[libfaim.git] / aim_login.c

/*
 *  aim_login.c
 *
 *  This contains all the functions needed to actually login.
 *
 */

#include <faim/aim.h>


/*
 * FIXME: Reimplement the TIS stuff.
 */
#ifdef TIS_TELNET_PROXY
#include "tis_telnet_proxy.h"
#endif

int aim_sendconnack(struct aim_session_t *sess,
		      struct aim_conn_t *conn)
{
  int curbyte=0;
  
  struct command_tx_struct *newpacket;

  if (!(newpacket = aim_tx_new(0x0001, conn, 4)))
    return -1;

  newpacket->lock = 1;
  
  curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
  curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);

  newpacket->lock = 0;
  return aim_tx_enqueue(sess, newpacket);
}

#ifdef SNACLOGIN
/*
 * In AIM 3.5 protocol, the first stage of login is to request
 * login from the Authorizer, passing it the screen name
 * for verification.  If the name is invalid, a 0017/0003 
 * is spit back, with the standard error contents.  If valid,
 * a 0017/0007 comes back, which is the signal to send
 * it the main login command (0017/0002).  
 */
int aim_request_login(struct aim_session_t *sess,
		      struct aim_conn_t *conn, 
		      char *sn)
{
  int curbyte=0;
  
  struct command_tx_struct *newpacket;

  if (!(newpacket = aim_tx_new(0x0002, conn, 10+2+2+strlen(sn))))
    return -1;

  newpacket->lock = 1;
  
  curbyte += aim_putsnac(newpacket->data+curbyte, 0x0017, 0x0006, 0x0000, 0x00010000);
  curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);

  newpacket->lock = 0;
  return aim_tx_enqueue(sess, newpacket);
}
#endif /* SNACLOGIN */

/*
 * send_login(int socket, char *sn, char *password)
 *  
 * This is the initial login request packet.
 *
 * The password is encoded before transmition, as per
 * encode_password().  See that function for their
 * stupid method of doing it.
 *
 */
int aim_send_login (struct aim_session_t *sess,
		    struct aim_conn_t *conn, 
		    char *sn, char *password, struct client_info_s *clientinfo)
{
  u_char *password_encoded = NULL;  /* to store encoded password */
  int curbyte=0;
  int icqmode = 0;
  
  struct command_tx_struct *newpacket;

  if (!clientinfo || !sn || !password)
    return -1;

  if (!(newpacket = aim_tx_new(0x0002, conn, 1152)))
    return -1;

  /*
   * For ICQ logins, the client version must be at
   * least as high as ICQ2000a.
   */
  if ((sn[0] >= '0') && (sn[0] <= '9')) {
    icqmode = 1; /* needs a different password encoding */
    if (clientinfo && (clientinfo->major < 4)) {
      printf("faim: icq: version must be at least 4.30.3141 for ICQ OSCAR login\n");
      return -1;
    }
    if (strlen(password) > 8) {
      printf("faim: icq: password too long (8 char max)\n");
      return -1;
    }
  }

#ifdef SNACLOGIN 
  newpacket->commandlen = 10;
  newpacket->commandlen += 2 + 2 + strlen(sn);
  newpacket->commandlen += 2 + 2 + strlen(password);
  newpacket->commandlen += 2 + 2 + strlen(clientinfo->clientstring);
  newpacket->commandlen += 56;
  
  newpacket->lock = 1;

  curbyte = aim_putsnac(newpacket->data+curbyte, 0x0017, 0x0002, 0x0000, 0x00010000);
  curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);
  password_encoded = (u_char *) malloc(strlen(password));
  aim_encode_password(password, password_encoded);
  curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0002, strlen(password), password_encoded);
  curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0003, 
			   strlen(clientinfo->clientstring), 
			   clientinfo->clientstring);
  /* XXX: should use clientinfo provided version info */
  curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0016, 0x0004);
  curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0017, 0x0003);
  curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0018, 0x0005);
  curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0019, 0x0000);
  curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x001a, 0x0686);
  curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, 0x0002, clientinfo->country);
  curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, 0x0002, clientinfo->lang);
  curbyte+= aim_puttlv_32(newpacket->data+curbyte, 0x0014, 0x0000002a);
  curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0009, 0x0015);
#else
  
  newpacket->commandlen = 4 + 4 + strlen(sn) + 4+strlen(password) + 6;
 
  newpacket->commandlen += 8; /* tlv 0x0014 */

  if (clientinfo) {
    if (strlen(clientinfo->clientstring))
      newpacket->commandlen += 4+strlen(clientinfo->clientstring);
    newpacket->commandlen += 6+6+6+6;
    if (strlen(clientinfo->country))
      newpacket->commandlen += 4+strlen(clientinfo->country);
    if (strlen(clientinfo->lang))
      newpacket->commandlen += 4+strlen(clientinfo->lang);
  }

  newpacket->lock = 1;
  newpacket->type = 0x01;

  curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
  curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
  curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
  curbyte += aimutil_put16(newpacket->data+curbyte, strlen(sn));
  curbyte += aimutil_putstr(newpacket->data+curbyte, sn, strlen(sn));

  curbyte += aimutil_put16(newpacket->data+curbyte, 0x0002);
  curbyte += aimutil_put16(newpacket->data+curbyte, strlen(password));
  password_encoded = (char *) malloc(strlen(password));
  if (icqmode)
    aimicq_encode_password(password, password_encoded);
  else
    aim_encode_password(password, password_encoded);
  curbyte += aimutil_putstr(newpacket->data+curbyte, password_encoded, strlen(password));
  free(password_encoded);
  
  curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0016, 0x010a /*0x0004*/);
  
  if (strlen(clientinfo->clientstring)) {
    curbyte += aimutil_put16(newpacket->data+curbyte, 0x0003);
    curbyte += aimutil_put16(newpacket->data+curbyte, strlen(clientinfo->clientstring));
    curbyte += aimutil_putstr(newpacket->data+curbyte, clientinfo->clientstring, strlen(clientinfo->clientstring));
  }
  curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0017, clientinfo->major /*0x0001*/);
  curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0018, clientinfo->minor /*0x0001*/);
  curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0019, 0x0001);
  curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x001a, clientinfo->build /*0x0013*/);

  curbyte += aim_puttlv_32(newpacket->data+curbyte, 0x0014, 0x00000055);

  if (strlen(clientinfo->country)) {
    curbyte += aimutil_put16(newpacket->data+curbyte, 0x000e);
    curbyte += aimutil_put16(newpacket->data+curbyte, strlen(clientinfo->country));
    curbyte += aimutil_putstr(newpacket->data+curbyte, clientinfo->country, strlen(clientinfo->country));
  }
  if (strlen(clientinfo->lang)) {
    curbyte += aimutil_put16(newpacket->data+curbyte, 0x000f);
    curbyte += aimutil_put16(newpacket->data+curbyte, strlen(clientinfo->lang));
    curbyte += aimutil_putstr(newpacket->data+curbyte, clientinfo->lang, strlen(clientinfo->lang));
  }

#endif

  newpacket->lock = 0;
  return aim_tx_enqueue(sess, newpacket);
}

/*
 *  int encode_password(
 *                      const char *password,
 *	                char *encoded
 *	                ); 
 *
 * This takes a const pointer to a (null terminated) string
 * containing the unencoded password.  It also gets passed
 * an already allocated buffer to store the encoded password.
 * This buffer should be the exact length of the password without
 * the null.  The encoded password buffer IS NOT NULL TERMINATED.
 *
 * The encoding_table seems to be a fixed set of values.  We'll
 * hope it doesn't change over time!  
 *
 */
int aim_encode_password(const char *password, u_char *encoded)
{
  u_char encoding_table[] = {
    0xf3, 0xb3, 0x6c, 0x99,
    0x95, 0x3f, 0xac, 0xb6,
    0xc5, 0xfa, 0x6b, 0x63,
    0x69, 0x6c, 0xc3, 0x9f
  };

  int i;
  
  for (i = 0; i < strlen(password); i++)
      encoded[i] = (password[i] ^ encoding_table[i]);

  return 0;
}

/*
 * They changed the hash slightly for ICQ. 
 *   This new hash may work for AIM too (though
 *   the max password length for ICQ is only 
 *   eight characters, where its 16 with AIM).
 *
 */
int aimicq_encode_password(const char *password, u_char *encoded)
{
  u_char encoding_table[] = {
    0xf3, 0x26, 0x81, 0xc4,
    0x39, 0x86, 0xdb, 0x92
  };

  int i;

  if (strlen(password) > 8)
    return -1;

  for (i = 0; i < strlen(password); i++)
      encoded[i] = (password[i] ^ encoding_table[i]);

  return 0;
}

/*
 * This is sent back as a general response to the login command.
 * It can be either an error or a success, depending on the
 * precense of certain TLVs.  
 *
 * The client should check the value of logininfo->errorcode. If
 * its nonzero, there was an error.
 *
 */
int aim_authparse(struct aim_session_t *sess, 
		  struct command_rx_struct *command)
{
  struct aim_tlvlist_t *tlvlist;
  int ret = 1;
  char *sn;
  rxcallback_t userfunc = NULL;

  memset(&sess->logininfo, 0x00, sizeof(sess->logininfo));

  /*
   * Read block of TLVs.  All further data is derived
   * from what is parsed here.
   */
#ifdef SNACLOGIN
  tlvlist = aim_readtlvchain(command->data+10, command->commandlen-10);
#else
  tlvlist = aim_readtlvchain(command->data, command->commandlen);
#endif
  /*
   * No matter what, we should have a screen name.
   */
  sn = aim_gettlv_str(tlvlist, 0x0001, 1);
  memcpy(sess->logininfo.screen_name, sn, strlen(sn));
  sn[(strlen(sn))] = '\0';
  
  /*
   * Check for an error code.  If so, we should also
   * have an error url.
   */
  if (aim_gettlv(tlvlist, 0x0008, 1)) {
    struct aim_tlv_t *errtlv;
    errtlv = aim_gettlv(tlvlist, 0x0008, 1);
    sess->logininfo.errorcode = aimutil_get16(errtlv->value);
    sess->logininfo.errorurl = aim_gettlv_str(tlvlist, 0x0004, 1);
  }
  /* 
   * If we have both an IP number (0x0005) and a cookie (0x0006),
   * then the login was successful.
   */
  else if (aim_gettlv(tlvlist, 0x0005, 1) && aim_gettlv(tlvlist, 0x0006, 1)) {
    struct aim_tlv_t *tmptlv;

    /*
     * IP address of BOS server.
     */
    sess->logininfo.BOSIP = aim_gettlv_str(tlvlist, 0x0005, 1);
    
    /*
     * Authorization Cookie
     */
    tmptlv = aim_gettlv(tlvlist, 0x0006, 1);
    memcpy(sess->logininfo.cookie, tmptlv->value, AIM_COOKIELEN);
    
    /*
     * The email address attached to this account
     *   Not available for ICQ logins.
     */
    if (aim_gettlv(tlvlist, 0x0011, 1))
      sess->logininfo.email = aim_gettlv_str(tlvlist, 0x0011, 1);
    
    /*
     * The registration status.  (Not real sure what it means.)
     *   Not available for ICQ logins.
     */
    if ((tmptlv = aim_gettlv(tlvlist, 0x0013, 1)))
      sess->logininfo.regstatus = aimutil_get16(tmptlv->value);
      
  }

#ifdef SNACLOGIN
  userfunc = aim_callhandler(command->conn, 0x0017, 0x0003);
#else
  userfunc = aim_callhandler(command->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_AUTHSUCCESS);
#endif
  if (userfunc)
    ret = userfunc(sess, command);

  aim_freetlvchain(&tlvlist);

  /* These have been clobbered by the freetlvchain */
  sess->logininfo.BOSIP = NULL;
  sess->logininfo.email = NULL;
  sess->logininfo.errorurl = NULL;

  return ret;
}

/*
 * Generate an authorization response.  
 *
 * You probably don't want this unless you're writing an AIM server.
 *
 */
unsigned long aim_sendauthresp(struct aim_session_t *sess, 
			       struct aim_conn_t *conn, 
			       char *sn, char *bosip, 
			       char *cookie, char *email, 
			       int regstatus)
{	
  struct command_tx_struct *tx;
  struct aim_tlvlist_t *tlvlist = NULL;

  if (!(tx = aim_tx_new(0x0004, conn, 1152)))
    return -1;
  
  tx->lock = 1;

  if (sn)
    aim_addtlvtochain_str(&tlvlist, 0x0001, sn, strlen(sn));
  else
    aim_addtlvtochain_str(&tlvlist, 0x0001, sess->logininfo.screen_name, strlen(sess->logininfo.screen_name));

  if (sess->logininfo.errorcode) {
    aim_addtlvtochain16(&tlvlist, 0x0008, sess->logininfo.errorcode);
    aim_addtlvtochain_str(&tlvlist, 0x0004, sess->logininfo.errorurl, strlen(sess->logininfo.errorurl));
  } else {
    aim_addtlvtochain_str(&tlvlist, 0x0005, bosip, strlen(bosip));
    aim_addtlvtochain_str(&tlvlist, 0x0006, cookie, AIM_COOKIELEN);
    aim_addtlvtochain_str(&tlvlist, 0x0011, email, strlen(email));
    aim_addtlvtochain16(&tlvlist, 0x0013, regstatus);
  }

  tx->commandlen = aim_writetlvchain(tx->data, tx->commandlen, &tlvlist);
  tx->lock = 0;
  return aim_tx_enqueue(sess, tx);
}

/*
 * Generate a random cookie.  (Non-client use only)
 */
int aim_gencookie(unsigned char *buf)
{
  int i;

  srand(time(NULL));

  for (i=0; i < AIM_COOKIELEN; i++)
    buf[i] = 1+(int) (256.0*rand()/(RAND_MAX+0.0));

  return i;
}

/*
 * Send Server Ready.  (Non-client)
 */
int aim_sendserverready(struct aim_session_t *sess, struct aim_conn_t *conn)
{
  struct command_tx_struct *tx;
  int i = 0;

  if (!(tx = aim_tx_new(0x0002, conn, 10+0x22)))
    return -1;

  tx->lock = 1;

  i += aim_putsnac(tx->data, 0x0001, 0x0003, 0x0000, sess->snac_nextid++);
  
  i += aimutil_put16(tx->data+i, 0x0001);  
  i += aimutil_put16(tx->data+i, 0x0002);
  i += aimutil_put16(tx->data+i, 0x0003);
  i += aimutil_put16(tx->data+i, 0x0004);
  i += aimutil_put16(tx->data+i, 0x0006);
  i += aimutil_put16(tx->data+i, 0x0008);
  i += aimutil_put16(tx->data+i, 0x0009);
  i += aimutil_put16(tx->data+i, 0x000a);
  i += aimutil_put16(tx->data+i, 0x000b);
  i += aimutil_put16(tx->data+i, 0x000c);
  i += aimutil_put16(tx->data+i, 0x0013);
  i += aimutil_put16(tx->data+i, 0x0015);

  tx->commandlen = i;
  tx->lock = 0;
  return aim_tx_enqueue(sess, tx);
}


/* 
 * Send service redirect.  (Non-Client)
 */
unsigned long aim_sendredirect(struct aim_session_t *sess, 
			       struct aim_conn_t *conn, 
			       unsigned short servid, 
			       char *ip,
			       char *cookie)
{	
  struct command_tx_struct *tx;
  struct aim_tlvlist_t *tlvlist = NULL;
  int i = 0;

  if (!(tx = aim_tx_new(0x0002, conn, 1152)))
    return -1;

  tx->lock = 1;

  i += aimutil_put16(tx->data+i, 0x0001);
  i += aimutil_put16(tx->data+i, 0x0005);
  i += aimutil_put16(tx->data+i, 0x0000);
  i += aimutil_put16(tx->data+i, 0x0000);
  i += aimutil_put16(tx->data+i, 0x0000);
  
  aim_addtlvtochain16(&tlvlist, 0x000d, servid);
  aim_addtlvtochain_str(&tlvlist, 0x0005, ip, strlen(ip));
  aim_addtlvtochain_str(&tlvlist, 0x0006, cookie, AIM_COOKIELEN);

  tx->commandlen = aim_writetlvchain(tx->data+i, tx->commandlen-i, &tlvlist)+i;
  aim_freetlvchain(&tlvlist);

  tx->lock = 0;
  return aim_tx_enqueue(sess, tx);
}
Commit	Line	Data
9de3ca7e	1	/*
	2	* aim_login.c
	3	*
	4	* This contains all the functions needed to actually login.
	5	*
	6	*/
	7
a25832e6	8	#include <faim/aim.h>
9de3ca7e	9
	10
	11	/*
	12	* FIXME: Reimplement the TIS stuff.
	13	*/
	14	#ifdef TIS_TELNET_PROXY
	15	#include "tis_telnet_proxy.h"
	16	#endif
	17
01b59e1e	18	int aim_sendconnack(struct aim_session_t *sess,
	19	struct aim_conn_t *conn)
	20	{
	21	int curbyte=0;
	22
5b79dc93	23	struct command_tx_struct *newpacket;
01b59e1e	24
5b79dc93	25	if (!(newpacket = aim_tx_new(0x0001, conn, 4)))
01b59e1e	26	return -1;
01b59e1e	27
5b79dc93	28	newpacket->lock = 1;
01b59e1e	29
5b79dc93	30	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
5b79dc93	31	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
01b59e1e	32
5b79dc93	33	newpacket->lock = 0;
5b79dc93	34	return aim_tx_enqueue(sess, newpacket);
01b59e1e	35	}
	36
	37	#ifdef SNACLOGIN
	38	/*
	39	* In AIM 3.5 protocol, the first stage of login is to request
	40	* login from the Authorizer, passing it the screen name
	41	* for verification. If the name is invalid, a 0017/0003
	42	* is spit back, with the standard error contents. If valid,
	43	* a 0017/0007 comes back, which is the signal to send
	44	* it the main login command (0017/0002).
	45	*/
	46	int aim_request_login(struct aim_session_t *sess,
	47	struct aim_conn_t *conn,
	48	char *sn)
	49	{
	50	int curbyte=0;
	51
5b79dc93	52	struct command_tx_struct *newpacket;
01b59e1e	53
5b79dc93	54	if (!(newpacket = aim_tx_new(0x0002, conn, 10+2+2+strlen(sn))))
5b79dc93	55	return -1;
01b59e1e	56
5b79dc93	57	newpacket->lock = 1;
01b59e1e	58
5b79dc93	59	curbyte += aim_putsnac(newpacket->data+curbyte, 0x0017, 0x0006, 0x0000, 0x00010000);
5b79dc93	60	curbyte += aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);
01b59e1e	61
5b79dc93	62	newpacket->lock = 0;
5b79dc93	63	return aim_tx_enqueue(sess, newpacket);
01b59e1e	64	}
	65	#endif /* SNACLOGIN */
	66
9de3ca7e	67	/*
24286d93	68	* send_login(int socket, char sn, char password)
9de3ca7e	69	*
	70	* This is the initial login request packet.
	71	*
	72	* The password is encoded before transmition, as per
	73	* encode_password(). See that function for their
	74	* stupid method of doing it.
	75	*
9de3ca7e	76	*/
a25832e6	77	int aim_send_login (struct aim_session_t *sess,
	78	struct aim_conn_t *conn,
	79	char sn, char password, struct client_info_s *clientinfo)
9de3ca7e	80	{
a25832e6	81	u_char password_encoded = NULL; / to store encoded password */
9de3ca7e	82	int curbyte=0;
5e02cf44	83	int icqmode = 0;
5e02cf44	84
5b79dc93	85	struct command_tx_struct *newpacket;
9de3ca7e	86
01b59e1e	87	if (!clientinfo \|\| !sn \|\| !password)
	88	return -1;
	89
5b79dc93	90	if (!(newpacket = aim_tx_new(0x0002, conn, 1152)))
5b79dc93	91	return -1;
9de3ca7e	92
5e02cf44	93	/*
	94	* For ICQ logins, the client version must be at
	95	* least as high as ICQ2000a.
	96	*/
	97	if ((sn[0] >= '0') && (sn[0] <= '9')) {
	98	icqmode = 1; /* needs a different password encoding */
	99	if (clientinfo && (clientinfo->major < 4)) {
	100	printf("faim: icq: version must be at least 4.30.3141 for ICQ OSCAR login\n");
	101	return -1;
	102	}
	103	if (strlen(password) > 8) {
	104	printf("faim: icq: password too long (8 char max)\n");
	105	return -1;
	106	}
	107	}
	108
01b59e1e	109	#ifdef SNACLOGIN
5b79dc93	110	newpacket->commandlen = 10;
	111	newpacket->commandlen += 2 + 2 + strlen(sn);
	112	newpacket->commandlen += 2 + 2 + strlen(password);
	113	newpacket->commandlen += 2 + 2 + strlen(clientinfo->clientstring);
	114	newpacket->commandlen += 56;
01b59e1e	115
5b79dc93	116	newpacket->lock = 1;
01b59e1e	117
5b79dc93	118	curbyte = aim_putsnac(newpacket->data+curbyte, 0x0017, 0x0002, 0x0000, 0x00010000);
5b79dc93	119	curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, strlen(sn), sn);
01b59e1e	120	password_encoded = (u_char *) malloc(strlen(password));
01b59e1e	121	aim_encode_password(password, password_encoded);
5b79dc93	122	curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0002, strlen(password), password_encoded);
5b79dc93	123	curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0003,
01b59e1e	124	strlen(clientinfo->clientstring),
	125	clientinfo->clientstring);
	126	/* XXX: should use clientinfo provided version info */
5b79dc93	127	curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0016, 0x0004);
	128	curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0017, 0x0003);
	129	curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0018, 0x0005);
	130	curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0019, 0x0000);
	131	curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x001a, 0x0686);
	132	curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, 0x0002, clientinfo->country);
	133	curbyte+= aim_puttlv_str(newpacket->data+curbyte, 0x0001, 0x0002, clientinfo->lang);
	134	curbyte+= aim_puttlv_32(newpacket->data+curbyte, 0x0014, 0x0000002a);
	135	curbyte+= aim_puttlv_16(newpacket->data+curbyte, 0x0009, 0x0015);
01b59e1e	136	#else
01b59e1e	137
5e02cf44	138	newpacket->commandlen = 4 + 4 + strlen(sn) + 4+strlen(password) + 6;
24286d93	139
5e02cf44	140	newpacket->commandlen += 8; /* tlv 0x0014 */
5e02cf44	141
5b79dc93	142	if (clientinfo) {
	143	if (strlen(clientinfo->clientstring))
	144	newpacket->commandlen += 4+strlen(clientinfo->clientstring);
	145	newpacket->commandlen += 6+6+6+6;
	146	if (strlen(clientinfo->country))
	147	newpacket->commandlen += 4+strlen(clientinfo->country);
	148	if (strlen(clientinfo->lang))
	149	newpacket->commandlen += 4+strlen(clientinfo->lang);
	150	}
9de3ca7e	151
5b79dc93	152	newpacket->lock = 1;
5b79dc93	153	newpacket->type = 0x01;
9de3ca7e	154
5b79dc93	155	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
	156	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
	157	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
	158	curbyte += aimutil_put16(newpacket->data+curbyte, strlen(sn));
	159	curbyte += aimutil_putstr(newpacket->data+curbyte, sn, strlen(sn));
9de3ca7e	160
5b79dc93	161	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0002);
5b79dc93	162	curbyte += aimutil_put16(newpacket->data+curbyte, strlen(password));
9de3ca7e	163	password_encoded = (char *) malloc(strlen(password));
5e02cf44	164	if (icqmode)
	165	aimicq_encode_password(password, password_encoded);
	166	else
	167	aim_encode_password(password, password_encoded);
5b79dc93	168	curbyte += aimutil_putstr(newpacket->data+curbyte, password_encoded, strlen(password));
9de3ca7e	169	free(password_encoded);
9de3ca7e	170
5e02cf44	171	curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0016, 0x010a /0x0004/);
24286d93	172
5e02cf44	173	if (strlen(clientinfo->clientstring)) {
	174	curbyte += aimutil_put16(newpacket->data+curbyte, 0x0003);
	175	curbyte += aimutil_put16(newpacket->data+curbyte, strlen(clientinfo->clientstring));
	176	curbyte += aimutil_putstr(newpacket->data+curbyte, clientinfo->clientstring, strlen(clientinfo->clientstring));
	177	}
	178	curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0017, clientinfo->major /0x0001/);
	179	curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0018, clientinfo->minor /0x0001/);
	180	curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x0019, 0x0001);
	181	curbyte += aim_puttlv_16(newpacket->data+curbyte, 0x001a, clientinfo->build /0x0013/);
	182
	183	curbyte += aim_puttlv_32(newpacket->data+curbyte, 0x0014, 0x00000055);
	184
	185	if (strlen(clientinfo->country)) {
	186	curbyte += aimutil_put16(newpacket->data+curbyte, 0x000e);
	187	curbyte += aimutil_put16(newpacket->data+curbyte, strlen(clientinfo->country));
	188	curbyte += aimutil_putstr(newpacket->data+curbyte, clientinfo->country, strlen(clientinfo->country));
	189	}
	190	if (strlen(clientinfo->lang)) {
	191	curbyte += aimutil_put16(newpacket->data+curbyte, 0x000f);
	192	curbyte += aimutil_put16(newpacket->data+curbyte, strlen(clientinfo->lang));
	193	curbyte += aimutil_putstr(newpacket->data+curbyte, clientinfo->lang, strlen(clientinfo->lang));
5b79dc93	194	}
9de3ca7e	195
01b59e1e	196	#endif
9de3ca7e	197
5b79dc93	198	newpacket->lock = 0;
5b79dc93	199	return aim_tx_enqueue(sess, newpacket);
9de3ca7e	200	}
9de3ca7e	201
	202	/*
	203	* int encode_password(
	204	* const char *password,
	205	* char *encoded
	206	* );
	207	*
	208	* This takes a const pointer to a (null terminated) string
	209	* containing the unencoded password. It also gets passed
	210	* an already allocated buffer to store the encoded password.
	211	* This buffer should be the exact length of the password without
	212	* the null. The encoded password buffer IS NOT NULL TERMINATED.
	213	*
	214	* The encoding_table seems to be a fixed set of values. We'll
	215	* hope it doesn't change over time!
	216	*
	217	*/
a25832e6	218	int aim_encode_password(const char password, u_char encoded)
9de3ca7e	219	{
	220	u_char encoding_table[] = {
	221	0xf3, 0xb3, 0x6c, 0x99,
	222	0x95, 0x3f, 0xac, 0xb6,
	223	0xc5, 0xfa, 0x6b, 0x63,
	224	0x69, 0x6c, 0xc3, 0x9f
	225	};
	226
	227	int i;
	228
	229	for (i = 0; i < strlen(password); i++)
	230	encoded[i] = (password[i] ^ encoding_table[i]);
	231
	232	return 0;
	233	}
	234
5e02cf44	235	/*
	236	* They changed the hash slightly for ICQ.
	237	* This new hash may work for AIM too (though
	238	* the max password length for ICQ is only
	239	* eight characters, where its 16 with AIM).
	240	*
	241	*/
	242	int aimicq_encode_password(const char password, u_char encoded)
	243	{
	244	u_char encoding_table[] = {
	245	0xf3, 0x26, 0x81, 0xc4,
	246	0x39, 0x86, 0xdb, 0x92
	247	};
	248
	249	int i;
	250
	251	if (strlen(password) > 8)
	252	return -1;
	253
	254	for (i = 0; i < strlen(password); i++)
	255	encoded[i] = (password[i] ^ encoding_table[i]);
	256
	257	return 0;
	258	}
	259
01b59e1e	260	/*
	261	* This is sent back as a general response to the login command.
	262	* It can be either an error or a success, depending on the
	263	* precense of certain TLVs.
	264	*
	265	* The client should check the value of logininfo->errorcode. If
	266	* its nonzero, there was an error.
	267	*
	268	*/
	269	int aim_authparse(struct aim_session_t *sess,
	270	struct command_rx_struct *command)
	271	{
	272	struct aim_tlvlist_t *tlvlist;
	273	int ret = 1;
	274	char *sn;
	275	rxcallback_t userfunc = NULL;
	276
	277	memset(&sess->logininfo, 0x00, sizeof(sess->logininfo));
	278
	279	/*
	280	* Read block of TLVs. All further data is derived
	281	* from what is parsed here.
	282	*/
	283	#ifdef SNACLOGIN
	284	tlvlist = aim_readtlvchain(command->data+10, command->commandlen-10);
	285	#else
	286	tlvlist = aim_readtlvchain(command->data, command->commandlen);
	287	#endif
	288	/*
	289	* No matter what, we should have a screen name.
	290	*/
	291	sn = aim_gettlv_str(tlvlist, 0x0001, 1);
	292	memcpy(sess->logininfo.screen_name, sn, strlen(sn));
	293	sn[(strlen(sn))] = '\0';
	294
	295	/*
	296	* Check for an error code. If so, we should also
	297	* have an error url.
	298	*/
5e02cf44	299	if (aim_gettlv(tlvlist, 0x0008, 1)) {
	300	struct aim_tlv_t *errtlv;
	301	errtlv = aim_gettlv(tlvlist, 0x0008, 1);
	302	sess->logininfo.errorcode = aimutil_get16(errtlv->value);
	303	sess->logininfo.errorurl = aim_gettlv_str(tlvlist, 0x0004, 1);
	304	}
01b59e1e	305	/*
	306	* If we have both an IP number (0x0005) and a cookie (0x0006),
	307	* then the login was successful.
	308	*/
5e02cf44	309	else if (aim_gettlv(tlvlist, 0x0005, 1) && aim_gettlv(tlvlist, 0x0006, 1)) {
	310	struct aim_tlv_t *tmptlv;
	311
	312	/*
	313	* IP address of BOS server.
	314	*/
	315	sess->logininfo.BOSIP = aim_gettlv_str(tlvlist, 0x0005, 1);
	316
	317	/*
	318	* Authorization Cookie
	319	*/
	320	tmptlv = aim_gettlv(tlvlist, 0x0006, 1);
	321	memcpy(sess->logininfo.cookie, tmptlv->value, AIM_COOKIELEN);
	322
	323	/*
	324	* The email address attached to this account
	325	* Not available for ICQ logins.
	326	*/
	327	if (aim_gettlv(tlvlist, 0x0011, 1))
01b59e1e	328	sess->logininfo.email = aim_gettlv_str(tlvlist, 0x0011, 1);
5e02cf44	329
	330	/*
	331	* The registration status. (Not real sure what it means.)
	332	* Not available for ICQ logins.
	333	*/
	334	if ((tmptlv = aim_gettlv(tlvlist, 0x0013, 1)))
01b59e1e	335	sess->logininfo.regstatus = aimutil_get16(tmptlv->value);
01b59e1e	336
5e02cf44	337	}
01b59e1e	338
	339	#ifdef SNACLOGIN
	340	userfunc = aim_callhandler(command->conn, 0x0017, 0x0003);
	341	#else
	342	userfunc = aim_callhandler(command->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_AUTHSUCCESS);
	343	#endif
	344	if (userfunc)
	345	ret = userfunc(sess, command);
	346
	347	aim_freetlvchain(&tlvlist);
	348
	349	/* These have been clobbered by the freetlvchain */
	350	sess->logininfo.BOSIP = NULL;
	351	sess->logininfo.email = NULL;
	352	sess->logininfo.errorurl = NULL;
	353
	354	return ret;
	355	}
e6b05d80	356
	357	/*
	358	* Generate an authorization response.
	359	*
	360	* You probably don't want this unless you're writing an AIM server.
	361	*
	362	*/
	363	unsigned long aim_sendauthresp(struct aim_session_t *sess,
	364	struct aim_conn_t *conn,
	365	char sn, char bosip,
	366	char cookie, char email,
	367	int regstatus)
	368	{
5b79dc93	369	struct command_tx_struct *tx;
e6b05d80	370	struct aim_tlvlist_t *tlvlist = NULL;
e6b05d80	371
67c0bb2f	372	if (!(tx = aim_tx_new(0x0004, conn, 1152)))
5b79dc93	373	return -1;
e6b05d80	374
5b79dc93	375	tx->lock = 1;
e6b05d80	376
	377	if (sn)
	378	aim_addtlvtochain_str(&tlvlist, 0x0001, sn, strlen(sn));
	379	else
	380	aim_addtlvtochain_str(&tlvlist, 0x0001, sess->logininfo.screen_name, strlen(sess->logininfo.screen_name));
	381
	382	if (sess->logininfo.errorcode) {
	383	aim_addtlvtochain16(&tlvlist, 0x0008, sess->logininfo.errorcode);
	384	aim_addtlvtochain_str(&tlvlist, 0x0004, sess->logininfo.errorurl, strlen(sess->logininfo.errorurl));
	385	} else {
	386	aim_addtlvtochain_str(&tlvlist, 0x0005, bosip, strlen(bosip));
	387	aim_addtlvtochain_str(&tlvlist, 0x0006, cookie, AIM_COOKIELEN);
	388	aim_addtlvtochain_str(&tlvlist, 0x0011, email, strlen(email));
	389	aim_addtlvtochain16(&tlvlist, 0x0013, regstatus);
	390	}
	391
5b79dc93	392	tx->commandlen = aim_writetlvchain(tx->data, tx->commandlen, &tlvlist);
	393	tx->lock = 0;
	394	return aim_tx_enqueue(sess, tx);
e6b05d80	395	}
	396
	397	/*
	398	* Generate a random cookie. (Non-client use only)
	399	*/
	400	int aim_gencookie(unsigned char *buf)
	401	{
	402	int i;
	403
	404	srand(time(NULL));
	405
	406	for (i=0; i < AIM_COOKIELEN; i++)
	407	buf[i] = 1+(int) (256.0*rand()/(RAND_MAX+0.0));
	408
	409	return i;
	410	}
	411
	412	/*
	413	* Send Server Ready. (Non-client)
	414	*/
	415	int aim_sendserverready(struct aim_session_t sess, struct aim_conn_t conn)
	416	{
5b79dc93	417	struct command_tx_struct *tx;
e6b05d80	418	int i = 0;
e6b05d80	419
67c0bb2f	420	if (!(tx = aim_tx_new(0x0002, conn, 10+0x22)))
5b79dc93	421	return -1;
e6b05d80	422
5b79dc93	423	tx->lock = 1;
e6b05d80	424
67c0bb2f	425	i += aim_putsnac(tx->data, 0x0001, 0x0003, 0x0000, sess->snac_nextid++);
5b79dc93	426
	427	i += aimutil_put16(tx->data+i, 0x0001);
	428	i += aimutil_put16(tx->data+i, 0x0002);
	429	i += aimutil_put16(tx->data+i, 0x0003);
	430	i += aimutil_put16(tx->data+i, 0x0004);
	431	i += aimutil_put16(tx->data+i, 0x0006);
	432	i += aimutil_put16(tx->data+i, 0x0008);
	433	i += aimutil_put16(tx->data+i, 0x0009);
	434	i += aimutil_put16(tx->data+i, 0x000a);
	435	i += aimutil_put16(tx->data+i, 0x000b);
	436	i += aimutil_put16(tx->data+i, 0x000c);
67c0bb2f	437	i += aimutil_put16(tx->data+i, 0x0013);
67c0bb2f	438	i += aimutil_put16(tx->data+i, 0x0015);
5b79dc93	439
67c0bb2f	440	tx->commandlen = i;
5b79dc93	441	tx->lock = 0;
5b79dc93	442	return aim_tx_enqueue(sess, tx);
e6b05d80	443	}
	444
	445
	446	/*
	447	* Send service redirect. (Non-Client)
	448	*/
	449	unsigned long aim_sendredirect(struct aim_session_t *sess,
	450	struct aim_conn_t *conn,
	451	unsigned short servid,
	452	char *ip,
	453	char *cookie)
	454	{
5b79dc93	455	struct command_tx_struct *tx;
e6b05d80	456	struct aim_tlvlist_t *tlvlist = NULL;
	457	int i = 0;
	458
5b79dc93	459	if (!(tx = aim_tx_new(0x0002, conn, 1152)))
	460	return -1;
	461
	462	tx->lock = 1;
e6b05d80	463
5b79dc93	464	i += aimutil_put16(tx->data+i, 0x0001);
	465	i += aimutil_put16(tx->data+i, 0x0005);
	466	i += aimutil_put16(tx->data+i, 0x0000);
	467	i += aimutil_put16(tx->data+i, 0x0000);
	468	i += aimutil_put16(tx->data+i, 0x0000);
e6b05d80	469
	470	aim_addtlvtochain16(&tlvlist, 0x000d, servid);
	471	aim_addtlvtochain_str(&tlvlist, 0x0005, ip, strlen(ip));
	472	aim_addtlvtochain_str(&tlvlist, 0x0006, cookie, AIM_COOKIELEN);
	473
5b79dc93	474	tx->commandlen = aim_writetlvchain(tx->data+i, tx->commandlen-i, &tlvlist)+i;
e6b05d80	475	aim_freetlvchain(&tlvlist);
e6b05d80	476
5b79dc93	477	tx->lock = 0;
5b79dc93	478	return aim_tx_enqueue(sess, tx);
e6b05d80	479	}