static Bool
PerformAuthenticationTight(void)
{
rfbAuthenticationCapsMsg caps;
CARD32 authScheme;
int i;
/* In the protocol version 3.7t, the server informs us about supported
authentication schemes. Here we read this information. */
if (!ReadFromRFBServer((char *)&caps, sz_rfbAuthenticationCapsMsg))
return False;
caps.nAuthTypes = Swap32IfLE(caps.nAuthTypes);
if (!caps.nAuthTypes) {
fprintf(stderr, "No authentication needed\n");
return True;
}
if (!ReadCapabilityList(authCaps, caps.nAuthTypes))
return False;
/* Prefer Unix login authentication if a user name was given. */
if (appData.userLogin && CapsIsEnabled(authCaps, rfbAuthUnixLogin)) {
authScheme = Swap32IfLE(rfbAuthUnixLogin);
if (!WriteExact(rfbsock, (char *)&authScheme, sizeof(authScheme)))
return False;
return AuthenticateUnixLogin();
}
/* Otherwise, try server's preferred authentication scheme. */
for (i = 0; i < CapsNumEnabled(authCaps); i++) {
authScheme = CapsGetByOrder(authCaps, i);
if (authScheme != rfbAuthUnixLogin && authScheme != rfbAuthVNC)
continue; /* unknown scheme - cannot use it */
authScheme = Swap32IfLE(authScheme);
if (!WriteExact(rfbsock, (char *)&authScheme, sizeof(authScheme)))
return False;
authScheme = Swap32IfLE(authScheme); /* convert it back */
if (authScheme == rfbAuthUnixLogin) {
return AuthenticateUnixLogin();
} else if (authScheme == rfbAuthVNC) {
return AuthenticateVNC();
} else {
/* Should never happen. */
fprintf(stderr, "Assertion failed: unknown authentication scheme\n");
return False;
}
}
fprintf(stderr, "No suitable authentication schemes offered by server\n");
return False;
}
static Bool
PerformAuthenticationTight(void)
{
rfbAuthenticationCapsMsg caps;
CARD32 authScheme;
int i;
/* In protocols 3.7t/3.8t, the server informs us about supported
authentication schemes. Here we read this information. */
if (!ReadFromRFBServer((char *)&caps, sz_rfbAuthenticationCapsMsg))
return False;
caps.nAuthTypes = Swap32IfLE(caps.nAuthTypes);
/* Special case - empty capability list stands for no authentication. */
if (!caps.nAuthTypes)
return AuthenticateNone();
if (!ReadCapabilityList(authCaps, caps.nAuthTypes))
return False;
/* Try server's preferred authentication scheme. */
for (i = 0; i < CapsNumEnabled(authCaps); i++) {
authScheme = CapsGetByOrder(authCaps, i);
if (authScheme != rfbAuthVNC && authScheme != rfbAuthNone)
continue; /* unknown scheme - cannot use it */
authScheme = Swap32IfLE(authScheme);
if (!WriteExact(rfbsock, (char *)&authScheme, sizeof(authScheme)))
return False;
authScheme = Swap32IfLE(authScheme); /* convert it back */
switch (authScheme) {
case rfbAuthNone:
return AuthenticateNone();
case rfbAuthVNC:
return AuthenticateVNC();
default: /* should never happen */
fprintf(stderr, "Internal error: Invalid authentication type\n");
return False;
}
}
fprintf(stderr, "No suitable authentication schemes offered by server\n");
return False;
}
Bool
InitialiseRFBConnection(void)
{
rfbProtocolVersionMsg pv;
int server_major, server_minor;
int viewer_major, viewer_minor;
rfbClientInitMsg ci;
int secType;
/* if the connection is immediately closed, don't report anything, so
that pmw's monitor can make test connections */
if (listenSpecified)
errorMessageOnReadFailure = False;
if (!ReadFromRFBServer(pv, sz_rfbProtocolVersionMsg))
return False;
errorMessageOnReadFailure = True;
pv[sz_rfbProtocolVersionMsg] = 0;
if (sscanf(pv, rfbProtocolVersionFormat,
&server_major, &server_minor) != 2) {
fprintf(stderr,"Not a valid VNC server\n");
return False;
}
viewer_major = rfbProtocolMajorVersion;
if (server_major == 3 && server_minor >= rfbProtocolMinorVersion) {
/* the server supports at least the standard protocol 3.7 */
viewer_minor = rfbProtocolMinorVersion;
} else {
/* any other server version, request the standard 3.3 */
viewer_minor = rfbProtocolFallbackMinorVersion;
}
fprintf(stderr, "Connected to RFB server, using protocol version %d.%d\n",
viewer_major, viewer_minor);
sprintf(pv, rfbProtocolVersionFormat, viewer_major, viewer_minor);
if (!WriteExact(rfbsock, pv, sz_rfbProtocolVersionMsg))
return False;
/* Read or select the security type. */
if (viewer_minor == rfbProtocolMinorVersion) {
secType = SelectSecurityType();
} else {
secType = ReadSecurityType();
}
if (secType == rfbSecTypeInvalid)
return False;
switch (secType) {
case rfbSecTypeNone:
fprintf(stderr, "No authentication needed\n");
break;
case rfbSecTypeVncAuth:
if (!AuthenticateVNC())
return False;
break;
case rfbSecTypeTight:
tightVncProtocol = True;
InitCapabilities();
if (!SetupTunneling())
return False;
if (!PerformAuthenticationTight())
return False;
break;
default: /* should never happen */
fprintf(stderr, "Internal error: Invalid security type\n");
return False;
}
ci.shared = (appData.shareDesktop ? 1 : 0);
if (!WriteExact(rfbsock, (char *)&ci, sz_rfbClientInitMsg))
return False;
if (!ReadFromRFBServer((char *)&si, sz_rfbServerInitMsg))
return False;
si.framebufferWidth = Swap16IfLE(si.framebufferWidth);
si.framebufferHeight = Swap16IfLE(si.framebufferHeight);
si.format.redMax = Swap16IfLE(si.format.redMax);
si.format.greenMax = Swap16IfLE(si.format.greenMax);
si.format.blueMax = Swap16IfLE(si.format.blueMax);
si.nameLength = Swap32IfLE(si.nameLength);
/* FIXME: Check arguments to malloc() calls. */
desktopName = malloc(si.nameLength + 1);
if (!desktopName) {
fprintf(stderr, "Error allocating memory for desktop name, %lu bytes\n",
(unsigned long)si.nameLength);
return False;
}
if (!ReadFromRFBServer(desktopName, si.nameLength)) return False;
desktopName[si.nameLength] = 0;
fprintf(stderr,"Desktop name \"%s\"\n",desktopName);
fprintf(stderr,"VNC server default format:\n");
PrintPixelFormat(&si.format);
if (tightVncProtocol) {
/* Read interaction capabilities (protocol 3.7t) */
if (!ReadInteractionCaps())
return False;
}
return True;
}
