s_mark_end(s);	rdp_send_data(s, RDP_DATA_PDU_SYNCHRONISE);}/* Send a single input event */voidrdp_send_input(uint32 time, uint16 message_type, uint16 device_flags, uint16 param1, uint16 param2){	STREAM s;	s = rdp_init_data(16);	out_uint16_le(s, 1);	/* number of events */	out_uint16(s, 0);	/* pad */	out_uint32_le(s, time);	out_uint16_le(s, message_type);	out_uint16_le(s, device_flags);	out_uint16_le(s, param1);	out_uint16_le(s, param2);	s_mark_end(s);	rdp_send_data(s, RDP_DATA_PDU_INPUT);}/* Send a client window information PDU */voidrdp_send_client_window_status(int status){	STREAM s;	static int current_status = 1;	if (current_status == status)		return;	s = rdp_init_data(12);	out_uint32_le(s, status);	switch (status)	{		case 0:	/* shut the server up */			break;		case 1:	/* receive data again */			out_uint32_le(s, 0);	/* unknown */			out_uint16_le(s, g_width);			out_uint16_le(s, g_height);			break;	}	s_mark_end(s);	rdp_send_data(s, RDP_DATA_PDU_CLIENT_WINDOW_STATUS);	current_status = status;}/* Send persistent bitmap cache enumeration PDU's */static voidrdp_enum_bmpcache2(void){	STREAM s;	HASH_KEY keylist[BMPCACHE2_NUM_PSTCELLS];	uint32 num_keys, offset, count, flags;	offset = 0;	num_keys = pstcache_enumerate(2, keylist);	while (offset < num_keys)	{		count = MIN(num_keys - offset, 169);		s = rdp_init_data(24 + count * sizeof(HASH_KEY));		flags = 0;		if (offset == 0)			flags |= PDU_FLAG_FIRST;		if (num_keys - offset <= 169)			flags |= PDU_FLAG_LAST;		/* header */		out_uint32_le(s, 0);		out_uint16_le(s, count);		out_uint16_le(s, 0);		out_uint16_le(s, 0);		out_uint16_le(s, 0);		out_uint16_le(s, 0);		out_uint16_le(s, num_keys);		out_uint32_le(s, 0);		out_uint32_le(s, flags);		/* list */		out_uint8a(s, keylist[offset], count * sizeof(HASH_KEY));		s_mark_end(s);		rdp_send_data(s, 0x2b);		offset += 169;	}}/* Send an (empty) font information PDU */static voidrdp_send_fonts(uint16 seq){	STREAM s;	s = rdp_init_data(8);	out_uint16(s, 0);	/* number of fonts */	out_uint16_le(s, 0);	/* pad? */	out_uint16_le(s, seq);	/* unknown */	out_uint16_le(s, 0x32);	/* entry size */	s_mark_end(s);	rdp_send_data(s, RDP_DATA_PDU_FONT2);}/* Output general capability set */static voidrdp_out_general_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_GENERAL);	out_uint16_le(s, RDP_CAPLEN_GENERAL);	out_uint16_le(s, 1);	/* OS major type */	out_uint16_le(s, 3);	/* OS minor type */	out_uint16_le(s, 0x200);	/* Protocol version */	out_uint16(s, 0);	/* Pad */	out_uint16(s, 0);	/* Compression types */	out_uint16_le(s, g_use_rdp5 ? 0x40d : 0);	/* Pad, according to T.128. 0x40d seems to 	   trigger	   the server to start sending RDP5 packets. 	   However, the value is 0x1d04 with W2KTSK and	   NT4MS. Hmm.. Anyway, thankyou, Microsoft,	   for sending such information in a padding 	   field.. */	out_uint16(s, 0);	/* Update capability */	out_uint16(s, 0);	/* Remote unshare capability */	out_uint16(s, 0);	/* Compression level */	out_uint16(s, 0);	/* Pad */}/* Output bitmap capability set */static voidrdp_out_bitmap_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_BITMAP);	out_uint16_le(s, RDP_CAPLEN_BITMAP);	out_uint16_le(s, g_server_depth);	/* Preferred colour depth */	out_uint16_le(s, 1);	/* Receive 1 BPP */	out_uint16_le(s, 1);	/* Receive 4 BPP */	out_uint16_le(s, 1);	/* Receive 8 BPP */	out_uint16_le(s, 800);	/* Desktop width */	out_uint16_le(s, 600);	/* Desktop height */	out_uint16(s, 0);	/* Pad */	out_uint16(s, 1);	/* Allow resize */	out_uint16_le(s, g_bitmap_compression ? 1 : 0);	/* Support compression */	out_uint16(s, 0);	/* Unknown */	out_uint16_le(s, 1);	/* Unknown */	out_uint16(s, 0);	/* Pad */}/* Output order capability set */static voidrdp_out_order_caps(STREAM s){	uint8 order_caps[32];	memset(order_caps, 0, 32);	order_caps[0] = 1;	/* dest blt */	order_caps[1] = 1;	/* pat blt */	order_caps[2] = 1;	/* screen blt */	order_caps[3] = (g_bitmap_cache ? 1 : 0);	/* memblt */	order_caps[4] = 0;	/* triblt */	order_caps[8] = 1;	/* line */	order_caps[9] = 1;	/* line */	order_caps[10] = 1;	/* rect */	order_caps[11] = (g_desktop_save ? 1 : 0);	/* desksave */	order_caps[13] = 1;	/* memblt */	order_caps[14] = 1;	/* triblt */	order_caps[20] = (g_polygon_ellipse_orders ? 1 : 0);	/* polygon */	order_caps[21] = (g_polygon_ellipse_orders ? 1 : 0);	/* polygon2 */	order_caps[22] = 1;	/* polyline */	order_caps[25] = (g_polygon_ellipse_orders ? 1 : 0);	/* ellipse */	order_caps[26] = (g_polygon_ellipse_orders ? 1 : 0);	/* ellipse2 */	order_caps[27] = 1;	/* text2 */	out_uint16_le(s, RDP_CAPSET_ORDER);	out_uint16_le(s, RDP_CAPLEN_ORDER);	out_uint8s(s, 20);	/* Terminal desc, pad */	out_uint16_le(s, 1);	/* Cache X granularity */	out_uint16_le(s, 20);	/* Cache Y granularity */	out_uint16(s, 0);	/* Pad */	out_uint16_le(s, 1);	/* Max order level */	out_uint16_le(s, 0x147);	/* Number of fonts */	out_uint16_le(s, 0x2a);	/* Capability flags */	out_uint8p(s, order_caps, 32);	/* Orders supported */	out_uint16_le(s, 0x6a1);	/* Text capability flags */	out_uint8s(s, 6);	/* Pad */	out_uint32_le(s, g_desktop_save == False ? 0 : 0x38400);	/* Desktop cache size */	out_uint32(s, 0);	/* Unknown */	out_uint32_le(s, 0x4e4);	/* Unknown */}/* Output bitmap cache capability set */static voidrdp_out_bmpcache_caps(STREAM s){	int Bpp;	out_uint16_le(s, RDP_CAPSET_BMPCACHE);	out_uint16_le(s, RDP_CAPLEN_BMPCACHE);	Bpp = (g_server_depth + 7) / 8;	/* bytes per pixel */	out_uint8s(s, 24);	/* unused */	out_uint16_le(s, 0x258);	/* entries */	out_uint16_le(s, 0x100 * Bpp);	/* max cell size */	out_uint16_le(s, 0x12c);	/* entries */	out_uint16_le(s, 0x400 * Bpp);	/* max cell size */	out_uint16_le(s, 0x106);	/* entries */	out_uint16_le(s, 0x1000 * Bpp);	/* max cell size */}/* Output bitmap cache v2 capability set */static voidrdp_out_bmpcache2_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_BMPCACHE2);	out_uint16_le(s, RDP_CAPLEN_BMPCACHE2);	out_uint16_le(s, g_bitmap_cache_persist_enable ? 2 : 0);	/* version */	out_uint16_be(s, 3);	/* number of caches in this set */	/* max cell size for cache 0 is 16x16, 1 = 32x32, 2 = 64x64, etc */	out_uint32_le(s, BMPCACHE2_C0_CELLS);	out_uint32_le(s, BMPCACHE2_C1_CELLS);	if (pstcache_init(2))	{		out_uint32_le(s, BMPCACHE2_NUM_PSTCELLS | BMPCACHE2_FLAG_PERSIST);	}	else	{		out_uint32_le(s, BMPCACHE2_C2_CELLS);	}	out_uint8s(s, 20);	/* other bitmap caches not used */}/* Output control capability set */static voidrdp_out_control_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_CONTROL);	out_uint16_le(s, RDP_CAPLEN_CONTROL);	out_uint16(s, 0);	/* Control capabilities */	out_uint16(s, 0);	/* Remote detach */	out_uint16_le(s, 2);	/* Control interest */	out_uint16_le(s, 2);	/* Detach interest */}/* Output activation capability set */static voidrdp_out_activate_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_ACTIVATE);	out_uint16_le(s, RDP_CAPLEN_ACTIVATE);	out_uint16(s, 0);	/* Help key */	out_uint16(s, 0);	/* Help index key */	out_uint16(s, 0);	/* Extended help key */	out_uint16(s, 0);	/* Window activate */}/* Output pointer capability set */static voidrdp_out_pointer_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_POINTER);	out_uint16_le(s, RDP_CAPLEN_POINTER);	out_uint16(s, 0);	/* Colour pointer */	out_uint16_le(s, 20);	/* Cache size */}/* Output share capability set */static voidrdp_out_share_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_SHARE);	out_uint16_le(s, RDP_CAPLEN_SHARE);	out_uint16(s, 0);	/* userid */	out_uint16(s, 0);	/* pad */}/* Output colour cache capability set */static voidrdp_out_colcache_caps(STREAM s){	out_uint16_le(s, RDP_CAPSET_COLCACHE);	out_uint16_le(s, RDP_CAPLEN_COLCACHE);	out_uint16_le(s, 6);	/* cache size */	out_uint16(s, 0);	/* pad */}static uint8 caps_0x0d[] = {	0x01, 0x00, 0x00, 0x00, 0x09, 0x04, 0x00, 0x00,	0x04, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x0C, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,	0x00, 0x00, 0x00, 0x00};static uint8 caps_0x0c[] = { 0x01, 0x00, 0x00, 0x00 };static uint8 caps_0x0e[] = { 0x01, 0x00, 0x00, 0x00 };static uint8 caps_0x10[] = {	0xFE, 0x00, 0x04, 0x00, 0xFE, 0x00, 0x04, 0x00,	0xFE, 0x00, 0x08, 0x00, 0xFE, 0x00, 0x08, 0x00,	0xFE, 0x00, 0x10, 0x00, 0xFE, 0x00, 0x20, 0x00,	0xFE, 0x00, 0x40, 0x00, 0xFE, 0x00, 0x80, 0x00,	0xFE, 0x00, 0x00, 0x01, 0x40, 0x00, 0x00, 0x08,	0x00, 0x01, 0x00, 0x01, 0x02, 0x00, 0x00, 0x00};/* Output unknown capability sets */static voidrdp_out_unknown_caps(STREAM s, uint16 id, uint16 length, uint8 * caps){	out_uint16_le(s, id);	out_uint16_le(s, length);	out_uint8p(s, caps, length - 4);}#define RDP5_FLAG 0x0030/* Send a confirm active PDU */static voidrdp_send_confirm_active(void){	STREAM s;	uint32 sec_flags = g_encryption ? (RDP5_FLAG | SEC_ENCRYPT) : RDP5_FLAG;	uint16 caplen =		RDP_CAPLEN_GENERAL + RDP_CAPLEN_BITMAP + RDP_CAPLEN_ORDER +		RDP_CAPLEN_BMPCACHE + RDP_CAPLEN_COLCACHE +		RDP_CAPLEN_ACTIVATE + RDP_CAPLEN_CONTROL +		RDP_CAPLEN_POINTER + RDP_CAPLEN_SHARE +		0x58 + 0x08 + 0x08 + 0x34 /* unknown caps */  +		4 /* w2k fix, why? */ ;	s = sec_init(sec_flags, 6 + 14 + caplen + sizeof(RDP_SOURCE));	out_uint16_le(s, 2 + 14 + caplen + sizeof(RDP_SOURCE));	out_uint16_le(s, (RDP_PDU_CONFIRM_ACTIVE | 0x10));	/* Version 1 */	out_uint16_le(s, (g_mcs_userid + 1001));	out_uint32_le(s, g_rdp_shareid);	out_uint16_le(s, 0x3ea);	/* userid */	out_uint16_le(s, sizeof(RDP_SOURCE));	out_uint16_le(s, caplen);	out_uint8p(s, RDP_SOURCE, sizeof(RDP_SOURCE));	out_uint16_le(s, 0xd);	/* num_caps */	out_uint8s(s, 2);	/* pad */	rdp_out_general_caps(s);	rdp_out_bitmap_caps(s);	rdp_out_order_caps(s);	g_use_rdp5 ? rdp_out_bmpcache2_caps(s) : rdp_out_bmpcache_caps(s);	rdp_out_colcache_caps(s);	rdp_out_activate_caps(s);	rdp_out_control_caps(s);	rdp_out_pointer_caps(s);	rdp_out_share_caps(s);	rdp_out_unknown_caps(s, 0x0d, 0x58, caps_0x0d);	/* international? */	rdp_out_unknown_caps(s, 0x0c, 0x08, caps_0x0c);	rdp_out_unknown_caps(s, 0x0e, 0x08, caps_0x0e);	rdp_out_unknown_caps(s, 0x10, 0x34, caps_0x10);	/* glyph cache? */	s_mark_end(s);	sec_send(s, sec_flags);}/* Process a general capability set */static voidrdp_process_general_caps(STREAM s){	uint16 pad2octetsB;	/* rdp5 flags? */	in_uint8s(s, 10);	in_uint16_le(s, pad2octetsB);	if (!pad2octetsB)		g_use_rdp5 = False;}/* Process a bitmap capability set */static voidrdp_process_bitmap_caps(STREAM s){	uint16 width, height, depth;	in_uint16_le(s, depth);	in_uint8s(s, 6);	in_uint16_le(s, width);	in_uint16_le(s, height);	DEBUG(("setting desktop size and depth to: %dx%dx%d\n", width, height, depth));	/*	 * The server may limit depth and change the size of the desktop (for	 * example when shadowing another session).	 */	if (g_server_depth != depth)	{		warning("Remote desktop does not support colour depth %d; falling back to %d\n",			g_server_depth, depth);		g_server_depth = depth;	}	if (g_width != width || g_height != height)	{		warning("Remote desktop changed from %dx%d to %dx%d.\n", g_width, g_height,			width, height);		g_width = width;		g_height = height;		ui_resize_window();	}}/* Process server capabilities */static voidrdp_process_server_caps(STREAM s, uint16 length){	int n;	uint8 *next, *start;	uint16 ncapsets, capset_type, capset_length;	start = s->p;	in_uint16_le(s, ncapsets);	in_uint8s(s, 2);	/* pad */	for (n = 0; n < ncapsets; n++)	{		if (s->p > start + length)			return;		in_uint16_le(s, capset_type);		in_uint16_le(s, capset_length);		next = s->p + capset_length - 4;		switch (capset_type)		{			case RDP_CAPSET_GENERAL:				rdp_process_general_caps(s);				break;			case RDP_CAPSET_BITMAP:				rdp_process_bitmap_caps(s);				break;		}		s->p = next;	}}/* Respond to a demand active PDU */static voidprocess_demand_active(STREAM s){	uint8 type;	uint16 len_src_descriptor, len_combined_caps;	in_uint32_le(s, g_rdp_shareid);	in_uint16_le(s, len_src_descriptor);	in_uint16_le(s, len_combined_caps);	in_uint8s(s, len_src_descriptor);	DEBUG(("DEMAND_ACTIVE(id=0x%x)\n", g_rdp_shareid));	rdp_process_server_caps(s, len_combined_caps);