18 |
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. |
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. |
19 |
*/ |
*/ |
20 |
|
|
21 |
|
#include <time.h> |
22 |
#include "rdesktop.h" |
#include "rdesktop.h" |
23 |
|
|
24 |
extern uint16 g_mcs_userid; |
extern uint16 g_mcs_userid; |
72 |
|
|
73 |
#if WITH_DEBUG |
#if WITH_DEBUG |
74 |
DEBUG(("RDP packet #%d, (type %x)\n", ++g_packetno, *type)); |
DEBUG(("RDP packet #%d, (type %x)\n", ++g_packetno, *type)); |
75 |
// hexdump(g_next_packet, length); |
hexdump(g_next_packet, length); |
76 |
#endif /* */ |
#endif /* */ |
77 |
|
|
78 |
g_next_packet += length; |
g_next_packet += length; |
132 |
s->p += len; |
s->p += len; |
133 |
} |
} |
134 |
|
|
135 |
|
/* Input a string in Unicode |
136 |
|
* |
137 |
|
* Returns str_len of string |
138 |
|
*/ |
139 |
|
int |
140 |
|
rdp_in_unistr(STREAM s, char *string, int uni_len) |
141 |
|
{ |
142 |
|
int i = 0; |
143 |
|
|
144 |
|
while (i < uni_len / 2) |
145 |
|
{ |
146 |
|
in_uint8a(s, &string[i++], 1); |
147 |
|
in_uint8s(s, 1); |
148 |
|
} |
149 |
|
|
150 |
|
return i - 1; |
151 |
|
} |
152 |
|
|
153 |
|
|
154 |
/* Parse a logon info packet */ |
/* Parse a logon info packet */ |
155 |
static void |
static void |
156 |
rdp_send_logon_info(uint32 flags, char *domain, char *user, |
rdp_send_logon_info(uint32 flags, char *domain, char *user, |
166 |
int packetlen = 0; |
int packetlen = 0; |
167 |
uint32 sec_flags = g_encryption ? (SEC_LOGON_INFO | SEC_ENCRYPT) : SEC_LOGON_INFO; |
uint32 sec_flags = g_encryption ? (SEC_LOGON_INFO | SEC_ENCRYPT) : SEC_LOGON_INFO; |
168 |
STREAM s; |
STREAM s; |
169 |
|
time_t t = time(NULL); |
170 |
|
time_t tzone; |
171 |
|
|
172 |
if (!g_use_rdp5 || 1 == g_server_rdp_version) |
if (!g_use_rdp5 || 1 == g_server_rdp_version) |
173 |
{ |
{ |
193 |
{ |
{ |
194 |
flags |= RDP_LOGON_BLOB; |
flags |= RDP_LOGON_BLOB; |
195 |
DEBUG_RDP5(("Sending RDP5-style Logon packet\n")); |
DEBUG_RDP5(("Sending RDP5-style Logon packet\n")); |
196 |
packetlen = 4 + // Unknown uint32 |
packetlen = 4 + /* Unknown uint32 */ |
197 |
4 + // flags |
4 + /* flags */ |
198 |
2 + // len_domain |
2 + /* len_domain */ |
199 |
2 + // len_user |
2 + /* len_user */ |
200 |
(flags & RDP_LOGON_AUTO ? 2 : 0) + // len_password |
(flags & RDP_LOGON_AUTO ? 2 : 0) + /* len_password */ |
201 |
(flags & RDP_LOGON_BLOB ? 2 : 0) + // Length of BLOB |
(flags & RDP_LOGON_BLOB ? 2 : 0) + /* Length of BLOB */ |
202 |
2 + // len_program |
2 + /* len_program */ |
203 |
2 + // len_directory |
2 + /* len_directory */ |
204 |
(0 < len_domain ? len_domain : 2) + // domain |
(0 < len_domain ? len_domain : 2) + /* domain */ |
205 |
len_user + (flags & RDP_LOGON_AUTO ? len_password : 0) + 0 + // We have no 512 byte BLOB. Perhaps we must? |
len_user + (flags & RDP_LOGON_AUTO ? len_password : 0) + 0 + /* We have no 512 byte BLOB. Perhaps we must? */ |
206 |
(flags & RDP_LOGON_BLOB && !(flags & RDP_LOGON_AUTO) ? 2 : 0) + // After the BLOB is a unknown int16. If there is a BLOB, that is. |
(flags & RDP_LOGON_BLOB && !(flags & RDP_LOGON_AUTO) ? 2 : 0) + /* After the BLOB is a unknown int16. If there is a BLOB, that is. */ |
207 |
(0 < len_program ? len_program : 2) + (0 < len_directory ? len_directory : 2) + 2 + // Unknown (2) |
(0 < len_program ? len_program : 2) + (0 < len_directory ? len_directory : 2) + 2 + /* Unknown (2) */ |
208 |
2 + // Client ip length |
2 + /* Client ip length */ |
209 |
len_ip + // Client ip |
len_ip + /* Client ip */ |
210 |
2 + // DLL string length |
2 + /* DLL string length */ |
211 |
len_dll + // DLL string |
len_dll + /* DLL string */ |
212 |
2 + // Unknown |
2 + /* Unknown */ |
213 |
2 + // Unknown |
2 + /* Unknown */ |
214 |
64 + // Time zone #0 |
64 + /* Time zone #0 */ |
215 |
2 + // Unknown |
2 + /* Unknown */ |
216 |
64 + // Time zone #1 |
64 + /* Time zone #1 */ |
217 |
32; // Unknown |
32; /* Unknown */ |
218 |
|
|
219 |
s = sec_init(sec_flags, packetlen); |
s = sec_init(sec_flags, packetlen); |
220 |
DEBUG_RDP5(("Called sec_init with packetlen %d\n", packetlen)); |
DEBUG_RDP5(("Called sec_init with packetlen %d\n", packetlen)); |
221 |
|
|
222 |
out_uint32(s, 0); // Unknown |
out_uint32(s, 0); /* Unknown */ |
223 |
out_uint32_le(s, flags); |
out_uint32_le(s, flags); |
224 |
out_uint16_le(s, len_domain); |
out_uint16_le(s, len_domain); |
225 |
out_uint16_le(s, len_user); |
out_uint16_le(s, len_user); |
265 |
out_uint16_le(s, 0); |
out_uint16_le(s, 0); |
266 |
} |
} |
267 |
out_uint16_le(s, 2); |
out_uint16_le(s, 2); |
268 |
out_uint16_le(s, len_ip + 2); // Length of client ip |
out_uint16_le(s, len_ip + 2); /* Length of client ip */ |
269 |
rdp_out_unistr(s, "127.0.0.1", len_ip); |
rdp_out_unistr(s, "127.0.0.1", len_ip); |
270 |
out_uint16_le(s, len_dll + 2); |
out_uint16_le(s, len_dll + 2); |
271 |
rdp_out_unistr(s, "C:\\WINNT\\System32\\mstscax.dll", len_dll); |
rdp_out_unistr(s, "C:\\WINNT\\System32\\mstscax.dll", len_dll); |
272 |
out_uint16_le(s, 0xffc4); |
|
273 |
out_uint16_le(s, 0xffff); |
tzone = (mktime(gmtime(&t)) - mktime(localtime(&t))) / 60; |
274 |
|
out_uint32_le(s, tzone); |
275 |
|
|
276 |
rdp_out_unistr(s, "GTB, normaltid", 2 * strlen("GTB, normaltid")); |
rdp_out_unistr(s, "GTB, normaltid", 2 * strlen("GTB, normaltid")); |
277 |
out_uint8s(s, 62 - 2 * strlen("GTB, normaltid")); |
out_uint8s(s, 62 - 2 * strlen("GTB, normaltid")); |
278 |
|
|
624 |
rdp_recv(&type); /* RDP_PDU_SYNCHRONIZE */ |
rdp_recv(&type); /* RDP_PDU_SYNCHRONIZE */ |
625 |
rdp_recv(&type); /* RDP_CTL_COOPERATE */ |
rdp_recv(&type); /* RDP_CTL_COOPERATE */ |
626 |
rdp_recv(&type); /* RDP_CTL_GRANT_CONTROL */ |
rdp_recv(&type); /* RDP_CTL_GRANT_CONTROL */ |
627 |
rdp_send_input(0, RDP_INPUT_SYNCHRONIZE, 0, 0, 0); |
rdp_send_input(0, RDP_INPUT_SYNCHRONIZE, 0, ui_get_numlock_state(read_keyboard_state()), 0); |
628 |
rdp_send_fonts(1); |
rdp_send_fonts(1); |
629 |
rdp_send_fonts(2); |
rdp_send_fonts(2); |
630 |
rdp_recv(&type); /* RDP_PDU_UNKNOWN 0x28 */ |
rdp_recv(&type); /* RDP_PDU_UNKNOWN 0x28 */ |
748 |
DEBUG(("BITMAP_UPDATE(l=%d,t=%d,r=%d,b=%d,w=%d,h=%d,Bpp=%d,cmp=%d)\n", |
DEBUG(("BITMAP_UPDATE(l=%d,t=%d,r=%d,b=%d,w=%d,h=%d,Bpp=%d,cmp=%d)\n", |
749 |
left, top, right, bottom, width, height, Bpp, compress)); |
left, top, right, bottom, width, height, Bpp, compress)); |
750 |
|
|
751 |
|
/* Server may limit bpp - this is how we find out */ |
752 |
|
if (g_server_bpp != bpp) |
753 |
|
{ |
754 |
|
warning("Server limited colour depth to %d bits\n", bpp); |
755 |
|
g_server_bpp = bpp; |
756 |
|
} |
757 |
|
|
758 |
if (!compress) |
if (!compress) |
759 |
{ |
{ |
760 |
int y; |
int y; |
889 |
/* User logged on */ |
/* User logged on */ |
890 |
break; |
break; |
891 |
|
|
892 |
|
case RDP_DATA_PDU_DISCONNECT: |
893 |
|
/* Normally received when user logs out or disconnects from a |
894 |
|
console session on Windows XP and 2003 Server */ |
895 |
|
DEBUG(("Received disconnect PDU\n")); |
896 |
|
break; |
897 |
|
|
898 |
default: |
default: |
899 |
unimpl("data PDU %d\n", data_pdu_type); |
unimpl("data PDU %d\n", data_pdu_type); |
900 |
} |
} |