summaryrefslogtreecommitdiffstats
path: root/libxrdp/xrdp_rdp.c
diff options
context:
space:
mode:
Diffstat (limited to 'libxrdp/xrdp_rdp.c')
-rw-r--r--libxrdp/xrdp_rdp.c31
1 files changed, 27 insertions, 4 deletions
diff --git a/libxrdp/xrdp_rdp.c b/libxrdp/xrdp_rdp.c
index 914b6277..ca82df70 100644
--- a/libxrdp/xrdp_rdp.c
+++ b/libxrdp/xrdp_rdp.c
@@ -816,6 +816,9 @@ xrdp_rdp_send_data_update_sync(struct xrdp_rdp *self)
int APP_CC
xrdp_rdp_incoming(struct xrdp_rdp *self)
{
+ struct xrdp_iso *iso;
+ iso = self->sec_layer->mcs_layer->iso_layer;
+
DEBUG(("in xrdp_rdp_incoming"));
if (xrdp_sec_incoming(self->sec_layer) != 0)
@@ -825,12 +828,32 @@ xrdp_rdp_incoming(struct xrdp_rdp *self)
self->mcs_channel = self->sec_layer->mcs_layer->userid +
MCS_USERCHANNEL_BASE;
DEBUG(("out xrdp_rdp_incoming mcs channel %d", self->mcs_channel));
- g_strncpy(self->client_info.client_addr,
- self->sec_layer->mcs_layer->iso_layer->trans->addr,
+ g_strncpy(self->client_info.client_addr, iso->trans->addr,
sizeof(self->client_info.client_addr) - 1);
- g_strncpy(self->client_info.client_port,
- self->sec_layer->mcs_layer->iso_layer->trans->port,
+ g_strncpy(self->client_info.client_port, iso->trans->port,
sizeof(self->client_info.client_port) - 1);
+
+ /* log TLS version and cipher when TLS is used */
+ /* TODO: client_addr, client_port is empty when IPv6 enabled */
+
+ if (iso->selectedProtocol > PROTOCOL_RDP)
+ {
+ log_message(LOG_LEVEL_INFO,
+ "TLS connection established from %s port %s: %s with cipher %s",
+ self->client_info.client_addr,
+ self->client_info.client_port,
+ iso->trans->ssl_protocol,
+ iso->trans->cipher_name);
+ }
+ else
+ {
+ log_message(LOG_LEVEL_INFO,
+ "Non-TLS connection established from %s port %s: "
+ "encrypted with standard RDP security",
+ self->client_info.client_addr,
+ self->client_info.client_port);
+ }
+
return 0;
}