Mercurial > hg > Applications > TightVNC_orginal
diff src/main/java/com/glavsoft/rfb/protocol/auth/TightAuthentication.java @ 0:4689cc86d6cb
create TreeViewer2 Repository
author | Yu Taninari <you@cr.ie.u-ryukyu.ac.jp> |
---|---|
date | Tue, 03 Jul 2012 13:20:49 +0900 |
parents | |
children | 472a9bcacb21 |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/src/main/java/com/glavsoft/rfb/protocol/auth/TightAuthentication.java Tue Jul 03 13:20:49 2012 +0900 @@ -0,0 +1,153 @@ +// Copyright (C) 2010, 2011 GlavSoft LLC. +// All rights reserved. +// +//------------------------------------------------------------------------- +// This file is part of the TightVNC software. Please visit our Web site: +// +// http://www.tightvnc.com/ +// +// This program is free software; you can redistribute it and/or modify +// it under the terms of the GNU General Public License as published by +// the Free Software Foundation; either version 2 of the License, or +// (at your option) any later version. +// +// This program is distributed in the hope that it will be useful, +// but WITHOUT ANY WARRANTY; without even the implied warranty of +// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +// GNU General Public License for more details. +// +// You should have received a copy of the GNU General Public License along +// with this program; if not, write to the Free Software Foundation, Inc., +// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +//------------------------------------------------------------------------- +// + +package com.glavsoft.rfb.protocol.auth; + +import java.util.logging.Logger; + +import com.glavsoft.exceptions.FatalException; +import com.glavsoft.exceptions.TransportException; +import com.glavsoft.exceptions.UnsupportedSecurityTypeException; +import com.glavsoft.rfb.CapabilityContainer; +import com.glavsoft.rfb.IPasswordRetriever; +import com.glavsoft.rfb.RfbCapabilityInfo; +import com.glavsoft.rfb.protocol.state.SecurityTypeState; +import com.glavsoft.transport.Reader; +import com.glavsoft.transport.Writer; + +/** + * + */ +public class TightAuthentication extends AuthHandler { + + @Override + public SecurityType getType() { + return SecurityType.TIGHT_AUTHENTICATION; + } + + @Override + public boolean authenticate(Reader reader, Writer writer, + CapabilityContainer authCaps, IPasswordRetriever passwordRetriever) + throws TransportException, FatalException, UnsupportedSecurityTypeException { + initTunnelling(reader, writer); + initAuthorization(reader, writer, authCaps, passwordRetriever); + return true; + } + + /** + * Negotiation of Tunneling Capabilities (protocol versions 3.7t, 3.8t) + * + * If the chosen security type is rfbSecTypeTight, the server sends a list of + * supported tunneling methods ("tunneling" refers to any additional layer of + * data transformation, such as encryption or external compression.) + * + * nTunnelTypes specifies the number of following rfbCapabilityInfo structures + * that list all supported tunneling methods in the order of preference. + * + * NOTE: If nTunnelTypes is 0, that tells the client that no tunneling can be + * used, and the client should not send a response requesting a tunneling + * method. + * + * typedef struct _rfbTunnelingCapsMsg { + * CARD32 nTunnelTypes; + * //followed by nTunnelTypes * rfbCapabilityInfo structures + * } rfbTunnelingCapsMsg; + * #define sz_rfbTunnelingCapsMsg 4 + * ---------------------------------------------------------------------------- + * Tunneling Method Request (protocol versions 3.7t, 3.8t) + * + * If the list of tunneling capabilities sent by the server was not empty, the + * client should reply with a 32-bit code specifying a particular tunneling + * method. The following code should be used for no tunneling. + * + * #define rfbNoTunneling 0 + * #define sig_rfbNoTunneling "NOTUNNEL" + * + */ + private void initTunnelling(Reader reader, Writer writer) + throws TransportException { + long tunnelsCount; + tunnelsCount = reader.readUInt32(); + if (tunnelsCount > 0) { + for (int i = 0; i < tunnelsCount; ++i) { + RfbCapabilityInfo rfbCapabilityInfo = new RfbCapabilityInfo(reader); + Logger.getLogger("com.glavsoft.rfb.protocol.auth").fine(rfbCapabilityInfo.toString()); + } + writer.writeInt32(0); // NOTUNNEL + } + } + + /** + * Negotiation of Authentication Capabilities (protocol versions 3.7t, 3.8t) + * + * After setting up tunneling, the server sends a list of supported + * authentication schemes. + * + * nAuthTypes specifies the number of following rfbCapabilityInfo structures + * that list all supported authentication schemes in the order of preference. + * + * NOTE: If nAuthTypes is 0, that tells the client that no authentication is + * necessary, and the client should not send a response requesting an + * authentication scheme. + * + * typedef struct _rfbAuthenticationCapsMsg { + * CARD32 nAuthTypes; + * // followed by nAuthTypes * rfbCapabilityInfo structures + * } rfbAuthenticationCapsMsg; + * #define sz_rfbAuthenticationCapsMsg 4 + * @param authCaps TODO + * @param passwordRetriever + * @throws UnsupportedSecurityTypeException + * @throws TransportException + * @throws FatalException + */ + private void initAuthorization(Reader reader, Writer writer, + CapabilityContainer authCaps, IPasswordRetriever passwordRetriever) + throws UnsupportedSecurityTypeException, TransportException, FatalException { + int authCount; + authCount = reader.readInt32(); + byte[] cap = new byte[authCount]; + for (int i = 0; i < authCount; ++i) { + RfbCapabilityInfo rfbCapabilityInfo = new RfbCapabilityInfo(reader); + cap[i] = (byte) rfbCapabilityInfo.getCode(); + Logger.getLogger("com.glavsoft.rfb.protocol.auth").fine(rfbCapabilityInfo.toString()); + } + AuthHandler authHandler = null; + if (authCount > 0) { + authHandler = SecurityTypeState.selectAuthHandler(cap, authCaps); + for (int i = 0; i < authCount; ++i) { + if (authCaps.isSupported(cap[i])) { + //sending back RFB capability code + writer.writeInt32(cap[i]); + break; + } + } + } else { + authHandler = SecurityType.getAuthHandlerById(SecurityType.NONE_AUTHENTICATION.getId()); + } + Logger.getLogger("com.glavsoft.rfb.protocol.auth").info("Auth capability accepted: " + authHandler.getName()); + authHandler.authenticate(reader, writer, authCaps, passwordRetriever); + } + +}