| Adam Tkac | bfd66c1 | 2010-10-01 08:33:29 +0000 | [diff] [blame^] | 1 | /* Copyright (C) 2002-2005 RealVNC Ltd. All Rights Reserved. |
| 2 | * Copyright (C) 2010 TigerVNC Team |
| 3 | * |
| 4 | * This is free software; you can redistribute it and/or modify |
| 5 | * it under the terms of the GNU General Public License as published by |
| 6 | * the Free Software Foundation; either version 2 of the License, or |
| 7 | * (at your option) any later version. |
| 8 | * |
| 9 | * This software is distributed in the hope that it will be useful, |
| 10 | * but WITHOUT ANY WARRANTY; without even the implied warranty of |
| 11 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
| 12 | * GNU General Public License for more details. |
| 13 | * |
| 14 | * You should have received a copy of the GNU General Public License |
| 15 | * along with this software; if not, write to the Free Software |
| 16 | * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, |
| 17 | * USA. |
| 18 | */ |
| 19 | |
| 20 | #ifdef HAVE_CONFIG_H |
| 21 | #include <config.h> |
| 22 | #endif |
| 23 | |
| 24 | #include <assert.h> |
| 25 | #include <rfb/CSecurityNone.h> |
| 26 | #include <rfb/CSecurityStack.h> |
| 27 | #include <rfb/CSecurityVeNCrypt.h> |
| 28 | #include <rfb/CSecurityVncAuth.h> |
| 29 | #include <rfb/CSecurityPlain.h> |
| 30 | #include <rdr/Exception.h> |
| 31 | #include <rfb/Security.h> |
| 32 | #ifdef HAVE_GNUTLS |
| 33 | #include <rfb/CSecurityTLS.h> |
| 34 | #endif |
| 35 | |
| 36 | using namespace rdr; |
| 37 | using namespace rfb; |
| 38 | |
| 39 | UserPasswdGetter *CSecurity::upg = NULL; |
| 40 | |
| 41 | StringParameter SecurityClient::secTypes |
| 42 | ("SecurityTypes", |
| 43 | "Specify which security scheme to use (None, VncAuth)", |
| 44 | #ifdef HAVE_GNUTLS |
| 45 | "VeNCrypt,X509Plain,TLSPlain,X509Vnc,TLSVnc,X509None,TLSNone,VncAuth,None", |
| 46 | #else |
| 47 | "VncAuth,None", |
| 48 | #endif |
| 49 | ConfViewer); |
| 50 | |
| 51 | CSecurity* SecurityClient::GetCSecurity(U32 secType) |
| 52 | { |
| 53 | assert (CSecurity::upg != NULL); /* (upg == NULL) means bug in the viewer */ |
| 54 | |
| 55 | if (!IsSupported(secType)) |
| 56 | goto bail; |
| 57 | |
| 58 | switch (secType) { |
| 59 | case secTypeNone: return new CSecurityNone(); |
| 60 | case secTypeVncAuth: return new CSecurityVncAuth(); |
| 61 | case secTypeVeNCrypt: return new CSecurityVeNCrypt(this); |
| 62 | case secTypePlain: return new CSecurityPlain(); |
| 63 | #ifdef HAVE_GNUTLS |
| 64 | case secTypeTLSNone: |
| 65 | return new CSecurityStack(secTypeTLSNone, "TLS with no password", |
| 66 | new CSecurityTLS(true)); |
| 67 | case secTypeTLSVnc: |
| 68 | return new CSecurityStack(secTypeTLSVnc, "TLS with VNCAuth", |
| 69 | new CSecurityTLS(true), new CSecurityVncAuth()); |
| 70 | case secTypeTLSPlain: |
| 71 | return new CSecurityStack(secTypeTLSPlain, "TLS with Username/Password", |
| 72 | new CSecurityTLS(true), new CSecurityPlain()); |
| 73 | case secTypeX509None: |
| 74 | return new CSecurityStack(secTypeX509None, "X509 with no password", |
| 75 | new CSecurityTLS(false)); |
| 76 | case secTypeX509Vnc: |
| 77 | return new CSecurityStack(secTypeX509None, "X509 with VNCAuth", |
| 78 | new CSecurityTLS(false), new CSecurityVncAuth()); |
| 79 | case secTypeX509Plain: |
| 80 | return new CSecurityStack(secTypeX509Plain, "X509 with Username/Password", |
| 81 | new CSecurityTLS(false), new CSecurityPlain()); |
| 82 | #endif |
| 83 | } |
| 84 | |
| 85 | bail: |
| 86 | throw Exception("Security type not supported"); |
| 87 | } |
| 88 | |