FreeRDP
Loading...
Searching...
No Matches
rdp.c
1
21#include <freerdp/config.h>
22
23#include "settings.h"
24
25#include <winpr/crt.h>
26#include <winpr/string.h>
27#include <winpr/synch.h>
28#include <winpr/assert.h>
29#include <winpr/cast.h>
30#include <winpr/json.h>
31
32#include "rdp.h"
33
34#include "state.h"
35#include "info.h"
36#include "utils.h"
37#include "mcs.h"
38#include "redirection.h"
39
40#include <freerdp/codec/bulk.h>
41#include <freerdp/crypto/per.h>
42#include <freerdp/log.h>
43#include <freerdp/buildflags.h>
44
45#define RDP_TAG FREERDP_TAG("core.rdp")
46
47typedef struct
48{
49 const char* file;
50 const char* fkt;
51 size_t line;
52 DWORD level;
53} log_line_t;
54
55static const char* DATA_PDU_TYPE_STRINGS[80] = {
56 "?",
57 "?", /* 0x00 - 0x01 */
58 "Update", /* 0x02 */
59 "?",
60 "?",
61 "?",
62 "?",
63 "?",
64 "?",
65 "?",
66 "?", /* 0x03 - 0x0A */
67 "?",
68 "?",
69 "?",
70 "?",
71 "?",
72 "?",
73 "?",
74 "?",
75 "?", /* 0x0B - 0x13 */
76 "Control", /* 0x14 */
77 "?",
78 "?",
79 "?",
80 "?",
81 "?",
82 "?", /* 0x15 - 0x1A */
83 "Pointer", /* 0x1B */
84 "Input", /* 0x1C */
85 "?",
86 "?", /* 0x1D - 0x1E */
87 "Synchronize", /* 0x1F */
88 "?", /* 0x20 */
89 "Refresh Rect", /* 0x21 */
90 "Play Sound", /* 0x22 */
91 "Suppress Output", /* 0x23 */
92 "Shutdown Request", /* 0x24 */
93 "Shutdown Denied", /* 0x25 */
94 "Save Session Info", /* 0x26 */
95 "Font List", /* 0x27 */
96 "Font Map", /* 0x28 */
97 "Set Keyboard Indicators", /* 0x29 */
98 "?", /* 0x2A */
99 "Bitmap Cache Persistent List", /* 0x2B */
100 "Bitmap Cache Error", /* 0x2C */
101 "Set Keyboard IME Status", /* 0x2D */
102 "Offscreen Cache Error", /* 0x2E */
103 "Set Error Info", /* 0x2F */
104 "Draw Nine Grid Error", /* 0x30 */
105 "Draw GDI+ Error", /* 0x31 */
106 "ARC Status", /* 0x32 */
107 "?",
108 "?",
109 "?", /* 0x33 - 0x35 */
110 "Status Info", /* 0x36 */
111 "Monitor Layout", /* 0x37 */
112 "FrameAcknowledge",
113 "?",
114 "?", /* 0x38 - 0x40 */
115 "?",
116 "?",
117 "?",
118 "?",
119 "?",
120 "?" /* 0x41 - 0x46 */
121};
122
123#define rdp_check_monitor_layout_pdu_state(rdp, expected) \
124 rdp_check_monitor_layout_pdu_state_(rdp, expected, __FILE__, __func__, __LINE__)
125
126static BOOL rdp_check_monitor_layout_pdu_state_(const rdpRdp* rdp, BOOL expected, const char* file,
127 const char* fkt, size_t line)
128{
129 WINPR_ASSERT(rdp);
130 if (expected != rdp->monitor_layout_pdu)
131 {
132 const DWORD log_level = WLOG_ERROR;
133 if (WLog_IsLevelActive(rdp->log, log_level))
134 {
135 WLog_PrintTextMessage(rdp->log, log_level, line, file, fkt,
136 "Expected rdp->monitor_layout_pdu == %s",
137 expected ? "TRUE" : "FALSE");
138 }
139 return FALSE;
140 }
141 return TRUE;
142}
143
144#define rdp_set_monitor_layout_pdu_state(rdp, expected) \
145 rdp_set_monitor_layout_pdu_state_(rdp, expected, __FILE__, __func__, __LINE__)
146static BOOL rdp_set_monitor_layout_pdu_state_(rdpRdp* rdp, BOOL value, const char* file,
147 const char* fkt, size_t line)
148{
149
150 WINPR_ASSERT(rdp);
151 if (value && (value == rdp->monitor_layout_pdu))
152 {
153 const DWORD log_level = WLOG_WARN;
154 if (WLog_IsLevelActive(rdp->log, log_level))
155 {
156 WLog_PrintTextMessage(rdp->log, log_level, line, file, fkt,
157 "rdp->monitor_layout_pdu == TRUE, expected FALSE");
158 }
159 return FALSE;
160 }
161 rdp->monitor_layout_pdu = value;
162 return TRUE;
163}
164
165const char* data_pdu_type_to_string(UINT8 type)
166{
167 if (type >= ARRAYSIZE(DATA_PDU_TYPE_STRINGS))
168 return "???";
169 return DATA_PDU_TYPE_STRINGS[type];
170}
171
172static BOOL rdp_read_flow_control_pdu(rdpRdp* rdp, wStream* s, UINT16* type, UINT16* channel_id);
173static BOOL rdp_write_share_control_header(rdpRdp* rdp, wStream* s, size_t length, UINT16 type,
174 UINT16 channel_id);
175static BOOL rdp_write_share_data_header(rdpRdp* rdp, wStream* s, size_t length, BYTE type,
176 UINT32 share_id);
177
188BOOL rdp_read_security_header(rdpRdp* rdp, wStream* s, UINT16* flags, UINT16* length)
189{
190 char buffer[256] = WINPR_C_ARRAY_INIT;
191 WINPR_ASSERT(s);
192 WINPR_ASSERT(flags);
193 WINPR_ASSERT(rdp);
194
195 /* Basic Security Header */
196 if ((length && (*length < 4)))
197 {
198 WLog_Print(rdp->log, WLOG_WARN,
199 "invalid security header length, have %" PRIu16 ", must be >= 4", *length);
200 return FALSE;
201 }
202 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 4))
203 return FALSE;
204
205 *flags = Stream_Get_UINT16(s); /* flags */
206 const uint16_t flagsHi = Stream_Get_UINT16(s); /* flagsHi (unused) */
207 if ((*flags & SEC_FLAGSHI_VALID) != 0)
208 {
209 WLog_Print(rdp->log, WLOG_WARN,
210 "[MS-RDPBCGR] 2.2.8.1.1.2.1 Basic (TS_SECURITY_HEADER) SEC_FLAGSHI_VALID field "
211 "set: flagsHi=0x%04" PRIx16,
212 flagsHi);
213 }
214 WLog_Print(rdp->log, WLOG_TRACE, "%s",
215 rdp_security_flag_string(*flags, buffer, sizeof(buffer)));
216 if (length)
217 *length -= 4;
218
219 return TRUE;
220}
221
231BOOL rdp_write_security_header(rdpRdp* rdp, wStream* s, UINT16 flags)
232{
233 char buffer[256] = WINPR_C_ARRAY_INIT;
234 WINPR_ASSERT(s);
235 WINPR_ASSERT(rdp);
236
237 if (!Stream_CheckAndLogRequiredCapacityWLog(rdp->log, (s), 4))
238 return FALSE;
239
240 WLog_Print(rdp->log, WLOG_TRACE, "%s", rdp_security_flag_string(flags, buffer, sizeof(buffer)));
241 /* Basic Security Header */
242 WINPR_ASSERT((flags & SEC_FLAGSHI_VALID) == 0); /* SEC_FLAGSHI_VALID is unsupported */
243 Stream_Write_UINT16(s, flags); /* flags */
244 Stream_Write_UINT16(s, 0); /* flagsHi (unused) */
245 return TRUE;
246}
247
248BOOL rdp_read_share_control_header(rdpRdp* rdp, wStream* s, UINT16* tpktLength,
249 UINT16* remainingLength, UINT16* type, UINT16* channel_id)
250{
251 UINT16 len = 0;
252 UINT16 tmp = 0;
253
254 WINPR_ASSERT(rdp);
255 WINPR_ASSERT(s);
256 WINPR_ASSERT(type);
257 WINPR_ASSERT(channel_id);
258
259 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 2))
260 return FALSE;
261
262 /* Share Control Header */
263 Stream_Read_UINT16(s, len); /* totalLength */
264
265 /* If length is 0x8000 then we actually got a flow control PDU that we should ignore
266 http://msdn.microsoft.com/en-us/library/cc240576.aspx */
267 if (len == 0x8000)
268 {
269 if (!rdp_read_flow_control_pdu(rdp, s, type, channel_id))
270 return FALSE;
271 *channel_id = 0;
272 if (tpktLength)
273 *tpktLength = 8; /* Flow control PDU is 8 bytes */
274 if (remainingLength)
275 *remainingLength = 0;
276
277 char buffer[128] = WINPR_C_ARRAY_INIT;
278 WLog_Print(rdp->log, WLOG_DEBUG,
279 "[Flow control PDU] type=%s, tpktLength=%" PRIu16 ", remainingLength=%" PRIu16,
280 pdu_type_to_str(*type, buffer, sizeof(buffer)), tpktLength ? *tpktLength : 0u,
281 remainingLength ? *remainingLength : 0u);
282 return TRUE;
283 }
284
285 if (len < 4U)
286 {
287 WLog_Print(rdp->log, WLOG_ERROR,
288 "Invalid share control header, length is %" PRIu16 ", must be >4", len);
289 return FALSE;
290 }
291
292 if (tpktLength)
293 *tpktLength = len;
294
295 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 2))
296 return FALSE;
297
298 Stream_Read_UINT16(s, tmp); /* pduType */
299 *type = tmp & 0x0F; /* type is in the 4 least significant bits */
300
301 size_t remLen = len - 4;
302 if (len > 5)
303 {
304 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 2))
305 return FALSE;
306
307 Stream_Read_UINT16(s, *channel_id); /* pduSource */
308 remLen = len - 6;
309 }
310 else
311 *channel_id = 0; /* Windows XP can send such short DEACTIVATE_ALL PDUs. */
312
313 char buffer[128] = WINPR_C_ARRAY_INIT;
314 WLog_Print(rdp->log, WLOG_DEBUG, "type=%s, tpktLength=%" PRIu16 ", remainingLength=%" PRIuz,
315 pdu_type_to_str(*type, buffer, sizeof(buffer)), len, remLen);
316 if (remainingLength)
317 {
318 WINPR_ASSERT(remLen <= UINT16_MAX);
319 *remainingLength = (UINT16)remLen;
320 }
321 return Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, remLen);
322}
323
324BOOL rdp_write_share_control_header(rdpRdp* rdp, wStream* s, size_t length, UINT16 type,
325 UINT16 channel_id)
326{
327 WINPR_ASSERT(s);
328 WINPR_ASSERT(rdp);
329 if (length > UINT16_MAX)
330 return FALSE;
331
332 if (length < RDP_PACKET_HEADER_MAX_LENGTH)
333 return FALSE;
334 if (!Stream_CheckAndLogRequiredCapacityWLog(rdp->log, (s), 6))
335 return FALSE;
336 length -= RDP_PACKET_HEADER_MAX_LENGTH;
337 /* Share Control Header */
338 Stream_Write_UINT16(s, WINPR_ASSERTING_INT_CAST(uint16_t, length)); /* totalLength */
339 Stream_Write_UINT16(s, WINPR_ASSERTING_INT_CAST(uint16_t, type | 0x10)); /* pduType */
340 Stream_Write_UINT16(s, WINPR_ASSERTING_INT_CAST(uint16_t, channel_id)); /* pduSource */
341 return TRUE;
342}
343
344BOOL rdp_read_share_data_header(rdpRdp* rdp, wStream* s, UINT16* length, BYTE* type,
345 UINT32* shareId, BYTE* compressedType, UINT16* compressedLength)
346{
347 WINPR_ASSERT(s);
348 WINPR_ASSERT(rdp);
349
350 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 12))
351 return FALSE;
352
353 /* Share Data Header */
354 Stream_Read_UINT32(s, *shareId); /* shareId (4 bytes) */
355 Stream_Seek_UINT8(s); /* pad1 (1 byte) */
356 Stream_Seek_UINT8(s); /* streamId (1 byte) */
357 Stream_Read_UINT16(s, *length); /* uncompressedLength (2 bytes) */
358 Stream_Read_UINT8(s, *type); /* pduType2, Data PDU Type (1 byte) */
359 Stream_Read_UINT8(s, *compressedType); /* compressedType (1 byte) */
360 Stream_Read_UINT16(s, *compressedLength); /* compressedLength (2 bytes) */
361 return TRUE;
362}
363
364BOOL rdp_write_share_data_header(rdpRdp* rdp, wStream* s, size_t length, BYTE type, UINT32 share_id)
365{
366 const size_t headerLen = RDP_PACKET_HEADER_MAX_LENGTH + RDP_SHARE_CONTROL_HEADER_LENGTH +
367 RDP_SHARE_DATA_HEADER_LENGTH;
368
369 WINPR_ASSERT(s);
370 WINPR_ASSERT(rdp);
371 if (length > UINT16_MAX)
372 return FALSE;
373
374 if (length < headerLen)
375 return FALSE;
376 length -= headerLen;
377 if (!Stream_CheckAndLogRequiredCapacityWLog(rdp->log, (s), 12))
378 return FALSE;
379
380 /* Share Data Header */
381 Stream_Write_UINT32(s, share_id); /* shareId (4 bytes) */
382 Stream_Write_UINT8(s, 0); /* pad1 (1 byte) */
383 Stream_Write_UINT8(s, STREAM_LOW); /* streamId (1 byte) */
384 Stream_Write_UINT16(
385 s, WINPR_ASSERTING_INT_CAST(uint16_t, length)); /* uncompressedLength (2 bytes) */
386 Stream_Write_UINT8(s, type); /* pduType2, Data PDU Type (1 byte) */
387 Stream_Write_UINT8(s, 0); /* compressedType (1 byte) */
388 Stream_Write_UINT16(s, 0); /* compressedLength (2 bytes) */
389 return TRUE;
390}
391
392static BOOL rdp_security_stream_init(rdpRdp* rdp, wStream* s, BOOL sec_header, UINT16* sec_flags)
393{
394 WINPR_ASSERT(rdp);
395 WINPR_ASSERT(s);
396 WINPR_ASSERT(sec_flags);
397
398 if (rdp->do_crypt)
399 {
400 if (!Stream_SafeSeek(s, 12))
401 return FALSE;
402
403 if (rdp->settings->EncryptionMethods == ENCRYPTION_METHOD_FIPS)
404 {
405 if (!Stream_SafeSeek(s, 4))
406 return FALSE;
407 }
408
409 *sec_flags |= SEC_ENCRYPT;
410
411 if (rdp->do_secure_checksum)
412 *sec_flags |= SEC_SECURE_CHECKSUM;
413 }
414 else if (*sec_flags != 0 || sec_header)
415 {
416 if (!Stream_SafeSeek(s, 4))
417 return FALSE;
418 }
419
420 return TRUE;
421}
422
423wStream* rdp_send_stream_init(rdpRdp* rdp, UINT16* sec_flags)
424{
425 wStream* s = nullptr;
426
427 WINPR_ASSERT(rdp);
428 WINPR_ASSERT(rdp->transport);
429
430 s = transport_send_stream_init(rdp->transport, 4096);
431
432 if (!s)
433 return nullptr;
434
435 if (!Stream_SafeSeek(s, RDP_PACKET_HEADER_MAX_LENGTH))
436 goto fail;
437
438 if (!rdp_security_stream_init(rdp, s, FALSE, sec_flags))
439 goto fail;
440
441 return s;
442fail:
443 Stream_Release(s);
444 return nullptr;
445}
446
447wStream* rdp_send_stream_pdu_init(rdpRdp* rdp, UINT16* sec_flags)
448{
449 wStream* s = rdp_send_stream_init(rdp, sec_flags);
450
451 if (!s)
452 return nullptr;
453
454 if (!Stream_SafeSeek(s, RDP_SHARE_CONTROL_HEADER_LENGTH))
455 goto fail;
456
457 return s;
458fail:
459 Stream_Release(s);
460 return nullptr;
461}
462
463wStream* rdp_data_pdu_init(rdpRdp* rdp, UINT16* sec_flags)
464{
465 wStream* s = rdp_send_stream_pdu_init(rdp, sec_flags);
466
467 if (!s)
468 return nullptr;
469
470 if (!Stream_SafeSeek(s, RDP_SHARE_DATA_HEADER_LENGTH))
471 goto fail;
472
473 return s;
474fail:
475 Stream_Release(s);
476 return nullptr;
477}
478
479BOOL rdp_set_error_info(rdpRdp* rdp, UINT32 errorInfo)
480{
481 BOOL rc = TRUE;
482 WINPR_ASSERT(rdp);
483
484 rdp->errorInfo = errorInfo;
485
486 if (rdp->errorInfo != ERRINFO_SUCCESS)
487 {
488 rdpContext* context = rdp->context;
489 WINPR_ASSERT(context);
490
491 rdp_print_errinfo(rdp->errorInfo);
492
493 if (context)
494 {
495 freerdp_set_last_error_log(context, MAKE_FREERDP_ERROR(ERRINFO, errorInfo));
496
497 if (context->pubSub)
498 {
499 ErrorInfoEventArgs e = WINPR_C_ARRAY_INIT;
500 EventArgsInit(&e, "freerdp");
501 e.code = rdp->errorInfo;
502 rc = PubSub_OnErrorInfo(context->pubSub, context, &e) >= 0;
503 }
504 }
505 else
506 WLog_Print(rdp->log, WLOG_ERROR, "missing context=%p", (void*)context);
507 }
508 else
509 {
510 freerdp_set_last_error_log(rdp->context, FREERDP_ERROR_SUCCESS);
511 }
512
513 return rc;
514}
515
516wStream* rdp_message_channel_pdu_init(rdpRdp* rdp, UINT16* sec_flags)
517{
518 wStream* s = nullptr;
519
520 WINPR_ASSERT(rdp);
521
522 s = transport_send_stream_init(rdp->transport, 4096);
523
524 if (!s)
525 return nullptr;
526
527 if (!Stream_SafeSeek(s, RDP_PACKET_HEADER_MAX_LENGTH))
528 goto fail;
529
530 if (!rdp_security_stream_init(rdp, s, TRUE, sec_flags))
531 goto fail;
532
533 return s;
534fail:
535 Stream_Release(s);
536 return nullptr;
537}
538
549BOOL rdp_read_header(rdpRdp* rdp, wStream* s, UINT16* length, UINT16* channelId)
550{
551 BYTE li = 0;
552 BYTE code = 0;
553 BYTE choice = 0;
554 UINT16 initiator = 0;
555
556 WINPR_ASSERT(rdp);
557 WINPR_ASSERT(rdp->settings);
558 WINPR_ASSERT(s);
559 DomainMCSPDU MCSPDU = (rdp->settings->ServerMode) ? DomainMCSPDU_SendDataRequest
560 : DomainMCSPDU_SendDataIndication;
561
562 *channelId = 0; /* Initialize in case of early abort */
563 if (!tpkt_read_header(s, length))
564 return FALSE;
565
566 if (!tpdu_read_header(s, &code, &li, *length))
567 return FALSE;
568
569 if (code != X224_TPDU_DATA)
570 {
571 if (code == X224_TPDU_DISCONNECT_REQUEST)
572 {
573 WLog_Print(rdp->log, WLOG_WARN, "Received X224_TPDU_DISCONNECT_REQUEST, terminating");
574 utils_abort_connect(rdp);
575 return TRUE;
576 }
577
578 WLog_Print(rdp->log, WLOG_WARN,
579 "Unexpected X224 TPDU type %s [%08" PRIx32 "] instead of %s",
580 tpdu_type_to_string(code), code, tpdu_type_to_string(X224_TPDU_DATA));
581 return FALSE;
582 }
583
584 if (!per_read_choice(s, &choice))
585 return FALSE;
586
587 const DomainMCSPDU domainMCSPDU = (DomainMCSPDU)(choice >> 2);
588
589 if (domainMCSPDU != MCSPDU)
590 {
591 if (domainMCSPDU != DomainMCSPDU_DisconnectProviderUltimatum)
592 {
593 WLog_Print(rdp->log, WLOG_WARN, "Received %s instead of %s",
594 mcs_domain_pdu_string(domainMCSPDU), mcs_domain_pdu_string(MCSPDU));
595 return FALSE;
596 }
597 }
598
599 MCSPDU = domainMCSPDU;
600
601 if (*length < 8U)
602 {
603 WLog_Print(rdp->log, WLOG_WARN, "TPDU invalid length, got %" PRIu16 ", expected at least 8",
604 *length);
605 return FALSE;
606 }
607
608 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, *length - 8))
609 return FALSE;
610
611 if (MCSPDU == DomainMCSPDU_DisconnectProviderUltimatum)
612 {
613 int reason = 0;
614 TerminateEventArgs e = WINPR_C_ARRAY_INIT;
615
616 if (!mcs_recv_disconnect_provider_ultimatum(rdp->mcs, s, &reason))
617 return FALSE;
618
619 rdpContext* context = rdp->context;
620 WINPR_ASSERT(context);
621 context->disconnectUltimatum = reason;
622
623 if (rdp->errorInfo == ERRINFO_SUCCESS)
624 {
630 UINT32 errorInfo = ERRINFO_RPC_INITIATED_DISCONNECT;
631 if (reason == Disconnect_Ultimatum_provider_initiated)
632 errorInfo = ERRINFO_RPC_INITIATED_DISCONNECT;
633 else if (reason == Disconnect_Ultimatum_user_requested)
634 errorInfo = ERRINFO_LOGOFF_BY_USER;
635
636 if (!rdp_set_error_info(rdp, errorInfo))
637 return FALSE;
638 }
639
640 WLog_Print(rdp->log, WLOG_DEBUG, "DisconnectProviderUltimatum: reason: %d", reason);
641 utils_abort_connect(rdp);
642 EventArgsInit(&e, "freerdp");
643 e.code = 0;
644 return PubSub_OnTerminate(rdp->pubSub, context, &e) >= 0;
645 }
646
647 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 5))
648 return FALSE;
649
650 if (!per_read_integer16(s, &initiator, MCS_BASE_CHANNEL_ID)) /* initiator (UserId) */
651 return FALSE;
652
653 if (!per_read_integer16(s, channelId, 0)) /* channelId */
654 return FALSE;
655
656 const uint8_t dataPriority = Stream_Get_UINT8(s); /* dataPriority + Segmentation (0x70) */
657 WLog_Print(rdp->log, WLOG_TRACE, "dataPriority=%" PRIu8, dataPriority);
658
659 if (!per_read_length(s, length)) /* userData (OCTET_STRING) */
660 return FALSE;
661
662 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, *length))
663 return FALSE;
664
665 return TRUE;
666}
667
678BOOL rdp_write_header(rdpRdp* rdp, wStream* s, size_t length, UINT16 channelId, UINT16 sec_flags)
679{
680 WINPR_ASSERT(rdp);
681 WINPR_ASSERT(rdp->settings);
682 WINPR_ASSERT(s);
683 WINPR_ASSERT(length >= RDP_PACKET_HEADER_MAX_LENGTH);
684 if (length > UINT16_MAX)
685 return FALSE;
686
687 DomainMCSPDU MCSPDU = (rdp->settings->ServerMode) ? DomainMCSPDU_SendDataIndication
688 : DomainMCSPDU_SendDataRequest;
689
690 if ((sec_flags & SEC_ENCRYPT) && (rdp->settings->EncryptionMethods == ENCRYPTION_METHOD_FIPS))
691 {
692 const UINT16 body_length = (UINT16)length - RDP_PACKET_HEADER_MAX_LENGTH;
693 const UINT16 pad = 8 - (body_length % 8);
694
695 if (pad != 8)
696 length += pad;
697 }
698
699 if (!mcs_write_domain_mcspdu_header(s, MCSPDU, (UINT16)length, 0))
700 return FALSE;
701 if (!per_write_integer16(s, rdp->mcs->userId, MCS_BASE_CHANNEL_ID)) /* initiator */
702 return FALSE;
703 if (!per_write_integer16(s, channelId, 0)) /* channelId */
704 return FALSE;
705 if (!Stream_EnsureRemainingCapacity(s, 3))
706 return FALSE;
707 Stream_Write_UINT8(s, 0x70); /* dataPriority + segmentation */
708 /*
709 * We always encode length in two bytes, even though we could use
710 * only one byte if length <= 0x7F. It is just easier that way,
711 * because we can leave room for fixed-length header, store all
712 * the data first and then store the header.
713 */
714 length = (length - RDP_PACKET_HEADER_MAX_LENGTH) | 0x8000;
715 Stream_Write_UINT16_BE(
716 s, WINPR_ASSERTING_INT_CAST(uint16_t, length)); /* userData (OCTET_STRING) */
717 return TRUE;
718}
719
720static BOOL rdp_security_stream_out(rdpRdp* rdp, wStream* s, size_t length, UINT16 sec_flags,
721 UINT32* pad)
722{
723 BOOL status = 0;
724 WINPR_ASSERT(rdp);
725 if (length > UINT16_MAX)
726 return FALSE;
727
728 *pad = 0;
729
730 if (sec_flags != 0)
731 {
732 WINPR_ASSERT(sec_flags <= UINT16_MAX);
733 if (!rdp_write_security_header(rdp, s, sec_flags))
734 return FALSE;
735
736 if (sec_flags & SEC_ENCRYPT)
737 {
738 if (rdp->settings->EncryptionMethods == ENCRYPTION_METHOD_FIPS)
739 {
740 BYTE* data = Stream_PointerAs(s, BYTE) + 12;
741 const size_t size = WINPR_ASSERTING_INT_CAST(size_t, (data - Stream_Buffer(s)));
742 if (size > length)
743 return FALSE;
744
745 length -= size;
746
747 Stream_Write_UINT16(s, 0x10); /* length */
748 Stream_Write_UINT8(s, 0x1); /* TSFIPS_VERSION 1*/
749 /* handle padding */
750 *pad = 8 - (length % 8);
751
752 if (*pad == 8)
753 *pad = 0;
754
755 if (*pad)
756 memset(data + length, 0, *pad);
757
758 Stream_Write_UINT8(s, WINPR_ASSERTING_INT_CAST(uint8_t, *pad));
759
760 if (!Stream_CheckAndLogRequiredCapacityWLog(rdp->log, s, 8))
761 return FALSE;
762 if (!security_hmac_signature(data, length, Stream_Pointer(s), 8, rdp))
763 return FALSE;
764
765 Stream_Seek(s, 8);
766 if (!security_fips_encrypt(data, length + *pad, rdp))
767 return FALSE;
768 }
769 else
770 {
771 const BYTE* data = Stream_PointerAs(s, const BYTE) + 8;
772 const size_t diff = Stream_GetPosition(s) + 8ULL;
773 if (diff > length)
774 return FALSE;
775 length -= diff;
776
777 if (!Stream_CheckAndLogRequiredCapacityWLog(rdp->log, s, 8))
778 return FALSE;
779 if (sec_flags & SEC_SECURE_CHECKSUM)
780 status = security_salted_mac_signature(rdp, data, (UINT32)length, TRUE,
781 Stream_Pointer(s), 8);
782 else
783 status = security_mac_signature(rdp, data, (UINT32)length,
784 Stream_PointerAs(s, BYTE), 8);
785
786 if (!status)
787 return FALSE;
788
789 Stream_Seek(s, 8);
790
791 if (!security_encrypt(Stream_Pointer(s), length, rdp))
792 return FALSE;
793 }
794 }
795 }
796
797 return TRUE;
798}
799
800static UINT32 rdp_get_sec_bytes(rdpRdp* rdp, UINT16 sec_flags)
801{
802 UINT32 sec_bytes = 0;
803
804 if (sec_flags & SEC_ENCRYPT)
805 {
806 sec_bytes = 12;
807
808 if (rdp->settings->EncryptionMethods == ENCRYPTION_METHOD_FIPS)
809 sec_bytes += 4;
810 }
811 else if (sec_flags != 0)
812 {
813 sec_bytes = 4;
814 }
815 else
816 {
817 sec_bytes = 0;
818 }
819
820 return sec_bytes;
821}
822
823BOOL rdp_send(rdpRdp* rdp, wStream* s, UINT16 channelId, UINT16 sec_flags)
824{
825 BOOL rc = FALSE;
826 UINT32 pad = 0;
827 BOOL should_unlock = FALSE;
828
829 if (!s)
830 return FALSE;
831
832 if (!rdp)
833 goto fail;
834
835 if (sec_flags & SEC_ENCRYPT)
836 {
837 security_lock(rdp);
838 should_unlock = TRUE;
839 }
840
841 {
842 size_t length = Stream_GetPosition(s);
843 Stream_ResetPosition(s);
844 if (!rdp_write_header(rdp, s, length, channelId, sec_flags))
845 goto fail;
846
847 if (!rdp_security_stream_out(rdp, s, length, sec_flags, &pad))
848 goto fail;
849
850 length += pad;
851 if (!Stream_SetPosition(s, length))
852 goto fail;
853 Stream_SealLength(s);
854 }
855
856 if (transport_write(rdp->transport, s) < 0)
857 goto fail;
858
859 rc = TRUE;
860fail:
861 if (should_unlock)
862 security_unlock(rdp);
863 Stream_Release(s);
864 return rc;
865}
866
867BOOL rdp_send_pdu(rdpRdp* rdp, wStream* s, UINT16 type, UINT16 channel_id, UINT16 sec_flags)
868{
869 BOOL rc = FALSE;
870 UINT32 sec_bytes = 0;
871 size_t sec_hold = 0;
872 UINT32 pad = 0;
873 BOOL should_unlock = FALSE;
874
875 if (!s)
876 return FALSE;
877
878 if (!rdp)
879 goto fail;
880
881 if (sec_flags & SEC_ENCRYPT)
882 {
883 security_lock(rdp);
884 should_unlock = TRUE;
885 }
886
887 {
888 size_t length = Stream_GetPosition(s);
889 Stream_ResetPosition(s);
890 if (!rdp_write_header(rdp, s, length, MCS_GLOBAL_CHANNEL_ID, sec_flags))
891 goto fail;
892 sec_bytes = rdp_get_sec_bytes(rdp, sec_flags);
893 sec_hold = Stream_GetPosition(s);
894 Stream_Seek(s, sec_bytes);
895 if (!rdp_write_share_control_header(rdp, s, length - sec_bytes, type, channel_id))
896 goto fail;
897 if (!Stream_SetPosition(s, sec_hold))
898 goto fail;
899
900 if (!rdp_security_stream_out(rdp, s, length, sec_flags, &pad))
901 goto fail;
902
903 length += pad;
904 if (!Stream_SetPosition(s, length))
905 goto fail;
906 Stream_SealLength(s);
907 }
908
909 if (transport_write(rdp->transport, s) < 0)
910 goto fail;
911
912 rc = TRUE;
913fail:
914 if (should_unlock)
915 security_unlock(rdp);
916 return rc;
917}
918
919BOOL rdp_send_data_pdu(rdpRdp* rdp, wStream* s, BYTE type, UINT16 channel_id, UINT16 sec_flags)
920{
921 BOOL rc = FALSE;
922 UINT32 sec_bytes = 0;
923 size_t sec_hold = 0;
924 UINT32 pad = 0;
925 BOOL should_unlock = FALSE;
926
927 if (!s)
928 return FALSE;
929
930 if (!rdp)
931 goto fail;
932
933 if (sec_flags & SEC_ENCRYPT)
934 {
935 security_lock(rdp);
936 should_unlock = TRUE;
937 }
938
939 {
940 size_t length = Stream_GetPosition(s);
941 Stream_ResetPosition(s);
942 if (!rdp_write_header(rdp, s, length, MCS_GLOBAL_CHANNEL_ID, sec_flags))
943 goto fail;
944 sec_bytes = rdp_get_sec_bytes(rdp, sec_flags);
945 sec_hold = Stream_GetPosition(s);
946 Stream_Seek(s, sec_bytes);
947 if (!rdp_write_share_control_header(rdp, s, length - sec_bytes, PDU_TYPE_DATA, channel_id))
948 goto fail;
949 if (!rdp_write_share_data_header(rdp, s, length - sec_bytes, type, rdp->settings->ShareId))
950 goto fail;
951 if (!Stream_SetPosition(s, sec_hold))
952 goto fail;
953
954 if (!rdp_security_stream_out(rdp, s, length, sec_flags, &pad))
955 goto fail;
956
957 length += pad;
958 if (!Stream_SetPosition(s, length))
959 goto fail;
960 Stream_SealLength(s);
961 }
962 WLog_Print(rdp->log, WLOG_DEBUG,
963 "sending data (type=0x%x size=%" PRIuz " channelId=%" PRIu16 ")", type,
964 Stream_Length(s), channel_id);
965
966 rdp->outPackets++;
967 if (transport_write(rdp->transport, s) < 0)
968 goto fail;
969
970 rc = TRUE;
971fail:
972 if (should_unlock)
973 security_unlock(rdp);
974 Stream_Release(s);
975 return rc;
976}
977
978BOOL rdp_send_message_channel_pdu(rdpRdp* rdp, wStream* s, UINT16 sec_flags)
979{
980 BOOL rc = FALSE;
981 UINT32 pad = 0;
982 BOOL should_unlock = FALSE;
983
984 WINPR_ASSERT(rdp);
985 WINPR_ASSERT(s);
986
987 if (sec_flags & SEC_ENCRYPT)
988 {
989 security_lock(rdp);
990 should_unlock = TRUE;
991 }
992
993 {
994 size_t length = Stream_GetPosition(s);
995 Stream_ResetPosition(s);
996 if (!rdp_write_header(rdp, s, length, rdp->mcs->messageChannelId, sec_flags))
997 goto fail;
998
999 if (!rdp_security_stream_out(rdp, s, length, sec_flags, &pad))
1000 goto fail;
1001
1002 length += pad;
1003 if (!Stream_SetPosition(s, length))
1004 goto fail;
1005 }
1006 Stream_SealLength(s);
1007
1008 if (transport_write(rdp->transport, s) < 0)
1009 goto fail;
1010
1011 rc = TRUE;
1012fail:
1013 if (should_unlock)
1014 security_unlock(rdp);
1015
1016 Stream_Release(s);
1017 return rc;
1018}
1019
1020static BOOL rdp_recv_server_shutdown_denied_pdu(WINPR_ATTR_UNUSED rdpRdp* rdp,
1021 WINPR_ATTR_UNUSED wStream* s)
1022{
1023 return TRUE;
1024}
1025
1026static BOOL rdp_recv_server_set_keyboard_indicators_pdu(rdpRdp* rdp, wStream* s)
1027{
1028 WINPR_ASSERT(rdp);
1029 WINPR_ASSERT(s);
1030
1031 rdpContext* context = rdp->context;
1032 WINPR_ASSERT(context);
1033 WINPR_ASSERT(context->update);
1034
1035 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 4))
1036 return FALSE;
1037
1038 const uint16_t unitId = Stream_Get_UINT16(s); /* unitId (2 bytes) */
1039 if (unitId != 0)
1040 {
1041 WLog_Print(rdp->log, WLOG_WARN,
1042 "[MS-RDPBCGR] 2.2.8.2.1.1 Set Keyboard Indicators PDU Data "
1043 "(TS_SET_KEYBOARD_INDICATORS_PDU)::unitId should be 0, is %" PRIu16,
1044 unitId);
1045 }
1046 const UINT16 ledFlags = Stream_Get_UINT16(s); /* ledFlags (2 bytes) */
1047 return IFCALLRESULT(TRUE, context->update->SetKeyboardIndicators, context, ledFlags);
1048}
1049
1050static BOOL rdp_recv_server_set_keyboard_ime_status_pdu(rdpRdp* rdp, wStream* s)
1051{
1052 if (!rdp || !rdp->input)
1053 return FALSE;
1054
1055 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 10))
1056 return FALSE;
1057
1058 const uint16_t unitId = Stream_Get_UINT16(s); /* unitId (2 bytes) */
1059 if (unitId != 0)
1060 {
1061 WLog_Print(rdp->log, WLOG_WARN,
1062 "[MS-RDPBCGR] 2.2.8.2.2.1 Set Keyboard IME Status PDU Data "
1063 "(TS_SET_KEYBOARD_IME_STATUS_PDU)::unitId should be 0, is %" PRIu16,
1064 unitId);
1065 }
1066 const uint32_t imeState = Stream_Get_UINT32(s); /* imeState (4 bytes) */
1067 const uint32_t imeConvMode = Stream_Get_UINT32(s); /* imeConvMode (4 bytes) */
1068 return IFCALLRESULT(TRUE, rdp->update->SetKeyboardImeStatus, rdp->context, unitId, imeState,
1069 imeConvMode);
1070}
1071
1072static BOOL rdp_recv_set_error_info_data_pdu(rdpRdp* rdp, wStream* s)
1073{
1074 UINT32 errorInfo = 0;
1075
1076 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 4))
1077 return FALSE;
1078
1079 Stream_Read_UINT32(s, errorInfo); /* errorInfo (4 bytes) */
1080 return rdp_set_error_info(rdp, errorInfo);
1081}
1082
1083static BOOL rdp_recv_server_auto_reconnect_status_pdu(rdpRdp* rdp, wStream* s)
1084{
1085 UINT32 arcStatus = 0;
1086
1087 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 4))
1088 return FALSE;
1089
1090 Stream_Read_UINT32(s, arcStatus); /* arcStatus (4 bytes) */
1091 WLog_Print(rdp->log, WLOG_WARN, "AutoReconnectStatus: 0x%08" PRIX32 "", arcStatus);
1092 return TRUE;
1093}
1094
1095static BOOL rdp_recv_server_status_info_pdu(rdpRdp* rdp, wStream* s)
1096{
1097 UINT32 statusCode = 0;
1098
1099 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 4))
1100 return FALSE;
1101
1102 Stream_Read_UINT32(s, statusCode); /* statusCode (4 bytes) */
1103
1104 if (rdp->update->ServerStatusInfo)
1105 return rdp->update->ServerStatusInfo(rdp->context, statusCode);
1106
1107 return TRUE;
1108}
1109
1110static BOOL rdp_recv_monitor_layout_pdu(rdpRdp* rdp, wStream* s)
1111{
1112 UINT32 monitorCount = 0;
1113 MONITOR_DEF* monitorDefArray = nullptr;
1114 BOOL ret = TRUE;
1115
1116 WINPR_ASSERT(rdp);
1117 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 4))
1118 return FALSE;
1119
1120 Stream_Read_UINT32(s, monitorCount); /* monitorCount (4 bytes) */
1121
1122 if (!Stream_CheckAndLogRequiredLengthOfSizeWLog(rdp->log, s, monitorCount, 20ull))
1123 return FALSE;
1124
1125 monitorDefArray = (MONITOR_DEF*)calloc(monitorCount, sizeof(MONITOR_DEF));
1126
1127 if (!monitorDefArray)
1128 return FALSE;
1129
1130 for (UINT32 index = 0; index < monitorCount; index++)
1131 {
1132 MONITOR_DEF* monitor = &monitorDefArray[index];
1133 Stream_Read_INT32(s, monitor->left); /* left (4 bytes) */
1134 Stream_Read_INT32(s, monitor->top); /* top (4 bytes) */
1135 Stream_Read_INT32(s, monitor->right); /* right (4 bytes) */
1136 Stream_Read_INT32(s, monitor->bottom); /* bottom (4 bytes) */
1137 Stream_Read_UINT32(s, monitor->flags); /* flags (4 bytes) */
1138 }
1139
1140 IFCALLRET(rdp->update->RemoteMonitors, ret, rdp->context, monitorCount, monitorDefArray);
1141 free(monitorDefArray);
1142 if (!ret)
1143 return FALSE;
1144 return rdp_set_monitor_layout_pdu_state(rdp, TRUE);
1145}
1146
1147state_run_t rdp_recv_data_pdu(rdpRdp* rdp, wStream* s)
1148{
1149 BYTE type = 0;
1150 wStream* cs = nullptr;
1151 UINT16 length = 0;
1152 UINT32 shareId = 0;
1153 BYTE compressedType = 0;
1154 UINT16 compressedLength = 0;
1155
1156 WINPR_ASSERT(rdp);
1157 if (!rdp_read_share_data_header(rdp, s, &length, &type, &shareId, &compressedType,
1158 &compressedLength))
1159 {
1160 WLog_Print(rdp->log, WLOG_ERROR, "rdp_read_share_data_header() failed");
1161 return STATE_RUN_FAILED;
1162 }
1163
1164 cs = s;
1165
1166 if (compressedType & PACKET_COMPRESSED)
1167 {
1168 if (compressedLength < 18)
1169 {
1170 WLog_Print(rdp->log, WLOG_ERROR,
1171 "bulk_decompress: not enough bytes for compressedLength %" PRIu16 "",
1172 compressedLength);
1173 return STATE_RUN_FAILED;
1174 }
1175
1176 UINT32 DstSize = 0;
1177 const BYTE* pDstData = nullptr;
1178 UINT16 SrcSize = compressedLength - 18;
1179
1180 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, SrcSize))
1181 {
1182 WLog_Print(rdp->log, WLOG_ERROR,
1183 "bulk_decompress: not enough bytes for compressedLength %" PRIu16 "",
1184 compressedLength);
1185 return STATE_RUN_FAILED;
1186 }
1187
1188 if (bulk_decompress(rdp->bulk, Stream_ConstPointer(s), SrcSize, &pDstData, &DstSize,
1189 compressedType))
1190 {
1191 cs = transport_take_from_pool(rdp->transport, DstSize);
1192 if (!cs)
1193 {
1194 WLog_Print(rdp->log, WLOG_ERROR, "Couldn't take stream from pool");
1195 return STATE_RUN_FAILED;
1196 }
1197
1198 Stream_ResetPosition(cs);
1199 Stream_Write(cs, pDstData, DstSize);
1200 Stream_SealLength(cs);
1201 Stream_ResetPosition(cs);
1202 }
1203 else
1204 {
1205 WLog_Print(rdp->log, WLOG_ERROR, "bulk_decompress() failed");
1206 return STATE_RUN_FAILED;
1207 }
1208
1209 Stream_Seek(s, SrcSize);
1210 }
1211
1212 WLog_Print(rdp->log, WLOG_DEBUG, "recv %s Data PDU (0x%02" PRIX8 "), length: %" PRIu16 "",
1213 data_pdu_type_to_string(type), type, length);
1214
1215 switch (type)
1216 {
1217 case DATA_PDU_TYPE_UPDATE:
1218 if (!update_recv(rdp->update, cs))
1219 {
1220 WLog_Print(rdp->log, WLOG_ERROR, "DATA_PDU_TYPE_UPDATE - update_recv() failed");
1221 goto out_fail;
1222 }
1223
1224 break;
1225
1226 case DATA_PDU_TYPE_CONTROL:
1227 if (!rdp_recv_server_control_pdu(rdp, cs))
1228 {
1229 WLog_Print(rdp->log, WLOG_ERROR,
1230 "DATA_PDU_TYPE_CONTROL - rdp_recv_server_control_pdu() failed");
1231 goto out_fail;
1232 }
1233
1234 break;
1235
1236 case DATA_PDU_TYPE_POINTER:
1237 if (!update_recv_pointer(rdp->update, cs))
1238 {
1239 WLog_Print(rdp->log, WLOG_ERROR,
1240 "DATA_PDU_TYPE_POINTER - update_recv_pointer() failed");
1241 goto out_fail;
1242 }
1243
1244 break;
1245
1246 case DATA_PDU_TYPE_SYNCHRONIZE:
1247 if (!rdp_recv_server_synchronize_pdu(rdp, cs))
1248 {
1249 WLog_Print(rdp->log, WLOG_ERROR,
1250 "DATA_PDU_TYPE_SYNCHRONIZE - rdp_recv_synchronize_pdu() failed");
1251 goto out_fail;
1252 }
1253
1254 break;
1255
1256 case DATA_PDU_TYPE_PLAY_SOUND:
1257 if (!update_recv_play_sound(rdp->update, cs))
1258 {
1259 WLog_Print(rdp->log, WLOG_ERROR,
1260 "DATA_PDU_TYPE_PLAY_SOUND - update_recv_play_sound() failed");
1261 goto out_fail;
1262 }
1263
1264 break;
1265
1266 case DATA_PDU_TYPE_SHUTDOWN_DENIED:
1267 if (!rdp_recv_server_shutdown_denied_pdu(rdp, cs))
1268 {
1269 WLog_Print(
1270 rdp->log, WLOG_ERROR,
1271 "DATA_PDU_TYPE_SHUTDOWN_DENIED - rdp_recv_server_shutdown_denied_pdu() failed");
1272 goto out_fail;
1273 }
1274
1275 break;
1276
1277 case DATA_PDU_TYPE_SAVE_SESSION_INFO:
1278 if (!rdp_recv_save_session_info(rdp, cs))
1279 {
1280 WLog_Print(rdp->log, WLOG_ERROR,
1281 "DATA_PDU_TYPE_SAVE_SESSION_INFO - rdp_recv_save_session_info() failed");
1282 goto out_fail;
1283 }
1284
1285 break;
1286
1287 case DATA_PDU_TYPE_FONT_MAP:
1288 if (!rdp_recv_font_map_pdu(rdp, cs))
1289 {
1290 WLog_Print(rdp->log, WLOG_ERROR,
1291 "DATA_PDU_TYPE_FONT_MAP - rdp_recv_font_map_pdu() failed");
1292 goto out_fail;
1293 }
1294
1295 break;
1296
1297 case DATA_PDU_TYPE_SET_KEYBOARD_INDICATORS:
1298 if (!rdp_recv_server_set_keyboard_indicators_pdu(rdp, cs))
1299 {
1300 WLog_Print(rdp->log, WLOG_ERROR,
1301 "DATA_PDU_TYPE_SET_KEYBOARD_INDICATORS - "
1302 "rdp_recv_server_set_keyboard_indicators_pdu() failed");
1303 goto out_fail;
1304 }
1305
1306 break;
1307
1308 case DATA_PDU_TYPE_SET_KEYBOARD_IME_STATUS:
1309 if (!rdp_recv_server_set_keyboard_ime_status_pdu(rdp, cs))
1310 {
1311 WLog_Print(rdp->log, WLOG_ERROR,
1312 "DATA_PDU_TYPE_SET_KEYBOARD_IME_STATUS - "
1313 "rdp_recv_server_set_keyboard_ime_status_pdu() failed");
1314 goto out_fail;
1315 }
1316
1317 break;
1318
1319 case DATA_PDU_TYPE_SET_ERROR_INFO:
1320 if (!rdp_recv_set_error_info_data_pdu(rdp, cs))
1321 {
1322 WLog_Print(
1323 rdp->log, WLOG_ERROR,
1324 "DATA_PDU_TYPE_SET_ERROR_INFO - rdp_recv_set_error_info_data_pdu() failed");
1325 goto out_fail;
1326 }
1327
1328 break;
1329
1330 case DATA_PDU_TYPE_ARC_STATUS:
1331 if (!rdp_recv_server_auto_reconnect_status_pdu(rdp, cs))
1332 {
1333 WLog_Print(rdp->log, WLOG_ERROR,
1334 "DATA_PDU_TYPE_ARC_STATUS - "
1335 "rdp_recv_server_auto_reconnect_status_pdu() failed");
1336 goto out_fail;
1337 }
1338
1339 break;
1340
1341 case DATA_PDU_TYPE_STATUS_INFO:
1342 if (!rdp_recv_server_status_info_pdu(rdp, cs))
1343 {
1344 WLog_Print(rdp->log, WLOG_ERROR,
1345 "DATA_PDU_TYPE_STATUS_INFO - rdp_recv_server_status_info_pdu() failed");
1346 goto out_fail;
1347 }
1348
1349 break;
1350
1351 case DATA_PDU_TYPE_MONITOR_LAYOUT:
1352 if (!rdp_recv_monitor_layout_pdu(rdp, cs))
1353 {
1354 WLog_Print(rdp->log, WLOG_ERROR,
1355 "DATA_PDU_TYPE_MONITOR_LAYOUT - rdp_recv_monitor_layout_pdu() failed");
1356 goto out_fail;
1357 }
1358
1359 break;
1360
1361 default:
1362 WLog_Print(rdp->log, WLOG_WARN,
1363 "[UNHANDLED] %s Data PDU (0x%02" PRIX8 "), length: %" PRIu16 "",
1364 data_pdu_type_to_string(type), type, length);
1365 break;
1366 }
1367
1368 if (cs != s)
1369 Stream_Release(cs);
1370
1371 return STATE_RUN_SUCCESS;
1372out_fail:
1373
1374 if (cs != s)
1375 Stream_Release(cs);
1376
1377 return STATE_RUN_FAILED;
1378}
1379
1380state_run_t rdp_recv_message_channel_pdu(rdpRdp* rdp, wStream* s, UINT16 securityFlags)
1381{
1382 WINPR_ASSERT(rdp);
1383 WINPR_ASSERT(s);
1384
1385 if (securityFlags & SEC_AUTODETECT_REQ)
1386 {
1387 /* Server Auto-Detect Request PDU */
1388 return autodetect_recv_request_packet(rdp->autodetect, RDP_TRANSPORT_TCP, s);
1389 }
1390
1391 if (securityFlags & SEC_AUTODETECT_RSP)
1392 {
1393 /* Client Auto-Detect Response PDU */
1394 return autodetect_recv_response_packet(rdp->autodetect, RDP_TRANSPORT_TCP, s);
1395 }
1396
1397 if (securityFlags & SEC_HEARTBEAT)
1398 {
1399 /* Heartbeat PDU */
1400 return rdp_recv_heartbeat_packet(rdp, s);
1401 }
1402
1403 if (securityFlags & SEC_TRANSPORT_REQ)
1404 {
1405 return multitransport_recv_request(rdp->multitransport, s);
1406 }
1407
1408 if (securityFlags & SEC_TRANSPORT_RSP)
1409 {
1410 return multitransport_recv_response(rdp->multitransport, s);
1411 }
1412
1413 if (securityFlags & SEC_LICENSE_PKT)
1414 {
1415 return license_recv(rdp->license, s);
1416 }
1417
1418 if (securityFlags & SEC_LICENSE_ENCRYPT_CS)
1419 {
1420 return license_recv(rdp->license, s);
1421 }
1422
1423 if (securityFlags & SEC_LICENSE_ENCRYPT_SC)
1424 {
1425 return license_recv(rdp->license, s);
1426 }
1427
1428 return STATE_RUN_SUCCESS;
1429}
1430
1431state_run_t rdp_recv_out_of_sequence_pdu(rdpRdp* rdp, wStream* s, UINT16 pduType, UINT16 length)
1432{
1433 state_run_t rc = STATE_RUN_FAILED;
1434 WINPR_ASSERT(rdp);
1435
1436 switch (pduType)
1437 {
1438 case PDU_TYPE_DATA:
1439 rc = rdp_recv_data_pdu(rdp, s);
1440 break;
1441 case PDU_TYPE_SERVER_REDIRECTION:
1442 rc = rdp_recv_enhanced_security_redirection_packet(rdp, s);
1443 break;
1444 case PDU_TYPE_FLOW_RESPONSE:
1445 case PDU_TYPE_FLOW_STOP:
1446 case PDU_TYPE_FLOW_TEST:
1447 rc = STATE_RUN_SUCCESS;
1448 break;
1449 default:
1450 {
1451 char buffer1[256] = WINPR_C_ARRAY_INIT;
1452 char buffer2[256] = WINPR_C_ARRAY_INIT;
1453
1454 WLog_Print(rdp->log, WLOG_ERROR, "expected %s, got %s",
1455 pdu_type_to_str(PDU_TYPE_DEMAND_ACTIVE, buffer1, sizeof(buffer1)),
1456 pdu_type_to_str(pduType, buffer2, sizeof(buffer2)));
1457 rc = STATE_RUN_FAILED;
1458 }
1459 break;
1460 }
1461
1462 if (!tpkt_ensure_stream_consumed(rdp->log, s, length))
1463 return STATE_RUN_FAILED;
1464 return rc;
1465}
1466
1467BOOL rdp_read_flow_control_pdu(rdpRdp* rdp, wStream* s, UINT16* type, UINT16* channel_id)
1468{
1469 /*
1470 * Read flow control PDU - documented in FlowPDU section in T.128
1471 * http://www.itu.int/rec/T-REC-T.128-199802-S/en
1472 * The specification for the PDU has pad8bits listed BEFORE pduTypeFlow.
1473 * However, so far pad8bits has always been observed to arrive AFTER pduTypeFlow.
1474 * Switched the order of these two fields to match this observation.
1475 */
1476 UINT8 pduType = 0;
1477
1478 WINPR_ASSERT(rdp);
1479 WINPR_ASSERT(s);
1480 WINPR_ASSERT(type);
1481 WINPR_ASSERT(channel_id);
1482
1483 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 6))
1484 return FALSE;
1485 Stream_Read_UINT8(s, pduType); /* pduTypeFlow */
1486 *type = pduType;
1487 Stream_Seek_UINT8(s); /* pad8bits */
1488 Stream_Seek_UINT8(s); /* flowIdentifier */
1489 Stream_Seek_UINT8(s); /* flowNumber */
1490 Stream_Read_UINT16(s, *channel_id); /* pduSource */
1491 return TRUE;
1492}
1493
1505BOOL rdp_decrypt(rdpRdp* rdp, wStream* s, UINT16* pLength, UINT16 securityFlags)
1506{
1507 BOOL res = FALSE;
1508 BYTE cmac[8] = WINPR_C_ARRAY_INIT;
1509 BYTE wmac[8] = WINPR_C_ARRAY_INIT;
1510 BOOL status = FALSE;
1511
1512 WINPR_ASSERT(rdp);
1513 WINPR_ASSERT(rdp->settings);
1514 WINPR_ASSERT(s);
1515 WINPR_ASSERT(pLength);
1516
1517 security_lock(rdp);
1518
1519 INT32 length = *pLength;
1520 if (rdp->settings->EncryptionMethods == ENCRYPTION_METHOD_NONE)
1521 return TRUE;
1522
1523 if (rdp->settings->EncryptionMethods == ENCRYPTION_METHOD_FIPS)
1524 {
1525 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, 12))
1526 goto unlock;
1527
1528 UINT16 len = 0;
1529 Stream_Read_UINT16(s, len); /* 0x10 */
1530 if (len != 0x10)
1531 WLog_Print(rdp->log, WLOG_WARN, "ENCRYPTION_METHOD_FIPS length %" PRIu16 " != 0x10",
1532 len);
1533
1534 UINT16 version = 0;
1535 Stream_Read_UINT8(s, version); /* 0x1 */
1536 if (version != 1)
1537 WLog_Print(rdp->log, WLOG_WARN, "ENCRYPTION_METHOD_FIPS version %" PRIu16 " != 1",
1538 version);
1539
1540 BYTE pad = 0;
1541 Stream_Read_UINT8(s, pad);
1542 const BYTE* sig = Stream_ConstPointer(s);
1543 Stream_Seek(s, 8); /* signature */
1544 length -= 12;
1545 const INT32 padLength = length - pad;
1546
1547 if ((length <= 0) || (padLength <= 0) || (padLength > UINT16_MAX))
1548 {
1549 WLog_Print(rdp->log, WLOG_ERROR, "FATAL: invalid pad length %" PRId32, padLength);
1550 goto unlock;
1551 }
1552
1553 if (!security_fips_decrypt(Stream_Pointer(s), (size_t)length, rdp))
1554 goto unlock;
1555
1556 if (!security_fips_check_signature(Stream_ConstPointer(s), (size_t)padLength, sig, 8, rdp))
1557 goto unlock;
1558
1559 if (!Stream_SetLength(s, Stream_Length(s) - pad))
1560 goto unlock;
1561
1562 *pLength = (UINT16)padLength;
1563 }
1564 else
1565 {
1566 if (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, sizeof(wmac)))
1567 goto unlock;
1568
1569 Stream_Read(s, wmac, sizeof(wmac));
1570 length -= sizeof(wmac);
1571
1572 if (length <= 0)
1573 {
1574 WLog_Print(rdp->log, WLOG_ERROR, "FATAL: invalid length field");
1575 goto unlock;
1576 }
1577
1578 if (!security_decrypt(Stream_PointerAs(s, BYTE), (size_t)length, rdp))
1579 goto unlock;
1580
1581 if (securityFlags & SEC_SECURE_CHECKSUM)
1582 status = security_salted_mac_signature(rdp, Stream_ConstPointer(s), (UINT32)length,
1583 FALSE, cmac, sizeof(cmac));
1584 else
1585 status = security_mac_signature(rdp, Stream_ConstPointer(s), (UINT32)length, cmac,
1586 sizeof(cmac));
1587
1588 if (!status)
1589 goto unlock;
1590
1591 if (memcmp(wmac, cmac, sizeof(wmac)) != 0)
1592 {
1593 WLog_Print(rdp->log, WLOG_ERROR, "WARNING: invalid packet signature");
1594 /*
1595 * Because Standard RDP Security is totally broken,
1596 * and cannot protect against MITM, don't treat signature
1597 * verification failure as critical. This at least enables
1598 * us to work with broken RDP clients and servers that
1599 * generate invalid signatures.
1600 */
1601 // return FALSE;
1602 }
1603
1604 *pLength = (UINT16)length;
1605 }
1606 res = TRUE;
1607unlock:
1608 security_unlock(rdp);
1609 return res;
1610}
1611
1612const char* pdu_type_to_str(UINT16 pduType, char* buffer, size_t length)
1613{
1614 const char* str = nullptr;
1615 switch (pduType)
1616 {
1617 case PDU_TYPE_DEMAND_ACTIVE:
1618 str = "PDU_TYPE_DEMAND_ACTIVE";
1619 break;
1620 case PDU_TYPE_CONFIRM_ACTIVE:
1621 str = "PDU_TYPE_CONFIRM_ACTIVE";
1622 break;
1623 case PDU_TYPE_DEACTIVATE_ALL:
1624 str = "PDU_TYPE_DEACTIVATE_ALL";
1625 break;
1626 case PDU_TYPE_DATA:
1627 str = "PDU_TYPE_DATA";
1628 break;
1629 case PDU_TYPE_SERVER_REDIRECTION:
1630 str = "PDU_TYPE_SERVER_REDIRECTION";
1631 break;
1632 case PDU_TYPE_FLOW_TEST:
1633 str = "PDU_TYPE_FLOW_TEST";
1634 break;
1635 case PDU_TYPE_FLOW_RESPONSE:
1636 str = "PDU_TYPE_FLOW_RESPONSE";
1637 break;
1638 case PDU_TYPE_FLOW_STOP:
1639 str = "PDU_TYPE_FLOW_STOP";
1640 break;
1641 default:
1642 str = "PDU_TYPE_UNKNOWN";
1643 break;
1644 }
1645
1646 winpr_str_append(str, buffer, length, "");
1647 {
1648 char msg[32] = WINPR_C_ARRAY_INIT;
1649 (void)_snprintf(msg, sizeof(msg), "[0x%08" PRIx32 "]", pduType);
1650 winpr_str_append(msg, buffer, length, "");
1651 }
1652 return buffer;
1653}
1654
1661static state_run_t rdp_recv_tpkt_pdu(rdpRdp* rdp, wStream* s)
1662{
1663 state_run_t rc = STATE_RUN_SUCCESS;
1664 UINT16 length = 0;
1665 UINT16 pduType = 0;
1666 UINT16 pduSource = 0;
1667 UINT16 channelId = 0;
1668 UINT16 securityFlags = 0;
1669
1670 WINPR_ASSERT(rdp);
1671 WINPR_ASSERT(rdp->context);
1672 WINPR_ASSERT(s);
1673
1674 freerdp* instance = rdp->context->instance;
1675 WINPR_ASSERT(instance);
1676
1677 if (!rdp_read_header(rdp, s, &length, &channelId))
1678 return STATE_RUN_FAILED;
1679
1680 if (freerdp_shall_disconnect_context(rdp->context))
1681 return STATE_RUN_SUCCESS;
1682
1683 if (rdp->autodetect->bandwidthMeasureStarted)
1684 {
1685 rdp->autodetect->bandwidthMeasureByteCount += length;
1686 }
1687
1688 if (rdp->mcs->messageChannelId && (channelId == rdp->mcs->messageChannelId))
1689 {
1690 rdp->inPackets++;
1691 return rdp_handle_message_channel(rdp, s, channelId, length);
1692 }
1693
1694 if (rdp->settings->UseRdpSecurityLayer)
1695 {
1696 if (!rdp_read_security_header(rdp, s, &securityFlags, &length))
1697 return STATE_RUN_FAILED;
1698
1699 if (securityFlags & (SEC_ENCRYPT | SEC_REDIRECTION_PKT))
1700 {
1701 if (!rdp_decrypt(rdp, s, &length, securityFlags))
1702 return STATE_RUN_FAILED;
1703 }
1704
1705 if (securityFlags & SEC_REDIRECTION_PKT)
1706 {
1707 /*
1708 * [MS-RDPBCGR] 2.2.13.2.1
1709 * - no share control header, nor the 2 byte pad
1710 */
1711 Stream_Rewind(s, 2);
1712 rdp->inPackets++;
1713
1714 rc = rdp_recv_enhanced_security_redirection_packet(rdp, s);
1715 goto out;
1716 }
1717 }
1718
1719 if (channelId == MCS_GLOBAL_CHANNEL_ID)
1720 {
1721 while (Stream_GetRemainingLength(s) > 3)
1722 {
1723 wStream subbuffer;
1724 wStream* sub = nullptr;
1725 size_t diff = 0;
1726 UINT16 remain = 0;
1727
1728 if (!rdp_read_share_control_header(rdp, s, nullptr, &remain, &pduType, &pduSource))
1729 return STATE_RUN_FAILED;
1730
1731 sub = Stream_StaticInit(&subbuffer, Stream_Pointer(s), remain);
1732 if (!Stream_SafeSeek(s, remain))
1733 return STATE_RUN_FAILED;
1734
1735 rdp->settings->PduSource = pduSource;
1736 rdp->inPackets++;
1737
1738 switch (pduType)
1739 {
1740 case PDU_TYPE_DATA:
1741 rc = rdp_recv_data_pdu(rdp, sub);
1742 if (state_run_failed(rc))
1743 return rc;
1744 break;
1745
1746 case PDU_TYPE_DEACTIVATE_ALL:
1747 if (!rdp_recv_deactivate_all(rdp, sub))
1748 {
1749 WLog_Print(rdp->log, WLOG_ERROR,
1750 "rdp_recv_tpkt_pdu: rdp_recv_deactivate_all() fail");
1751 return STATE_RUN_FAILED;
1752 }
1753
1754 break;
1755
1756 case PDU_TYPE_SERVER_REDIRECTION:
1757 return rdp_recv_enhanced_security_redirection_packet(rdp, sub);
1758
1759 case PDU_TYPE_FLOW_RESPONSE:
1760 case PDU_TYPE_FLOW_STOP:
1761 case PDU_TYPE_FLOW_TEST:
1762 WLog_Print(rdp->log, WLOG_DEBUG, "flow message 0x%04" PRIX16 "", pduType);
1763 /* http://msdn.microsoft.com/en-us/library/cc240576.aspx */
1764 if (!Stream_SafeSeek(sub, remain))
1765 return STATE_RUN_FAILED;
1766 break;
1767
1768 default:
1769 {
1770 char buffer[256] = WINPR_C_ARRAY_INIT;
1771 WLog_Print(rdp->log, WLOG_ERROR, "incorrect PDU type: %s",
1772 pdu_type_to_str(pduType, buffer, sizeof(buffer)));
1773 }
1774 break;
1775 }
1776
1777 diff = Stream_GetRemainingLength(sub);
1778 if (diff > 0)
1779 {
1780 char buffer[256] = WINPR_C_ARRAY_INIT;
1781 WLog_Print(rdp->log, WLOG_WARN,
1782 "pduType %s not properly parsed, %" PRIuz
1783 " bytes remaining unhandled. Skipping.",
1784 pdu_type_to_str(pduType, buffer, sizeof(buffer)), diff);
1785 }
1786 }
1787 }
1788 else
1789 {
1790 rdp->inPackets++;
1791
1792 if (!freerdp_channel_process(instance, s, channelId, length))
1793 return STATE_RUN_FAILED;
1794 }
1795
1796out:
1797 if (!tpkt_ensure_stream_consumed(rdp->log, s, length))
1798 return STATE_RUN_FAILED;
1799 return rc;
1800}
1801
1802static state_run_t rdp_recv_fastpath_pdu(rdpRdp* rdp, wStream* s)
1803{
1804 UINT16 length = 0;
1805
1806 WINPR_ASSERT(rdp);
1807 rdpFastPath* fastpath = rdp->fastpath;
1808
1809 if (!fastpath_read_header_rdp(fastpath, s, &length))
1810 {
1811 WLog_Print(rdp->log, WLOG_ERROR, "rdp_recv_fastpath_pdu: fastpath_read_header_rdp() fail");
1812 return STATE_RUN_FAILED;
1813 }
1814
1815 if ((length == 0) || (!Stream_CheckAndLogRequiredLengthWLog(rdp->log, s, length)))
1816 {
1817 WLog_Print(rdp->log, WLOG_ERROR, "incorrect FastPath PDU header length %" PRIu16 "",
1818 length);
1819 return STATE_RUN_FAILED;
1820 }
1821
1822 if (rdp->autodetect->bandwidthMeasureStarted)
1823 {
1824 rdp->autodetect->bandwidthMeasureByteCount += length;
1825 }
1826
1827 if (!fastpath_decrypt(fastpath, s, &length))
1828 return STATE_RUN_FAILED;
1829
1830 return fastpath_recv_updates(rdp->fastpath, s);
1831}
1832
1833static state_run_t rdp_recv_pdu(rdpRdp* rdp, wStream* s)
1834{
1835 const int rc = tpkt_verify_header(s);
1836 if (rc > 0)
1837 return rdp_recv_tpkt_pdu(rdp, s);
1838 else if (rc == 0)
1839 return rdp_recv_fastpath_pdu(rdp, s);
1840 else
1841 return STATE_RUN_FAILED;
1842}
1843
1844static state_run_t rdp_handle_sc_flags(rdpRdp* rdp, wStream* s, UINT32 flag,
1845 CONNECTION_STATE nextState)
1846{
1847 const UINT32 mask = FINALIZE_SC_SYNCHRONIZE_PDU | FINALIZE_SC_CONTROL_COOPERATE_PDU |
1848 FINALIZE_SC_CONTROL_GRANTED_PDU | FINALIZE_SC_FONT_MAP_PDU;
1849 WINPR_ASSERT(rdp);
1850 state_run_t status = rdp_recv_pdu(rdp, s);
1851 if (state_run_success(status))
1852 {
1853 const UINT32 flags = rdp->finalize_sc_pdus & mask;
1854 if ((flags & flag) == flag)
1855 {
1856 if (!rdp_client_transition_to_state(rdp, nextState))
1857 status = STATE_RUN_FAILED;
1858 else
1859 status = STATE_RUN_SUCCESS;
1860 }
1861 else
1862 {
1863 char flag_buffer[256] = WINPR_C_ARRAY_INIT;
1864 char mask_buffer[256] = WINPR_C_ARRAY_INIT;
1865 WLog_Print(rdp->log, WLOG_WARN,
1866 "[%s] unexpected server message, expected flag %s [have %s]",
1867 rdp_get_state_string(rdp),
1868 rdp_finalize_flags_to_str(flag, flag_buffer, sizeof(flag_buffer)),
1869 rdp_finalize_flags_to_str(flags, mask_buffer, sizeof(mask_buffer)));
1870 }
1871 }
1872 return status;
1873}
1874
1875static state_run_t rdp_client_exchange_monitor_layout(rdpRdp* rdp, wStream* s)
1876{
1877 WINPR_ASSERT(rdp);
1878
1879 if (!rdp_check_monitor_layout_pdu_state(rdp, FALSE))
1880 return STATE_RUN_FAILED;
1881
1882 /* We might receive unrelated messages from the server (channel traffic),
1883 * so only proceed if some flag changed
1884 */
1885 const UINT32 old = rdp->finalize_sc_pdus;
1886 state_run_t status = rdp_recv_pdu(rdp, s);
1887 const UINT32 now = rdp->finalize_sc_pdus;
1888 const BOOL changed = (old != now) || rdp->monitor_layout_pdu;
1889
1890 /* This PDU is optional, so if we received a finalize PDU continue there */
1891 if (state_run_success(status) && changed)
1892 {
1893 if (!rdp->monitor_layout_pdu)
1894 {
1895 if (!rdp_finalize_is_flag_set(rdp, FINALIZE_SC_SYNCHRONIZE_PDU))
1896 return STATE_RUN_FAILED;
1897 }
1898
1899 status = rdp_client_connect_finalize(rdp);
1900 if (state_run_success(status) && !rdp->monitor_layout_pdu)
1901 status = STATE_RUN_TRY_AGAIN;
1902 }
1903 return status;
1904}
1905
1906static state_run_t rdp_recv_callback_int(WINPR_ATTR_UNUSED rdpTransport* transport, wStream* s,
1907 void* extra)
1908{
1909 state_run_t status = STATE_RUN_SUCCESS;
1910 rdpRdp* rdp = (rdpRdp*)extra;
1911
1912 WINPR_ASSERT(transport);
1913 WINPR_ASSERT(rdp);
1914 WINPR_ASSERT(s);
1915
1916 switch (rdp_get_state(rdp))
1917 {
1918 case CONNECTION_STATE_NEGO:
1919 if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_CREATE_REQUEST))
1920 status = STATE_RUN_FAILED;
1921 else
1922 status = STATE_RUN_CONTINUE;
1923 break;
1924 case CONNECTION_STATE_NLA:
1925 if (nla_get_state(rdp->nla) < NLA_STATE_AUTH_INFO)
1926 {
1927 if (nla_recv_pdu(rdp->nla, s) < 1)
1928 {
1929 WLog_Print(rdp->log, WLOG_ERROR, "%s - nla_recv_pdu() fail",
1930 rdp_get_state_string(rdp));
1931 status = STATE_RUN_FAILED;
1932 }
1933 }
1934 else if (nla_get_state(rdp->nla) == NLA_STATE_POST_NEGO)
1935 {
1936 if (nego_recv(rdp->transport, s, (void*)rdp->nego) < 0)
1937 return STATE_RUN_FAILED;
1938
1939 if (!nego_update_settings_from_state(rdp->nego, rdp->settings))
1940 return STATE_RUN_FAILED;
1941
1942 if (nego_get_state(rdp->nego) != NEGO_STATE_FINAL)
1943 {
1944 WLog_Print(rdp->log, WLOG_ERROR, "%s - nego_recv() fail",
1945 rdp_get_state_string(rdp));
1946 status = STATE_RUN_FAILED;
1947 }
1948 else if (!nla_set_state(rdp->nla, NLA_STATE_FINAL))
1949 status = STATE_RUN_FAILED;
1950 }
1951
1952 if (state_run_success(status))
1953 {
1954 if (nla_get_state(rdp->nla) == NLA_STATE_AUTH_INFO)
1955 {
1956 transport_set_nla_mode(rdp->transport, FALSE);
1957
1958 if (rdp->settings->VmConnectMode)
1959 {
1960 if (!nego_set_state(rdp->nego, NEGO_STATE_NLA))
1961 status = STATE_RUN_FAILED;
1962 else if (!nego_set_requested_protocols(rdp->nego,
1963 PROTOCOL_HYBRID | PROTOCOL_SSL))
1964 status = STATE_RUN_FAILED;
1965 else if (!nego_send_negotiation_request(rdp->nego))
1966 status = STATE_RUN_FAILED;
1967 else if (!nla_set_state(rdp->nla, NLA_STATE_POST_NEGO))
1968 status = STATE_RUN_FAILED;
1969 }
1970 else
1971 {
1972 if (!nla_set_state(rdp->nla, NLA_STATE_FINAL))
1973 status = STATE_RUN_FAILED;
1974 }
1975 }
1976 }
1977 if (state_run_success(status))
1978 {
1979
1980 if (nla_get_state(rdp->nla) == NLA_STATE_FINAL)
1981 {
1982 if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_CREATE_REQUEST))
1983 status = STATE_RUN_FAILED;
1984 else
1985 status = STATE_RUN_CONTINUE;
1986 }
1987 }
1988 break;
1989
1990 case CONNECTION_STATE_AAD:
1991 if (aad_recv(rdp->aad, s) < 1)
1992 {
1993 WLog_Print(rdp->log, WLOG_ERROR, "%s - aad_recv() fail", rdp_get_state_string(rdp));
1994 status = STATE_RUN_FAILED;
1995 }
1996 if (state_run_success(status))
1997 {
1998 if (aad_get_state(rdp->aad) == AAD_STATE_FINAL)
1999 {
2000 transport_set_aad_mode(rdp->transport, FALSE);
2001 if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_CREATE_REQUEST))
2002 status = STATE_RUN_FAILED;
2003 else
2004 status = STATE_RUN_CONTINUE;
2005 }
2006 }
2007 break;
2008
2009 case CONNECTION_STATE_MCS_CREATE_REQUEST:
2010 if (!mcs_client_begin(rdp->mcs))
2011 {
2012 WLog_Print(rdp->log, WLOG_ERROR, "%s - mcs_client_begin() fail",
2013 rdp_get_state_string(rdp));
2014 status = STATE_RUN_FAILED;
2015 }
2016 else if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_CREATE_RESPONSE))
2017 status = STATE_RUN_FAILED;
2018 else if (Stream_GetRemainingLength(s) > 0)
2019 status = STATE_RUN_CONTINUE;
2020 break;
2021
2022 case CONNECTION_STATE_MCS_CREATE_RESPONSE:
2023 if (!mcs_recv_connect_response(rdp->mcs, s))
2024 {
2025 WLog_Print(rdp->log, WLOG_ERROR, "mcs_recv_connect_response failure");
2026 status = STATE_RUN_FAILED;
2027 }
2028 else
2029 {
2030 if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_ERECT_DOMAIN))
2031 status = STATE_RUN_FAILED;
2032 else if (!mcs_send_erect_domain_request(rdp->mcs))
2033 {
2034 WLog_Print(rdp->log, WLOG_ERROR, "mcs_send_erect_domain_request failure");
2035 status = STATE_RUN_FAILED;
2036 }
2037 else if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_ATTACH_USER))
2038 status = STATE_RUN_FAILED;
2039 else if (!mcs_send_attach_user_request(rdp->mcs))
2040 {
2041 WLog_Print(rdp->log, WLOG_ERROR, "mcs_send_attach_user_request failure");
2042 status = STATE_RUN_FAILED;
2043 }
2044 else if (!rdp_client_transition_to_state(rdp,
2045 CONNECTION_STATE_MCS_ATTACH_USER_CONFIRM))
2046 status = STATE_RUN_FAILED;
2047 }
2048 break;
2049
2050 case CONNECTION_STATE_MCS_ATTACH_USER_CONFIRM:
2051 if (!mcs_recv_attach_user_confirm(rdp->mcs, s))
2052 {
2053 WLog_Print(rdp->log, WLOG_ERROR, "mcs_recv_attach_user_confirm failure");
2054 status = STATE_RUN_FAILED;
2055 }
2056 else if (!freerdp_settings_get_bool(rdp->settings, FreeRDP_SupportSkipChannelJoin))
2057 {
2058 if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_MCS_CHANNEL_JOIN_REQUEST))
2059 status = STATE_RUN_FAILED;
2060 else if (!mcs_send_channel_join_request(rdp->mcs, rdp->mcs->userId))
2061 {
2062 WLog_Print(rdp->log, WLOG_ERROR, "mcs_send_channel_join_request failure");
2063 status = STATE_RUN_FAILED;
2064 }
2065 else if (!rdp_client_transition_to_state(
2066 rdp, CONNECTION_STATE_MCS_CHANNEL_JOIN_RESPONSE))
2067 status = STATE_RUN_FAILED;
2068 }
2069 else
2070 {
2071 /* SKIP_CHANNELJOIN is active, consider channels to be joined */
2072 if (!rdp_client_skip_mcs_channel_join(rdp))
2073 status = STATE_RUN_FAILED;
2074 }
2075 break;
2076
2077 case CONNECTION_STATE_MCS_CHANNEL_JOIN_RESPONSE:
2078 if (!rdp_client_connect_mcs_channel_join_confirm(rdp, s))
2079 {
2080 WLog_Print(rdp->log, WLOG_ERROR,
2081 "%s - "
2082 "rdp_client_connect_mcs_channel_join_confirm() fail",
2083 rdp_get_state_string(rdp));
2084 status = STATE_RUN_FAILED;
2085 }
2086
2087 break;
2088
2089 case CONNECTION_STATE_CONNECT_TIME_AUTO_DETECT_REQUEST:
2090 if (!rdp_client_connect_auto_detect(rdp, s, WLOG_DEBUG))
2091 {
2092 if (!rdp_client_transition_to_state(rdp, CONNECTION_STATE_LICENSING))
2093 status = STATE_RUN_FAILED;
2094 else
2095 status = STATE_RUN_TRY_AGAIN;
2096 }
2097 break;
2098
2099 case CONNECTION_STATE_LICENSING:
2100 status = rdp_client_connect_license(rdp, s);
2101
2102 if (state_run_failed(status))
2103 {
2104 char buffer[64] = WINPR_C_ARRAY_INIT;
2105 WLog_Print(rdp->log, WLOG_DEBUG, "%s - rdp_client_connect_license() - %s",
2106 rdp_get_state_string(rdp),
2107 state_run_result_string(status, buffer, ARRAYSIZE(buffer)));
2108 }
2109
2110 break;
2111
2112 case CONNECTION_STATE_MULTITRANSPORT_BOOTSTRAPPING_REQUEST:
2113 if (!rdp_client_connect_auto_detect(rdp, s, WLOG_DEBUG))
2114 {
2115 if (!rdp_client_transition_to_state(
2116 rdp, CONNECTION_STATE_CAPABILITIES_EXCHANGE_DEMAND_ACTIVE))
2117 status = STATE_RUN_FAILED;
2118 else
2119 status = STATE_RUN_TRY_AGAIN;
2120 }
2121 break;
2122
2123 case CONNECTION_STATE_CAPABILITIES_EXCHANGE_DEMAND_ACTIVE:
2124 status = rdp_client_connect_demand_active(rdp, s);
2125
2126 if (state_run_failed(status))
2127 {
2128 char buffer[64] = WINPR_C_ARRAY_INIT;
2129 WLog_Print(rdp->log, WLOG_DEBUG,
2130 "%s - "
2131 "rdp_client_connect_demand_active() - %s",
2132 rdp_get_state_string(rdp),
2133 state_run_result_string(status, buffer, ARRAYSIZE(buffer)));
2134 }
2135 else if (status == STATE_RUN_ACTIVE)
2136 {
2137 if (!rdp_client_transition_to_state(
2138 rdp, CONNECTION_STATE_CAPABILITIES_EXCHANGE_CONFIRM_ACTIVE))
2139 status = STATE_RUN_FAILED;
2140 else
2141 status = STATE_RUN_CONTINUE;
2142 }
2143 break;
2144
2145 case CONNECTION_STATE_CAPABILITIES_EXCHANGE_MONITOR_LAYOUT:
2146 status = rdp_client_exchange_monitor_layout(rdp, s);
2147 break;
2148
2149 case CONNECTION_STATE_CAPABILITIES_EXCHANGE_CONFIRM_ACTIVE:
2150 status = rdp_client_connect_confirm_active(rdp, s);
2151 break;
2152
2153 case CONNECTION_STATE_FINALIZATION_CLIENT_SYNC:
2154 status = rdp_handle_sc_flags(rdp, s, FINALIZE_SC_SYNCHRONIZE_PDU,
2155 CONNECTION_STATE_FINALIZATION_CLIENT_COOPERATE);
2156 break;
2157 case CONNECTION_STATE_FINALIZATION_CLIENT_COOPERATE:
2158 status = rdp_handle_sc_flags(rdp, s, FINALIZE_SC_CONTROL_COOPERATE_PDU,
2159 CONNECTION_STATE_FINALIZATION_CLIENT_GRANTED_CONTROL);
2160 break;
2161 case CONNECTION_STATE_FINALIZATION_CLIENT_GRANTED_CONTROL:
2162 status = rdp_handle_sc_flags(rdp, s, FINALIZE_SC_CONTROL_GRANTED_PDU,
2163 CONNECTION_STATE_FINALIZATION_CLIENT_FONT_MAP);
2164 break;
2165 case CONNECTION_STATE_FINALIZATION_CLIENT_FONT_MAP:
2166 status = rdp_handle_sc_flags(rdp, s, FINALIZE_SC_FONT_MAP_PDU, CONNECTION_STATE_ACTIVE);
2167 break;
2168
2169 case CONNECTION_STATE_ACTIVE:
2170 status = rdp_recv_pdu(rdp, s);
2171
2172 if (state_run_failed(status))
2173 {
2174 char buffer[64] = WINPR_C_ARRAY_INIT;
2175 WLog_Print(rdp->log, WLOG_DEBUG, "%s - rdp_recv_pdu() - %s",
2176 rdp_get_state_string(rdp),
2177 state_run_result_string(status, buffer, ARRAYSIZE(buffer)));
2178 }
2179 break;
2180
2181 default:
2182 WLog_Print(rdp->log, WLOG_ERROR, "%s state %u", rdp_get_state_string(rdp),
2183 rdp_get_state(rdp));
2184 status = STATE_RUN_FAILED;
2185 break;
2186 }
2187
2188 if (state_run_failed(status))
2189 {
2190 char buffer[64] = WINPR_C_ARRAY_INIT;
2191 WLog_Print(rdp->log, WLOG_ERROR, "%s status %s", rdp_get_state_string(rdp),
2192 state_run_result_string(status, buffer, ARRAYSIZE(buffer)));
2193 }
2194 return status;
2195}
2196
2197state_run_t rdp_recv_callback(rdpTransport* transport, wStream* s, void* extra)
2198{
2199 char buffer[64] = WINPR_C_ARRAY_INIT;
2200 state_run_t rc = STATE_RUN_FAILED;
2201 const size_t start = Stream_GetPosition(s);
2202 const rdpContext* context = transport_get_context(transport);
2203
2204 WINPR_ASSERT(context);
2205 do
2206 {
2207 const rdpRdp* rdp = context->rdp;
2208 WINPR_ASSERT(rdp);
2209
2210 if (rc == STATE_RUN_TRY_AGAIN)
2211 {
2212 if (!Stream_SetPosition(s, start))
2213 return STATE_RUN_FAILED;
2214 }
2215
2216 const char* old = rdp_get_state_string(rdp);
2217 const size_t orem = Stream_GetRemainingLength(s);
2218 rc = rdp_recv_callback_int(transport, s, extra);
2219
2220 const char* now = rdp_get_state_string(rdp);
2221 const size_t rem = Stream_GetRemainingLength(s);
2222
2223 WLog_Print(rdp->log, WLOG_TRACE,
2224 "(client)[%s -> %s] current return %s [feeding %" PRIuz " bytes, %" PRIuz
2225 " bytes not processed]",
2226 old, now, state_run_result_string(rc, buffer, sizeof(buffer)), orem, rem);
2227 } while ((rc == STATE_RUN_TRY_AGAIN) || (rc == STATE_RUN_CONTINUE));
2228 return rc;
2229}
2230
2231BOOL rdp_send_channel_data(rdpRdp* rdp, UINT16 channelId, const BYTE* data, size_t size)
2232{
2233 return freerdp_channel_send(rdp, channelId, data, size);
2234}
2235
2236BOOL rdp_channel_send_packet(rdpRdp* rdp, UINT16 channelId, size_t totalSize, UINT32 flags,
2237 const BYTE* data, size_t chunkSize)
2238{
2239 return freerdp_channel_send_packet(rdp, channelId, totalSize, flags, data, chunkSize);
2240}
2241
2242BOOL rdp_send_error_info(rdpRdp* rdp)
2243{
2244 UINT16 sec_flags = 0;
2245 wStream* s = nullptr;
2246 BOOL status = 0;
2247
2248 if (rdp->errorInfo == ERRINFO_SUCCESS)
2249 return TRUE;
2250
2251 s = rdp_data_pdu_init(rdp, &sec_flags);
2252
2253 if (!s)
2254 return FALSE;
2255
2256 Stream_Write_UINT32(s, rdp->errorInfo); /* error id (4 bytes) */
2257 status = rdp_send_data_pdu(rdp, s, DATA_PDU_TYPE_SET_ERROR_INFO, 0, sec_flags);
2258 return status;
2259}
2260
2261int rdp_check_fds(rdpRdp* rdp)
2262{
2263 int status = 0;
2264 rdpTsg* tsg = nullptr;
2265 rdpTransport* transport = nullptr;
2266
2267 WINPR_ASSERT(rdp);
2268 transport = rdp->transport;
2269
2270 tsg = transport_get_tsg(transport);
2271 if (tsg)
2272 {
2273 if (!tsg_check_event_handles(tsg))
2274 {
2275 WLog_Print(rdp->log, WLOG_ERROR, "rdp_check_fds: tsg_check_event_handles()");
2276 return -1;
2277 }
2278
2279 if (tsg_get_state(tsg) != TSG_STATE_PIPE_CREATED)
2280 return 1;
2281 }
2282
2283 status = transport_check_fds(transport);
2284
2285 if (status == 1)
2286 {
2287 if (!rdp_client_redirect(rdp)) /* session redirection */
2288 return -1;
2289 }
2290
2291 if (status < 0)
2292 WLog_Print(rdp->log, WLOG_DEBUG, "transport_check_fds() - %i", status);
2293 else
2294 status = freerdp_timer_poll(rdp->timer);
2295
2296 return status;
2297}
2298
2299BOOL freerdp_get_stats(const rdpRdp* rdp, UINT64* inBytes, UINT64* outBytes, UINT64* inPackets,
2300 UINT64* outPackets)
2301{
2302 if (!rdp)
2303 return FALSE;
2304
2305 if (inBytes)
2306 *inBytes = rdp->inBytes;
2307 if (outBytes)
2308 *outBytes = rdp->outBytes;
2309 if (inPackets)
2310 *inPackets = rdp->inPackets;
2311 if (outPackets)
2312 *outPackets = rdp->outPackets;
2313
2314 return TRUE;
2315}
2316
2317static bool rdp_new_common(rdpRdp* rdp)
2318{
2319 WINPR_ASSERT(rdp);
2320
2321 bool rc = false;
2322 rdp->transport = transport_new(rdp->context);
2323 if (!rdp->transport)
2324 goto fail;
2325
2326 if (rdp->io)
2327 {
2328 if (!transport_set_io_callbacks(rdp->transport, rdp->io))
2329 goto fail;
2330 }
2331
2332 rdp->aad = aad_new(rdp->context);
2333 if (!rdp->aad)
2334 goto fail;
2335
2336 rdp->nego = nego_new(rdp->transport);
2337 if (!rdp->nego)
2338 goto fail;
2339
2340 rdp->mcs = mcs_new(rdp->context);
2341 if (!rdp->mcs)
2342 goto fail;
2343
2344 rdp->license = license_new(rdp);
2345 if (!rdp->license)
2346 goto fail;
2347
2348 rdp->fastpath = fastpath_new(rdp);
2349 if (!rdp->fastpath)
2350 goto fail;
2351
2352 rc = true;
2353fail:
2354 return rc;
2355}
2356
2362rdpRdp* rdp_new(rdpContext* context)
2363{
2364 DWORD flags = 0;
2365 rdpRdp* rdp = (rdpRdp*)calloc(1, sizeof(rdpRdp));
2366
2367 if (!rdp)
2368 return nullptr;
2369
2370 rdp->log = WLog_Get(RDP_TAG);
2371 WINPR_ASSERT(rdp->log);
2372
2373 (void)_snprintf(rdp->log_context, sizeof(rdp->log_context), "%p", (void*)context);
2374 WLog_SetContext(rdp->log, nullptr, rdp->log_context);
2375
2376 InitializeCriticalSection(&rdp->critical);
2377 rdp->context = context;
2378 WINPR_ASSERT(rdp->context);
2379
2380 if (context->ServerMode)
2381 flags |= FREERDP_SETTINGS_SERVER_MODE;
2382
2383 if (!context->settings)
2384 {
2385 context->settings = rdp->settings = freerdp_settings_new(flags);
2386
2387 if (!rdp->settings)
2388 goto fail;
2389 }
2390 else
2391 rdp->settings = context->settings;
2392
2393 /* Keep a backup copy of settings for later comparisons */
2394 if (!rdp_set_backup_settings(rdp))
2395 goto fail;
2396
2397 rdp->settings->instance = context->instance;
2398
2399 context->settings = rdp->settings;
2400 if (context->instance)
2401 context->settings->instance = context->instance;
2402 else if (context->peer)
2403 {
2404 rdp->settings->instance = context->peer;
2405
2406#if defined(WITH_FREERDP_DEPRECATED)
2407 context->peer->settings = rdp->settings;
2408#endif
2409 }
2410
2411 if (!rdp_new_common(rdp))
2412 goto fail;
2413
2414 {
2415 const rdpTransportIo* io = transport_get_io_callbacks(rdp->transport);
2416 if (!io)
2417 goto fail;
2418 rdp->io = calloc(1, sizeof(rdpTransportIo));
2419 if (!rdp->io)
2420 goto fail;
2421 *rdp->io = *io;
2422 }
2423
2424 rdp->input = input_new(rdp);
2425
2426 if (!rdp->input)
2427 goto fail;
2428
2429 rdp->update = update_new(rdp);
2430
2431 if (!rdp->update)
2432 goto fail;
2433
2434 rdp->redirection = redirection_new();
2435
2436 if (!rdp->redirection)
2437 goto fail;
2438
2439 rdp->autodetect = autodetect_new(rdp->context);
2440
2441 if (!rdp->autodetect)
2442 goto fail;
2443
2444 rdp->heartbeat = heartbeat_new();
2445
2446 if (!rdp->heartbeat)
2447 goto fail;
2448
2449 rdp->multitransport = multitransport_new(rdp, INITIATE_REQUEST_PROTOCOL_UDPFECL |
2450 INITIATE_REQUEST_PROTOCOL_UDPFECR);
2451
2452 if (!rdp->multitransport)
2453 goto fail;
2454
2455 rdp->bulk = bulk_new(context);
2456
2457 if (!rdp->bulk)
2458 goto fail;
2459
2460 rdp->pubSub = PubSub_New(TRUE);
2461 if (!rdp->pubSub)
2462 goto fail;
2463
2464 rdp->abortEvent = CreateEvent(nullptr, TRUE, FALSE, nullptr);
2465 if (!rdp->abortEvent)
2466 goto fail;
2467
2468 rdp->timer = freerdp_timer_new(rdp);
2469 if (!rdp->timer)
2470 goto fail;
2471
2472 return rdp;
2473
2474fail:
2475 WINPR_PRAGMA_DIAG_PUSH
2476 WINPR_PRAGMA_DIAG_IGNORED_MISMATCHED_DEALLOC
2477 rdp_free(rdp);
2478 WINPR_PRAGMA_DIAG_POP
2479 return nullptr;
2480}
2481
2482static void rdp_reset_free(rdpRdp* rdp)
2483{
2484 WINPR_ASSERT(rdp);
2485
2486 security_lock(rdp);
2487 rdp_free_rc4_decrypt_keys(rdp);
2488 rdp_free_rc4_encrypt_keys(rdp);
2489
2490 winpr_Cipher_Free(rdp->fips_encrypt);
2491 winpr_Cipher_Free(rdp->fips_decrypt);
2492 rdp->fips_encrypt = nullptr;
2493 rdp->fips_decrypt = nullptr;
2494 security_unlock(rdp);
2495
2496 aad_free(rdp->aad);
2497 mcs_free(rdp->mcs);
2498 nego_free(rdp->nego);
2499 license_free(rdp->license);
2500 transport_free(rdp->transport);
2501 fastpath_free(rdp->fastpath);
2502
2503 rdp->aad = nullptr;
2504 rdp->mcs = nullptr;
2505 rdp->nego = nullptr;
2506 rdp->license = nullptr;
2507 rdp->transport = nullptr;
2508 rdp->fastpath = nullptr;
2509}
2510
2511BOOL rdp_reset(rdpRdp* rdp)
2512{
2513 BOOL rc = TRUE;
2514
2515 WINPR_ASSERT(rdp);
2516
2517 rdpSettings* settings = rdp->settings;
2518 WINPR_ASSERT(settings);
2519
2520 bulk_reset(rdp->bulk);
2521
2522 rdp_reset_free(rdp);
2523
2524 if (!freerdp_settings_set_pointer_len(settings, FreeRDP_ServerRandom, nullptr, 0))
2525 rc = FALSE;
2526
2527 if (!freerdp_settings_set_pointer_len(settings, FreeRDP_ServerCertificate, nullptr, 0))
2528 rc = FALSE;
2529
2530 if (!freerdp_settings_set_string(settings, FreeRDP_ClientAddress, nullptr))
2531 rc = FALSE;
2532
2533 if (!rc)
2534 goto fail;
2535
2536 rc = rdp_new_common(rdp);
2537 if (!rc)
2538 goto fail;
2539
2540 if (!transport_set_layer(rdp->transport, TRANSPORT_LAYER_TCP))
2541 goto fail;
2542
2543 rdp->errorInfo = 0;
2544 rc = rdp_finalize_reset_flags(rdp, TRUE);
2545
2546fail:
2547 return rc;
2548}
2549
2555void rdp_free(rdpRdp* rdp)
2556{
2557 if (rdp)
2558 {
2559 freerdp_timer_free(rdp->timer);
2560 rdp_reset_free(rdp);
2561
2562 freerdp_settings_free(rdp->settings);
2563 freerdp_settings_free(rdp->originalSettings);
2564 freerdp_settings_free(rdp->remoteSettings);
2565
2566 input_free(rdp->input);
2567 update_free(rdp->update);
2568 nla_free(rdp->nla);
2569 redirection_free(rdp->redirection);
2570 autodetect_free(rdp->autodetect);
2571 heartbeat_free(rdp->heartbeat);
2572 multitransport_free(rdp->multitransport);
2573 bulk_free(rdp->bulk);
2574 free(rdp->io);
2575 PubSub_Free(rdp->pubSub);
2576 if (rdp->abortEvent)
2577 (void)CloseHandle(rdp->abortEvent);
2578 aad_free(rdp->aad);
2579 WINPR_JSON_Delete(rdp->wellknown);
2580 DeleteCriticalSection(&rdp->critical);
2581 free(rdp);
2582 }
2583}
2584
2585BOOL rdp_io_callback_set_event(rdpRdp* rdp, BOOL set)
2586{
2587 if (!rdp)
2588 return FALSE;
2589 return transport_io_callback_set_event(rdp->transport, set);
2590}
2591
2592const rdpTransportIo* rdp_get_io_callbacks(rdpRdp* rdp)
2593{
2594 if (!rdp)
2595 return nullptr;
2596 return rdp->io;
2597}
2598
2599BOOL rdp_set_io_callbacks(rdpRdp* rdp, const rdpTransportIo* io_callbacks)
2600{
2601 if (!rdp)
2602 return FALSE;
2603 free(rdp->io);
2604 rdp->io = nullptr;
2605 if (io_callbacks)
2606 {
2607 rdp->io = malloc(sizeof(rdpTransportIo));
2608 if (!rdp->io)
2609 return FALSE;
2610 *rdp->io = *io_callbacks;
2611 return transport_set_io_callbacks(rdp->transport, rdp->io);
2612 }
2613 return TRUE;
2614}
2615
2616BOOL rdp_set_io_callback_context(rdpRdp* rdp, void* usercontext)
2617{
2618 WINPR_ASSERT(rdp);
2619 rdp->ioContext = usercontext;
2620 return TRUE;
2621}
2622
2623void* rdp_get_io_callback_context(rdpRdp* rdp)
2624{
2625 WINPR_ASSERT(rdp);
2626 return rdp->ioContext;
2627}
2628
2629const char* rdp_finalize_flags_to_str(UINT32 flags, char* buffer, size_t size)
2630{
2631 char number[32] = WINPR_C_ARRAY_INIT;
2632 const UINT32 mask =
2633 (uint32_t)~(FINALIZE_SC_SYNCHRONIZE_PDU | FINALIZE_SC_CONTROL_COOPERATE_PDU |
2634 FINALIZE_SC_CONTROL_GRANTED_PDU | FINALIZE_SC_FONT_MAP_PDU |
2635 FINALIZE_CS_SYNCHRONIZE_PDU | FINALIZE_CS_CONTROL_COOPERATE_PDU |
2636 FINALIZE_CS_CONTROL_REQUEST_PDU | FINALIZE_CS_PERSISTENT_KEY_LIST_PDU |
2637 FINALIZE_CS_FONT_LIST_PDU | FINALIZE_DEACTIVATE_REACTIVATE);
2638
2639 if (flags & FINALIZE_SC_SYNCHRONIZE_PDU)
2640 winpr_str_append("FINALIZE_SC_SYNCHRONIZE_PDU", buffer, size, "|");
2641 if (flags & FINALIZE_SC_CONTROL_COOPERATE_PDU)
2642 winpr_str_append("FINALIZE_SC_CONTROL_COOPERATE_PDU", buffer, size, "|");
2643 if (flags & FINALIZE_SC_CONTROL_GRANTED_PDU)
2644 winpr_str_append("FINALIZE_SC_CONTROL_GRANTED_PDU", buffer, size, "|");
2645 if (flags & FINALIZE_SC_FONT_MAP_PDU)
2646 winpr_str_append("FINALIZE_SC_FONT_MAP_PDU", buffer, size, "|");
2647 if (flags & FINALIZE_CS_SYNCHRONIZE_PDU)
2648 winpr_str_append("FINALIZE_CS_SYNCHRONIZE_PDU", buffer, size, "|");
2649 if (flags & FINALIZE_CS_CONTROL_COOPERATE_PDU)
2650 winpr_str_append("FINALIZE_CS_CONTROL_COOPERATE_PDU", buffer, size, "|");
2651 if (flags & FINALIZE_CS_CONTROL_REQUEST_PDU)
2652 winpr_str_append("FINALIZE_CS_CONTROL_REQUEST_PDU", buffer, size, "|");
2653 if (flags & FINALIZE_CS_PERSISTENT_KEY_LIST_PDU)
2654 winpr_str_append("FINALIZE_CS_PERSISTENT_KEY_LIST_PDU", buffer, size, "|");
2655 if (flags & FINALIZE_CS_FONT_LIST_PDU)
2656 winpr_str_append("FINALIZE_CS_FONT_LIST_PDU", buffer, size, "|");
2657 if (flags & FINALIZE_DEACTIVATE_REACTIVATE)
2658 winpr_str_append("FINALIZE_DEACTIVATE_REACTIVATE", buffer, size, "|");
2659 if (flags & mask)
2660 winpr_str_append("UNKNOWN_FLAG", buffer, size, "|");
2661 if (flags == 0)
2662 winpr_str_append("NO_FLAG_SET", buffer, size, "|");
2663 (void)_snprintf(number, sizeof(number), " [0x%08" PRIx32 "]", flags);
2664 winpr_str_append(number, buffer, size, "");
2665 return buffer;
2666}
2667
2668BOOL rdp_finalize_reset_flags(rdpRdp* rdp, BOOL clearAll)
2669{
2670 WINPR_ASSERT(rdp);
2671 WLog_Print(rdp->log, WLOG_DEBUG, "[%s] reset finalize_sc_pdus", rdp_get_state_string(rdp));
2672 if (clearAll)
2673 rdp->finalize_sc_pdus = 0;
2674 else
2675 rdp->finalize_sc_pdus &= FINALIZE_DEACTIVATE_REACTIVATE;
2676
2677 return rdp_set_monitor_layout_pdu_state(rdp, FALSE);
2678}
2679
2680BOOL rdp_finalize_set_flag(rdpRdp* rdp, UINT32 flag)
2681{
2682 char buffer[1024] = WINPR_C_ARRAY_INIT;
2683
2684 WINPR_ASSERT(rdp);
2685
2686 WLog_Print(rdp->log, WLOG_DEBUG, "[%s] received flag %s", rdp_get_state_string(rdp),
2687 rdp_finalize_flags_to_str(flag, buffer, sizeof(buffer)));
2688 rdp->finalize_sc_pdus |= flag;
2689 return TRUE;
2690}
2691
2692BOOL rdp_finalize_is_flag_set(rdpRdp* rdp, UINT32 flag)
2693{
2694 WINPR_ASSERT(rdp);
2695 return (rdp->finalize_sc_pdus & flag) == flag;
2696}
2697
2698BOOL rdp_reset_rc4_encrypt_keys(rdpRdp* rdp)
2699{
2700 WINPR_ASSERT(rdp);
2701 rdp_free_rc4_encrypt_keys(rdp);
2702 rdp->rc4_encrypt_key = winpr_RC4_New(rdp->encrypt_key, rdp->rc4_key_len);
2703
2704 rdp->encrypt_use_count = 0;
2705 return rdp->rc4_encrypt_key != nullptr;
2706}
2707
2708void rdp_free_rc4_encrypt_keys(rdpRdp* rdp)
2709{
2710 WINPR_ASSERT(rdp);
2711 winpr_RC4_Free(rdp->rc4_encrypt_key);
2712 rdp->rc4_encrypt_key = nullptr;
2713}
2714
2715void rdp_free_rc4_decrypt_keys(rdpRdp* rdp)
2716{
2717 WINPR_ASSERT(rdp);
2718 winpr_RC4_Free(rdp->rc4_decrypt_key);
2719 rdp->rc4_decrypt_key = nullptr;
2720}
2721
2722BOOL rdp_reset_rc4_decrypt_keys(rdpRdp* rdp)
2723{
2724 WINPR_ASSERT(rdp);
2725 rdp_free_rc4_decrypt_keys(rdp);
2726 rdp->rc4_decrypt_key = winpr_RC4_New(rdp->decrypt_key, rdp->rc4_key_len);
2727
2728 rdp->decrypt_use_count = 0;
2729 return rdp->rc4_decrypt_key != nullptr;
2730}
2731
2732const char* rdp_security_flag_string(UINT32 securityFlags, char* buffer, size_t size)
2733{
2734 if (securityFlags & SEC_EXCHANGE_PKT)
2735 winpr_str_append("SEC_EXCHANGE_PKT", buffer, size, "|");
2736 if (securityFlags & SEC_TRANSPORT_REQ)
2737 winpr_str_append("SEC_TRANSPORT_REQ", buffer, size, "|");
2738 if (securityFlags & SEC_TRANSPORT_RSP)
2739 winpr_str_append("SEC_TRANSPORT_RSP", buffer, size, "|");
2740 if (securityFlags & SEC_ENCRYPT)
2741 winpr_str_append("SEC_ENCRYPT", buffer, size, "|");
2742 if (securityFlags & SEC_RESET_SEQNO)
2743 winpr_str_append("SEC_RESET_SEQNO", buffer, size, "|");
2744 if (securityFlags & SEC_IGNORE_SEQNO)
2745 winpr_str_append("SEC_IGNORE_SEQNO", buffer, size, "|");
2746 if (securityFlags & SEC_INFO_PKT)
2747 winpr_str_append("SEC_INFO_PKT", buffer, size, "|");
2748 if (securityFlags & SEC_LICENSE_PKT)
2749 winpr_str_append("SEC_LICENSE_PKT", buffer, size, "|");
2750 if (securityFlags & SEC_LICENSE_ENCRYPT_CS)
2751 winpr_str_append("SEC_LICENSE_ENCRYPT_CS", buffer, size, "|");
2752 if (securityFlags & SEC_LICENSE_ENCRYPT_SC)
2753 winpr_str_append("SEC_LICENSE_ENCRYPT_SC", buffer, size, "|");
2754 if (securityFlags & SEC_REDIRECTION_PKT)
2755 winpr_str_append("SEC_REDIRECTION_PKT", buffer, size, "|");
2756 if (securityFlags & SEC_SECURE_CHECKSUM)
2757 winpr_str_append("SEC_SECURE_CHECKSUM", buffer, size, "|");
2758 if (securityFlags & SEC_AUTODETECT_REQ)
2759 winpr_str_append("SEC_AUTODETECT_REQ", buffer, size, "|");
2760 if (securityFlags & SEC_AUTODETECT_RSP)
2761 winpr_str_append("SEC_AUTODETECT_RSP", buffer, size, "|");
2762 if (securityFlags & SEC_HEARTBEAT)
2763 winpr_str_append("SEC_HEARTBEAT", buffer, size, "|");
2764 if (securityFlags & SEC_FLAGSHI_VALID)
2765 winpr_str_append("SEC_FLAGSHI_VALID", buffer, size, "|");
2766 {
2767 char msg[32] = WINPR_C_ARRAY_INIT;
2768
2769 (void)_snprintf(msg, sizeof(msg), "[0x%08" PRIx32 "]", securityFlags);
2770 winpr_str_append(msg, buffer, size, "");
2771 }
2772 return buffer;
2773}
2774
2775static BOOL rdp_reset_remote_settings(rdpRdp* rdp)
2776{
2777 UINT32 flags = FREERDP_SETTINGS_REMOTE_MODE;
2778 WINPR_ASSERT(rdp);
2779 freerdp_settings_free(rdp->remoteSettings);
2780
2781 if (!freerdp_settings_get_bool(rdp->settings, FreeRDP_ServerMode))
2782 flags |= FREERDP_SETTINGS_SERVER_MODE;
2783 rdp->remoteSettings = freerdp_settings_new(flags);
2784 return rdp->remoteSettings != nullptr;
2785}
2786
2787BOOL rdp_set_backup_settings(rdpRdp* rdp)
2788{
2789 WINPR_ASSERT(rdp);
2790 freerdp_settings_free(rdp->originalSettings);
2791 rdp->originalSettings = freerdp_settings_clone(rdp->settings);
2792 if (!rdp->originalSettings)
2793 return FALSE;
2794 return rdp_reset_remote_settings(rdp);
2795}
2796
2797BOOL rdp_reset_runtime_settings(rdpRdp* rdp)
2798{
2799 WINPR_ASSERT(rdp);
2800 WINPR_ASSERT(rdp->context);
2801
2802 freerdp_settings_free(rdp->settings);
2803 rdp->context->settings = rdp->settings = freerdp_settings_clone(rdp->originalSettings);
2804
2805 if (!rdp->settings)
2806 return FALSE;
2807 return rdp_reset_remote_settings(rdp);
2808}
2809
2810static BOOL starts_with(const char* tok, const char* val)
2811{
2812 const size_t len = strlen(val);
2813 if (strncmp(tok, val, len) != 0)
2814 return FALSE;
2815 if (tok[len] != '=')
2816 return FALSE;
2817 return TRUE;
2818}
2819
2820static BOOL option_equals(const char* what, const char* val)
2821{
2822 return _stricmp(what, val) == 0;
2823}
2824
2825static BOOL parse_on_off_option(const char* value)
2826{
2827 WINPR_ASSERT(value);
2828 const char* sep = strchr(value, '=');
2829 if (!sep)
2830 return TRUE;
2831 if (option_equals("on", &sep[1]))
2832 return TRUE;
2833 if (option_equals("true", &sep[1]))
2834 return TRUE;
2835 if (option_equals("off", &sep[1]))
2836 return FALSE;
2837 if (option_equals("false", &sep[1]))
2838 return FALSE;
2839
2840 errno = 0;
2841 long val = strtol(value, nullptr, 0);
2842 if (errno == 0)
2843 return (val != 0);
2844
2845 return FALSE;
2846}
2847
2848#define STR(x) #x
2849
2850static BOOL option_is_runtime_checks(WINPR_ATTR_UNUSED wLog* log, const char* tok)
2851{
2852 const char* experimental[] = { STR(WITH_VERBOSE_WINPR_ASSERT) };
2853 for (size_t x = 0; x < ARRAYSIZE(experimental); x++)
2854 {
2855 const char* opt = experimental[x];
2856 if (starts_with(tok, opt))
2857 {
2858 return parse_on_off_option(tok);
2859 }
2860 }
2861 return FALSE;
2862}
2863
2864static BOOL option_is_experimental(WINPR_ATTR_UNUSED wLog* log, const char* tok)
2865{
2866 const char* experimental[] = { STR(WITH_DSP_EXPERIMENTAL), STR(WITH_VAAPI) };
2867 for (size_t x = 0; x < ARRAYSIZE(experimental); x++)
2868 {
2869 const char* opt = experimental[x];
2870 if (starts_with(tok, opt))
2871 {
2872 return parse_on_off_option(tok);
2873 }
2874 }
2875 return FALSE;
2876}
2877
2878static BOOL option_is_debug(wLog* log, const char* tok)
2879{
2880 WINPR_ASSERT(log);
2881 const char* debug[] = { STR(WITH_DEBUG_ALL),
2882 STR(WITH_DEBUG_CERTIFICATE),
2883 STR(WITH_DEBUG_CAPABILITIES),
2884 STR(WITH_DEBUG_CHANNELS),
2885 STR(WITH_DEBUG_CLIPRDR),
2886 STR(WITH_DEBUG_CODECS),
2887 STR(WITH_DEBUG_RDPGFX),
2888 STR(WITH_DEBUG_DVC),
2889 STR(WITH_DEBUG_TSMF),
2890 STR(WITH_DEBUG_KBD),
2891 STR(WITH_DEBUG_LICENSE),
2892 STR(WITH_DEBUG_NEGO),
2893 STR(WITH_DEBUG_NLA),
2894 STR(WITH_DEBUG_TSG),
2895 STR(WITH_DEBUG_RAIL),
2896 STR(WITH_DEBUG_RDP),
2897 STR(WITH_DEBUG_RDPEI),
2898 STR(WITH_DEBUG_REDIR),
2899 STR(WITH_DEBUG_RDPDR),
2900 STR(WITH_DEBUG_RFX),
2901 STR(WITH_DEBUG_SCARD),
2902 STR(WITH_DEBUG_SND),
2903 STR(WITH_DEBUG_SVC),
2904 STR(WITH_DEBUG_TRANSPORT),
2905 STR(WITH_DEBUG_TIMEZONE),
2906 STR(WITH_DEBUG_WND),
2907 STR(WITH_DEBUG_X11_CLIPRDR),
2908 STR(WITH_DEBUG_X11_LOCAL_MOVESIZE),
2909 STR(WITH_DEBUG_X11),
2910 STR(WITH_DEBUG_XV),
2911 STR(WITH_DEBUG_RINGBUFFER),
2912 STR(WITH_DEBUG_SYMBOLS),
2913 STR(WITH_DEBUG_EVENTS),
2914 STR(WITH_DEBUG_MUTEX),
2915 STR(WITH_DEBUG_NTLM),
2916 STR(WITH_DEBUG_SDL_EVENTS),
2917 STR(WITH_DEBUG_SDL_KBD_EVENTS),
2918 STR(WITH_DEBUG_THREADS),
2919 STR(WITH_DEBUG_URBDRC) };
2920
2921 for (size_t x = 0; x < ARRAYSIZE(debug); x++)
2922 {
2923 const char* opt = debug[x];
2924 if (starts_with(tok, opt))
2925 return parse_on_off_option(tok);
2926 }
2927
2928 if (starts_with(tok, "WITH_DEBUG"))
2929 {
2930 WLog_Print(log, WLOG_WARN, "[BUG] Unmapped Debug-Build option '%s'.", tok);
2931 return parse_on_off_option(tok);
2932 }
2933
2934 return FALSE;
2935}
2936
2937static void log_build_warn(rdpRdp* rdp, const char* what, const char* msg,
2938 BOOL (*cmp)(wLog* log, const char* tok))
2939{
2940 WINPR_ASSERT(rdp);
2941 WINPR_PRAGMA_DIAG_PUSH
2942 WINPR_PRAGMA_DIAG_IGNORED_OVERLENGTH_STRINGS
2943
2944 size_t len = sizeof(FREERDP_BUILD_CONFIG);
2945 char* list = calloc(len, sizeof(char));
2946 char* config = _strdup(FREERDP_BUILD_CONFIG);
2947 WINPR_PRAGMA_DIAG_POP
2948
2949 if (config && list)
2950 {
2951 char* saveptr = nullptr;
2952 char* tok = strtok_s(config, " ", &saveptr);
2953 while (tok)
2954 {
2955 if (cmp(rdp->log, tok))
2956 winpr_str_append(tok, list, len, " ");
2957
2958 tok = strtok_s(nullptr, " ", &saveptr);
2959 }
2960 }
2961 free(config);
2962
2963 if (list)
2964 {
2965 if (strlen(list) > 0)
2966 {
2967 WLog_Print(rdp->log, WLOG_WARN, "*************************************************");
2968 WLog_Print(rdp->log, WLOG_WARN, "This build is using [%s] build options:", what);
2969
2970 char* saveptr = nullptr;
2971 char* tok = strtok_s(list, " ", &saveptr);
2972 while (tok)
2973 {
2974 WLog_Print(rdp->log, WLOG_WARN, "* '%s'", tok);
2975 tok = strtok_s(nullptr, " ", &saveptr);
2976 }
2977 WLog_Print(rdp->log, WLOG_WARN, "*");
2978 WLog_Print(rdp->log, WLOG_WARN, "[%s] build options %s", what, msg);
2979 WLog_Print(rdp->log, WLOG_WARN, "*************************************************");
2980 }
2981 }
2982 free(list);
2983}
2984
2985#define print_first_line(log, firstLine, what) \
2986 print_first_line_int((log), (firstLine), (what), __FILE__, __func__, __LINE__)
2987static void print_first_line_int(wLog* log, log_line_t* firstLine, const char* what,
2988 const char* file, const char* fkt, size_t line)
2989{
2990 WINPR_ASSERT(firstLine);
2991 if (!firstLine->fkt)
2992 {
2993 const DWORD level = WLOG_WARN;
2994 if (WLog_IsLevelActive(log, level))
2995 {
2996 WLog_PrintTextMessage(log, level, line, file, fkt,
2997 "*************************************************");
2998 WLog_PrintTextMessage(log, level, line, file, fkt,
2999 "[SSL] {%s} build or configuration missing:", what);
3000 }
3001 firstLine->line = line;
3002 firstLine->file = file;
3003 firstLine->fkt = fkt;
3004 firstLine->level = level;
3005 }
3006}
3007
3008static void print_last_line(wLog* log, const log_line_t* firstLine)
3009{
3010 WINPR_ASSERT(firstLine);
3011 if (firstLine->fkt)
3012 {
3013 if (WLog_IsLevelActive(log, firstLine->level))
3014 WLog_PrintTextMessage(log, firstLine->level, firstLine->line, firstLine->file,
3015 firstLine->fkt,
3016 "*************************************************");
3017 }
3018}
3019
3020static void log_build_warn_cipher(rdpRdp* rdp, log_line_t* firstLine, WINPR_CIPHER_TYPE md,
3021 const char* what)
3022{
3023 BOOL haveCipher = FALSE;
3024
3025 char key[WINPR_CIPHER_MAX_KEY_LENGTH] = WINPR_C_ARRAY_INIT;
3026 char iv[WINPR_CIPHER_MAX_IV_LENGTH] = WINPR_C_ARRAY_INIT;
3027
3028 /* RC4 only exists in the compatibility functions winpr_RC4_*
3029 * winpr_Cipher_* does not support that. */
3030 if (md == WINPR_CIPHER_ARC4_128)
3031 {
3032 WINPR_RC4_CTX* enc = winpr_RC4_New(key, sizeof(key));
3033 haveCipher = enc != nullptr;
3034 winpr_RC4_Free(enc);
3035 }
3036 else
3037 {
3038 WINPR_CIPHER_CTX* enc =
3039 winpr_Cipher_NewEx(md, WINPR_ENCRYPT, key, sizeof(key), iv, sizeof(iv));
3040 WINPR_CIPHER_CTX* dec =
3041 winpr_Cipher_NewEx(md, WINPR_DECRYPT, key, sizeof(key), iv, sizeof(iv));
3042 if (enc && dec)
3043 haveCipher = TRUE;
3044
3045 winpr_Cipher_Free(enc);
3046 winpr_Cipher_Free(dec);
3047 }
3048
3049 if (!haveCipher)
3050 {
3051 print_first_line(rdp->log, firstLine, "Cipher");
3052 WLog_Print(rdp->log, WLOG_WARN, "* %s: %s", winpr_cipher_type_to_string(md), what);
3053 }
3054}
3055
3056static void log_build_warn_hmac(rdpRdp* rdp, log_line_t* firstLine, WINPR_MD_TYPE md,
3057 const char* what)
3058{
3059 BOOL haveHmacX = FALSE;
3060 WINPR_HMAC_CTX* hmac = winpr_HMAC_New();
3061 if (hmac)
3062 {
3063 /* We need some key length, but there is no real limit here.
3064 * just take the cipher maximum key length as we already have that available.
3065 */
3066 char key[WINPR_CIPHER_MAX_KEY_LENGTH] = WINPR_C_ARRAY_INIT;
3067 haveHmacX = winpr_HMAC_Init(hmac, md, key, sizeof(key));
3068 }
3069 winpr_HMAC_Free(hmac);
3070
3071 if (!haveHmacX)
3072 {
3073 print_first_line(rdp->log, firstLine, "HMAC");
3074 WLog_Print(rdp->log, WLOG_WARN, " * %s: %s", winpr_md_type_to_string(md), what);
3075 }
3076}
3077
3078static void log_build_warn_hash(rdpRdp* rdp, log_line_t* firstLine, WINPR_MD_TYPE md,
3079 const char* what)
3080{
3081 BOOL haveDigestX = FALSE;
3082
3083 WINPR_DIGEST_CTX* digest = winpr_Digest_New();
3084 if (digest)
3085 haveDigestX = winpr_Digest_Init(digest, md);
3086 winpr_Digest_Free(digest);
3087
3088 if (!haveDigestX)
3089 {
3090 print_first_line(rdp->log, firstLine, "Digest");
3091 WLog_Print(rdp->log, WLOG_WARN, " * %s: %s", winpr_md_type_to_string(md), what);
3092 }
3093}
3094
3095static void log_build_warn_ssl(rdpRdp* rdp)
3096{
3097 WINPR_ASSERT(rdp);
3098
3099 log_line_t firstHashLine = WINPR_C_ARRAY_INIT;
3100 log_build_warn_hash(rdp, &firstHashLine, WINPR_MD_MD4, "NTLM support not available");
3101 log_build_warn_hash(rdp, &firstHashLine, WINPR_MD_MD5,
3102 "NTLM, assistance files with encrypted passwords, autoreconnect cookies, "
3103 "licensing and RDP security will not work");
3104 log_build_warn_hash(rdp, &firstHashLine, WINPR_MD_SHA1,
3105 "assistance files with encrypted passwords, Kerberos, Smartcard Logon, RDP "
3106 "security support not available");
3107 log_build_warn_hash(
3108 rdp, &firstHashLine, WINPR_MD_SHA256,
3109 "file clipboard, AAD gateway, NLA security and certificates might not work");
3110 print_last_line(rdp->log, &firstHashLine);
3111
3112 log_line_t firstHmacLine = WINPR_C_ARRAY_INIT;
3113 log_build_warn_hmac(rdp, &firstHmacLine, WINPR_MD_MD5, "Autoreconnect cookie not supported");
3114 log_build_warn_hmac(rdp, &firstHmacLine, WINPR_MD_SHA1, "RDP security not supported");
3115 print_last_line(rdp->log, &firstHmacLine);
3116
3117 log_line_t firstCipherLine = WINPR_C_ARRAY_INIT;
3118 log_build_warn_cipher(rdp, &firstCipherLine, WINPR_CIPHER_ARC4_128,
3119 "assistance files with encrypted passwords, NTLM, RDP licensing and RDP "
3120 "security will not work");
3121 log_build_warn_cipher(rdp, &firstCipherLine, WINPR_CIPHER_DES_EDE3_CBC,
3122 "RDP security FIPS mode will not work");
3123 log_build_warn_cipher(
3124 rdp, &firstCipherLine, WINPR_CIPHER_AES_128_CBC,
3125 "assistance file encrypted LHTicket will not work and ARM gateway might not");
3126 log_build_warn_cipher(rdp, &firstCipherLine, WINPR_CIPHER_AES_192_CBC,
3127 "ARM gateway might not work");
3128 log_build_warn_cipher(rdp, &firstCipherLine, WINPR_CIPHER_AES_256_CBC,
3129 "ARM gateway might not work");
3130 print_last_line(rdp->log, &firstCipherLine);
3131}
3132
3133void rdp_log_build_warnings(rdpRdp* rdp)
3134{
3135 static unsigned count = 0;
3136
3137 WINPR_ASSERT(rdp);
3138 /* Since this function is called in context creation routines stop logging
3139 * this issue repeatedly. This is required for proxy, which would otherwise
3140 * spam the log with these. */
3141 if (count > 0)
3142 return;
3143 count++;
3144 log_build_warn(rdp, "experimental", "might crash the application", option_is_experimental);
3145 log_build_warn(rdp, "debug", "might leak sensitive information (credentials, ...)",
3146 option_is_debug);
3147 log_build_warn(rdp, "runtime-check", "might slow down the application",
3148 option_is_runtime_checks);
3149 log_build_warn_ssl(rdp);
3150}
3151
3152size_t rdp_get_event_handles(rdpRdp* rdp, HANDLE* handles, uint32_t count)
3153{
3154 size_t nCount = transport_get_event_handles(rdp->transport, handles, count);
3155
3156 if (nCount == 0)
3157 return 0;
3158
3159 if (count < nCount + 2UL)
3160 return 0;
3161
3162 handles[nCount++] = utils_get_abort_event(rdp);
3163 handles[nCount++] = freerdp_timer_get_event(rdp->timer);
3164 return nCount;
3165}
WINPR_JSON_Delete
WINPR_API void WINPR_JSON_Delete(WINPR_JSON *item)
Delete a WinPR JSON wrapper object.
Definition c-json.c:103
freerdp_settings_clone
WINPR_ATTR_NODISCARD FREERDP_API rdpSettings * freerdp_settings_clone(const rdpSettings *settings)
Creates a deep copy of settings.
Definition core/settings.c:1614
freerdp_settings_set_pointer_len
FREERDP_API BOOL freerdp_settings_set_pointer_len(rdpSettings *settings, FreeRDP_Settings_Keys_Pointer id, const void *data, size_t len)
Set a pointer to value data.
Definition common/settings.c:1431
freerdp_settings_free
FREERDP_API void freerdp_settings_free(rdpSettings *settings)
Free a settings struct with all data in it.
Definition core/settings.c:1372
FREERDP_SETTINGS_SERVER_MODE
#define FREERDP_SETTINGS_SERVER_MODE
Definition include/freerdp/settings.h:80
freerdp_settings_new
WINPR_ATTR_NODISCARD FREERDP_API rdpSettings * freerdp_settings_new(DWORD flags)
creates a new setting struct
Definition core/settings.c:813
freerdp_settings_get_bool
WINPR_ATTR_NODISCARD FREERDP_API BOOL freerdp_settings_get_bool(const rdpSettings *settings, FreeRDP_Settings_Keys_Bool id)
Returns a boolean settings value.
freerdp_settings_set_string
FREERDP_API BOOL freerdp_settings_set_string(rdpSettings *settings, FreeRDP_Settings_Keys_String id, const char *val)
Sets a string settings value. The param is copied.
Definition settings_getters.c:3729
MONITOR_DEF
Definition settings_types.h:413