| blob | 7619f7dc7f5b27c771406f294355d8d87ee63b61 |
1 /*
2 * Purple's oscar protocol plugin
3 * This file is the legal property of its developers.
4 * Please see the AUTHORS file distributed alongside this file.
5 *
6 * This library is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU Lesser General Public
8 * License as published by the Free Software Foundation; either
9 * version 2 of the License, or (at your option) any later version.
10 *
11 * This library is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * Lesser General Public License for more details.
15 *
16 * You should have received a copy of the GNU Lesser General Public
17 * License along with this library; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02111-1301 USA
19 */
21 /*
22 * Family 0x0017 - Authentication.
23 *
24 * Deals with the authorizer for SNAC-based login, and also old-style
25 * non-SNAC login.
26 *
27 */
32 #include <ctype.h>
34 /* #define USE_XOR_FOR_ICQ */
36 #ifdef USE_XOR_FOR_ICQ
37 /**
38 * Encode a password using old XOR method
39 *
40 * This takes a const pointer to a (null terminated) string
41 * containing the unencoded password. It also gets passed
42 * an already allocated buffer to store the encoded password.
43 * This buffer should be the exact length of the password without
44 * the null. The encoded password buffer /is not %NULL terminated/.
45 *
46 * The encoding_table seems to be a fixed set of values. We'll
47 * hope it doesn't change over time!
48 *
49 * This is only used for the XOR method, not the better MD5 method.
50 *
51 * @param password Incoming password.
52 * @param encoded Buffer to put encoded password.
53 */
54 static int
56 {
57 guint8 encoding_table[] = {
62 };
69 }
70 #endif
72 #ifdef USE_OLD_MD5
73 static int
74 aim_encode_password_md5(const char *password, size_t password_len, const char *key, guint8 *digest)
75 {
87 }
88 #else
89 static int
90 aim_encode_password_md5(const char *password, size_t password_len, const char *key, guint8 *digest)
91 {
108 }
109 #endif
111 #ifdef USE_XOR_FOR_ICQ
112 /*
113 * Part two of the ICQ hack. Note the ignoring of the key.
114 */
115 static int
116 goddamnicq2(OscarData *od, FlapConnection *conn, const char *sn, const char *password, ClientInfo *ci)
117 {
122 guint32 distrib;
147 }
165 }
166 #endif
168 /*
169 * Subtype 0x0002
170 *
171 * This is the initial login request packet.
172 *
173 * NOTE!! If you want/need to make use of the aim_sendmemblock() function,
174 * then the client information you send here must exactly match the
175 * executable that you're pulling the data from.
176 *
177 * Java AIM 1.1.19:
178 * clientstring = "AOL Instant Messenger (TM) version 1.1.19 for Java built 03/24/98, freeMem 215871 totalMem 1048567, i686, Linus, #2 SMP Sun Feb 11 03:41:17 UTC 2001 2.4.1-ac9, IBM Corporation, 1.1.8, 45.3, Tue Mar 27 12:09:17 PST 2001"
179 * clientid = 0x0001
180 * major = 0x0001
181 * minor = 0x0001
182 * point = (not sent)
183 * build = 0x0013
184 * unknown= (not sent)
185 *
186 * AIM for Linux 1.1.112:
187 * clientstring = "AOL Instant Messenger (SM)"
188 * clientid = 0x1d09
189 * major = 0x0001
190 * minor = 0x0001
191 * point = 0x0001
192 * build = 0x0070
193 * unknown= 0x0000008b
194 * serverstore = 0x01
195 *
196 * @param truncate_pass Truncate the password to 8 characters. This
197 * usually happens for AOL accounts. We are told that we
198 * should truncate it if the 0x0017/0x0007 SNAC contains
199 * a TLV of type 0x0026 with data 0x0000.
200 * @param allow_multiple_logins Allow multiple logins? If TRUE, the AIM
201 * server will prompt the user when multiple logins occur. If
202 * FALSE, existing connections (on other clients) will be
203 * disconnected automatically as we connect.
204 */
205 int
206 aim_send_login(OscarData *od, FlapConnection *conn, const char *sn, const char *password, gboolean truncate_pass, ClientInfo *ci, const char *key, gboolean allow_multiple_logins)
207 {
211 aim_snacid_t snacid;
213 guint32 distrib;
218 #ifdef USE_XOR_FOR_ICQ
219 /* If we're signing on an ICQ account then use the older, XOR login method */
222 #endif
231 /* Truncate ICQ and AOL passwords, if necessary */
246 #ifndef USE_OLD_MD5
248 #endif
256 }
266 /*
267 * If set, old-fashioned buddy lists will not work. You will need
268 * to use SSI.
269 */
279 }
281 /*
282 * This is sent back as a general response to the login command.
283 * It can be either an error or a success, depending on the
284 * presence of certain TLVs.
285 *
286 * The client should check the value passed as errorcode. If
287 * its nonzero, there was an error.
288 */
289 static int
290 parse(OscarData *od, FlapConnection *conn, aim_module_t *mod, FlapFrame *frame, aim_modsnac_t *snac, ByteStream *bs)
291 {
293 aim_rxcallback_t userfunc;
299 /*
300 * Read block of TLVs. All further data is derived
301 * from what is parsed here.
302 */
305 /*
306 * No matter what, we should have a username.
307 */
311 }
313 /*
314 * Check for an error code. If so, we should also
315 * have an error url.
316 */
322 /*
323 * BOS server address.
324 */
328 /*
329 * Authorization cookie.
330 */
336 {
339 }
340 }
342 /*
343 * The email address attached to this account
344 * Not available for ICQ or @mac.com logins.
345 * If you receive this TLV, then you are allowed to use
346 * family 0x0018 to check the status of your email.
347 * XXX - Not really true!
348 */
352 /*
353 * The registration status. (Not real sure what it means.)
354 * Not available for ICQ or @mac.com logins.
355 *
356 * 1 = No disclosure
357 * 2 = Limited disclosure
358 * 3 = Full disclosure
359 *
360 * This has to do with whether your email address is available
361 * to other users or not. AFAIK, this feature is no longer used.
362 *
363 * Means you can use the admin family? (0x0007)
364 *
365 */
387 /*
388 * URL to change password.
389 */
395 if ((userfunc = aim_callhandler(od, snac ? snac->family : SNAC_FAMILY_AUTH, snac ? snac->subtype : 0x0003)))
401 }
403 #ifdef USE_XOR_FOR_ICQ
404 /*
405 * Subtype 0x0007 (kind of) - Send a fake type 0x0007 SNAC to the client
406 *
407 * This is a bit confusing.
408 *
409 * Normal SNAC login goes like this:
410 * - connect
411 * - server sends flap version
412 * - client sends flap version
413 * - client sends username (17/6)
414 * - server sends hash key (17/7)
415 * - client sends auth request (17/2 -- aim_send_login)
416 * - server yells
417 *
418 * XOR login (for ICQ) goes like this:
419 * - connect
420 * - server sends flap version
421 * - client sends auth request which contains flap version (aim_send_login)
422 * - server yells
423 *
424 * For the client API, we make them implement the most complicated version,
425 * and for the simpler version, we fake it and make it look like the more
426 * complicated process.
427 *
428 * This is done by giving the client a faked key, just so we can convince
429 * them to call aim_send_login right away, which will detect the session
430 * flag that says this is XOR login and ignore the key, sending an ICQ
431 * login request instead of the normal SNAC one.
432 *
433 * As soon as AOL makes ICQ log in the same way as AIM, this is /gone/.
434 */
435 static int
437 {
438 FlapFrame frame;
439 aim_rxcallback_t userfunc;
445 }
446 #endif
448 /*
449 * Subtype 0x0006
450 *
451 * In AIM 3.5 protocol, the first stage of login is to request login from the
452 * Authorizer, passing it the username for verification. If the name is
453 * invalid, a 0017/0003 is spit back, with the standard error contents. If
454 * valid, a 0017/0007 comes back, which is the signal to send it the main
455 * login command (0017/0002).
456 *
457 */
458 int
460 {
462 aim_snacid_t snacid;
468 #ifdef USE_XOR_FOR_ICQ
471 #endif
480 /* Tell the server we support SecurID logins. */
483 /* Unknown. Sent in recent WinAIM clients.*/
492 }
494 /*
495 * Subtype 0x0007
496 *
497 * Middle handler for 0017/0007 SNACs. Contains the auth key prefixed
498 * by only its length in a two byte word.
499 *
500 * Calls the client, which should then use the value to call aim_send_login.
501 *
502 */
503 static int
504 keyparse(OscarData *od, FlapConnection *conn, aim_module_t *mod, FlapFrame *frame, aim_modsnac_t *snac, ByteStream *bs)
505 {
509 gboolean truncate_pass;
527 }
531 /*
532 * If the truncate_pass TLV exists then we should truncate the
533 * user's password to 8 characters. This flag is sent to us
534 * when logging in with an AOL user's username.
535 */
538 /* XXX - When GiantGrayPanda signed on AIM I got a thing asking me to register
539 * for the netscape network. This SNAC had a type 0x0058 TLV with length 10.
540 * Data is 0x0007 0004 3e19 ae1e 0006 0004 0000 0005 */
545 purple_account_get_bool(account, "allow_multiple_logins", OSCAR_DEFAULT_ALLOW_MULTIPLE_LOGINS));
554 }
556 /**
557 * Subtype 0x000a
558 *
559 * Receive SecurID request.
560 */
561 static int
562 got_securid_request(OscarData *od, FlapConnection *conn, aim_module_t *mod, FlapFrame *frame, aim_modsnac_t *snac, ByteStream *bs)
563 {
565 aim_rxcallback_t userfunc;
571 }
573 /**
574 * Subtype 0x000b
575 *
576 * Send SecurID response.
577 */
578 int
580 {
592 /* aim_snacid_t snacid = */ aim_cachesnac(od, SNAC_FAMILY_AUTH, SNAC_SUBTYPE_AUTH_SECURID_RESPONSE, 0x0000, NULL, 0);
601 }
603 static void
605 {
607 {
620 }
621 }
623 static int
624 snachandler(OscarData *od, FlapConnection *conn, aim_module_t *mod, FlapFrame *frame, aim_modsnac_t *snac, ByteStream *bs)
625 {
634 }
636 int
638 {
647 }