#include "../inc/swilib.h" #include "main.h" #include "string_util.h" #include "xml_parser.h" #include "md5.h" #include "jabber.h" #include "jabber_util.h" #include "history.h" #include "adv_login.h" #include "lang.h" extern JABBER_STATE Jabber_state; extern const char JABBER_SERVER[]; extern const char USERNAME[]; extern const char PASSWORD[]; extern const char RESOURCE[30]; extern char My_JID_full[]; extern char My_JID[]; extern char logmsg[]; SASL_AUTH_DATA SASL_Auth_data = {NULL, NULL, NULL, NULL, NULL}; void Send_Welcome_Packet_SASL() { char streamheader[] = "\n" ""; char* buf = malloc(256); sprintf(buf, streamheader, JABBER_SERVER, LG_XML_LANG); SendAnswer(buf); mfree(buf); LockSched(); strcat(logmsg, "\nSend Extended Welcome"); UnlockSched(); #ifdef LOG_ALL Log("CONN", logmsg); #endif } void Destroy_SASL_Ctx() { if(SASL_Auth_data.nonce)mfree(SASL_Auth_data.nonce); if(SASL_Auth_data.cnonce)mfree(SASL_Auth_data.cnonce); if(SASL_Auth_data.qop)mfree(SASL_Auth_data.qop); if(SASL_Auth_data.rsp_auth)mfree(SASL_Auth_data.rsp_auth); if(SASL_Auth_data.realm)mfree(SASL_Auth_data.realm); zeromem(&SASL_Auth_data, sizeof(SASL_AUTH_DATA)); } // Сообщить серверу об использовании аунтитификации MD5-DIGEST //Context:HELPER void Use_Md5_Auth_Report() { char s[] = ""; Jabber_state = JS_SASL_NEGOTIATION; SendAnswer(s); } // Сообщить серверу об использовании аунтитификации PLAIN //Context:HELPER void Use_Plain_Auth_Report() { // По мотивам e:\CPP_Proj\Miranda_IM\miranda\protocols\JabberG\jabber_secur.cpp char s[] = "%s"; char patt[] = "%s@%s%c%s%c%s"; unsigned short patlen = strlen(USERNAME) * 2 + strlen(JABBER_SERVER) + strlen(PASSWORD) + 3; char* authdata = malloc(patlen + 1); zeromem(authdata, patlen + 1); snprintf(authdata, patlen + 1, patt, USERNAME, JABBER_SERVER, 0, USERNAME, 0, PASSWORD); char* Data_To_Send = malloc(patlen * 2); zeromem(Data_To_Send, patlen * 2); Base64Encode(authdata, patlen, Data_To_Send, patlen * 2); char* fin = malloc(strlen(Data_To_Send) + strlen(s) + 1 - 2); // ибо %s нах не надо считать sprintf(fin, s, Data_To_Send); Jabber_state = JS_SASL_AUTH_ACK; // Фишка - пропускаем несколько этапов ;) SendAnswer(fin); mfree(Data_To_Send); mfree(authdata); mfree(fin); } // Открываем новый поток к серверу по окончании авторизации void SASL_Open_New_Stream() { Jabber_state = JS_SASL_NEW_STREAM_ACK; SUBPROC((void*)Send_Welcome_Packet_SASL); } // Выполняем Resource Binding void SASL_Bind_Resource() { sprintf(My_JID, "%s@%s", USERNAME, JABBER_SERVER); sprintf(My_JID_full, "%s/%s", My_JID, RESOURCE); sprintf(logmsg, "Resource binding"); REDRAW(); char* bind_tpl = malloc(256); sprintf(bind_tpl, "" "" "%s" "" "", RESOURCE); Jabber_state = JS_SASL_RESBIND_ACK; SUBPROC((void*)_sendandfree, bind_tpl); } // Инициализация сессии void SASL_Init_Session() { sprintf(logmsg, "Session Init"); REDRAW(); static char sess_init_tpl[] = "" "" ""; Jabber_state = JS_SASL_SESS_INIT_ACK; SUBPROC((void*)SendAnswer, sess_init_tpl); } void Decode_Challenge(char* challenge) { char* decoded_challenge = malloc(1024); zeromem(decoded_challenge, 1024); int unk5 = 0; Base64Decode(challenge, strlen(challenge), decoded_challenge, 1024, NULL, &unk5); SASL_Auth_data.nonce = Get_Param_Value(decoded_challenge, "nonce", 1); SASL_Auth_data.qop = Get_Param_Value(decoded_challenge, "qop", 1); SASL_Auth_data.realm = Get_Param_Value(decoded_challenge, "realm", 1); //SASL_Auth_data.nonce = malloc(128);strcpy(SASL_Auth_data.nonce,"455564019"); //SASL_Auth_data.qop = malloc(128);strcpy(SASL_Auth_data.qop,"auth"); mfree(decoded_challenge); char* cnonce = malloc(60); strcpy(cnonce, "7425da72aliuf242765"); SASL_Auth_data.cnonce = cnonce; } void mkhex(md5_byte_t digest[16], char* hex_output) { for (int di = 0; di < 16; ++di)sprintf(hex_output + di * 2, "%02x", digest[di]); } char ans[] = ""; void Process_Auth_Answer(char* challenge, char sendanswer) { char* decoded_challenge = malloc(256); zeromem(decoded_challenge, 256); int unk5 = 0; Base64Decode(challenge, strlen(challenge), decoded_challenge, 256, NULL, &unk5); SASL_Auth_data.rsp_auth = Get_Param_Value(decoded_challenge, "rspauth", 0); mfree(decoded_challenge); Jabber_state = JS_SASL_AUTH_ACK; if(sendanswer) SUBPROC((void*)SendAnswer, ans); } void Send_Login_Packet() { md5_state_t state; md5_byte_t digest[16]; md5_byte_t A1[16], A2[16], Response[16]; char colon_t[] = ":"; char _00000001[] = "00000001"; char hex_output[16 * 2 + 1]; char A1_HEX[16 * 2 + 1]; char A2_HEX[16 * 2 + 1]; char R_HEX[16 * 2 + 1]; char* digest_uri = malloc(128); char* User_Realm_Pass = malloc(256); zeromem(digest_uri, 128); snprintf(digest_uri, 127, "AUTHENTICATE:xmpp/%s", JABBER_SERVER); md5_init(&state); md5_append(&state, (const md5_byte_t*)USERNAME, strlen(USERNAME)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)SASL_Auth_data.realm, strlen(SASL_Auth_data.realm)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)PASSWORD, strlen(PASSWORD)); md5_finish(&state, digest); mkhex(digest, hex_output); md5_init(&state); md5_append(&state, (const md5_byte_t*)digest, 16); // (MD5(user:realm:pass) md5_append(&state, (const md5_byte_t*)colon_t, 1); // : md5_append(&state, (const md5_byte_t*)SASL_Auth_data.nonce, strlen(SASL_Auth_data.nonce)); md5_append(&state, (const md5_byte_t*)colon_t, 1); // : md5_append(&state, (const md5_byte_t*)SASL_Auth_data.cnonce, strlen(SASL_Auth_data.cnonce)); md5_finish(&state, A1); mkhex(A1, A1_HEX); md5_init(&state); md5_append(&state, (const md5_byte_t*)digest_uri, strlen(digest_uri)); md5_finish(&state, A2); mkhex(A2, A2_HEX); md5_init(&state); md5_append(&state, (const md5_byte_t*)A1_HEX, strlen(A1_HEX)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)SASL_Auth_data.nonce, strlen(SASL_Auth_data.nonce)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)_00000001, strlen(_00000001)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)SASL_Auth_data.cnonce, strlen(SASL_Auth_data.cnonce)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)SASL_Auth_data.qop, strlen(SASL_Auth_data.qop)); md5_append(&state, (const md5_byte_t*)colon_t, 1); md5_append(&state, (const md5_byte_t*)A2_HEX, strlen(A2_HEX)); md5_finish(&state, Response); mkhex(Response, R_HEX); char* Response_STR = malloc(1024); zeromem(Response_STR, 1024); char Res_tpl[] = "username=\"%s\",realm=\"%s\",nonce=\"%s\",nc=00000001,cnonce=\"%s\"," "qop=auth,digest-uri=\"xmpp/%s\",response=\"%s\",charset=utf-8"; snprintf(Response_STR, 1024, Res_tpl, USERNAME, SASL_Auth_data.realm, SASL_Auth_data.nonce, SASL_Auth_data.cnonce, JABBER_SERVER, R_HEX ); char* Result_Resp = malloc(2048); zeromem(Result_Resp, 2048); Base64Encode(Response_STR, strlen(Response_STR), Result_Resp, 2048); const char resp_full_tpl[] = "%s"; char* resp_full = malloc(1024); zeromem(resp_full, 1024); snprintf(resp_full, 1023, resp_full_tpl, Result_Resp); Jabber_state = JS_SASL_NEG_ANS_WAIT; SUBPROC((void*)_sendandfree, resp_full); mfree(Result_Resp); mfree(Response_STR); mfree(digest_uri); mfree(User_Realm_Pass); } // Обработка ошибок SASL void SASL_Process_Error(XMLNode* nodeEx) { Jabber_state = JS_ERROR; XMLNode* err = nodeEx->subnode; if(err) { strcpy(logmsg, "SASL error!\n"); strcat(logmsg, err->name); // Не юзер-френдли if(!strcmp(err->name, SASLERR_NOTAUTH))strcat(logmsg, "\nBad password"); } } //////////////////////////////////////////////////////////////////////////////// // Запрос компрессии у сервера void Compression_Ask() { static char zlib_ask[] = "" "zlib" ""; Jabber_state = JS_ZLIB_INIT_ACK; SUBPROC((void*)SendAnswer, zlib_ask); strcat(logmsg, "\nUsing ZLib ack"); } //EOL,EOF