Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Contribute to GitLab
Sign in
Toggle navigation
L
libvncserver
Project
Project
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
rasky
libvncserver
Commits
c5055013
Commit
c5055013
authored
Mar 24, 2007
by
runge
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
reverse connections for ss_vncviewer. java one-time-keys.
parent
61c56222
Changes
4
Expand all
Hide whitespace changes
Inline
Side-by-side
Showing
4 changed files
with
385 additions
and
41 deletions
+385
-41
SignedVncViewer.jar
classes/ssl/SignedVncViewer.jar
+0
-0
VncViewer.jar
classes/ssl/VncViewer.jar
+0
-0
ss_vncviewer
classes/ssl/ss_vncviewer
+298
-31
tightvnc-1.3dev7_javasrc-vncviewer-ssl.patch
classes/ssl/tightvnc-1.3dev7_javasrc-vncviewer-ssl.patch
+87
-10
No files found.
classes/ssl/SignedVncViewer.jar
View file @
c5055013
No preview for this file type
classes/ssl/VncViewer.jar
View file @
c5055013
No preview for this file type
classes/ssl/ss_vncviewer
View file @
c5055013
This diff is collapsed.
Click to expand it.
classes/ssl/tightvnc-1.3dev7_javasrc-vncviewer-ssl.patch
View file @
c5055013
...
@@ -73,8 +73,8 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/RfbProto.java vnc_javasrc/RfbProto
...
@@ -73,8 +73,8 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/RfbProto.java vnc_javasrc/RfbProto
serverMajor = (b[4] - '0') * 100 + (b[5] - '0') * 10 + (b[6] - '0');
serverMajor = (b[4] - '0') * 100 + (b[5] - '0') * 10 + (b[6] - '0');
diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSLSocketToMe.java
diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSLSocketToMe.java
--- vnc_javasrc.orig/SSLSocketToMe.java 1969-12-31 19:00:00.000000000 -0500
--- vnc_javasrc.orig/SSLSocketToMe.java 1969-12-31 19:00:00.000000000 -0500
+++ vnc_javasrc/SSLSocketToMe.java 200
6-09-23 18:35:25.000000000 -04
00
+++ vnc_javasrc/SSLSocketToMe.java 200
7-02-21 23:27:10.000000000 -05
00
@@ -0,0 +1,13
01
@@
@@ -0,0 +1,13
66
@@
+/*
+/*
+ * SSLSocketToMe.java: add SSL encryption to Java VNC Viewer.
+ * SSLSocketToMe.java: add SSL encryption to Java VNC Viewer.
+ *
+ *
...
@@ -100,9 +100,14 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -100,9 +100,14 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+import java.net.*;
+import java.net.*;
+import java.io.*;
+import java.io.*;
+import javax.net.ssl.*;
+import javax.net.ssl.*;
+import java.security.cert.*;
+import java.util.*;
+import java.util.*;
+
+
+import java.security.*;
+import java.security.cert.*;
+import java.security.spec.*;
+import java.security.cert.Certificate;
+import java.security.cert.CertificateFactory;
+
+import java.awt.*;
+import java.awt.*;
+import java.awt.event.*;
+import java.awt.event.*;
+
+
...
@@ -149,6 +154,25 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -149,6 +154,25 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+ java.security.cert.Certificate[] trustallCerts = null;
+ java.security.cert.Certificate[] trustallCerts = null;
+ java.security.cert.Certificate[] trusturlCerts = null;
+ java.security.cert.Certificate[] trusturlCerts = null;
+
+
+ byte[] hex2bytes(String s) {
+ byte[] bytes = new byte[s.length()/2];
+ for (int i=0; i<s.length()/2; i++) {
+ int j = 2*i;
+ try {
+ int val = Integer.parseInt(s.substring(j, j+2), 16);
+ if (val > 127) {
+ val -= 256;
+ }
+ Integer I = new Integer(val);
+ bytes[i] = Byte.decode(I.toString()).byteValue();
+
+ } catch (Exception e) {
+ ;
+ }
+ }
+ return bytes;
+ }
+
+ SSLSocketToMe(String h, int p, VncViewer v) throws Exception {
+ SSLSocketToMe(String h, int p, VncViewer v) throws Exception {
+ host = h;
+ host = h;
+ port = p;
+ port = p;
...
@@ -338,10 +362,48 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -338,10 +362,48 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+ * 2) to subsequently connect to the server if user agrees.
+ * 2) to subsequently connect to the server if user agrees.
+ */
+ */
+
+
+ KeyManager[] mykey = null;
+
+ if (viewer.oneTimeKey != null && viewer.oneTimeKey.indexOf(",") > 0) {
+ int idx = viewer.oneTimeKey.indexOf(",");
+
+ String onetimekey = viewer.oneTimeKey.substring(0, idx);
+ byte[] key = hex2bytes(onetimekey);
+ String onetimecert = viewer.oneTimeKey.substring(idx+1);
+ byte[] cert = hex2bytes(onetimecert);
+
+ KeyFactory kf = KeyFactory.getInstance("RSA");
+ PKCS8EncodedKeySpec keysp = new PKCS8EncodedKeySpec ( key );
+ PrivateKey ff = kf.generatePrivate (keysp);
+ dbg("ff " + ff);
+ String cert_str = new String(cert);
+
+ CertificateFactory cf = CertificateFactory.getInstance("X.509");
+ Collection c = cf.generateCertificates(new ByteArrayInputStream(cert));
+ Certificate[] certs = new Certificate[c.toArray().length];
+ if (c.size() == 1) {
+ Certificate tmpcert = cf.generateCertificate(new ByteArrayInputStream(cert));
+ dbg("tmpcert" + tmpcert);
+ certs[0] = tmpcert;
+ } else {
+ certs = (Certificate[]) c.toArray();
+ }
+
+ KeyStore ks = KeyStore.getInstance("JKS");
+ ks.load(null, null);
+ ks.setKeyEntry("onetimekey", ff, "".toCharArray(), certs);
+ String da = KeyManagerFactory.getDefaultAlgorithm();
+ KeyManagerFactory kmf = KeyManagerFactory.getInstance(da);
+ kmf.init(ks, "".toCharArray());
+
+ mykey = kmf.getKeyManagers();
+ }
+
+
+ /* trust loc certs: */
+ /* trust loc certs: */
+ try {
+ try {
+ trustloc_ctx = SSLContext.getInstance("SSL");
+ trustloc_ctx = SSLContext.getInstance("SSL");
+ trustloc_ctx.init(
null
, null, new
+ trustloc_ctx.init(
mykey
, null, new
+ java.security.SecureRandom());
+ java.security.SecureRandom());
+
+
+ } catch (Exception e) {
+ } catch (Exception e) {
...
@@ -353,7 +415,7 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -353,7 +415,7 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+ /* trust all certs: */
+ /* trust all certs: */
+ try {
+ try {
+ trustall_ctx = SSLContext.getInstance("SSL");
+ trustall_ctx = SSLContext.getInstance("SSL");
+ trustall_ctx.init(
null
, trustAllCerts, new
+ trustall_ctx.init(
mykey
, trustAllCerts, new
+ java.security.SecureRandom());
+ java.security.SecureRandom());
+
+
+ } catch (Exception e) {
+ } catch (Exception e) {
...
@@ -365,7 +427,7 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -365,7 +427,7 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+ /* trust url certs: */
+ /* trust url certs: */
+ try {
+ try {
+ trusturl_ctx = SSLContext.getInstance("SSL");
+ trusturl_ctx = SSLContext.getInstance("SSL");
+ trusturl_ctx.init(
null
, trustUrlCert, new
+ trusturl_ctx.init(
mykey
, trustUrlCert, new
+ java.security.SecureRandom());
+ java.security.SecureRandom());
+
+
+ } catch (Exception e) {
+ } catch (Exception e) {
...
@@ -377,7 +439,7 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -377,7 +439,7 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+ /* trust the one cert from server: */
+ /* trust the one cert from server: */
+ try {
+ try {
+ trustone_ctx = SSLContext.getInstance("SSL");
+ trustone_ctx = SSLContext.getInstance("SSL");
+ trustone_ctx.init(
null
, trustOneCert, new
+ trustone_ctx.init(
mykey
, trustOneCert, new
+ java.security.SecureRandom());
+ java.security.SecureRandom());
+
+
+ } catch (Exception e) {
+ } catch (Exception e) {
...
@@ -563,6 +625,9 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -563,6 +625,9 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+ if (viewer.trustAllVncCerts) {
+ if (viewer.trustAllVncCerts) {
+ dbg("viewer.trustAllVncCerts-2");
+ dbg("viewer.trustAllVncCerts-2");
+ user_wants_to_see_cert = false;
+ user_wants_to_see_cert = false;
+ } else if (viewer.trustUrlVncCert) {
+ dbg("viewer.trustUrlVncCert-1");
+ user_wants_to_see_cert = false;
+ } else {
+ } else {
+ bcd = new BrowserCertsDialog(serv, host + ":" + port);
+ bcd = new BrowserCertsDialog(serv, host + ":" + port);
+ bcd.queryUser();
+ bcd.queryUser();
...
@@ -1378,8 +1443,8 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
...
@@ -1378,8 +1443,8 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/SSLSocketToMe.java vnc_javasrc/SSL
+}
+}
diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncViewer.java
diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncViewer.java
--- vnc_javasrc.orig/VncViewer.java 2004-03-04 08:34:25.000000000 -0500
--- vnc_javasrc.orig/VncViewer.java 2004-03-04 08:34:25.000000000 -0500
+++ vnc_javasrc/VncViewer.java 200
6-12-01 02:31:26
.000000000 -0500
+++ vnc_javasrc/VncViewer.java 200
7-02-21 23:24:37
.000000000 -0500
@@ -88,6 +88,1
4
@@
@@ -88,6 +88,1
6
@@
int deferCursorUpdates;
int deferCursorUpdates;
int deferUpdateRequests;
int deferUpdateRequests;
...
@@ -1388,13 +1453,15 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncView
...
@@ -1388,13 +1453,15 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncView
+ String CONNECT;
+ String CONNECT;
+ String urlPrefix;
+ String urlPrefix;
+ String httpsPort;
+ String httpsPort;
+ String oneTimeKey;
+ boolean forceProxy;
+ boolean forceProxy;
+ boolean trustAllVncCerts;
+ boolean trustAllVncCerts;
+ boolean trustUrlVncCert;
+
+
// Reference to this applet for inter-applet communication.
// Reference to this applet for inter-applet communication.
public static java.applet.Applet refApplet;
public static java.applet.Applet refApplet;
@@ -626,6 +63
4,5
3 @@
@@ -626,6 +63
6,6
3 @@
// SocketFactory.
// SocketFactory.
socketFactory = readParameter("SocketFactory", false);
socketFactory = readParameter("SocketFactory", false);
...
@@ -1435,6 +1502,11 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncView
...
@@ -1435,6 +1502,11 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncView
+ }
+ }
+ System.out.println("urlPrefix: '" + urlPrefix + "'");
+ System.out.println("urlPrefix: '" + urlPrefix + "'");
+
+
+ oneTimeKey = readParameter("oneTimeKey", false);
+ if (oneTimeKey != null) {
+ System.out.println("oneTimeKey: is set");
+ }
+
+ forceProxy = false;
+ forceProxy = false;
+ str = readParameter("forceProxy", false);
+ str = readParameter("forceProxy", false);
+ if (str != null && str.equalsIgnoreCase("Yes")) {
+ if (str != null && str.equalsIgnoreCase("Yes")) {
...
@@ -1444,6 +1516,11 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncView
...
@@ -1444,6 +1516,11 @@ diff -x VncCanvas.java -Naur vnc_javasrc.orig/VncViewer.java vnc_javasrc/VncView
+ str = readParameter("trustAllVncCerts", false);
+ str = readParameter("trustAllVncCerts", false);
+ if (str != null && str.equalsIgnoreCase("Yes")) {
+ if (str != null && str.equalsIgnoreCase("Yes")) {
+ trustAllVncCerts = true;
+ trustAllVncCerts = true;
+ }
+ trustUrlVncCert = false;
+ str = readParameter("trustUrlVncCert", false);
+ if (str != null && str.equalsIgnoreCase("Yes")) {
+ trustUrlVncCert = true;
+ }
+ }
}
}
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment