undo changes

Author: irvingoujAtDevolution

ffi/dotnet/Devolutions.IronRdp/Generated/CredsspSequence.cs

@@ -53,7 +53,7 @@ public unsafe CredsspSequence(Raw.CredsspSequence* handle)
     /// <returns>
     /// A <c>CredsspSequenceInitResult</c> allocated on Rust side.
     /// </returns>
-    public static CredsspSequenceInitResult Init(ClientConnector connector, string serverName, byte[] serverPublicKey)
+    public static CredsspSequenceInitResult Init(ClientConnector connector, string serverName, byte[] serverPublicKey, KerberosConfig? kerberoConfigs)
     {
         unsafe
         {
@@ -66,11 +66,24 @@ public static CredsspSequenceInitResult Init(ClientConnector connector, string s
             {
                 throw new ObjectDisposedException("ClientConnector");
             }
+            Raw.KerberosConfig* kerberoConfigsRaw;
+            if (kerberoConfigs == null)
+            {
+                kerberoConfigsRaw = null;
+            }
+            else
+            {
+                kerberoConfigsRaw = kerberoConfigs.AsFFI();
+                if (kerberoConfigsRaw == null)
+                {
+                    throw new ObjectDisposedException("KerberosConfig");
+                }
+            }
             fixed (byte* serverPublicKeyPtr = serverPublicKey)
             {
                 fixed (byte* serverNameBufPtr = serverNameBuf)
                 {
-                    Raw.CredsspFfiResultBoxCredsspSequenceInitResultBoxIronRdpError result = Raw.CredsspSequence.Init(connectorRaw, serverNameBufPtr, serverNameBufLength, serverPublicKeyPtr, serverPublicKeyLength);
+                    Raw.CredsspFfiResultBoxCredsspSequenceInitResultBoxIronRdpError result = Raw.CredsspSequence.Init(connectorRaw, serverNameBufPtr, serverNameBufLength, serverPublicKeyPtr, serverPublicKeyLength, kerberoConfigsRaw);
                     if (!result.isOk)
                     {
                         throw new IronRdpException(new IronRdpError(result.Err));

ffi/dotnet/Devolutions.IronRdp/Generated/KerberosConfig.cs

@@ -0,0 +1,99 @@
+// <auto-generated/> by Diplomat
+
+#pragma warning disable 0105
+using System;
+using System.Runtime.InteropServices;
+
+using Devolutions.IronRdp.Diplomat;
+#pragma warning restore 0105
+
+namespace Devolutions.IronRdp;
+
+#nullable enable
+
+public partial class KerberosConfig: IDisposable
+{
+    private unsafe Raw.KerberosConfig* _inner;
+
+    /// <summary>
+    /// Creates a managed <c>KerberosConfig</c> from a raw handle.
+    /// </summary>
+    /// <remarks>
+    /// Safety: you should not build two managed objects using the same raw handle (may causes use-after-free and double-free).
+    /// <br/>
+    /// This constructor assumes the raw struct is allocated on Rust side.
+    /// If implemented, the custom Drop implementation on Rust side WILL run on destruction.
+    /// </remarks>
+    public unsafe KerberosConfig(Raw.KerberosConfig* handle)
+    {
+        _inner = handle;
+    }
+
+    /// <summary>
+    /// Creates a new KerberosConfig for KDC proxy support.
+    /// </summary>
+    /// <remarks>
+    /// # Arguments
+    /// * `kdc_proxy_url` - KDC proxy URL (e.g., "https://gateway.example.com/KdcProxy/{token}"), empty string if not used
+    /// * `hostname` - Client hostname for Kerberos, empty string if not used
+    /// </remarks>
+    /// <exception cref="IronRdpException"></exception>
+    /// <returns>
+    /// A <c>KerberosConfig</c> allocated on Rust side.
+    /// </returns>
+    public static KerberosConfig New(string kdcProxyUrl, string hostname)
+    {
+        unsafe
+        {
+            byte[] kdcProxyUrlBuf = DiplomatUtils.StringToUtf8(kdcProxyUrl);
+            byte[] hostnameBuf = DiplomatUtils.StringToUtf8(hostname);
+            nuint kdcProxyUrlBufLength = (nuint)kdcProxyUrlBuf.Length;
+            nuint hostnameBufLength = (nuint)hostnameBuf.Length;
+            fixed (byte* kdcProxyUrlBufPtr = kdcProxyUrlBuf)
+            {
+                fixed (byte* hostnameBufPtr = hostnameBuf)
+                {
+                    Raw.CredsspFfiResultBoxKerberosConfigBoxIronRdpError result = Raw.KerberosConfig.New(kdcProxyUrlBufPtr, kdcProxyUrlBufLength, hostnameBufPtr, hostnameBufLength);
+                    if (!result.isOk)
+                    {
+                        throw new IronRdpException(new IronRdpError(result.Err));
+                    }
+                    Raw.KerberosConfig* retVal = result.Ok;
+                    return new KerberosConfig(retVal);
+                }
+            }
+        }
+    }
+
+    /// <summary>
+    /// Returns the underlying raw handle.
+    /// </summary>
+    public unsafe Raw.KerberosConfig* AsFFI()
+    {
+        return _inner;
+    }
+
+    /// <summary>
+    /// Destroys the underlying object immediately.
+    /// </summary>
+    public void Dispose()
+    {
+        unsafe
+        {
+            if (_inner == null)
+            {
+                return;
+            }
+
+            Raw.KerberosConfig.Destroy(_inner);
+            _inner = null;
+
+            GC.SuppressFinalize(this);
+        }
+    }
+
+    ~KerberosConfig()
+    {
+        Dispose();
+    }
+}

ffi/dotnet/Devolutions.IronRdp/Generated/RawCredsspFfiResultBoxKerberosConfigBoxIronRdpError.cs

@@ -0,0 +1,46 @@
+// <auto-generated/> by Diplomat
+
+#pragma warning disable 0105
+using System;
+using System.Runtime.InteropServices;
+
+using Devolutions.IronRdp.Diplomat;
+#pragma warning restore 0105
+
+namespace Devolutions.IronRdp.Raw;
+
+#nullable enable
+
+[StructLayout(LayoutKind.Sequential)]
+public partial struct CredsspFfiResultBoxKerberosConfigBoxIronRdpError
+{
+    [StructLayout(LayoutKind.Explicit)]
+    private unsafe struct InnerUnion
+    {
+        [FieldOffset(0)]
+        internal KerberosConfig* ok;
+        [FieldOffset(0)]
+        internal IronRdpError* err;
+    }
+
+    private InnerUnion _inner;
+
+    [MarshalAs(UnmanagedType.U1)]
+    public bool isOk;
+
+    public unsafe KerberosConfig* Ok
+    {
+        get
+        {
+            return _inner.ok;
+        }
+    }
+
+    public unsafe IronRdpError* Err
+    {
+        get
+        {
+            return _inner.err;
+        }
+    }
+}

ffi/dotnet/Devolutions.IronRdp/Generated/RawCredsspSequence.cs

@@ -20,7 +20,7 @@ public partial struct CredsspSequence
     public static unsafe extern PduHint* NextPduHint(CredsspSequence* self);
 
     [DllImport(NativeLib, CallingConvention = CallingConvention.Cdecl, EntryPoint = "CredsspSequence_init", ExactSpelling = true)]
-    public static unsafe extern CredsspFfiResultBoxCredsspSequenceInitResultBoxIronRdpError Init(ClientConnector* connector, byte* serverName, nuint serverNameSz, byte* serverPublicKey, nuint serverPublicKeySz);
+    public static unsafe extern CredsspFfiResultBoxCredsspSequenceInitResultBoxIronRdpError Init(ClientConnector* connector, byte* serverName, nuint serverNameSz, byte* serverPublicKey, nuint serverPublicKeySz, KerberosConfig* kerberoConfigs);
 
     [DllImport(NativeLib, CallingConvention = CallingConvention.Cdecl, EntryPoint = "CredsspSequence_decode_server_message", ExactSpelling = true)]
     public static unsafe extern CredsspFfiResultOptBoxTsRequestBoxIronRdpError DecodeServerMessage(CredsspSequence* self, byte* pdu, nuint pduSz);

ffi/dotnet/Devolutions.IronRdp/Generated/RawKerberosConfig.cs

@@ -0,0 +1,32 @@
+// <auto-generated/> by Diplomat
+
+#pragma warning disable 0105
+using System;
+using System.Runtime.InteropServices;
+
+using Devolutions.IronRdp.Diplomat;
+#pragma warning restore 0105
+
+namespace Devolutions.IronRdp.Raw;
+
+#nullable enable
+
+[StructLayout(LayoutKind.Sequential)]
+public partial struct KerberosConfig
+{
+    private const string NativeLib = "DevolutionsIronRdp";
+
+    /// <summary>
+    /// Creates a new KerberosConfig for KDC proxy support.
+    /// </summary>
+    /// <remarks>
+    /// # Arguments
+    /// * `kdc_proxy_url` - KDC proxy URL (e.g., "https://gateway.example.com/KdcProxy/{token}"), empty string if not used
+    /// * `hostname` - Client hostname for Kerberos, empty string if not used
+    /// </remarks>
+    [DllImport(NativeLib, CallingConvention = CallingConvention.Cdecl, EntryPoint = "KerberosConfig_new", ExactSpelling = true)]
+    public static unsafe extern CredsspFfiResultBoxKerberosConfigBoxIronRdpError New(byte* kdcProxyUrl, nuint kdcProxyUrlSz, byte* hostname, nuint hostnameSz);
+
+    [DllImport(NativeLib, CallingConvention = CallingConvention.Cdecl, EntryPoint = "KerberosConfig_destroy", ExactSpelling = true)]
+    public static unsafe extern void Destroy(KerberosConfig* self);
+}

ffi/dotnet/Devolutions.IronRdp/src/Connection.cs

@@ -97,7 +97,7 @@ private static async Task<ConnectionResult> ConnectFinalize(string serverName, C
     private static async Task PerformCredsspSteps(ClientConnector connector, string serverName, WriteBuf writeBuf,
         Framed<SslStream> framedSsl, byte[] serverpubkey)
     {
-        var credsspSequenceInitResult = CredsspSequence.Init(connector, serverName, serverpubkey);
+        var credsspSequenceInitResult = CredsspSequence.Init(connector, serverName, serverpubkey, null);
         var credsspSequence = credsspSequenceInitResult.GetCredsspSequence();
         var tsRequest = credsspSequenceInitResult.GetTsRequest();
         var tcpClient = new TcpClient();

ffi/dotnet/Devolutions.IronRdp/src/RDCleanPathConnection.cs

@@ -224,7 +224,7 @@ private static async Task PerformCredsspSteps(
             hostname = serverName.Substring(0, colonIndex);
         }
 
-        var credsspSequenceInitResult = CredsspSequence.Init(connector, hostname, serverpubkey);
+        var credsspSequenceInitResult = CredsspSequence.Init(connector, hostname, serverpubkey, null);
         var credsspSequence = credsspSequenceInitResult.GetCredsspSequence();
         var tsRequest = credsspSequenceInitResult.GetTsRequest();
         var tcpClient = new System.Net.Sockets.TcpClient();

ffi/src/credssp/mod.rs

@@ -13,6 +13,33 @@ pub mod ffi {
     use crate::error::ValueConsumedError;
     use crate::pdu::ffi::WriteBuf;
 
+    #[diplomat::opaque]
+    pub struct KerberosConfig(pub ironrdp::connector::credssp::KerberosConfig);
+
+    impl KerberosConfig {
+        /// Creates a new KerberosConfig for KDC proxy support.
+        ///
+        /// # Arguments
+        /// * `kdc_proxy_url` - KDC proxy URL (e.g., "https://gateway.example.com/KdcProxy/{token}"), empty string if not used
+        /// * `hostname` - Client hostname for Kerberos, empty string if not used
+        pub fn new(kdc_proxy_url: &str, hostname: &str) -> Result<Box<KerberosConfig>, Box<IronRdpError>> {
+            let kdc_proxy_url_opt = if kdc_proxy_url.is_empty() {
+                None
+            } else {
+                Some(kdc_proxy_url.to_owned())
+            };
+
+            let hostname_opt = if hostname.is_empty() {
+                None
+            } else {
+                Some(hostname.to_owned())
+            };
+
+            let config = ironrdp::connector::credssp::KerberosConfig::new(kdc_proxy_url_opt, hostname_opt)?;
+            Ok(Box::new(KerberosConfig(config)))
+        }
+    }
+
     #[diplomat::opaque]
     pub struct CredsspSequence(pub ironrdp::connector::credssp::CredsspSequence);
 
@@ -50,6 +77,7 @@ pub mod ffi {
             connector: &ClientConnector,
             server_name: &str,
             server_public_key: &[u8],
+            kerbero_configs: Option<&KerberosConfig>,
         ) -> Result<Box<CredsspSequenceInitResult>, Box<IronRdpError>> {
             let Some(connector) = connector.0.as_ref() else {
                 return Err(ValueConsumedError::for_item("connector").into());
@@ -63,7 +91,7 @@ pub mod ffi {
                         selected_protocol,
                         server_name.into(),
                         server_public_key.to_owned(),
-                        None,
+                        kerbero_configs.map(|config| config.0.clone()),
                     )?;
 
                     Ok(Box::new(CredsspSequenceInitResult {