github/FreeRDP
7
0
Fork 0
mirror of https://github.com/FreeRDP/FreeRDP.git synced 2025-06-03 00:00:20 +00:00
Code Issues Packages Projects Releases Wiki Activity

libfreerdp-core: remove dependency on libfreerdp-asn1 for credssp_send

Browse Source
This commit is contained in:
Marc-André Moreau 2011-07-18 16:16:37 -04:00
parent e75ebc0b58
commit 9d2ff8cf22
4 changed files with 81 additions and 92 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
libfreerdp-core/ber.c
View File

@ -69,6 +69,14 @@ int _ber_skip_length(int length)
return 1; return 1;
} }
int ber_get_content_length(int length)
{
if (length - 1 > 0x7F)
return length - 4;
else
return length - 2;
}
/** /**
* Read BER Universal tag. * Read BER Universal tag.
* @param s stream * @param s stream

1
libfreerdp-core/ber.h
View File

@ -53,6 +53,7 @@
void ber_read_length(STREAM* s, int* length); void ber_read_length(STREAM* s, int* length);
int ber_write_length(STREAM* s, int length); int ber_write_length(STREAM* s, int length);
int _ber_skip_length(int length); int _ber_skip_length(int length);
int ber_get_content_length(int length);
boolean ber_read_universal_tag(STREAM* s, uint8 tag, boolean pc); boolean ber_read_universal_tag(STREAM* s, uint8 tag, boolean pc);
void ber_write_universal_tag(STREAM* s, uint8 tag, boolean pc); void ber_write_universal_tag(STREAM* s, uint8 tag, boolean pc);
boolean ber_read_application_tag(STREAM* s, uint8 tag, int* length); boolean ber_read_application_tag(STREAM* s, uint8 tag, int* length);

160
libfreerdp-core/credssp.c
View File

@ -186,10 +186,10 @@ int credssp_authenticate(rdpCredssp* credssp)
credssp->negoToken.data = s->data; credssp->negoToken.data = s->data;
credssp->negoToken.length = s->p - s->data; credssp->negoToken.length = s->p - s->data;
credssp_encrypt_public_key(credssp, &credssp->pubKeyAuth); credssp_encrypt_public_key(credssp, &credssp->pubKeyAuth);
credssp_send(credssp, &credssp->negoToken, &credssp->pubKeyAuth, NULL); credssp_send(credssp, &credssp->negoToken, NULL, &credssp->pubKeyAuth);
/* Encrypted Public Key +1 */ /* Encrypted Public Key +1 */
if (credssp_recv(credssp, &credssp->negoToken, &credssp->pubKeyAuth, NULL) < 0) if (credssp_recv(credssp, &credssp->negoToken, NULL, &credssp->pubKeyAuth) < 0)
return -1; return -1;
if (credssp_verify_public_key(credssp, &credssp->pubKeyAuth) == 0) if (credssp_verify_public_key(credssp, &credssp->pubKeyAuth) == 0)
@ -204,7 +204,7 @@ int credssp_authenticate(rdpCredssp* credssp)
/* Send encrypted credentials */ /* Send encrypted credentials */
credssp_encode_ts_credentials(credssp); credssp_encode_ts_credentials(credssp);
credssp_encrypt_ts_credentials(credssp, &credssp->authInfo); credssp_encrypt_ts_credentials(credssp, &credssp->authInfo);
credssp_send(credssp, NULL, NULL, &credssp->authInfo); credssp_send(credssp, NULL, &credssp->authInfo, NULL);
xfree(s); xfree(s);
@ -380,81 +380,32 @@ void credssp_encode_ts_credentials(rdpCredssp* credssp)
free(ts_passwoFRDP_creds); free(ts_passwoFRDP_creds);
} }
/**
* Send CredSSP message.
* @param credssp
* @param negoToken
* @param pubKeyAuth
* @param authInfo
*/
#if 1
void credssp_send(rdpCredssp* credssp, BLOB* negoToken, BLOB* pubKeyAuth, BLOB* authInfo)
{
STREAM* s;
size_t size;
TSRequest_t *ts_request;
OCTET_STRING_t *nego_token;
asn_enc_rval_t enc_rval;
ts_request = calloc(1, sizeof(TSRequest_t));
ts_request->version = 2;
if (negoToken != NULL)
{
ts_request->negoTokens = calloc(1, sizeof(NegoData_t));
nego_token = calloc(1, sizeof(OCTET_STRING_t));
nego_token->size = negoToken->length;
nego_token->buf = malloc(nego_token->size);
memcpy(nego_token->buf, negoToken->data, nego_token->size);
ASN_SEQUENCE_ADD(ts_request->negoTokens, nego_token);
}
if (pubKeyAuth != NULL)
{
ts_request->pubKeyAuth = calloc(1, sizeof(OCTET_STRING_t));
ts_request->pubKeyAuth->buf = pubKeyAuth->data;
ts_request->pubKeyAuth->size = pubKeyAuth->length;
}
if (authInfo != NULL)
{
ts_request->authInfo = calloc(1, sizeof(OCTET_STRING_t));
ts_request->authInfo->buf = authInfo->data;
ts_request->authInfo->size = authInfo->length;
}
/* get size of the encoded ASN.1 payload */
enc_rval = der_encode(&asn_DEF_TSRequest, ts_request, asn1_write, 0);
if (enc_rval.encoded != -1)
{
size = enc_rval.encoded;
s = transport_send_stream_init(credssp->transport, size);
enc_rval = der_encode_to_buffer(&asn_DEF_TSRequest, ts_request, s->data, size);
if (enc_rval.encoded != -1)
{
s->p = s->data + size;
transport_write(credssp->transport, s);
}
asn_DEF_TSRequest.free_struct(&asn_DEF_TSRequest, ts_request, 0);
}
}
#else
int credssp_skip_nego_token(int length) int credssp_skip_nego_token(int length)
{ {
return ber_skip_contextual_tag(length) + ber_skip_octet_string(length); length = ber_skip_octet_string(length);
length += ber_skip_contextual_tag(length);
return length;
} }
int credssp_skip_nego_data(int length) int credssp_skip_nego_tokens(int length)
{ {
length = credssp_skip_nego_token(length); length = credssp_skip_nego_token(length);
length += _ber_skip_length(length); length += ber_skip_sequence_tag(length);
length += _ber_skip_length(length); length += ber_skip_sequence_tag(length);
length += ber_skip_contextual_tag(length);
return length;
}
int credssp_skip_pub_key_auth(int length)
{
length = ber_skip_octet_string(length);
length += ber_skip_contextual_tag(length);
return length;
}
int credssp_skip_auth_info(int length)
{
length = ber_skip_octet_string(length);
length += ber_skip_contextual_tag(length); length += ber_skip_contextual_tag(length);
return length; return length;
} }
@ -467,38 +418,67 @@ int credssp_skip_ts_request(int length)
return length; return length;
} }
void credssp_send(rdpCredssp* credssp, BLOB* negoToken, BLOB* pubKeyAuth, BLOB* authInfo) /**
* Send CredSSP message.
* @param credssp
* @param negoToken
* @param pubKeyAuth
* @param authInfo
*/
void credssp_send(rdpCredssp* credssp, BLOB* negoToken, BLOB* authInfo, BLOB* pubKeyAuth)
{ {
STREAM* s; STREAM* s;
uint8 *bm, *em;
int length; int length;
int header_length; int ts_request_length;
int nego_tokens_length;
int pub_key_auth_length;
int auth_info_length;
s = stream_new(2048); nego_tokens_length = (negoToken != NULL) ? credssp_skip_nego_tokens(negoToken->length) : 0;
pub_key_auth_length = (pubKeyAuth != NULL) ? credssp_skip_pub_key_auth(pubKeyAuth->length) : 0;
auth_info_length = (authInfo != NULL) ? credssp_skip_auth_info(authInfo->length) : 0;
int nego_data_length = credssp_skip_nego_data(negoToken->length); length = nego_tokens_length + pub_key_auth_length + auth_info_length;
int ts_request_length = credssp_skip_ts_request(nego_data_length); ts_request_length = credssp_skip_ts_request(length);
printf("nego_data_length:%d\n", nego_data_length); s = stream_new(ts_request_length);
printf("ts_request_length:%d\n", ts_request_length);
/* TSRequest */ /* TSRequest */
ber_write_sequence_tag(s, ts_request_length); /* SEQUENCE */ length = ber_get_content_length(ts_request_length);
ber_write_sequence_tag(s, length); /* SEQUENCE */
ber_write_contextual_tag(s, 0, 3, True); /* [0] version */ ber_write_contextual_tag(s, 0, 3, True); /* [0] version */
ber_write_integer(s, 2); /* INTEGER */ ber_write_integer(s, 2); /* INTEGER */
/* NegoData */ /* [1] negoTokens (NegoData) */
length = ber_write_contextual_tag(s, 1, nego_data_length, True); /* [1] negoTokens */ if (nego_tokens_length > 0)
length += ber_write_sequence_of_tag(s, nego_data_length - length); /* SEQUENCE OF NegoDataItem */ {
length += ber_write_sequence_of_tag(s, nego_data_length - length); /* NegoDataItem */ length = ber_get_content_length(nego_tokens_length);
length -= ber_write_contextual_tag(s, 1, length, True); /* NegoData */
length -= ber_write_sequence_of_tag(s, length); /* SEQUENCE OF NegoDataItem */
length -= ber_write_sequence_of_tag(s, length); /* NegoDataItem */
length -= ber_write_contextual_tag(s, 0, length, True); /* [0] negoToken */
ber_write_octet_string(s, negoToken->data, length); /* OCTET STRING */
}
/* NegoToken */ /* [2] authInfo (OCTET STRING) */
ber_write_contextual_tag(s, 0, nego_data_length - length, True); /* [0] negoToken */ if (auth_info_length > 0)
ber_write_octet_string(s, negoToken->data, negoToken->length); /* OCTET STRING */ {
length = ber_get_content_length(auth_info_length);
length -= ber_write_contextual_tag(s, 2, length, True);
ber_write_octet_string(s, authInfo->data, authInfo->length);
}
/* [3] pubKeyAuth (OCTET STRING) */
if (pub_key_auth_length > 0)
{
length = ber_get_content_length(pub_key_auth_length);
length -= ber_write_contextual_tag(s, 3, length, True);
ber_write_octet_string(s, pubKeyAuth->data, length);
}
transport_write(credssp->transport, s); transport_write(credssp->transport, s);
} }
#endif
/** /**
* Receive CredSSP message. * Receive CredSSP message.
@ -509,7 +489,7 @@ void credssp_send(rdpCredssp* credssp, BLOB* negoToken, BLOB* pubKeyAuth, BLOB*
* @return * @return
*/ */
int credssp_recv(rdpCredssp* credssp, BLOB* negoToken, BLOB* pubKeyAuth, BLOB* authInfo) int credssp_recv(rdpCredssp* credssp, BLOB* negoToken, BLOB* authInfo, BLOB* pubKeyAuth)
{ {
STREAM* s; STREAM* s;
int status; int status;

4
libfreerdp-core/credssp.h
View File

@ -49,8 +49,8 @@ struct rdp_credssp
int credssp_authenticate(rdpCredssp* credssp); int credssp_authenticate(rdpCredssp* credssp);
void credssp_send(rdpCredssp* credssp, BLOB* negoToken, BLOB* pubKeyAuth, BLOB* authInfo); void credssp_send(rdpCredssp* credssp, BLOB* negoToken, BLOB* authInfo, BLOB* pubKeyAuth);
int credssp_recv(rdpCredssp* credssp, BLOB* negoToken, BLOB* pubKeyAuth, BLOB* authInfo); int credssp_recv(rdpCredssp* credssp, BLOB* negoToken, BLOB* authInfo, BLOB* pubKeyAuth);
void credssp_encrypt_public_key(rdpCredssp* credssp, BLOB* d); void credssp_encrypt_public_key(rdpCredssp* credssp, BLOB* d);
void credssp_encrypt_ts_credentials(rdpCredssp* credssp, BLOB* d); void credssp_encrypt_ts_credentials(rdpCredssp* credssp, BLOB* d);