de/d82/modules_2rosapps_2applications_2net_2tsclient_2rdesktop_2licence_8c_source.html

/* -*- c-basic-offset: 8 -*-

   rdesktop: A Remote Desktop Protocol client.

   RDP licensing negotiation

   Copyright (C) Matthew Chapman 1999-2005


   This program is free software; you can redistribute it and/or modify

   it under the terms of the GNU General Public License as published by

   the Free Software Foundation; either version 2 of the License, or

   (at your option) any later version.


   This program is distributed in the hope that it will be useful,

   but WITHOUT ANY WARRANTY; without even the implied warranty of

   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

   GNU General Public License for more details.


   You should have received a copy of the GNU General Public License along

   with this program; if not, write to the Free Software Foundation, Inc.,

   51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.

*/


#include "rdesktop.h"

#include <openssl/rc4.h> // TODO: remove dependency on OpenSSL


/* Generate a session key and RC4 keys, given client and server randoms */

static void

licence_generate_keys(RDPCLIENT * This, uint8 * client_random, uint8 * server_random, uint8 * pre_master_secret)

{

    uint8 master_secret[48];

    uint8 key_block[48];


    /* Generate master secret and then key material */

    sec_hash_48(master_secret, pre_master_secret, client_random, server_random, 'A');

    sec_hash_48(key_block, master_secret, server_random, client_random, 'A');


    /* Store first 16 bytes of session key as MAC secret */

    memcpy(This->licence.sign_key, key_block, 16);


    /* Generate RC4 key from next 16 bytes */

    sec_hash_16(This->licence.key, &key_block[16], client_random, server_random);

}


static void

licence_generate_hwid(RDPCLIENT * This, uint8 * hwid)

{

    buf_out_uint32(hwid, 2);

    strncpy((char *) (hwid + 4), This->licence_hostname, LICENCE_HWID_SIZE - 4);

}


/* Present an existing licence to the server */

static BOOL

licence_present(RDPCLIENT * This, uint8 * client_random, uint8 * rsa_data,

        uint8 * licence_data, int licence_size, uint8 * hwid, uint8 * signature)

{

    uint32 sec_flags = SEC_LICENCE_NEG;

    uint16 length =

        16 + SEC_RANDOM_SIZE + SEC_MODULUS_SIZE + SEC_PADDING_SIZE +

        licence_size + LICENCE_HWID_SIZE + LICENCE_SIGNATURE_SIZE;

    STREAM s;


    s = sec_init(This, sec_flags, length + 4);


    if(s == NULL)

        return False;


    out_uint8(s, LICENCE_TAG_PRESENT);

    out_uint8(s, 2);    /* version */

    out_uint16_le(s, length);


    out_uint32_le(s, 1);

    out_uint16(s, 0);

    out_uint16_le(s, 0x0201);


    out_uint8p(s, client_random, SEC_RANDOM_SIZE);

    out_uint16(s, 0);

    out_uint16_le(s, (SEC_MODULUS_SIZE + SEC_PADDING_SIZE));

    out_uint8p(s, rsa_data, SEC_MODULUS_SIZE);

    out_uint8s(s, SEC_PADDING_SIZE);


    out_uint16_le(s, 1);

    out_uint16_le(s, licence_size);

    out_uint8p(s, licence_data, licence_size);


    out_uint16_le(s, 1);

    out_uint16_le(s, LICENCE_HWID_SIZE);

    out_uint8p(s, hwid, LICENCE_HWID_SIZE);


    out_uint8p(s, signature, LICENCE_SIGNATURE_SIZE);


    s_mark_end(s);

    return sec_send(This, s, sec_flags);

}


/* Send a licence request packet */

static BOOL

licence_send_request(RDPCLIENT * This, uint8 * client_random, uint8 * rsa_data, char *user, char *host)

{

    uint32 sec_flags = SEC_LICENCE_NEG;

    uint16 userlen = (uint16)strlen(user) + 1;

    uint16 hostlen = (uint16)strlen(host) + 1;

    uint16 length = 128 + userlen + hostlen;

    STREAM s;


    s = sec_init(This, sec_flags, length + 2);


    if(s == NULL)

        return False;


    out_uint8(s, LICENCE_TAG_REQUEST);

    out_uint8(s, 2);    /* version */

    out_uint16_le(s, length);


    out_uint32_le(s, 1);

    out_uint16(s, 0);

    out_uint16_le(s, 0xff01);


    out_uint8p(s, client_random, SEC_RANDOM_SIZE);

    out_uint16(s, 0);

    out_uint16_le(s, (SEC_MODULUS_SIZE + SEC_PADDING_SIZE));

    out_uint8p(s, rsa_data, SEC_MODULUS_SIZE);

    out_uint8s(s, SEC_PADDING_SIZE);


    out_uint16_le(s, LICENCE_TAG_USER);

    out_uint16_le(s, userlen);

    out_uint8p(s, user, userlen);


    out_uint16_le(s, LICENCE_TAG_HOST);

    out_uint16_le(s, hostlen);

    out_uint8p(s, host, hostlen);


    s_mark_end(s);

    return sec_send(This, s, sec_flags);

}


/* Process a licence demand packet */

static BOOL

licence_process_demand(RDPCLIENT * This, STREAM s)

{

    uint8 null_data[SEC_MODULUS_SIZE];

    uint8 *server_random;

    uint8 signature[LICENCE_SIGNATURE_SIZE];

    uint8 hwid[LICENCE_HWID_SIZE];

    uint8 *licence_data;

    int licence_size;

    RC4_KEY crypt_key;


    /* Retrieve the server random from the incoming packet */

    in_uint8p(s, server_random, SEC_RANDOM_SIZE);


    /* We currently use null client keys. This is a bit naughty but, hey,

       the security of licence negotiation isn't exactly paramount. */

    memset(null_data, 0, sizeof(null_data));

    licence_generate_keys(This, null_data, server_random, null_data);


    licence_size = load_licence(This, &licence_data);

    if (licence_size > 0)

    {

        /* Generate a signature for the HWID buffer */

        licence_generate_hwid(This, hwid);

        sec_sign(signature, 16, This->licence.sign_key, 16, hwid, sizeof(hwid));


        /* Now encrypt the HWID */

        RC4_set_key(&crypt_key, 16, This->licence.key);

        RC4(&crypt_key, sizeof(hwid), hwid, hwid);


        if(!licence_present(This, null_data, null_data, licence_data, licence_size, hwid, signature))

            return False;


        free(licence_data);

        return True;

    }


    return licence_send_request(This, null_data, null_data, This->licence_username, This->licence_hostname);

}


/* Send an authentication response packet */

static BOOL

licence_send_authresp(RDPCLIENT * This, uint8 * token, uint8 * crypt_hwid, uint8 * signature)

{

    uint32 sec_flags = SEC_LICENCE_NEG;

    uint16 length = 58;

    STREAM s;


    s = sec_init(This, sec_flags, length + 2);


    if(s == NULL)

        return False;


    out_uint8(s, LICENCE_TAG_AUTHRESP);

    out_uint8(s, 2);    /* version */

    out_uint16_le(s, length);


    out_uint16_le(s, 1);

    out_uint16_le(s, LICENCE_TOKEN_SIZE);

    out_uint8p(s, token, LICENCE_TOKEN_SIZE);


    out_uint16_le(s, 1);

    out_uint16_le(s, LICENCE_HWID_SIZE);

    out_uint8p(s, crypt_hwid, LICENCE_HWID_SIZE);


    out_uint8p(s, signature, LICENCE_SIGNATURE_SIZE);


    s_mark_end(s);

    return sec_send(This, s, sec_flags);

}


/* Parse an authentication request packet */

static BOOL

licence_parse_authreq(STREAM s, uint8 ** token, uint8 ** signature)

{

    uint16 tokenlen;


    in_uint8s(s, 6);    /* unknown: f8 3d 15 00 04 f6 */


    in_uint16_le(s, tokenlen);

    if (tokenlen != LICENCE_TOKEN_SIZE)

    {

        error("token len %d\n", tokenlen);

        return False;

    }


    in_uint8p(s, *token, tokenlen);

    in_uint8p(s, *signature, LICENCE_SIGNATURE_SIZE);


    return s_check_end(s);

}


/* Process an authentication request packet */

static void

licence_process_authreq(RDPCLIENT * This, STREAM s)

{

    uint8 *in_token, *in_sig;

    uint8 out_token[LICENCE_TOKEN_SIZE], decrypt_token[LICENCE_TOKEN_SIZE];

    uint8 hwid[LICENCE_HWID_SIZE], crypt_hwid[LICENCE_HWID_SIZE];

    uint8 sealed_buffer[LICENCE_TOKEN_SIZE + LICENCE_HWID_SIZE];

    uint8 out_sig[LICENCE_SIGNATURE_SIZE];

    RC4_KEY crypt_key;


    /* Parse incoming packet and save the encrypted token */

    licence_parse_authreq(s, &in_token, &in_sig);

    memcpy(out_token, in_token, LICENCE_TOKEN_SIZE);


    /* Decrypt the token. It should read TEST in Unicode. */

    RC4_set_key(&crypt_key, 16, This->licence.key);

    RC4(&crypt_key, LICENCE_TOKEN_SIZE, in_token, decrypt_token);


    /* Generate a signature for a buffer of token and HWID */

    licence_generate_hwid(This, hwid);

    memcpy(sealed_buffer, decrypt_token, LICENCE_TOKEN_SIZE);

    memcpy(sealed_buffer + LICENCE_TOKEN_SIZE, hwid, LICENCE_HWID_SIZE);

    sec_sign(out_sig, 16, This->licence.sign_key, 16, sealed_buffer, sizeof(sealed_buffer));


    /* Now encrypt the HWID */

    RC4_set_key(&crypt_key, 16, This->licence.key);

    RC4(&crypt_key, LICENCE_HWID_SIZE, hwid, crypt_hwid);


    licence_send_authresp(This, out_token, crypt_hwid, out_sig);

}


/* Process an licence issue packet */

static void

licence_process_issue(RDPCLIENT * This, STREAM s)

{

    RC4_KEY crypt_key;

    uint32 length;

    uint16 check;

    int i;


    in_uint8s(s, 2);    /* 3d 45 - unknown */

    in_uint16_le(s, length);

    if (!s_check_rem(s, length))

        return;


    RC4_set_key(&crypt_key, 16, This->licence.key);

    RC4(&crypt_key, length, s->p, s->p);


    in_uint16(s, check);

    if (check != 0)

        return;


    This->licence_issued = True;


    in_uint8s(s, 2);    /* pad */


    /* advance to fourth string */

    length = 0;

    for (i = 0; i < 4; i++)

    {

        in_uint8s(s, length);

        in_uint32_le(s, length);

        if (!s_check_rem(s, length))

            return;

    }


    This->licence_issued = True;

    save_licence(This, s->p, length);

}


/* Process a licence packet */

void

licence_process(RDPCLIENT * This, STREAM s)

{

    uint8 tag;


    in_uint8(s, tag);

    in_uint8s(s, 3);    /* version, length */


    switch (tag)

    {

        case LICENCE_TAG_DEMAND:

            licence_process_demand(This, s);

            break;


        case LICENCE_TAG_AUTHREQ:

            licence_process_authreq(This, s);

            break;


        case LICENCE_TAG_ISSUE:

            licence_process_issue(This, s);

            break;


        case LICENCE_TAG_REISSUE:

        case LICENCE_TAG_RESULT:

            break;


        default:

            unimpl("licence tag 0x%x\n", tag);

    }

}

strlen
ACPI_SIZE strlen(const char *String)
Definition: utclib.c:269

LICENCE_HWID_SIZE
#define LICENCE_HWID_SIZE
Definition: constants.h:142

LICENCE_SIGNATURE_SIZE
#define LICENCE_SIGNATURE_SIZE
Definition: constants.h:143

SEC_PADDING_SIZE
#define SEC_PADDING_SIZE
Definition: constants.h:94

LICENCE_TAG_REQUEST
#define LICENCE_TAG_REQUEST
Definition: constants.h:145

LICENCE_TOKEN_SIZE
#define LICENCE_TOKEN_SIZE
Definition: constants.h:141

SEC_MODULUS_SIZE
#define SEC_MODULUS_SIZE
Definition: constants.h:92

SEC_RANDOM_SIZE
#define SEC_RANDOM_SIZE
Definition: constants.h:91

licence_process
void licence_process(STREAM s)
Definition: licence.c:378

licence_generate_hwid
static void licence_generate_hwid(uint8 *hwid)
Definition: licence.c:66

licence_generate_keys
static void licence_generate_keys(uint8 *client_random, uint8 *server_random, uint8 *pre_master_secret)
Definition: licence.c:49

s_mark_end
#define s_mark_end(s)
Definition: parse.h:41

out_uint32_le
#define out_uint32_le(s, v)
Definition: parse.h:59

out_uint8
#define out_uint8(s, v)
Definition: parse.h:92

in_uint16_le
#define in_uint16_le(s, v)
Definition: parse.h:55

in_uint8p
#define in_uint8p(s, v, n)
Definition: parse.h:89

s_check_end
#define s_check_end(s)
Definition: parse.h:44

in_uint8s
#define in_uint8s(s, n)
Definition: parse.h:91

out_uint8s
#define out_uint8s(s, n)
Definition: parse.h:95

in_uint8
#define in_uint8(s, v)
Definition: parse.h:88

out_uint16_le
#define out_uint16_le(s, v)
Definition: parse.h:58

s_check_rem
#define s_check_rem(s, n)
Definition: parse.h:43

out_uint8p
#define out_uint8p(s, v, n)
Definition: parse.h:93

in_uint32_le
#define in_uint32_le(s, v)
Definition: parse.h:56

in_uint16
#define in_uint16(s, v)
Definition: parse.h:82

out_uint16
#define out_uint16(s, v)
Definition: parse.h:84

load_licence
int load_licence(unsigned char **data)

sec_hash_48
void sec_hash_48(uint8 *out, uint8 *in, uint8 *salt1, uint8 *salt2, uint8 salt)
Definition: secure.c:155

buf_out_uint32
void buf_out_uint32(uint8 *buffer, uint32 value)
Definition: secure.c:304

sec_send
void sec_send(STREAM s, uint32 flags)
Definition: secure.c:472

unimpl
void unimpl(char *format,...)
Definition: uimain.c:801

save_licence
void save_licence(unsigned char *data, int length)

sec_hash_16
void sec_hash_16(uint8 *out, uint8 *in, uint8 *salt1, uint8 *salt2)
Definition: secure.c:187

sec_init
STREAM sec_init(uint32 flags, int maxlen)
Definition: secure.c:419

sec_sign
void sec_sign(uint8 *signature, int siglen, uint8 *session_key, int keylen, uint8 *data, int datalen)
Definition: secure.c:314

uint16
unsigned short uint16
Definition: types.h:30

uint32
unsigned int uint32
Definition: types.h:32

False
#define False
Definition: types.h:25

True
#define True
Definition: types.h:24

uint8
unsigned char uint8
Definition: types.h:28

user
void user(int argc, const char *argv[])
Definition: cmds.c:1350

free
#define free
Definition: debug_ros.c:5

NULL
#define NULL
Definition: types.h:112

check
#define check(expected, result)
Definition: dplayx.c:32

BOOL
unsigned int BOOL
Definition: ntddk_ex.h:94

s
GLdouble s
Definition: gl.h:2039

length
GLuint GLsizei GLsizei * length
Definition: glext.h:6040

i
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat GLuint GLbitfield GLfloat GLint GLuint GLboolean GLenum GLfloat GLenum GLbitfield GLenum GLfloat GLfloat GLint GLint const GLfloat GLenum GLfloat GLfloat GLint GLint GLfloat GLfloat GLint GLint const GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat GLint GLfloat GLfloat const GLdouble const GLfloat const GLdouble const GLfloat GLint i
Definition: glfuncs.h:248

token
GLsizei GLenum const GLvoid GLsizei GLenum GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLint GLint GLint GLshort GLshort GLshort GLubyte GLubyte GLubyte GLuint GLuint GLuint GLushort GLushort GLushort GLbyte GLbyte GLbyte GLbyte GLdouble GLdouble GLdouble GLdouble GLfloat GLfloat GLfloat GLfloat GLint GLint GLint GLint GLshort GLshort GLshort GLshort GLubyte GLubyte GLubyte GLubyte GLuint GLuint GLuint GLuint GLushort GLushort GLushort GLushort GLboolean const GLdouble const GLfloat const GLint const GLshort const GLbyte const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLdouble const GLfloat const GLfloat const GLint const GLint const GLshort const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort const GLdouble const GLfloat const GLint const GLshort GLenum GLenum GLenum GLfloat GLenum GLint GLenum GLenum GLenum GLfloat GLenum GLenum GLint GLenum GLfloat GLenum GLint GLint GLushort GLenum GLenum GLfloat GLenum GLenum GLint GLfloat const GLubyte GLenum GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLint GLint GLsizei GLsizei GLint GLenum GLenum const GLvoid GLenum GLenum const GLfloat GLenum GLenum const GLint GLenum GLenum const GLdouble GLenum GLenum const GLfloat GLenum GLenum const GLint GLsizei GLuint GLfloat token
Definition: glfuncs.h:210

error
#define error(str)
Definition: mkdosfs.c:1605

memcpy
#define memcpy(s1, s2, n)
Definition: mkisofs.h:878

LICENCE_TAG_DEMAND
#define LICENCE_TAG_DEMAND
Definition: constants.h:94

LICENCE_TAG_PRESENT
#define LICENCE_TAG_PRESENT
Definition: constants.h:98

SEC_LICENCE_NEG
#define SEC_LICENCE_NEG
Definition: constants.h:72

LICENCE_TAG_AUTHRESP
#define LICENCE_TAG_AUTHRESP
Definition: constants.h:100

LICENCE_TAG_AUTHREQ
#define LICENCE_TAG_AUTHREQ
Definition: constants.h:95

LICENCE_TAG_ISSUE
#define LICENCE_TAG_ISSUE
Definition: constants.h:96

LICENCE_TAG_HOST
#define LICENCE_TAG_HOST
Definition: constants.h:104

LICENCE_TAG_USER
#define LICENCE_TAG_USER
Definition: constants.h:103

LICENCE_TAG_REISSUE
#define LICENCE_TAG_REISSUE
Definition: constants.h:97

LICENCE_TAG_RESULT
#define LICENCE_TAG_RESULT
Definition: constants.h:101

licence_process_issue
static void licence_process_issue(RDPCLIENT *This, STREAM s)
Definition: licence.c:261

licence_parse_authreq
static BOOL licence_parse_authreq(STREAM s, uint8 **token, uint8 **signature)
Definition: licence.c:208

licence_process_demand
static BOOL licence_process_demand(RDPCLIENT *This, STREAM s)
Definition: licence.c:136

licence_send_authresp
static BOOL licence_send_authresp(RDPCLIENT *This, uint8 *token, uint8 *crypt_hwid, uint8 *signature)
Definition: licence.c:177

licence_process_authreq
static void licence_process_authreq(RDPCLIENT *This, STREAM s)
Definition: licence.c:229

licence_present
static BOOL licence_present(RDPCLIENT *This, uint8 *client_random, uint8 *rsa_data, uint8 *licence_data, int licence_size, uint8 *hwid, uint8 *signature)
Definition: licence.c:51

licence_send_request
static BOOL licence_send_request(RDPCLIENT *This, uint8 *client_random, uint8 *rsa_data, char *user, char *host)
Definition: licence.c:95

rdesktop.h

This

strncpy
strncpy
Definition: string.h:335

memset
#define memset(x, y, z)
Definition: compat.h:39

host
Definition: txthost.c:37

rdpclient
Definition: rdesktop.h:169

signature
Definition: appsearch.c:38

stream
Definition: parse.h:23

tag
Definition: ecma_167.h:138