
} |
} |
547 |
|
|
548 |
|
#define RDP5_FLAG 0x0030 |
549 |
/* Send a confirm active PDU */ |
/* Send a confirm active PDU */ |
550 |
static void |
static void |
551 |
rdp_send_confirm_active(void) |
rdp_send_confirm_active(void) |
552 |
{ |
{ |
553 |
STREAM s; |
STREAM s; |
554 |
|
uint32 sec_flags = g_encryption ? (RDP5_FLAG | SEC_ENCRYPT) : RDP5_FLAG; |
555 |
uint16 caplen = |
uint16 caplen = |
556 |
RDP_CAPLEN_GENERAL + RDP_CAPLEN_BITMAP + RDP_CAPLEN_ORDER + |
RDP_CAPLEN_GENERAL + RDP_CAPLEN_BITMAP + RDP_CAPLEN_ORDER + |
557 |
RDP_CAPLEN_BMPCACHE + RDP_CAPLEN_COLCACHE + |
RDP_CAPLEN_BMPCACHE + RDP_CAPLEN_COLCACHE + |
558 |
RDP_CAPLEN_ACTIVATE + RDP_CAPLEN_CONTROL + |
RDP_CAPLEN_ACTIVATE + RDP_CAPLEN_CONTROL + |
559 |
RDP_CAPLEN_POINTER + RDP_CAPLEN_SHARE + RDP_CAPLEN_UNKNOWN + 4 /* w2k fix, why? */ ; |
RDP_CAPLEN_POINTER + RDP_CAPLEN_SHARE + RDP_CAPLEN_UNKNOWN + 4 /* w2k fix, why? */ ; |
560 |
|
|
561 |
s = rdp_init(14 + caplen + sizeof(RDP_SOURCE)); |
s = sec_init(sec_flags, 6 + 14 + caplen + sizeof(RDP_SOURCE)); |
562 |
|
|
563 |
out_uint32_le(s, rdp_shareid); |
out_uint16_le(s, 2 + 14 + caplen + sizeof(RDP_SOURCE)); |
564 |
|
out_uint16_le(s, (RDP_PDU_CONFIRM_ACTIVE | 0x10)); /* Version 1 */ |
565 |
|
out_uint16_le(s, (g_mcs_userid + 1001)); |
566 |
|
|
567 |
|
out_uint32_le(s, g_rdp_shareid); |
568 |
out_uint16_le(s, 0x3ea); /* userid */ |
out_uint16_le(s, 0x3ea); /* userid */ |
569 |
out_uint16_le(s, sizeof(RDP_SOURCE)); |
out_uint16_le(s, sizeof(RDP_SOURCE)); |
570 |
out_uint16_le(s, caplen); |
out_uint16_le(s, caplen); |
585 |
rdp_out_unknown_caps(s); |
rdp_out_unknown_caps(s); |
586 |
|
|
587 |
s_mark_end(s); |
s_mark_end(s); |
588 |
rdp_send(s, RDP_PDU_CONFIRM_ACTIVE); |
sec_send(s, sec_flags); |
589 |
} |
} |
590 |
|
|
591 |
/* Respond to a demand active PDU */ |
/* Respond to a demand active PDU */ |
594 |
{ |
{ |
595 |
uint8 type; |
uint8 type; |
596 |
|
|
597 |
in_uint32_le(s, rdp_shareid); |
in_uint32_le(s, g_rdp_shareid); |
598 |
|
|
599 |
DEBUG(("DEMAND_ACTIVE(id=0x%x)\n", rdp_shareid)); |
DEBUG(("DEMAND_ACTIVE(id=0x%x)\n", g_rdp_shareid)); |
600 |
|
|
601 |
rdp_send_confirm_active(); |
rdp_send_confirm_active(); |
602 |
rdp_send_synchronise(); |
rdp_send_synchronise(); |
605 |
rdp_recv(&type); /* RDP_PDU_SYNCHRONIZE */ |
rdp_recv(&type); /* RDP_PDU_SYNCHRONIZE */ |
606 |
rdp_recv(&type); /* RDP_CTL_COOPERATE */ |
rdp_recv(&type); /* RDP_CTL_COOPERATE */ |
607 |
rdp_recv(&type); /* RDP_CTL_GRANT_CONTROL */ |
rdp_recv(&type); /* RDP_CTL_GRANT_CONTROL */ |
608 |
rdp_send_input(0, RDP_INPUT_SYNCHRONIZE, 0, 0, 0); |
rdp_send_input(0, RDP_INPUT_SYNCHRONIZE, 0, ui_get_numlock_state(read_keyboard_state()), 0); |
609 |
rdp_send_fonts(1); |
rdp_send_fonts(1); |
610 |
rdp_send_fonts(2); |
rdp_send_fonts(2); |
611 |
rdp_recv(&type); /* RDP_PDU_UNKNOWN 0x28 */ |
rdp_recv(&type); /* RDP_PDU_UNKNOWN 0x28 */ |
612 |
reset_order_state(); |
reset_order_state(); |
613 |
} |
} |
614 |
|
|
615 |
|
/* Process a colour pointer PDU */ |
616 |
|
void |
617 |
|
process_colour_pointer_pdu(STREAM s) |
618 |
|
{ |
619 |
|
uint16 x, y, width, height, cache_idx, masklen, datalen; |
620 |
|
uint8 *mask, *data; |
621 |
|
HCURSOR cursor; |
622 |
|
|
623 |
|
in_uint16_le(s, cache_idx); |
624 |
|
in_uint16_le(s, x); |
625 |
|
in_uint16_le(s, y); |
626 |
|
in_uint16_le(s, width); |
627 |
|
in_uint16_le(s, height); |
628 |
|
in_uint16_le(s, masklen); |
629 |
|
in_uint16_le(s, datalen); |
630 |
|
in_uint8p(s, data, datalen); |
631 |
|
in_uint8p(s, mask, masklen); |
632 |
|
cursor = ui_create_cursor(x, y, width, height, mask, data); |
633 |
|
ui_set_cursor(cursor); |
634 |
|
cache_put_cursor(cache_idx, cursor); |
635 |
|
} |
636 |
|
|
637 |
|
/* Process a cached pointer PDU */ |
638 |
|
void |
639 |
|
process_cached_pointer_pdu(STREAM s) |
640 |
|
{ |
641 |
|
uint16 cache_idx; |
642 |
|
|
643 |
|
in_uint16_le(s, cache_idx); |
644 |
|
ui_set_cursor(cache_get_cursor(cache_idx)); |
645 |
|
} |
646 |
|
|
647 |
|
/* Process a system pointer PDU */ |
648 |
|
void |
649 |
|
process_system_pointer_pdu(STREAM s) |
650 |
|
{ |
651 |
|
uint16 system_pointer_type; |
652 |
|
|
653 |
|
in_uint16(s, system_pointer_type); |
654 |
|
switch (system_pointer_type) |
655 |
|
{ |
656 |
|
case RDP_NULL_POINTER: |
657 |
|
ui_set_null_cursor(); |
658 |
|
break; |
659 |
|
|
660 |
|
default: |
661 |
|
unimpl("System pointer message 0x%x\n", system_pointer_type); |
662 |
|
} |
663 |
|
} |
664 |
|
|
665 |
/* Process a pointer PDU */ |
/* Process a pointer PDU */ |
666 |
static void |
static void |
667 |
process_pointer_pdu(STREAM s) |
process_pointer_pdu(STREAM s) |
668 |
{ |
{ |
669 |
uint16 message_type; |
uint16 message_type; |
670 |
uint16 x, y, width, height, cache_idx, masklen, datalen; |
uint16 x, y; |
|
uint8 *mask, *data; |
|
|
HCURSOR cursor; |
|
671 |
|
|
672 |
in_uint16_le(s, message_type); |
in_uint16_le(s, message_type); |
673 |
in_uint8s(s, 2); /* pad */ |
in_uint8s(s, 2); /* pad */ |
682 |
break; |
break; |
683 |
|
|
684 |
case RDP_POINTER_COLOR: |
case RDP_POINTER_COLOR: |
685 |
in_uint16_le(s, cache_idx); |
process_colour_pointer_pdu(s); |
|
in_uint16_le(s, x); |
|
|
in_uint16_le(s, y); |
|
|
in_uint16_le(s, width); |
|
|
in_uint16_le(s, height); |
|
|
in_uint16_le(s, masklen); |
|
|
in_uint16_le(s, datalen); |
|
|
in_uint8p(s, data, datalen); |
|
|
in_uint8p(s, mask, masklen); |
|
|
cursor = ui_create_cursor(x, y, width, height, mask, data); |
|
|
ui_set_cursor(cursor); |
|
|
cache_put_cursor(cache_idx, cursor); |
|
686 |
break; |
break; |
687 |
|
|
688 |
case RDP_POINTER_CACHED: |
case RDP_POINTER_CACHED: |
689 |
in_uint16_le(s, cache_idx); |
process_cached_pointer_pdu(s); |
690 |
ui_set_cursor(cache_get_cursor(cache_idx)); |
break; |
691 |
|
|
692 |
|
case RDP_POINTER_SYSTEM: |
693 |
|
process_system_pointer_pdu(s); |
694 |
break; |
break; |
695 |
|
|
696 |
default: |
default: |
697 |
DEBUG(("Pointer message 0x%x\n", message_type)); |
unimpl("Pointer message 0x%x\n", message_type); |
698 |
} |
} |
699 |
} |
} |
700 |
|
|
701 |
/* Process bitmap updates */ |
/* Process bitmap updates */ |
702 |
static void |
void |
703 |
process_bitmap_updates(STREAM s) |
process_bitmap_updates(STREAM s) |
704 |
{ |
{ |
705 |
uint16 num_updates; |
uint16 num_updates; |
726 |
cx = right - left + 1; |
cx = right - left + 1; |
727 |
cy = bottom - top + 1; |
cy = bottom - top + 1; |
728 |
|
|
729 |
DEBUG(("UPDATE(l=%d,t=%d,r=%d,b=%d,w=%d,h=%d,cmp=%d)\n", |
DEBUG(("BITMAP_UPDATE(l=%d,t=%d,r=%d,b=%d,w=%d,h=%d,Bpp=%d,cmp=%d)\n", |
730 |
left, top, right, bottom, width, height, compress)); |
left, top, right, bottom, width, height, Bpp, compress)); |
731 |
|
|
732 |
|
/* Server may limit bpp - this is how we find out */ |
733 |
|
if (g_server_bpp != bpp) |
734 |
|
{ |
735 |
|
warning("Server limited colour depth to %d bits\n", bpp); |
736 |
|
g_server_bpp = bpp; |
737 |
|
} |
738 |
|
|
739 |
if (!compress) |
if (!compress) |
740 |
{ |
{ |
741 |
int y; |
int y; |
742 |
bmpdata = xmalloc(width * height * Bpp); |
bmpdata = (uint8 *) xmalloc(width * height * Bpp); |
743 |
for (y = 0; y < height; y++) |
for (y = 0; y < height; y++) |
744 |
{ |
{ |
745 |
in_uint8a(s, &bmpdata[(height - y - 1) * (width * Bpp)], |
in_uint8a(s, &bmpdata[(height - y - 1) * (width * Bpp)], |
750 |
continue; |
continue; |
751 |
} |
} |
752 |
|
|
753 |
in_uint8s(s, 2); /* pad */ |
|
754 |
in_uint16_le(s, size); |
if (compress & 0x400) |
755 |
in_uint8s(s, 4); /* line_size, final_size */ |
{ |
756 |
|
size = bufsize; |
757 |
|
} |
758 |
|
else |
759 |
|
{ |
760 |
|
in_uint8s(s, 2); /* pad */ |
761 |
|
in_uint16_le(s, size); |
762 |
|
in_uint8s(s, 4); /* line_size, final_size */ |
763 |
|
} |
764 |
in_uint8p(s, data, size); |
in_uint8p(s, data, size); |
765 |
bmpdata = xmalloc(width * height * Bpp); |
bmpdata = (uint8 *) xmalloc(width * height * Bpp); |
766 |
if (bitmap_decompress(bmpdata, width, height, data, size, Bpp)) |
if (bitmap_decompress(bmpdata, width, height, data, size, Bpp)) |
767 |
{ |
{ |
768 |
ui_paint_bitmap(left, top, cx, cy, width, height, bmpdata); |
ui_paint_bitmap(left, top, cx, cy, width, height, bmpdata); |
769 |
} |
} |
770 |
|
else |
771 |
|
{ |
772 |
|
DEBUG_RDP5(("Failed to decompress data\n")); |
773 |
|
} |
774 |
|
|
775 |
xfree(bmpdata); |
xfree(bmpdata); |
776 |
} |
} |
777 |
} |
} |
778 |
|
|
779 |
/* Process a palette update */ |
/* Process a palette update */ |
780 |
static void |
void |
781 |
process_palette(STREAM s) |
process_palette(STREAM s) |
782 |
{ |
{ |
783 |
COLOURENTRY *entry; |
COLOURENTRY *entry; |
789 |
in_uint16_le(s, map.ncolours); |
in_uint16_le(s, map.ncolours); |
790 |
in_uint8s(s, 2); /* pad */ |
in_uint8s(s, 2); /* pad */ |
791 |
|
|
792 |
map.colours = xmalloc(3 * map.ncolours); |
map.colours = (COLOURENTRY *) xmalloc(sizeof(COLOURENTRY) * map.ncolours); |
793 |
|
|
794 |
|
DEBUG(("PALETTE(c=%d)\n", map.ncolours)); |
795 |
|
|
796 |
for (i = 0; i < map.ncolours; i++) |
for (i = 0; i < map.ncolours; i++) |
797 |
{ |
{ |
811 |
static void |
static void |
812 |
process_update_pdu(STREAM s) |
process_update_pdu(STREAM s) |
813 |
{ |
{ |
814 |
uint16 update_type; |
uint16 update_type, count; |
815 |
|
|
816 |
in_uint16_le(s, update_type); |
in_uint16_le(s, update_type); |
817 |
|
|
818 |
switch (update_type) |
switch (update_type) |
819 |
{ |
{ |
820 |
case RDP_UPDATE_ORDERS: |
case RDP_UPDATE_ORDERS: |
821 |
process_orders(s); |
in_uint8s(s, 2); /* pad */ |
822 |
|
in_uint16_le(s, count); |
823 |
|
in_uint8s(s, 2); /* pad */ |
824 |
|
process_orders(s, count); |
825 |
break; |
break; |
826 |
|
|
827 |
case RDP_UPDATE_BITMAP: |
case RDP_UPDATE_BITMAP: |
866 |
break; |
break; |
867 |
|
|
868 |
case RDP_DATA_PDU_LOGON: |
case RDP_DATA_PDU_LOGON: |
869 |
|
DEBUG(("Received Logon PDU\n")); |
870 |
/* User logged on */ |
/* User logged on */ |
871 |
break; |
break; |
872 |
|
|
873 |
|
case RDP_DATA_PDU_DISCONNECT: |
874 |
|
/* Normally received when user logs out or disconnects from a |
875 |
|
console session on Windows XP and 2003 Server */ |
876 |
|
DEBUG(("Received disconnect PDU\n")); |
877 |
|
break; |
878 |
|
|
879 |
default: |
default: |
880 |
unimpl("data PDU %d\n", data_pdu_type); |
unimpl("data PDU %d\n", data_pdu_type); |
881 |
} |
} |
882 |
} |
} |
883 |
|
|
884 |
/* Process incoming packets */ |
/* Process incoming packets */ |
885 |
void |
BOOL |
886 |
rdp_main_loop(void) |
rdp_main_loop(void) |
887 |
{ |
{ |
888 |
uint8 type; |
uint8 type; |
897 |
break; |
break; |
898 |
|
|
899 |
case RDP_PDU_DEACTIVATE: |
case RDP_PDU_DEACTIVATE: |
900 |
|
DEBUG(("RDP_PDU_DEACTIVATE\n")); |
901 |
|
/* We thought we could detect a clean |
902 |
|
shutdown of the session by this |
903 |
|
packet, but it seems Windows 2003 |
904 |
|
is sending us one of these when we |
905 |
|
reconnect to a disconnected session |
906 |
|
return True; */ |
907 |
break; |
break; |
908 |
|
|
909 |
case RDP_PDU_DATA: |
case RDP_PDU_DATA: |
917 |
unimpl("PDU %d\n", type); |
unimpl("PDU %d\n", type); |
918 |
} |
} |
919 |
} |
} |
920 |
|
return True; |
921 |
|
/* We want to detect if we got a clean shutdown, but we |
922 |
|
can't. Se above. |
923 |
|
return False; */ |
924 |
} |
} |
925 |
|
|
926 |
/* Establish a connection up to the RDP layer */ |
/* Establish a connection up to the RDP layer */ |
928 |
rdp_connect(char *server, uint32 flags, char *domain, char *password, |
rdp_connect(char *server, uint32 flags, char *domain, char *password, |
929 |
char *command, char *directory) |
char *command, char *directory) |
930 |
{ |
{ |
931 |
if (!sec_connect(server)) |
if (!sec_connect(server, g_username)) |
932 |
return False; |
return False; |
933 |
|
|
934 |
rdp_send_logon_info(flags, domain, username, password, command, directory); |
rdp_send_logon_info(flags, domain, g_username, password, command, directory); |
935 |
return True; |
return True; |
936 |
} |
} |
937 |
|
|