1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
|
/***************************************************************************\
* *
* BitlBee - An IRC to IM gateway *
* Jabber module - IQ packets *
* *
* Copyright 2006 Wilmer van der Gaast <wilmer@gaast.net> *
* *
* This program is free software; you can redistribute it and/or modify *
* it under the terms of the GNU General Public License as published by *
* the Free Software Foundation; either version 2 of the License, or *
* (at your option) any later version. *
* *
* This program is distributed in the hope that it will be useful, *
* but WITHOUT ANY WARRANTY; without even the implied warranty of *
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
* GNU General Public License for more details. *
* *
* You should have received a copy of the GNU General Public License along *
* with this program; if not, write to the Free Software Foundation, Inc., *
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. *
* *
\***************************************************************************/
#include "jabber.h"
/*
<iq xmlns="jabber:client" id="BeeX00000001" type="result"><query
xmlns="jabber:iq:auth"><username>wilmer</username><resource/><password/><digest/>
<sequence>499</sequence><token>450D1FFD</token></query></iq>
*/
xt_status jabber_pkt_iq( struct xt_node *node, gpointer data )
{
struct gaim_connection *gc = data;
struct jabber_data *jd = gc->proto_data;
struct xt_node *query, *reply = NULL;
char *s;
int st;
query = xt_find_node( node->children, "query" );
if( !query )
return XT_HANDLED; /* Ignore it for now, don't know what's best... */
if( ( s = xt_find_attr( query, "xmlns" ) ) && strcmp( s, "jabber:iq:auth" ) == 0 )
{
/* Time to authenticate ourselves! */
reply = xt_new_node( "query", NULL, NULL );
xt_add_attr( reply, "xmlns", "jabber:iq:auth" );
xt_add_child( reply, xt_new_node( "username", jd->username, NULL ) );
xt_add_child( reply, xt_new_node( "resource", set_getstr( &gc->acc->set, "resource" ), NULL ) );
if( xt_find_node( query->children, "digest" ) && ( s = xt_find_attr( jd->xt->root, "id" ) ) )
{
/* We can do digest authentication, it seems, and of
course we prefer that. */
SHA_CTX sha;
char hash_hex[40];
unsigned char hash[20];
int i;
shaInit( &sha );
shaUpdate( &sha, (unsigned char*) s, strlen( s ) );
shaUpdate( &sha, (unsigned char*) gc->acc->pass, strlen( gc->acc->pass ) );
shaFinal( &sha, hash );
for( i = 0; i < 20; i ++ )
sprintf( hash_hex + i * 2, "%02x", hash[i] );
xt_add_child( reply, xt_new_node( "digest", hash_hex, NULL ) );
}
else if( xt_find_node( query->children, "password" ) )
{
/* We'll have to stick with plaintext. Let's hope we're using SSL/TLS... */
xt_add_child( reply, xt_new_node( "password", gc->acc->pass, NULL ) );
}
else
{
xt_free_node( reply );
hide_login_progress_error( gc, "Can't find suitable authentication method" );
signoff( gc );
return XT_ABORT;
}
reply = jabber_make_packet( "iq", "set", NULL, reply );
st = jabber_write_packet( gc, reply );
xt_free_node( reply );
return st ? XT_HANDLED : XT_ABORT;
}
return XT_HANDLED;
}
int jabber_start_auth( struct gaim_connection *gc )
{
struct jabber_data *jd = gc->proto_data;
struct xt_node *node;
int st;
node = xt_new_node( "query", NULL, xt_new_node( "username", jd->username, NULL ) );
xt_add_attr( node, "xmlns", "jabber:iq:auth" );
node = jabber_make_packet( "iq", "get", NULL, node );
st = jabber_write_packet( gc, node );
xt_free_node( node );
return st;
}
|
