Koichiro IWAO
0e9e25f100
use MS name for PDU types
...
RDP_PDU_REDIRECT has been removed as it is not found in MS-RDPBCGR and
not used anywhere.
6 years ago
daixj
bc150c2e56
set use_cache_glyph_v2 on if the client support
6 years ago
daixj
b3a1889200
Support Cache Glyph Revison 2, issue #367
6 years ago
jsorg71
ae1514c167
dynamic virtual channel improvements
...
remove not used chansrv <-> xrdp messages
move static channel disable control into libxrdp
remove some blocking read, write chansrv calls
add drdynvc calls to libxrdp
add drdynvc calls to chansrv
channel cleanup
6 years ago
Jay Sorg
8d63c32899
move openssl calls to common/libssl.c, check for defines
7 years ago
Koichiro IWAO
a1b0344db5
Use the words "cannot read" rather than "cannot open"
...
as the code actually tests readability.
8 years ago
Koichiro IWAO
65c1fe87d7
Log user-friendly message when certificate/privkey is inaccessible
...
We shouldn't assume that xrdp daemon is running under root privilege.
In many cases, root privilege is not really needed for xrdp daemon.
xrdp may fail to load certificate/privkey due to lack of permissions
when running under user privilege. Checking existence of files is not
enough and xrdp should output user-friendly log in such case.
Reported by Debian user in bug 856436 [1].
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856436
8 years ago
Pavel Roskin
43899b7e0c
Allocate space for tls_ciphers dynamically
8 years ago
Pavel Roskin
6ed4c969f4
Eliminate APP_CC and DEFAULT_CC
8 years ago
Pavel Roskin
9cdcb38d87
Fix memory leak in tls_ciphers parsing
8 years ago
Koichiro IWAO
08ba9ed4a8
Remove useless comment, no logic change
...
Now client addr and port are properly logged.
8 years ago
Pavel Roskin
b2d3dcf169
Include config_ac.h from all source files
8 years ago
Koichiro IWAO
096baec331
no cast is needed for NULL
8 years ago
Koichiro IWAO
849c1a22a2
TLS: switch ssl_protocols to a comma separated list
8 years ago
Koichiro IWAO
c64e9992e6
TLS: warn if no SSL/TLS protocols enabled
8 years ago
Koichiro IWAO
e94ab10e14
TLS: new method to specify SSL/TLS version
...
SSL/TLS protocols only listed in ssl_protocols should be used.
The name "ssl_protocols" comes from nginx.
Resolves #428 .
8 years ago
Idan Freiberg
482671fd18
Merge pull request #625 from speidy/proxy_session_info
...
Pass session info in proxy mode
8 years ago
Idan Freiberg
19375dda7a
Merge pull request #426 from metalefty/log-tls-version-and-cipher
...
TLS: log TLS version and cipher
8 years ago
speidy
b7da395b5e
libxrdp: use constant RDP_DATA_PDU_LOGON
8 years ago
Jay Sorg
6f74efa70a
add session_info
...
Conflicts:
libxrdp/libxrdp.h
8 years ago
Koichiro IWAO
f29a98b243
TLS: log client port in addition to ssl protocol and cipher
8 years ago
speidy
94cdbdcee6
libxrdp: change channel_code into a meaningful name
8 years ago
speidy
a96c91b38e
libxrdp: fix Fast-Path Synchronize Update message
8 years ago
Pavel Roskin
8069b29429
Recognize security_layer=negotiate in xrdp.ini, improve logging
...
security_layer=negotiate is documented, but the code is complaining
loudly about it. Fix it, make sure not to change the actual behavior
apart from the logging.
Improve the log message for unrecognized security_layer setting.
8 years ago
Koichiro IWAO
2c9ff1a4d4
log non TLS session
8 years ago
Koichiro IWAO
40e8194122
TLS: log TLS version and cipher
8 years ago
Pavel Roskin
9ac592b218
Don't use term "missing" when using default files, it's too alarming
...
Also improve messages when non-absolute path is rejected.
8 years ago
Alex Illsley
47124df4ed
new options for xrdp.ini disableSSlv3=yes and tls_ciphers=HIGH and code to implement
8 years ago
Carsten Grohmann
7f0d059d84
Improve certificate log messages
9 years ago
Pavel Roskin
ca9cbcafc8
Typo fixes
9 years ago
Pavel Roskin
70f3d4c5e2
Fix warnings for unused variables read from byte streams
9 years ago
Pavel Roskin
22e808a186
Add missing spaces in the strings that are split for line wrapping
9 years ago
speidy
9fb02e381d
libxrdp: xrdp_iso: changed logs, some fixes in security layer
...
negotiation.
10 years ago
Jay Sorg
33167a7c74
add frame acks and h264 codec mode basics
10 years ago
Jay Sorg
253028431c
libxrdp: opps, fix typeo
10 years ago
Jay Sorg
25809f4f1c
libxrdp: no logic change, tabs to spaces
10 years ago
speidy
52cac06092
libxrdp: delete NLA header detection for now, TLS is working now with
...
mstsc
10 years ago
speidy
4015f526db
work on tls mode
10 years ago
Jay Sorg
ffed349875
added option to set rdp crypto level to none
10 years ago
Idan Freiberg
16929efb05
Merge branch 'devel' of https://github.com/neutrinolabs/xrdp into
...
devel
Conflicts:
libxrdp/xrdp_sec.c
10 years ago
Idan Freiberg
afdf638c7b
libxrdp, common: work on TLS mode
10 years ago
Jay Sorg
1291d2dbbe
work on codec mode
10 years ago
Laxmikant Rashinkar
3bb31876e7
coverity: fixed resolution leak issues
10 years ago
Idan Freiberg
9795ce010a
libxrdp: changes in rdp security layer negotiation
10 years ago
Idan Freiberg
9007deae6f
libxrdp: added an option to enforce security layer in xrdp.ini
10 years ago
Jay Sorg
d9a91ca11b
libxrdp: minor mppc compressor change
11 years ago
Jay Sorg
57d492d79c
libxrdp: fastpath fragmented mppc fix, make sure we have at least 16 bytes to compress
11 years ago
Jay Sorg
1ed0dffeb6
libxrdp: mppc fix when compressor fails
11 years ago
Jay Sorg
faa0ab1f36
libxrdp: complete fastpath mppc compression
11 years ago
Jay Sorg
6d7e315b0c
work on surface command
11 years ago