pidgin.yaz: libfaim/aim_login.c comparison

comparison libfaim/aim_login.c @ 741:58a6e6e26695

[gaim-migrate @ 751] oscar logins work better (?), aliases in convo windows. committer: Tailor Script <tailor@pidgin.im>

author	Eric Warmenhoven <eric@warmenhoven.org>
date	Tue, 22 Aug 2000 23:38:47 +0000
parents	58106806ac2b
children	72e556f6b99d

comparison

equal deleted inserted replaced

-:01d3c96867e2
+:58a6e6e26695
 *
 */
 #include <faim/aim.h>
+#include "md5.h"
+static int aim_encode_password_md5(const char *password, const char *key, md5_byte_t *digest);
 /*
 * FIXME: Reimplement the TIS stuff.
 */
 #ifdef TIS_TELNET_PROXY
 newpacket->lock = 0;
 return aim_tx_enqueue(sess, newpacket);
 }
-#ifdef SNACLOGIN
 /*
 * In AIM 3.5 protocol, the first stage of login is to request
 * login from the Authorizer, passing it the screen name
 * for verification.  If the name is invalid, a 0017/0003
 * is spit back, with the standard error contents.  If valid,
 curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);
 newpacket->lock = 0;
 return aim_tx_enqueue(sess, newpacket);
 }
-#endif /* SNACLOGIN */
 /*
 * send_login(int socket, char *sn, char *password)
 *
 * This is the initial login request packet.
 * stupid method of doing it.
 *
 */
 int aim_send_login (struct aim_session_t *sess,
 		    struct aim_conn_t *conn,
-		    char *sn, char *password, struct client_info_s *clientinfo)
+		    char *sn, char *password, struct client_info_s *clientinfo,
-{
+		    char *key)
-u_char *password_encoded = NULL;  /* to store encoded password */
+{
 int curbyte=0;
-int icqmode = 0;
+md5_byte_t digest[16];
 struct command_tx_struct *newpacket;
 if (!clientinfo || !sn || !password)
 return -1;
 if (!(newpacket = aim_tx_new(AIM_FRAMETYPE_OSCAR, 0x0002, conn, 1152)))
 return -1;
-/*
-* For ICQ logins, the client version must be at
-* least as high as ICQ2000a.
-*/
-if ((sn[0] >= '0') && (sn[0] <= '9')) {
-icqmode = 1; /* needs a different password encoding */
-if (clientinfo && (clientinfo->major < 4)) {
-printf("faim: icq: version must be at least 4.30.3141 for ICQ OSCAR login\n");
-}
-if (strlen(password) > 8) {
-printf("faim: icq: password too long (8 char max)\n");
-}
-}
-#ifdef SNACLOGIN
-newpacket->commandlen = 10;
-newpacket->commandlen += 2 + 2 + strlen(sn);
-newpacket->commandlen += 2 + 2 + strlen(password);
-newpacket->commandlen += 2 + 2 + strlen(clientinfo->clientstring);
-newpacket->commandlen += 56;
 newpacket->lock = 1;
+newpacket->hdr.oscar.type = 0x02;
 curbyte = aim_putsnac(newpacket->data+curbyte, 0x0017, 0x0002, 0x0000, 0x00010000);
 curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);
-password_encoded = (u_char *) malloc(strlen(password));
-aim_encode_password(password, password_encoded);
+aim_encode_password_md5(password, key, digest);
-curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0002, strlen(password), password_encoded);
+curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0025, 16, digest);
-curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0003,
-			   strlen(clientinfo->clientstring),
-			   clientinfo->clientstring);
-/* XXX: should use clientinfo provided version info */
-curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0016, 0x0004);
-curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0017, 0x0003);
-curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0018, 0x0005);
-curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0019, 0x0000);
-curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x001a, 0x0686);
-curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, 0x0002, clientinfo->country);
-curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, 0x0002, clientinfo->lang);
-curbyte+= aim_puttlv_32(newpacket->data+curbyte, 0x0014, 0x0000002a);
-curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0009, 0x0015);
-#else
-newpacket->lock = 1;
-newpacket->hdr.oscar.type = 0x01;
-/*
-* These four bytes are actually the FLAP version information.
-* They're sent here for convenience.  I suppose they could
-* be seperated out into a seperate FLAP, but this is where
-* everyone else sends them.
-*/
-curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
-curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
-curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);
-password_encoded = (char *) malloc(strlen(password));
-aim_encode_password(password, password_encoded);
-curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x0002, strlen(password), password_encoded);
-free(password_encoded);
 /* XXX is clientstring required by oscar? */
 if (strlen(clientinfo->clientstring))
 curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x0003, strlen(clientinfo->clientstring), clientinfo->clientstring);
 curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0016, clientinfo->major2);
 curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0017, clientinfo->major);
 curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0018, clientinfo->minor);
 curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0019, clientinfo->minor2);
 curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x001a, clientinfo->build);
 curbyte += aim_puttlv_32(newpacket->data+curbyte, 0x0014, clientinfo->unknown);
+curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0009, 0x0015);
 if (strlen(clientinfo->country))
 curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x000e, strlen(clientinfo->country), clientinfo->country);
 else
 curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x000e, 2, "us");
 curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x000f, strlen(clientinfo->lang), clientinfo->lang);
 else
 curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x000f, 2, "en");
 newpacket->commandlen = curbyte;
-#endif
 newpacket->lock = 0;
 return aim_tx_enqueue(sess, newpacket);
+}
+static int aim_encode_password_md5(const char *password, const char *key, md5_byte_t *digest)
+{
+md5_state_t state;
+md5_init(&state);
+md5_append(&state, (const md5_byte_t *)key, strlen(key));
+md5_append(&state, (const md5_byte_t *)password, strlen(password));
+md5_append(&state, (const md5_byte_t *)AIM_MD5_STRING, strlen(AIM_MD5_STRING));
+md5_finish(&state, (md5_byte_t *)digest);
+return 0;
 }
 /*
 *  int encode_password(
 *                      const char *password,
 * the null.  The encoded password buffer IS NOT NULL TERMINATED.
 *
 * The encoding_table seems to be a fixed set of values.  We'll
 * hope it doesn't change over time!
 *
-*/
+* NOTE: This is no longer used. Its here for historical reference.
-int aim_encode_password(const char *password, u_char *encoded)
+*
+*/
+#if 0
+static int aim_encode_password(const char *password, unsigned char *encoded)
 {
 u_char encoding_table[] = {
 #if 0 /* old v1 table */
 0xf3, 0xb3, 0x6c, 0x99,
 0x95, 0x3f, 0xac, 0xb6,
 for (i = 0; i < strlen(password); i++)
 encoded[i] = (password[i] ^ encoding_table[i]);
 return 0;
 }
+#endif
 /*
 * This is sent back as a general response to the login command.
 * It can be either an error or a success, depending on the
 * precense of certain TLVs.
 memset(&sess->logininfo, 0x00, sizeof(sess->logininfo));
 /*
 * Read block of TLVs.  All further data is derived
 * from what is parsed here.
+*
+* For SNAC login, there's a 17/3 SNAC header in front.
+*
 */
-#ifdef SNACLOGIN
 tlvlist = aim_readtlvchain(command->data+10, command->commandlen-10);
-#else
-tlvlist = aim_readtlvchain(command->data, command->commandlen);
-#endif
 /*
 * No matter what, we should have a screen name.
 */
 sn = aim_gettlv_str(tlvlist, 0x0001, 1);
 strncpy(sess->logininfo.screen_name, sn, strlen(sn));
 if ((tmptlv = aim_gettlv(tlvlist, 0x0013, 1)))
 sess->logininfo.regstatus = aimutil_get16(tmptlv->value);
 }
-#ifdef SNACLOGIN
 userfunc = aim_callhandler(command->conn, 0x0017, 0x0003);
-#else
-userfunc = aim_callhandler(command->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_AUTHSUCCESS);
-#endif
 if (userfunc)
 ret = userfunc(sess, command);
 aim_freetlvchain(&tlvlist);
 }
 if (sess->logininfo.errorurl) {
 free(sess->logininfo.errorurl);
 sess->logininfo.errorurl = NULL;
 }
+return ret;
+}
+/*
+* Middle handler for 0017/0007 SNACs.  Contains the auth key prefixed
+* by only its length in a two byte word.
+*
+* Calls the client, which should then use the value to call aim_send_login.
+*
+*/
+int aim_authkeyparse(struct aim_session_t *sess, struct command_rx_struct *command)
+{
+unsigned char *key;
+int keylen;
+int ret = 1;
+rxcallback_t userfunc;
+keylen = aimutil_get16(command->data+10);
+key = malloc(keylen+1);
+memcpy(key, command->data+12, keylen);
+key[keylen] = '\0';
+if ((userfunc = aim_callhandler(command->conn, 0x0017, 0x0007)))
+ret = userfunc(sess, command, key);
+free(key);
 return ret;
 }
 /*

Mercurial > pidgin.yaz

comparison libfaim/aim_login.c @ 741:58a6e6e26695