faim_export int aim_conn_addhandler(aim_session_t *sess, aim_conn_t *conn, fu16_t family, fu16_t type, aim_rxcallback_t newhandler, fu16_t flags)
{
struct aim_rxcblist_s *newcb;
if (!conn)
return -1;
faimdprintf(sess, 1, "aim_conn_addhandler: adding for %04x/%04x\n", family, type);
if (checkdisallowed(family, type)) {
faimdprintf(sess, 0, "aim_conn_addhandler: client tried to hook %x/%x -- BUG!!!\n", family, type);
return -1;
}
if (!(newcb = (struct aim_rxcblist_s *)calloc(1, sizeof(struct aim_rxcblist_s))))
return -1;
newcb->family = family;
newcb->type = type;
newcb->flags = flags;
newcb->handler = newhandler ? newhandler : bleck;
newcb->next = NULL;
if (!conn->handlerlist)
conn->handlerlist = (void *)newcb;
else {
struct aim_rxcblist_s *cur;
for (cur = (struct aim_rxcblist_s *)conn->handlerlist; cur->next; cur = cur->next)
;
cur->next = newcb;
}
return 0;
}
static int userinfo(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
aim_userinfo_t userinfo;
char *text_encoding = NULL, *text = NULL;
aim_rxcallback_t userfunc;
aim_tlvlist_t *tlvlist;
aim_snac_t *origsnac = NULL;
struct aim_priv_inforeq *inforeq;
int ret = 0;
origsnac = aim_remsnac(sess, snac->id);
if (!origsnac || !origsnac->data) {
faimdprintf(sess, 0, "parse_userinfo_middle: major problem: no snac stored!\n");
return 0;
}
inforeq = (struct aim_priv_inforeq *)origsnac->data;
if ((inforeq->infotype != AIM_GETINFO_GENERALINFO) &&
(inforeq->infotype != AIM_GETINFO_AWAYMESSAGE)) {
faimdprintf(sess, 0, "parse_userinfo_middle: unknown infotype in request! (0x%04x)\n", inforeq->infotype);
return 0;
}
aim_extractuserinfo(sess, bs, &userinfo);
tlvlist = aim_readtlvchain(bs);
/*
* Depending on what informational text was requested, different
* TLVs will appear here.
*
* Profile will be 1 and 2, away message will be 3 and 4.
*/
if (aim_gettlv(tlvlist, 0x0001, 1)) {
text_encoding = aim_gettlv_str(tlvlist, 0x0001, 1);
text = aim_gettlv_str(tlvlist, 0x0002, 1);
} else if (aim_gettlv(tlvlist, 0x0003, 1)) {
text_encoding = aim_gettlv_str(tlvlist, 0x0003, 1);
text = aim_gettlv_str(tlvlist, 0x0004, 1);
}
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
ret = userfunc(sess, rx, &userinfo, text_encoding, text, inforeq->infotype);
free(text_encoding);
free(text);
aim_freetlvchain(&tlvlist);
if (origsnac)
free(origsnac->data);
free(origsnac);
return ret;
}
faim_internal int aim__registermodule(aim_session_t *sess, int (*modfirst)(aim_session_t *, aim_module_t *))
{
aim_module_t *mod;
if (!sess || !modfirst)
return -1;
if (!(mod = malloc(sizeof(aim_module_t))))
return -1;
memset(mod, 0, sizeof(aim_module_t));
if (modfirst(sess, mod) == -1) {
free(mod);
return -1;
}
if (aim__findmodule(sess, mod->name)) {
if (mod->shutdown)
mod->shutdown(sess, mod);
free(mod);
return -1;
}
mod->next = (aim_module_t *)sess->modlistv;
sess->modlistv = mod;
faimdprintf(sess, 1, "registered module %s (family 0x%04x, version = 0x%04x, tool 0x%04x, tool version 0x%04x)\n", mod->name, mod->family, mod->version, mod->toolid, mod->toolversion);
return 0;
}
/*
* This still takes a length parameter even with a bstream because capabilities
* are not naturally bounded.
*
*/
faim_internal fu16_t aim_getcap(aim_session_t *sess, aim_bstream_t *bs, int len)
{
fu16_t flags = 0;
int offset;
for (offset = 0; aim_bstream_empty(bs) && (offset < len); offset += 0x10) {
fu8_t *cap;
int i, identified;
cap = aimbs_getraw(bs, 0x10);
for (i = 0, identified = 0; !(aim_caps[i].flag & AIM_CAPS_LAST); i++) {
if (memcmp(&aim_caps[i].data, cap, 0x10) == 0) {
flags |= aim_caps[i].flag;
identified++;
break; /* should only match once... */
}
}
if (!identified)
faimdprintf(sess, 0, "unknown capability!\n");
free(cap);
}
return flags;
}
faim_internal int aim_parse_unknown(aim_session_t *sess, aim_frame_t *frame, ...)
{
int i;
faimdprintf(sess, 1, "\nRecieved unknown packet:");
for (i = 0; aim_bstream_empty(&frame->data); i++) {
if ((i % 8) == 0)
faimdprintf(sess, 1, "\n\t");
faimdprintf(sess, 1, "0x%2x ", aimbs_get8(&frame->data));
}
faimdprintf(sess, 1, "\n\n");
return 1;
}
/*
* Subtype 0x0004 - Add multiple buddies to your buddy list.
*
* This just builds the "set buddy list" command then queues it.
*
* buddy_list = "Screen Name One&ScreenNameTwo&";
*
* XXX Clean this up.
*
*/
faim_export int aim_bos_setbuddylist(aim_session_t *sess, aim_conn_t *conn,
const char *buddy_list)
{
aim_frame_t *fr;
aim_snacid_t snacid;
int len = 0;
char *localcpy = NULL;
char *tmpptr = NULL;
if (!buddy_list || !(localcpy = strdup(buddy_list)))
return -EINVAL;
for (tmpptr = strtok(localcpy, "&"); tmpptr;) {
faimdprintf(sess, 2, "---adding: %s (%d)\n", tmpptr,
strlen(tmpptr));
len += 1 + strlen(tmpptr);
tmpptr = strtok(NULL, "&");
}
if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + len)))
return -ENOMEM;
snacid = aim_cachesnac(sess, 0x0003, 0x0004, 0x0000, NULL, 0);
aim_putsnac(&fr->data, 0x0003, 0x0004, 0x0000, snacid);
strncpy(localcpy, buddy_list, strlen(buddy_list) + 1);
for (tmpptr = strtok(localcpy, "&"); tmpptr;) {
faimdprintf(sess, 2, "---adding: %s (%d)\n", tmpptr,
strlen(tmpptr));
aimbs_put8(&fr->data, strlen(tmpptr));
aimbs_putraw(&fr->data, tmpptr, strlen(tmpptr));
tmpptr = strtok(NULL, "&");
}
aim_tx_enqueue(sess, fr);
free(localcpy);
return 0;
}
/**
* aim_checkcookie - check to see if a cookietuple has been cached
* @sess: session to check for the cookie in
* @cookie: pointer to the cookie string array
* @type: type of the cookie to look for
*
* this returns a pointer to the cookie struct (still in the list) on
* success; returns NULL on error/not found
*
*/
faim_internal aim_msgcookie_t *aim_checkcookie(aim_session_t *sess, const fu8_t *cookie, int type)
{
aim_msgcookie_t *cur;
for (cur = sess->msgcookies; cur; cur = cur->next) {
if ((cur->type == type) &&
(memcmp(cur->cookie, cookie, 8) == 0))
return cur;
}
return NULL;
}
#if 0 /* debugging feature */
faim_internal int aim_dumpcookie(aim_session_t *sess, aim_msgcookie_t *cookie)
{
if (!cookie)
return -EINVAL;
faimdprintf(sess, 0, "\tCookie at %p: %d/%s with %p, next %p\n", cookie,
cookie->type, cookie->cookie, cookie->data, cookie->next);
return 0;
}
faim_internal aim_rxcallback_t aim_callhandler(aim_session_t *sess, aim_conn_t *conn, fu16_t family, fu16_t type)
{
struct aim_rxcblist_s *cur;
if (!conn)
return NULL;
faimdprintf(sess, 1, "aim_callhandler: calling for %04x/%04x\n", family, type);
for (cur = (struct aim_rxcblist_s *)conn->handlerlist; cur; cur = cur->next) {
if ((cur->family == family) && (cur->type == type))
return cur->handler;
}
if (type == AIM_CB_SPECIAL_DEFAULT) {
faimdprintf(sess, 1, "aim_callhandler: no default handler for family 0x%04x\n", family);
return NULL; /* prevent infinite recursion */
}
faimdprintf(sess, 1, "aim_callhandler: no handler for 0x%04x/0x%04x\n", family, type);
return aim_callhandler(sess, conn, family, AIM_CB_SPECIAL_DEFAULT);
}
/*
* In OSCAR, every connection has a set of SNAC groups associated
* with it. These are the groups that you can send over this connection
* without being guarenteed a "Not supported" SNAC error.
*
* The grand theory of things says that these associations transcend
* what libfaim calls "connection types" (conn->type). You can probably
* see the elegance here, but since I want to revel in it for a bit, you
* get to hear it all spelled out.
*
* So let us say that you have your core BOS connection running. One
* of your modules has just given you a SNAC of the group 0x0004 to send
* you. Maybe an IM destined for some twit in Greenland. So you start
* at the top of your connection list, looking for a connection that
* claims to support group 0x0004. You find one. Why, that neat BOS
* connection of yours can do that. So you send it on its way.
*
* Now, say, that fellow from Greenland has friends and they all want to
* meet up with you in a lame chat room. This has landed you a SNAC
* in the family 0x000e and you have to admit you're a bit lost. You've
* searched your connection list for someone who wants to make your life
* easy and deliver this SNAC for you, but there isn't one there.
*
* Here comes the good bit. Without even letting anyone know, particularly
* the module that decided to send this SNAC, and definitly not that twit
* in Greenland, you send out a service request. In this request, you have
* marked the need for a connection supporting group 0x000e. A few seconds
* later, you receive a service redirect with an IP address and a cookie in
* it. Great, you say. Now I have something to do. Off you go, making
* that connection. One of the first things you get from this new server
* is a message saying that indeed it does support the group you were looking
* for. So you continue and send rate confirmation and all that.
*
* Then you remember you had that SNAC to send, and now you have a means to
* do it, and you do, and everyone is happy. Except the Greenlander, who is
* still stuck in the bitter cold.
*
* Oh, and this is useful for building the Migration SNACs, too. In the
* future, this may help convince me to implement rate limit mitigation
* for real. We'll see.
*
* Just to make me look better, I'll say that I've known about this great
* scheme for quite some time now. But I still haven't convinced myself
* to make libfaim work that way. It would take a fair amount of effort,
* and probably some client API changes as well. (Whenever I don't want
* to do something, I just say it would change the client API. Then I
* instantly have a couple of supporters of not doing it.)
*
* Generally, addgroup is only called by the internal handling of the
* server ready SNAC. So if you want to do something before that, you'll
* have to be more creative. That is done rather early, though, so I don't
* think you have to worry about it. Unless you're me. I care deeply
* about such inane things.
*
*/
faim_internal void aim_conn_addgroup(aim_conn_t *conn, fu16_t group)
{
aim_conn_inside_t *ins = (aim_conn_inside_t *)conn->inside;
struct snacgroup *sg;
if (!(sg = malloc(sizeof(struct snacgroup))))
return;
faimdprintf(aim_conn_getsess(conn), 1, "adding group 0x%04x\n", group);
sg->group = group;
sg->next = ins->groups;
ins->groups = sg;
return;
}
/*
* Read a FLAP header from conn into fr, and return the number of bytes in the payload.
*/
static int aim_get_command_flap(aim_session_t *sess, aim_conn_t *conn,
aim_frame_t *fr)
{
fu8_t flaphdr_raw[6];
aim_bstream_t flaphdr;
fu16_t payloadlen;
aim_bstream_init(&flaphdr, flaphdr_raw, sizeof(flaphdr_raw));
/*
* Read FLAP header. Six bytes:
* 0 char -- Always 0x2a
* 1 char -- Channel ID. Usually 2 -- 1 and 4 are used during login.
* 2 short -- Sequence number
* 4 short -- Number of data bytes that follow.
*/
if (aim_bstream_recv(&flaphdr, conn->fd, 6) < 6) {
aim_conn_close(conn);
return -1;
}
aim_bstream_rewind(&flaphdr);
/*
* This shouldn't happen unless the socket breaks, the server breaks,
* or we break. We must handle it just in case.
*/
if (aimbs_get8(&flaphdr) != 0x2a) {
fu8_t start;
aim_bstream_rewind(&flaphdr);
start = aimbs_get8(&flaphdr);
faimdprintf(sess, 0, "FLAP framing disrupted (0x%02x)", start);
aim_conn_close(conn);
return -1;
}
/* we're doing FLAP if we're here */
fr->hdrtype = AIM_FRAMETYPE_FLAP;
fr->hdr.flap.type = aimbs_get8(&flaphdr);
fr->hdr.flap.seqnum = aimbs_get16(&flaphdr);
payloadlen = aimbs_get16(&flaphdr); /* length of payload */
return payloadlen;
}
/*
* Since multiple things can trigger this callback, we must lookup the
* snacid to determine the original snac subtype that was called.
*
* XXX This isn't really how this works. But this is: Every d/9 response
* has a 16bit value at the beginning. That matches to:
* Short Desc = 1
* Full Desc = 2
* Instance Info = 4
* Nav Short Desc = 8
* Nav Instance Info = 16
* And then everything is really asynchronous. There is no specific
* attachment of a response to a create room request, for example. Creating
* the room yields no different a response than requesting the room's info.
*
*/
static int parseinfo(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
aim_snac_t *snac2;
int ret = 0;
if (!(snac2 = aim_remsnac(sess, snac->id))) {
faimdprintf(sess, 0, "faim: chatnav_parse_info: received response to unknown request! (%08lx)\n", snac->id);
return 0;
}
if (snac2->family != 0x000d) {
faimdprintf(sess, 0, "faim: chatnav_parse_info: recieved response that maps to corrupt request! (fam=%04x)\n", snac2->family);
return 0;
}
/*
* We now know what the original SNAC subtype was.
*/
if (snac2->type == 0x0002) /* request chat rights */
ret = parseinfo_perms(sess, mod, rx, snac, bs, snac2);
else if (snac2->type == 0x0003) /* request exchange info */
faimdprintf(sess, 0, "chatnav_parse_info: resposne to exchange info\n");
else if (snac2->type == 0x0004) /* request room info */
faimdprintf(sess, 0, "chatnav_parse_info: response to room info\n");
else if (snac2->type == 0x0005) /* request more room info */
faimdprintf(sess, 0, "chatnav_parse_info: response to more room info\n");
else if (snac2->type == 0x0006) /* request occupant list */
faimdprintf(sess, 0, "chatnav_parse_info: response to occupant info\n");
else if (snac2->type == 0x0007) /* search for a room */
faimdprintf(sess, 0, "chatnav_parse_info: search results\n");
else if (snac2->type == 0x0008) /* create room */
ret = parseinfo_create(sess, mod, rx, snac, bs, snac2);
else
faimdprintf(sess, 0, "chatnav_parse_info: unknown request subtype (%04x)\n", snac2->type);
if (snac2)
free(snac2->data);
free(snac2);
return ret;
}
/* XXX get this into conn.c -- evil!! */
faim_export aim_conn_t *aim_chat_getconn(aim_session_t *sess, const char *name)
{
aim_conn_t *cur;
for (cur = sess->connlist; cur; cur = cur->next) {
struct chatconnpriv *ccp = (struct chatconnpriv *)cur->priv;
if (cur->type != AIM_CONN_TYPE_CHAT)
continue;
if (!cur->priv) {
faimdprintf(sess, 0, "faim: chat: chat connection with no name! (fd = %d)\n", cur->fd);
continue;
}
if (strcmp(ccp->name, name) == 0)
break;
}
return cur;
}
/*
* Subtype 0x0001
*
* XXX can this be integrated with the rest of the error handling?
*/
static int error(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
int ret = 0;
aim_rxcallback_t userfunc;
aim_snac_t *snac2;
/* XXX the modules interface should have already retrieved this for us */
if (!(snac2 = aim_remsnac(sess, snac->id))) {
faimdprintf(sess, 2, "search error: couldn't get a snac for 0x%08lx\n", snac->id);
return 0;
}
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
ret = userfunc(sess, rx, snac2->data /* address */);
/* XXX freesnac()? */
if (snac2)
free(snac2->data);
free(snac2);
return ret;
}
/*
* This still takes a length parameter even with a bstream because capabilities
* are not naturally bounded.
*
*/
faim_internal fu32_t aim_getcap(aim_session_t *sess, aim_bstream_t *bs, int len)
{
fu32_t flags = 0;
int offset;
for (offset = 0; aim_bstream_empty(bs) && (offset < len); offset += 0x10) {
fu8_t *cap;
int i, identified;
cap = aimbs_getraw(bs, 0x10);
for (i = 0, identified = 0; !(aim_caps[i].flag & AIM_CAPS_LAST); i++) {
if (memcmp(&aim_caps[i].data, cap, 0x10) == 0) {
flags |= aim_caps[i].flag;
identified++;
break; /* should only match once... */
}
}
if (!identified) {
faimdprintf(sess, 0, "unknown capability: {%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x}\n",
cap[0], cap[1], cap[2], cap[3],
cap[4], cap[5],
cap[6], cap[7],
cap[8], cap[9],
cap[10], cap[11], cap[12], cap[13],
cap[14], cap[15]);
}
free(cap);
}
return flags;
}
static void dumptlv(aim_session_t *sess, fu16_t type, aim_bstream_t *bs, fu8_t len)
{
int i;
if (!sess || !bs || !len)
return;
faimdprintf(sess, 0, "userinfo: type =0x%04x\n", type);
faimdprintf(sess, 0, "userinfo: length=0x%04x\n", len);
faimdprintf(sess, 0, "userinfo: value:\n");
for (i = 0; i < len; i++) {
if ((i % 8) == 0)
faimdprintf(sess, 0, "\nuserinfo: ");
faimdprintf(sess, 0, "0x%2x ", aimbs_get8(bs));
}
faimdprintf(sess, 0, "\n");
return;
}
/*
* AIM is fairly regular about providing user info. This is a generic
* routine to extract it in its standard form.
*/
faim_internal int aim_extractuserinfo(aim_session_t *sess, aim_bstream_t *bs, aim_userinfo_t *outinfo)
{
int curtlv, tlvcnt;
fu8_t snlen;
if (!bs || !outinfo)
return -EINVAL;
/* Clear out old data first */
memset(outinfo, 0x00, sizeof(aim_userinfo_t));
/*
* Screen name. Stored as an unterminated string prepended with a
* byte containing its length.
*/
snlen = aimbs_get8(bs);
aimbs_getrawbuf(bs, outinfo->sn, snlen);
/*
* Warning Level. Stored as an unsigned short.
*/
outinfo->warnlevel = aimbs_get16(bs);
/*
* TLV Count. Unsigned short representing the number of
* Type-Length-Value triples that follow.
*/
tlvcnt = aimbs_get16(bs);
/*
* Parse out the Type-Length-Value triples as they're found.
*/
for (curtlv = 0; curtlv < tlvcnt; curtlv++) {
int endpos;
fu16_t type, length;
type = aimbs_get16(bs);
length = aimbs_get16(bs);
endpos = aim_bstream_curpos(bs) + length;
if (type == 0x0001) {
/*
* Type = 0x0001: User flags
*
* Specified as any of the following ORed together:
* 0x0001 Trial (user less than 60days)
* 0x0002 Unknown bit 2
* 0x0004 AOL Main Service user
* 0x0008 Unknown bit 4
* 0x0010 Free (AIM) user
* 0x0020 Away
* 0x0400 ActiveBuddy
*
*/
outinfo->flags = aimbs_get16(bs);
} else if (type == 0x0002) {
/*
* Type = 0x0002: Member-Since date.
*
* The time/date that the user originally registered for
* the service, stored in time_t format.
*/
outinfo->membersince = aimbs_get32(bs);
} else if (type == 0x0003) {
/*
* Type = 0x0003: On-Since date.
*
* The time/date that the user started their current
* session, stored in time_t format.
*/
outinfo->onlinesince = aimbs_get32(bs);
} else if (type == 0x0004) {
/*
* Type = 0x0004: Idle time.
*
* Number of seconds since the user actively used the
* service.
*
* Note that the client tells the server when to start
* counting idle times, so this may or may not be
* related to reality.
*/
outinfo->idletime = aimbs_get16(bs);
} else if (type == 0x0006) {
/*
* Type = 0x0006: ICQ Online Status
*
* ICQ's Away/DND/etc "enriched" status. Some decoding
* of values done by Scott <*****@*****.**>
*/
aimbs_get16(bs);
outinfo->icqinfo.status = aimbs_get16(bs);
} else if (type == 0x000a) {
/*
* Type = 0x000a
*
* ICQ User IP Address.
* Ahh, the joy of ICQ security.
*/
outinfo->icqinfo.ipaddr = aimbs_get32(bs);
} else if (type == 0x000c) {
/*
* Type = 0x000c
*
* random crap containing the IP address,
* apparently a port number, and some Other Stuff.
*
*/
aimbs_getrawbuf(bs, outinfo->icqinfo.crap, 0x25);
} else if (type == 0x000d) {
/*
* Type = 0x000d
*
* Capability information.
*
*/
outinfo->capabilities = aim_getcap(sess, bs, length);
outinfo->capspresent = 1;
} else if (type == 0x000e) {
/*
* Type = 0x000e
*
* Unknown. Always of zero length, and always only
* on AOL users.
*
* Ignore.
*
*/
} else if ((type == 0x000f) || (type == 0x0010)) {
/*
* Type = 0x000f: Session Length. (AIM)
* Type = 0x0010: Session Length. (AOL)
*
* The duration, in seconds, of the user's current
* session.
*
* Which TLV type this comes in depends on the
* service the user is using (AIM or AOL).
*
*/
outinfo->sessionlen = aimbs_get32(bs);
} else {
/*
* Reaching here indicates that either AOL has
* added yet another TLV for us to deal with,
* or the parsing has gone Terribly Wrong.
*
* Either way, inform the owner and attempt
* recovery.
*
*/
faimdprintf(sess, 0, "userinfo: **warning: unexpected TLV:\n");
faimdprintf(sess, 0, "userinfo: sn =%s\n", outinfo->sn);
faimdprintf(sess, 0, "userinfo: type =0x%04x\n",type);
faimdprintf(sess, 0, "userinfo: length=0x%04x\n", length);
}
/* Save ourselves. */
aim_bstream_setpos(bs, endpos);
}
return 0;
}
static int parseinfo_create(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs, aim_snac_t *snac2)
{
aim_rxcallback_t userfunc;
aim_tlvlist_t *tlvlist, *innerlist;
char *ck = NULL, *fqcn = NULL, *name = NULL;
fu16_t exchange = 0, instance = 0, unknown = 0, flags = 0, maxmsglen = 0, maxoccupancy = 0;
fu32_t createtime = 0;
fu8_t createperms = 0, detaillevel;
int cklen;
aim_tlv_t *bigblock;
int ret = 0;
aim_bstream_t bbbs;
tlvlist = aim_readtlvchain(bs);
if (!(bigblock = aim_gettlv(tlvlist, 0x0004, 1))) {
faimdprintf(sess, 0, "no bigblock in top tlv in create room response\n");
aim_freetlvchain(&tlvlist);
return 0;
}
aim_bstream_init(&bbbs, bigblock->value, bigblock->length);
exchange = aimbs_get16(&bbbs);
cklen = aimbs_get8(&bbbs);
ck = aimbs_getstr(&bbbs, cklen);
instance = aimbs_get16(&bbbs);
detaillevel = aimbs_get8(&bbbs);
if (detaillevel != 0x02) {
faimdprintf(sess, 0, "unknown detaillevel in create room response (0x%02x)\n", detaillevel);
aim_freetlvchain(&tlvlist);
free(ck);
return 0;
}
unknown = aimbs_get16(&bbbs);
innerlist = aim_readtlvchain(&bbbs);
if (aim_gettlv(innerlist, 0x006a, 1))
fqcn = aim_gettlv_str(innerlist, 0x006a, 1);
if (aim_gettlv(innerlist, 0x00c9, 1))
flags = aim_gettlv16(innerlist, 0x00c9, 1);
if (aim_gettlv(innerlist, 0x00ca, 1))
createtime = aim_gettlv32(innerlist, 0x00ca, 1);
if (aim_gettlv(innerlist, 0x00d1, 1))
maxmsglen = aim_gettlv16(innerlist, 0x00d1, 1);
if (aim_gettlv(innerlist, 0x00d2, 1))
maxoccupancy = aim_gettlv16(innerlist, 0x00d2, 1);
if (aim_gettlv(innerlist, 0x00d3, 1))
name = aim_gettlv_str(innerlist, 0x00d3, 1);
if (aim_gettlv(innerlist, 0x00d5, 1))
createperms = aim_gettlv8(innerlist, 0x00d5, 1);
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype))) {
ret = userfunc(sess, rx, snac2->type, fqcn, instance, exchange, flags, createtime, maxmsglen, maxoccupancy, createperms, unknown, name, ck);
}
free(ck);
free(name);
free(fqcn);
aim_freetlvchain(&innerlist);
aim_freetlvchain(&tlvlist);
return ret;
}
/*
* AIM is fairly regular about providing user info. This is a generic
* routine to extract it in its standard form.
*/
faim_internal int aim_extractuserinfo(aim_session_t *sess, aim_bstream_t *bs, aim_userinfo_t *outinfo)
{
int curtlv, tlvcnt;
fu8_t snlen;
if (!bs || !outinfo)
return -EINVAL;
/* Clear out old data first */
memset(outinfo, 0x00, sizeof(aim_userinfo_t));
/*
* Screen name. Stored as an unterminated string prepended with a
* byte containing its length.
*/
snlen = aimbs_get8(bs);
aimbs_getrawbuf(bs, outinfo->sn, snlen);
/*
* Warning Level. Stored as an unsigned short.
*/
outinfo->warnlevel = aimbs_get16(bs);
/*
* TLV Count. Unsigned short representing the number of
* Type-Length-Value triples that follow.
*/
tlvcnt = aimbs_get16(bs);
/*
* Parse out the Type-Length-Value triples as they're found.
*/
for (curtlv = 0; curtlv < tlvcnt; curtlv++) {
int endpos;
fu16_t type, length;
type = aimbs_get16(bs);
length = aimbs_get16(bs);
endpos = aim_bstream_curpos(bs) + length;
if (type == 0x0001) {
/*
* Type = 0x0001: User flags
*
* Specified as any of the following ORed together:
* 0x0001 Trial (user less than 60days)
* 0x0002 Unknown bit 2
* 0x0004 AOL Main Service user
* 0x0008 Unknown bit 4
* 0x0010 Free (AIM) user
* 0x0020 Away
* 0x0400 ActiveBuddy
*
*/
outinfo->flags = aimbs_get16(bs);
outinfo->present |= AIM_USERINFO_PRESENT_FLAGS;
} else if (type == 0x0002) {
/*
* Type = 0x0002: Account creation time.
*
* The time/date that the user originally registered for
* the service, stored in time_t format.
*
* I'm not sure how this differs from type 5 ("member
* since").
*
* Note: This is the field formerly known as "member
* since". All these years and I finally found out
* that I got the name wrong.
*/
outinfo->createtime = aimbs_get32(bs);
outinfo->present |= AIM_USERINFO_PRESENT_CREATETIME;
} else if (type == 0x0003) {
/*
* Type = 0x0003: On-Since date.
*
* The time/date that the user started their current
* session, stored in time_t format.
*/
outinfo->onlinesince = aimbs_get32(bs);
outinfo->present |= AIM_USERINFO_PRESENT_ONLINESINCE;
} else if (type == 0x0004) {
/*
* Type = 0x0004: Idle time.
*
* Number of seconds since the user actively used the
* service.
*
* Note that the client tells the server when to start
* counting idle times, so this may or may not be
* related to reality.
*/
outinfo->idletime = aimbs_get16(bs);
outinfo->present |= AIM_USERINFO_PRESENT_IDLE;
} else if (type == 0x0005) {
/*
* Type = 0x0005: Member since date.
*
* The time/date that the user originally registered for
* the service, stored in time_t format.
*
* This is sometimes sent instead of type 2 ("account
* creation time"), particularly in the self-info.
*/
outinfo->membersince = aimbs_get32(bs);
outinfo->present |= AIM_USERINFO_PRESENT_MEMBERSINCE;
} else if (type == 0x0006) {
/*
* Type = 0x0006: ICQ Online Status
*
* ICQ's Away/DND/etc "enriched" status. Some decoding
* of values done by Scott <*****@*****.**>
*/
aimbs_get16(bs);
outinfo->icqinfo.status = aimbs_get16(bs);
outinfo->present |= AIM_USERINFO_PRESENT_ICQEXTSTATUS;
} else if (type == 0x000a) {
/*
* Type = 0x000a
*
* ICQ User IP Address.
* Ahh, the joy of ICQ security.
*/
outinfo->icqinfo.ipaddr = aimbs_get32(bs);
outinfo->present |= AIM_USERINFO_PRESENT_ICQIPADDR;
} else if (type == 0x000c) {
/*
* Type = 0x000c
*
* random crap containing the IP address,
* apparently a port number, and some Other Stuff.
*
*/
aimbs_getrawbuf(bs, outinfo->icqinfo.crap, 0x25);
outinfo->present |= AIM_USERINFO_PRESENT_ICQDATA;
} else if (type == 0x000d) {
/*
* Type = 0x000d
*
* Capability information.
*
*/
outinfo->capabilities = aim_getcap(sess, bs, length);
outinfo->present |= AIM_USERINFO_PRESENT_CAPABILITIES;
} else if (type == 0x000e) {
/*
* Type = 0x000e
*
* Unknown. Always of zero length, and always only
* on AOL users.
*
* Ignore.
*
*/
} else if ((type == 0x000f) || (type == 0x0010)) {
/*
* Type = 0x000f: Session Length. (AIM)
* Type = 0x0010: Session Length. (AOL)
*
* The duration, in seconds, of the user's current
* session.
*
* Which TLV type this comes in depends on the
* service the user is using (AIM or AOL).
*
*/
outinfo->sessionlen = aimbs_get32(bs);
outinfo->present |= AIM_USERINFO_PRESENT_SESSIONLEN;
} else if (type == 0x001d) {
/*
* Type 29: Unknown.
*
* Currently very rare. Always 18 bytes of mostly zero.
*/
} else if (type == 0x001e) {
/*
* Type 30: Unknown.
*
* Always four bytes, but it doesn't look like an int.
*/
} else {
/*
* Reaching here indicates that either AOL has
* added yet another TLV for us to deal with,
* or the parsing has gone Terribly Wrong.
*
* Either way, inform the owner and attempt
* recovery.
*
*/
faimdprintf(sess, 0, "userinfo: **warning: unexpected TLV:\n");
faimdprintf(sess, 0, "userinfo: sn =%s\n", outinfo->sn);
dumptlv(sess, type, bs, length);
}
/* Save ourselves. */
aim_bstream_setpos(bs, endpos);
}
return 0;
}
/**
* Subtype 0x0003 - Response to 0x0015/0x002, contains an ICQesque packet.
*/
static int icqresponse(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
int ret = 0;
aim_tlvlist_t *tl;
aim_tlv_t *datatlv;
aim_bstream_t qbs;
fu32_t ouruin;
fu16_t cmdlen, cmd, reqid;
if (!(tl = aim_tlvlist_read(bs)) || !(datatlv = aim_tlv_gettlv(tl, 0x0001, 1))) {
aim_tlvlist_free(&tl);
faimdprintf(sess, 0, "corrupt ICQ response\n");
return 0;
}
aim_bstream_init(&qbs, datatlv->value, datatlv->length);
cmdlen = aimbs_getle16(&qbs);
ouruin = aimbs_getle32(&qbs);
cmd = aimbs_getle16(&qbs);
reqid = aimbs_getle16(&qbs);
faimdprintf(sess, 1, "icq response: %d bytes, %ld, 0x%04x, 0x%04x\n", cmdlen, ouruin, cmd, reqid);
if (cmd == 0x0041) { /* offline message */
struct aim_icq_offlinemsg msg;
aim_rxcallback_t userfunc;
memset(&msg, 0, sizeof(msg));
msg.sender = aimbs_getle32(&qbs);
msg.year = aimbs_getle16(&qbs);
msg.month = aimbs_getle8(&qbs);
msg.day = aimbs_getle8(&qbs);
msg.hour = aimbs_getle8(&qbs);
msg.minute = aimbs_getle8(&qbs);
msg.type = aimbs_getle8(&qbs);
msg.flags = aimbs_getle8(&qbs);
msg.msglen = aimbs_getle16(&qbs);
msg.msg = aimbs_getstr(&qbs, msg.msglen);
if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_OFFLINEMSG)))
ret = userfunc(sess, rx, &msg);
free(msg.msg);
} else if (cmd == 0x0042) {
aim_rxcallback_t userfunc;
if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_OFFLINEMSGCOMPLETE)))
ret = userfunc(sess, rx);
} else if (cmd == 0x07da) { /* information */
fu16_t subtype;
struct aim_icq_info *info;
aim_rxcallback_t userfunc;
subtype = aimbs_getle16(&qbs);
aim_bstream_advance(&qbs, 1); /* 0x0a */
/* find other data from the same request */
for (info = sess->icq_info; info && (info->reqid != reqid); info = info->next);
if (!info) {
info = (struct aim_icq_info *)calloc(1, sizeof(struct aim_icq_info));
info->reqid = reqid;
info->next = sess->icq_info;
sess->icq_info = info;
}
switch (subtype) {
case 0x00a0: { /* hide ip status */
/* nothing */
} break;
case 0x00aa: { /* password change status */
/* nothing */
} break;
case 0x00c8: { /* general and "home" information */
info->nick = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->first = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->last = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->email = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homecity = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homestate = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homephone = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homefax = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homeaddr = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->mobile = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homezip = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->homecountry = aimbs_getle16(&qbs);
/* 0x0a 00 02 00 */
/* 1 byte timezone? */
/* 1 byte hide email flag? */
} break;
case 0x00dc: { /* personal information */
info->age = aimbs_getle8(&qbs);
info->unknown = aimbs_getle8(&qbs);
info->gender = aimbs_getle8(&qbs); /* Not specified=0x00, Female=0x01, Male=0x02 */
info->personalwebpage = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->birthyear = aimbs_getle16(&qbs);
info->birthmonth = aimbs_getle8(&qbs);
info->birthday = aimbs_getle8(&qbs);
info->language1 = aimbs_getle8(&qbs);
info->language2 = aimbs_getle8(&qbs);
info->language3 = aimbs_getle8(&qbs);
/* 0x00 00 01 00 00 01 00 00 00 00 00 */
} break;
case 0x00d2: { /* work information */
info->workcity = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workstate = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workphone = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workfax = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workaddr = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workzip = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workcountry = aimbs_getle16(&qbs);
info->workcompany = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workdivision = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->workposition = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
aim_bstream_advance(&qbs, 2); /* 0x01 00 */
info->workwebpage = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
} break;
case 0x00e6: { /* additional personal information */
info->info = aimbs_getstr(&qbs, aimbs_getle16(&qbs)-1);
} break;
case 0x00eb: { /* email address(es) */
int i;
info->numaddresses = aimbs_getle16(&qbs);
info->email2 = (char **)calloc(info->numaddresses, sizeof(char *));
for (i = 0; i < info->numaddresses; i++) {
info->email2[i] = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
if (i+1 != info->numaddresses)
aim_bstream_advance(&qbs, 1); /* 0x00 */
}
} break;
case 0x00f0: { /* personal interests */
} break;
case 0x00fa: { /* past background and current organizations */
} break;
case 0x0104: { /* alias info */
info->nick = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->first = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->last = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
aim_bstream_advance(&qbs, aimbs_getle16(&qbs)); /* email address? */
/* Then 0x00 02 00 */
} break;
case 0x010e: { /* unknown */
/* 0x00 00 */
} break;
case 0x019a: { /* simple info */
aim_bstream_advance(&qbs, 2);
info->uin = aimbs_getle32(&qbs);
info->nick = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->first = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->last = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
info->email = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
/* Then 0x00 02 00 00 00 00 00 */
} break;
} /* End switch statement */
if (!(snac->flags & 0x0001)) {
if (subtype != 0x0104)
if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_INFO)))
ret = userfunc(sess, rx, info);
if (info->uin && info->nick)
if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_ALIAS)))
ret = userfunc(sess, rx, info);
if (sess->icq_info == info) {
sess->icq_info = info->next;
} else {
struct aim_icq_info *cur;
for (cur=sess->icq_info; (cur->next && (cur->next!=info)); cur=cur->next);
if (cur->next)
cur->next = cur->next->next;
}
aim_icq_freeinfo(info);
}
}
aim_tlvlist_free(&tl);
return ret;
}
/*
* Grab a single command sequence off the socket, and enqueue
* it in the incoming event queue in a seperate struct.
*/
faim_export int aim_get_command(aim_session_t *sess, aim_conn_t *conn)
{
fu8_t flaphdr_raw[6];
aim_bstream_t flaphdr;
aim_frame_t *newrx;
fu16_t payloadlen;
if (!sess || !conn)
return 0;
if (conn->fd == -1)
return -1; /* its a aim_conn_close()'d connection */
if (conn->fd < 3) /* can happen when people abuse the interface */
return 0;
if (conn->status & AIM_CONN_STATUS_INPROGRESS)
return aim_conn_completeconnect(sess, conn);
/*
* Rendezvous (client-client) connections do not speak
* FLAP, so this function will break on them.
*/
if (conn->type == AIM_CONN_TYPE_RENDEZVOUS)
return aim_get_command_rendezvous(sess, conn);
else if (conn->type == AIM_CONN_TYPE_RENDEZVOUS_OUT) {
faimdprintf(sess, 0, "AIM_CONN_TYPE_RENDEZVOUS_OUT on fd %d\n", conn->fd);
return 0;
}
aim_bstream_init(&flaphdr, flaphdr_raw, sizeof(flaphdr_raw));
/*
* Read FLAP header. Six bytes:
*
* 0 char -- Always 0x2a
* 1 char -- Channel ID. Usually 2 -- 1 and 4 are used during login.
* 2 short -- Sequence number
* 4 short -- Number of data bytes that follow.
*/
if (aim_bstream_recv(&flaphdr, conn->fd, 6) < 6) {
aim_conn_close(conn);
return -1;
}
aim_bstream_rewind(&flaphdr);
/*
* This shouldn't happen unless the socket breaks, the server breaks,
* or we break. We must handle it just in case.
*/
if (aimbs_get8(&flaphdr) != 0x2a) {
fu8_t start;
aim_bstream_rewind(&flaphdr);
start = aimbs_get8(&flaphdr);
faimdprintf(sess, 0, "FLAP framing disrupted (0x%02x)", start);
aim_conn_close(conn);
return -1;
}
/* allocate a new struct */
if (!(newrx = (aim_frame_t *)malloc(sizeof(aim_frame_t))))
return -1;
memset(newrx, 0, sizeof(aim_frame_t));
/* we're doing FLAP if we're here */
newrx->hdrtype = AIM_FRAMETYPE_FLAP;
newrx->hdr.flap.type = aimbs_get8(&flaphdr);
newrx->hdr.flap.seqnum = aimbs_get16(&flaphdr);
payloadlen = aimbs_get16(&flaphdr);
newrx->nofree = 0; /* free by default */
if (payloadlen) {
fu8_t *payload = NULL;
if (!(payload = (fu8_t *) malloc(payloadlen))) {
aim_frame_destroy(newrx);
return -1;
}
aim_bstream_init(&newrx->data, payload, payloadlen);
/* read the payload */
if (aim_bstream_recv(&newrx->data, conn->fd, payloadlen) < payloadlen) {
free(payload);
aim_frame_destroy(newrx);
aim_conn_close(conn);
return -1;
}
} else
aim_bstream_init(&newrx->data, NULL, 0);
aim_bstream_rewind(&newrx->data);
newrx->conn = conn;
newrx->next = NULL; /* this will always be at the bottom */
if (!sess->queue_incoming)
sess->queue_incoming = newrx;
else {
aim_frame_t *cur;
for (cur = sess->queue_incoming; cur->next; cur = cur->next)
;
cur->next = newrx;
}
newrx->conn->lastactivity = time(NULL);
return 0;
}
/*
* aim_rxdispatch()
*
* Basically, heres what this should do:
* 1) Determine correct packet handler for this packet
* 2) Mark the packet handled (so it can be dequeued in purge_queue())
* 3) Send the packet to the packet handler
* 4) Go to next packet in the queue and start over
* 5) When done, run purge_queue() to purge handled commands
*
* TODO: Clean up.
* TODO: More support for mid-level handlers.
* TODO: Allow for NULL handlers.
*
*/
faim_export void aim_rxdispatch(aim_session_t *sess)
{
int i;
aim_frame_t *cur;
for (cur = sess->queue_incoming, i = 0; cur; cur = cur->next, i++) {
/*
* XXX: This is still fairly ugly.
*/
if (cur->handled)
continue;
/*
* This is a debugging/sanity check only and probably
* could/should be removed for stable code.
*/
if (((cur->hdrtype == AIM_FRAMETYPE_OFT) &&
(cur->conn->type != AIM_CONN_TYPE_RENDEZVOUS)) ||
((cur->hdrtype == AIM_FRAMETYPE_FLAP) &&
(cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS))) {
faimdprintf(sess, 0, "rxhandlers: incompatible frame type %d on connection type 0x%04x\n", cur->hdrtype, cur->conn->type);
cur->handled = 1;
continue;
}
if (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS) {
if (cur->hdrtype != AIM_FRAMETYPE_OFT) {
faimdprintf(sess, 0, "internal error: non-OFT frames on OFT connection\n");
cur->handled = 1; /* get rid of it */
} else {
/* XXX: implement this */
faimdprintf(sess, 0, "faim: OFT frame!\n");
cur->handled = 1; /* get rid of it */
}
continue;
}
if (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS_OUT) {
/* not possible */
faimdprintf(sess, 0, "rxdispatch called on RENDEZVOUS_OUT connection!\n");
cur->handled = 1;
continue;
}
if (cur->hdr.flap.type == 0x01) {
cur->handled = aim_callhandler_noparam(sess, cur->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_FLAPVER, cur); /* XXX use consumenonsnac */
continue;
} else if (cur->hdr.flap.type == 0x02) {
if ((cur->handled = consumesnac(sess, cur)))
continue;
} else if (cur->hdr.flap.type == 0x04) {
cur->handled = negchan_middle(sess, cur);
continue;
} else if (cur->hdr.flap.type == 0x05)
;
if (!cur->handled) {
consumenonsnac(sess, cur, 0xffff, 0xffff); /* last chance! */
cur->handled = 1;
}
}
/*
* This doesn't have to be called here. It could easily be done
* by a seperate thread or something. It's an administrative operation,
* and can take a while. Though the less you call it the less memory
* you'll have :)
*/
aim_purge_rxqueue(sess);
return;
}
/*
* We could probably include this in the normal ICBM parsing
* code as channel 0x0003, however, since only the start
* would be the same, we might as well do it here.
*
* General outline of this SNAC:
* snac
* cookie
* channel id
* tlvlist
* unknown
* source user info
* name
* evility
* userinfo tlvs
* online time
* etc
* message metatlv
* message tlv
* message string
* possibly others
*
*/
static int incomingmsg(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
aim_userinfo_t userinfo;
aim_rxcallback_t userfunc;
int ret = 0;
fu8_t *cookie;
fu16_t channel;
aim_tlvlist_t *otl;
char *msg = NULL;
aim_msgcookie_t *ck;
memset(&userinfo, 0, sizeof(aim_userinfo_t));
/*
* ICBM Cookie. Uncache it.
*/
cookie = aimbs_getraw(bs, 8);
if ((ck = aim_uncachecookie(sess, cookie, AIM_COOKIETYPE_CHAT))) {
free(ck->data);
free(ck);
}
/*
* Channel ID
*
* Channels 1 and 2 are implemented in the normal ICBM
* parser.
*
* We only do channel 3 here.
*
*/
channel = aimbs_get16(bs);
if (channel != 0x0003) {
faimdprintf(sess, 0, "faim: chat_incoming: unknown channel! (0x%04x)\n", channel);
return 0;
}
/*
* Start parsing TLVs right away.
*/
otl = aim_readtlvchain(bs);
/*
* Type 0x0003: Source User Information
*/
if (aim_gettlv(otl, 0x0003, 1)) {
aim_tlv_t *userinfotlv;
aim_bstream_t tbs;
userinfotlv = aim_gettlv(otl, 0x0003, 1);
aim_bstream_init(&tbs, userinfotlv->value, userinfotlv->length);
aim_extractuserinfo(sess, &tbs, &userinfo);
}
/*
* Type 0x0001: If present, it means it was a message to the
* room (as opposed to a whisper).
*/
if (aim_gettlv(otl, 0x0001, 1))
;
/*
* Type 0x0005: Message Block. Conains more TLVs.
*/
if (aim_gettlv(otl, 0x0005, 1)) {
aim_tlvlist_t *itl;
aim_tlv_t *msgblock;
aim_bstream_t tbs;
msgblock = aim_gettlv(otl, 0x0005, 1);
aim_bstream_init(&tbs, msgblock->value, msgblock->length);
itl = aim_readtlvchain(&tbs);
/*
* Type 0x0001: Message.
*/
if (aim_gettlv(itl, 0x0001, 1))
msg = aim_gettlv_str(itl, 0x0001, 1);
aim_freetlvchain(&itl);
}
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
ret = userfunc(sess, rx, &userinfo, msg);
free(cookie);
free(msg);
aim_freetlvchain(&otl);
return ret;
}
/*
* Start by building the multipart structures, then pick the first
* human-readable section and stuff it into args->msg so no one gets
* suspicious.
*
*/
static int incomingim_ch1_parsemsgs(aim_session_t *sess, guint8 *data, int len, struct aim_incomingim_ch1_args *args)
{
static const guint16 charsetpri[] = {
0x0000, /* ASCII first */
0x0003, /* then ISO-8859-1 */
0x0002, /* UNICODE as last resort */
};
static const int charsetpricount = 3;
int i;
aim_bstream_t mbs;
aim_mpmsg_section_t *sec;
aim_bstream_init(&mbs, data, len);
while (aim_bstream_empty(&mbs)) {
guint16 msglen, flag1, flag2;
char *msgbuf;
aimbs_get8(&mbs); /* 01 */
aimbs_get8(&mbs); /* 01 */
/* Message string length, including character set info. */
msglen = aimbs_get16(&mbs);
/* Character set info */
flag1 = aimbs_get16(&mbs);
flag2 = aimbs_get16(&mbs);
/* Message. */
msglen -= 4;
/*
* For now, we don't care what the encoding is. Just copy
* it into a multipart struct and deal with it later. However,
* always pad the ending with a NULL. This makes it easier
* to treat ASCII sections as strings. It won't matter for
* UNICODE or binary data, as you should never read past
* the specified data length, which will not include the pad.
*
* XXX There's an API bug here. For sending, the UNICODE is
* given in host byte order (aim_mpmsg_addunicode), but here
* the received messages are given in network byte order.
*
*/
msgbuf = aimbs_getstr(&mbs, msglen);
mpmsg_addsection(sess, &args->mpmsg, flag1, flag2, (guint8 *)msgbuf, (guint16) msglen);
} /* while */
args->icbmflags |= AIM_IMFLAGS_MULTIPART; /* always set */
/*
* Clients that support multiparts should never use args->msg, as it
* will point to an arbitrary section.
*
* Here, we attempt to provide clients that do not support multipart
* messages with something to look at -- hopefully a human-readable
* string. But, failing that, a UNICODE message, or nothing at all.
*
* Which means that even if args->msg is NULL, it does not mean the
* message was blank.
*
*/
for (i = 0; i < charsetpricount; i++) {
for (sec = args->mpmsg.parts; sec; sec = sec->next) {
if (sec->charset != charsetpri[i])
continue;
/* Great. We found one. Fill it in. */
args->charset = sec->charset;
args->charsubset = sec->charsubset;
args->icbmflags |= AIM_IMFLAGS_CUSTOMCHARSET;
/* Set up the simple flags */
if (args->charset == 0x0000)
; /* ASCII */
else if (args->charset == 0x0002)
args->icbmflags |= AIM_IMFLAGS_UNICODE;
else if (args->charset == 0x0003)
args->icbmflags |= AIM_IMFLAGS_ISO_8859_1;
else if (args->charset == 0xffff)
; /* no encoding (yeep!) */
if (args->charsubset == 0x0000)
; /* standard subencoding? */
else if (args->charsubset == 0x000b)
args->icbmflags |= AIM_IMFLAGS_SUBENC_MACINTOSH;
else if (args->charsubset == 0xffff)
; /* no subencoding */
#if 0
/* XXX this isn't really necesary... */
if ( ((args.flag1 != 0x0000) &&
(args.flag1 != 0x0002) &&
(args.flag1 != 0x0003) &&
(args.flag1 != 0xffff)) ||
((args.flag2 != 0x0000) &&
(args.flag2 != 0x000b) &&
(args.flag2 != 0xffff))) {
faimdprintf(sess, 0, "icbm: **warning: encoding flags are being used! {%04x, %04x}\n", args.flag1, args.flag2);
}
#endif
args->msg = (char *)sec->data;
args->msglen = sec->datalen;
return 0;
}
}
/* No human-readable sections found. Oh well. */
args->charset = args->charsubset = 0xffff;
args->msg = NULL;
args->msglen = 0;
return 0;
}
/*
* General room information. Lots of stuff.
*
* Values I know are in here but I havent attached
* them to any of the 'Unknown's:
* - Language (English)
*
* SNAC 000e/0002
*/
static int infoupdate(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
aim_userinfo_t *userinfo = NULL;
aim_rxcallback_t userfunc;
int ret = 0;
int usercount = 0;
fu8_t detaillevel = 0;
char *roomname = NULL;
struct aim_chat_roominfo roominfo;
fu16_t tlvcount = 0;
aim_tlvlist_t *tlvlist;
char *roomdesc = NULL;
fu16_t flags = 0;
fu32_t creationtime = 0;
fu16_t maxmsglen = 0, maxvisiblemsglen = 0;
fu16_t unknown_d2 = 0, unknown_d5 = 0;
aim_chat_readroominfo(bs, &roominfo);
detaillevel = aimbs_get8(bs);
if (detaillevel != 0x02) {
faimdprintf(sess, 0, "faim: chat_roomupdateinfo: detail level %d not supported\n", detaillevel);
return 1;
}
tlvcount = aimbs_get16(bs);
/*
* Everything else are TLVs.
*/
tlvlist = aim_readtlvchain(bs);
/*
* TLV type 0x006a is the room name in Human Readable Form.
*/
if (aim_gettlv(tlvlist, 0x006a, 1))
roomname = aim_gettlv_str(tlvlist, 0x006a, 1);
/*
* Type 0x006f: Number of occupants.
*/
if (aim_gettlv(tlvlist, 0x006f, 1))
usercount = aim_gettlv16(tlvlist, 0x006f, 1);
/*
* Type 0x0073: Occupant list.
*/
if (aim_gettlv(tlvlist, 0x0073, 1)) {
int curoccupant = 0;
aim_tlv_t *tmptlv;
aim_bstream_t occbs;
tmptlv = aim_gettlv(tlvlist, 0x0073, 1);
/* Allocate enough userinfo structs for all occupants */
userinfo = calloc(usercount, sizeof(aim_userinfo_t));
aim_bstream_init(&occbs, tmptlv->value, tmptlv->length);
while (curoccupant < usercount)
aim_extractuserinfo(sess, &occbs, &userinfo[curoccupant++]);
}
/*
* Type 0x00c9: Flags. (AIM_CHATROOM_FLAG)
*/
if (aim_gettlv(tlvlist, 0x00c9, 1))
flags = aim_gettlv16(tlvlist, 0x00c9, 1);
/*
* Type 0x00ca: Creation time (4 bytes)
*/
if (aim_gettlv(tlvlist, 0x00ca, 1))
creationtime = aim_gettlv32(tlvlist, 0x00ca, 1);
/*
* Type 0x00d1: Maximum Message Length
*/
if (aim_gettlv(tlvlist, 0x00d1, 1))
maxmsglen = aim_gettlv16(tlvlist, 0x00d1, 1);
/*
* Type 0x00d2: Unknown. (2 bytes)
*/
if (aim_gettlv(tlvlist, 0x00d2, 1))
unknown_d2 = aim_gettlv16(tlvlist, 0x00d2, 1);
/*
* Type 0x00d3: Room Description
*/
if (aim_gettlv(tlvlist, 0x00d3, 1))
roomdesc = aim_gettlv_str(tlvlist, 0x00d3, 1);
/*
* Type 0x000d4: Unknown (flag only)
*/
if (aim_gettlv(tlvlist, 0x000d4, 1))
;
/*
* Type 0x00d5: Unknown. (1 byte)
*/
if (aim_gettlv(tlvlist, 0x00d5, 1))
unknown_d5 = aim_gettlv8(tlvlist, 0x00d5, 1);
/*
* Type 0x00d6: Encoding 1 ("us-ascii")
*/
if (aim_gettlv(tlvlist, 0x000d6, 1))
;
/*
* Type 0x00d7: Language 1 ("en")
*/
if (aim_gettlv(tlvlist, 0x000d7, 1))
;
/*
* Type 0x00d8: Encoding 2 ("us-ascii")
*/
if (aim_gettlv(tlvlist, 0x000d8, 1))
;
/*
* Type 0x00d9: Language 2 ("en")
*/
if (aim_gettlv(tlvlist, 0x000d9, 1))
;
/*
* Type 0x00da: Maximum visible message length
*/
if (aim_gettlv(tlvlist, 0x000da, 1))
maxvisiblemsglen = aim_gettlv16(tlvlist, 0x00da, 1);
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype))) {
ret = userfunc(sess,
rx,
&roominfo,
roomname,
usercount,
userinfo,
roomdesc,
flags,
creationtime,
maxmsglen,
unknown_d2,
unknown_d5,
maxvisiblemsglen);
}
free(roominfo.name);
free(userinfo);
free(roomname);
free(roomdesc);
aim_freetlvchain(&tlvlist);
return ret;
}
/**
* aim_proxyconnect - An extrememly quick and dirty SOCKS5 interface.
* @sess: Session to connect
* @host: Host to connect to
* @port: Port to connect to
* @statusret: Return value of the connection
*
* Attempts to connect to the specified host via the configured
* proxy settings, if present. If no proxy is configured for
* this session, the connection is done directly.
*
* XXX this is really awful.
*
*/
static int aim_proxyconnect(aim_session_t *sess, const char *host, fu16_t port, fu32_t *statusret)
{
int fd = -1;
if (strlen(sess->socksproxy.server)) { /* connecting via proxy */
int i;
unsigned char buf[512];
struct sockaddr_in sa;
struct hostent *hp;
char *proxy;
unsigned short proxyport = 1080;
for(i=0;i<(int)strlen(sess->socksproxy.server);i++) {
if (sess->socksproxy.server[i] == ':') {
proxyport = atoi(&(sess->socksproxy.server[i+1]));
break;
}
}
proxy = (char *)malloc(i+1);
strncpy(proxy, sess->socksproxy.server, i);
proxy[i] = '\0';
if (!(hp = gethostbyname(proxy))) {
faimdprintf(sess, 0, "proxyconnect: unable to resolve proxy name\n");
*statusret = (h_errno | AIM_CONN_STATUS_RESOLVERR);
return -1;
}
free(proxy);
memset(&sa.sin_zero, 0, 8);
sa.sin_port = htons(proxyport);
memcpy(&sa.sin_addr, hp->h_addr, hp->h_length);
sa.sin_family = hp->h_addrtype;
fd = socket(hp->h_addrtype, SOCK_STREAM, 0);
if (connect(fd, (struct sockaddr *)&sa, sizeof(struct sockaddr_in)) < 0) {
faimdprintf(sess, 0, "proxyconnect: unable to connect to proxy\n");
close(fd);
return -1;
}
i = 0;
buf[0] = 0x05; /* SOCKS version 5 */
if (strlen(sess->socksproxy.username)) {
buf[1] = 0x02; /* two methods */
buf[2] = 0x00; /* no authentication */
buf[3] = 0x02; /* username/password authentication */
i = 4;
} else {
buf[1] = 0x01;
buf[2] = 0x00;
i = 3;
}
if (write(fd, buf, i) < i) {
*statusret = errno;
close(fd);
return -1;
}
if (read(fd, buf, 2) < 2) {
*statusret = errno;
close(fd);
return -1;
}
if ((buf[0] != 0x05) || (buf[1] == 0xff)) {
*statusret = EINVAL;
close(fd);
return -1;
}
/* check if we're doing username authentication */
if (buf[1] == 0x02) {
i = aimutil_put8(buf, 0x01); /* version 1 */
i += aimutil_put8(buf+i, strlen(sess->socksproxy.username));
i += aimutil_putstr(buf+i, sess->socksproxy.username, strlen(sess->socksproxy.username));
i += aimutil_put8(buf+i, strlen(sess->socksproxy.password));
i += aimutil_putstr(buf+i, sess->socksproxy.password, strlen(sess->socksproxy.password));
if (write(fd, buf, i) < i) {
*statusret = errno;
close(fd);
return -1;
}
if (read(fd, buf, 2) < 2) {
*statusret = errno;
close(fd);
return -1;
}
if ((buf[0] != 0x01) || (buf[1] != 0x00)) {
*statusret = EINVAL;
close(fd);
return -1;
}
}
i = aimutil_put8(buf, 0x05);
i += aimutil_put8(buf+i, 0x01); /* CONNECT */
i += aimutil_put8(buf+i, 0x00); /* reserved */
i += aimutil_put8(buf+i, 0x03); /* address type: host name */
i += aimutil_put8(buf+i, strlen(host));
i += aimutil_putstr(buf+i, host, strlen(host));
i += aimutil_put16(buf+i, port);
if (write(fd, buf, i) < i) {
*statusret = errno;
close(fd);
return -1;
}
if (read(fd, buf, 10) < 10) {
*statusret = errno;
close(fd);
return -1;
}
if ((buf[0] != 0x05) || (buf[1] != 0x00)) {
*statusret = EINVAL;
close(fd);
return -1;
}
} else { /* connecting directly */
struct sockaddr_in sa;
struct hostent *hp;
if (!(hp = gethostbyname(host))) {
*statusret = (h_errno | AIM_CONN_STATUS_RESOLVERR);
return -1;
}
memset(&sa, 0, sizeof(struct sockaddr_in));
sa.sin_port = htons(port);
memcpy(&sa.sin_addr, hp->h_addr, hp->h_length);
sa.sin_family = hp->h_addrtype;
fd = socket(hp->h_addrtype, SOCK_STREAM, 0);
if (sess->flags & AIM_SESS_FLAGS_NONBLOCKCONNECT)
fcntl(fd, F_SETFL, O_NONBLOCK); /* XXX save flags */
if (connect(fd, (struct sockaddr *)&sa, sizeof(struct sockaddr_in)) < 0) {
if (sess->flags & AIM_SESS_FLAGS_NONBLOCKCONNECT) {
if ((errno == EINPROGRESS) || (errno == EINTR)) {
if (statusret)
*statusret |= AIM_CONN_STATUS_INPROGRESS;
return fd;
}
}
close(fd);
fd = -1;
}
}
return fd;
}
static int parseinfo_perms(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs, aim_snac_t *snac2)
{
aim_rxcallback_t userfunc;
int ret = 0;
struct aim_chat_exchangeinfo *exchanges = NULL;
int curexchange;
aim_tlv_t *exchangetlv;
fu8_t maxrooms = 0;
aim_tlvlist_t *tlvlist, *innerlist;
tlvlist = aim_readtlvchain(bs);
/*
* Type 0x0002: Maximum concurrent rooms.
*/
if (aim_gettlv(tlvlist, 0x0002, 1))
maxrooms = aim_gettlv8(tlvlist, 0x0002, 1);
/*
* Type 0x0003: Exchange information
*
* There can be any number of these, each one
* representing another exchange.
*
*/
for (curexchange = 0; ((exchangetlv = aim_gettlv(tlvlist, 0x0003, curexchange+1))); ) {
aim_bstream_t tbs;
aim_bstream_init(&tbs, exchangetlv->value, exchangetlv->length);
curexchange++;
exchanges = realloc(exchanges, curexchange * sizeof(struct aim_chat_exchangeinfo));
/* exchange number */
exchanges[curexchange-1].number = aimbs_get16(&tbs);
innerlist = aim_readtlvchain(&tbs);
/*
* Type 0x000a: Unknown.
*
* Usually three bytes: 0x0114 (exchange 1) or 0x010f (others).
*
*/
if (aim_gettlv(innerlist, 0x000a, 1))
;
/*
* Type 0x000d: Unknown.
*/
if (aim_gettlv(innerlist, 0x000d, 1))
;
/*
* Type 0x0004: Unknown
*/
if (aim_gettlv(innerlist, 0x0004, 1))
;
/*
* Type 0x0002: Unknown
*/
if (aim_gettlv(innerlist, 0x0002, 1)) {
fu16_t classperms;
classperms = aim_gettlv16(innerlist, 0x0002, 1);
faimdprintf(sess, 1, "faim: class permissions %x\n", classperms);
}
/*
* Type 0x00c9: Flags
*
* 1 Evilable
* 2 Nav Only
* 4 Instancing Allowed
* 8 Occupant Peek Allowed
*
*/
if (aim_gettlv(innerlist, 0x00c9, 1))
exchanges[curexchange-1].flags = aim_gettlv16(innerlist, 0x00c9, 1);
/*
* Type 0x00ca: Creation Date
*/
if (aim_gettlv(innerlist, 0x00ca, 1))
;
/*
* Type 0x00d0: Mandatory Channels?
*/
if (aim_gettlv(innerlist, 0x00d0, 1))
;
/*
* Type 0x00d1: Maximum Message length
*/
if (aim_gettlv(innerlist, 0x00d1, 1))
;
/*
* Type 0x00d2: Maximum Occupancy?
*/
if (aim_gettlv(innerlist, 0x00d2, 1))
;
/*
* Type 0x00d3: Exchange Description
*/
if (aim_gettlv(innerlist, 0x00d3, 1))
exchanges[curexchange-1].name = aim_gettlv_str(innerlist, 0x00d3, 1);
else
exchanges[curexchange-1].name = NULL;
/*
* Type 0x00d4: Exchange Description URL
*/
if (aim_gettlv(innerlist, 0x00d4, 1))
;
/*
* Type 0x00d5: Creation Permissions
*
* 0 Creation not allowed
* 1 Room creation allowed
* 2 Exchange creation allowed
*
*/
if (aim_gettlv(innerlist, 0x00d5, 1)) {
fu8_t createperms;
createperms = aim_gettlv8(innerlist, 0x00d5, 1);
}
/*
* Type 0x00d6: Character Set (First Time)
*/
if (aim_gettlv(innerlist, 0x00d6, 1))
exchanges[curexchange-1].charset1 = aim_gettlv_str(innerlist, 0x00d6, 1);
else
exchanges[curexchange-1].charset1 = NULL;
/*
* Type 0x00d7: Language (First Time)
*/
if (aim_gettlv(innerlist, 0x00d7, 1))
exchanges[curexchange-1].lang1 = aim_gettlv_str(innerlist, 0x00d7, 1);
else
exchanges[curexchange-1].lang1 = NULL;
/*
* Type 0x00d8: Character Set (Second Time)
*/
if (aim_gettlv(innerlist, 0x00d8, 1))
exchanges[curexchange-1].charset2 = aim_gettlv_str(innerlist, 0x00d8, 1);
else
exchanges[curexchange-1].charset2 = NULL;
/*
* Type 0x00d9: Language (Second Time)
*/
if (aim_gettlv(innerlist, 0x00d9, 1))
exchanges[curexchange-1].lang2 = aim_gettlv_str(innerlist, 0x00d9, 1);
else
exchanges[curexchange-1].lang2 = NULL;
/*
* Type 0x00da: Unknown
*/
if (aim_gettlv(innerlist, 0x00da, 1))
;
aim_freetlvchain(&innerlist);
}
/*
* Call client.
*/
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
ret = userfunc(sess, rx, snac2->type, maxrooms, curexchange, exchanges);
for (curexchange--; curexchange >= 0; curexchange--) {
free(exchanges[curexchange].name);
free(exchanges[curexchange].charset1);
free(exchanges[curexchange].lang1);
free(exchanges[curexchange].charset2);
free(exchanges[curexchange].lang2);
}
free(exchanges);
aim_freetlvchain(&tlvlist);
return ret;
}
/*
* Subtype 0x0006
*
* We could probably include this in the normal ICBM parsing
* code as channel 0x0003, however, since only the start
* would be the same, we might as well do it here.
*
* General outline of this SNAC:
* snac
* cookie
* channel id
* tlvlist
* unknown
* source user info
* name
* evility
* userinfo tlvs
* online time
* etc
* message metatlv
* message tlv
* message string
* possibly others
*
*/
static int incomingim_ch3(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
{
int ret = 0, i;
aim_rxcallback_t userfunc;
aim_userinfo_t userinfo;
fu8_t cookie[8];
fu16_t channel;
aim_tlvlist_t *otl;
char *msg = NULL;
int len = 0;
char *encoding = NULL, *language = NULL;
aim_msgcookie_t *ck;
memset(&userinfo, 0, sizeof(aim_userinfo_t));
/*
* Read ICBM Cookie.
*/
for (i = 0; i < 8; i++)
cookie[i] = aimbs_get8(bs);
if ((ck = aim_uncachecookie(sess, cookie, AIM_COOKIETYPE_CHAT))) {
free(ck->data);
free(ck);
}
/*
* Channel ID
*
* Channel 0x0003 is used for chat messages.
*
*/
channel = aimbs_get16(bs);
if (channel != 0x0003) {
faimdprintf(sess, 0, "faim: chat_incoming: unknown channel! (0x%04x)\n", channel);
return 0;
}
/*
* Start parsing TLVs right away.
*/
otl = aim_tlvlist_read(bs);
/*
* Type 0x0003: Source User Information
*/
if (aim_tlv_gettlv(otl, 0x0003, 1)) {
aim_tlv_t *userinfotlv;
aim_bstream_t tbs;
userinfotlv = aim_tlv_gettlv(otl, 0x0003, 1);
aim_bstream_init(&tbs, userinfotlv->value, userinfotlv->length);
aim_info_extract(sess, &tbs, &userinfo);
}
/*
* Type 0x0001: If present, it means it was a message to the
* room (as opposed to a whisper).
*/
if (aim_tlv_gettlv(otl, 0x0001, 1))
;
/*
* Type 0x0005: Message Block. Conains more TLVs.
*/
if (aim_tlv_gettlv(otl, 0x0005, 1)) {
aim_tlvlist_t *itl;
aim_tlv_t *msgblock;
aim_bstream_t tbs;
msgblock = aim_tlv_gettlv(otl, 0x0005, 1);
aim_bstream_init(&tbs, msgblock->value, msgblock->length);
itl = aim_tlvlist_read(&tbs);
/*
* Type 0x0001: Message.
*/
if (aim_tlv_gettlv(itl, 0x0001, 1)) {
msg = aim_tlv_getstr(itl, 0x0001, 1);
len = aim_tlv_gettlv(itl, 0x0001, 1)->length;
}
/*
* Type 0x0002: Encoding.
*/
if (aim_tlv_gettlv(itl, 0x0002, 1))
encoding = aim_tlv_getstr(itl, 0x0002, 1);
/*
* Type 0x0003: Language.
*/
if (aim_tlv_gettlv(itl, 0x0003, 1))
language = aim_tlv_getstr(itl, 0x0003, 1);
aim_tlvlist_free(&itl);
}
if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
ret = userfunc(sess, rx, &userinfo, len, msg, encoding, language);
aim_info_free(&userinfo);
free(msg);
aim_tlvlist_free(&otl);
return ret;
}
/*
* Bleck functions get called when there's no non-bleck functions
* around to cleanup the mess...
*/
faim_internal int bleck(aim_session_t *sess, aim_frame_t *frame, ...)
{
fu16_t family, subtype;
fu16_t maxf, maxs;
static const char *channels[6] = {
"Invalid (0)",
"FLAP Version",
"SNAC",
"Invalid (3)",
"Negotiation",
"FLAP NOP"
};
static const int maxchannels = 5;
/* XXX: this is ugly. and big just for debugging. */
static const char *literals[14][25] = {
{"Invalid",
NULL
},
{"General",
"Invalid",
"Error",
"Client Ready",
"Server Ready",
"Service Request",
"Redirect",
"Rate Information Request",
"Rate Information",
"Rate Information Ack",
NULL,
"Rate Information Change",
"Server Pause",
NULL,
"Server Resume",
"Request Personal User Information",
"Personal User Information",
"Evil Notification",
NULL,
"Migration notice",
"Message of the Day",
"Set Privacy Flags",
"Well Known URL",
"NOP"
},
{"Location",
"Invalid",
"Error",
"Request Rights",
"Rights Information",
"Set user information",
"Request User Information",
"User Information",
"Watcher Sub Request",
"Watcher Notification"
},
{"Buddy List Management",
"Invalid",
"Error",
"Request Rights",
"Rights Information",
"Add Buddy",
"Remove Buddy",
"Watcher List Query",
"Watcher List Response",
"Watcher SubRequest",
"Watcher Notification",
"Reject Notification",
"Oncoming Buddy",
"Offgoing Buddy"
},
{"Messeging",
"Invalid",
"Error",
"Add ICBM Parameter",
"Remove ICBM Parameter",
"Request Parameter Information",
"Parameter Information",
"Outgoing Message",
"Incoming Message",
"Evil Request",
"Evil Reply",
"Missed Calls",
"Message Error",
"Host Ack"
},
{"Advertisements",
"Invalid",
"Error",
"Request Ad",
"Ad Data (GIFs)"
},
{"Invitation / Client-to-Client",
"Invalid",
"Error",
"Invite a Friend",
"Invitation Ack"
},
{"Administrative",
"Invalid",
"Error",
"Information Request",
"Information Reply",
"Information Change Request",
"Information Chat Reply",
"Account Confirm Request",
"Account Confirm Reply",
"Account Delete Request",
"Account Delete Reply"
},
{"Popups",
"Invalid",
"Error",
"Display Popup"
},
{"BOS",
"Invalid",
"Error",
"Request Rights",
"Rights Response",
"Set group permission mask",
"Add permission list entries",
"Delete permission list entries",
"Add deny list entries",
"Delete deny list entries",
"Server Error"
},
{"User Lookup",
"Invalid",
"Error",
"Search Request",
"Search Response"
},
{"Stats",
"Invalid",
"Error",
"Set minimum report interval",
"Report Events"
},
{"Translate",
"Invalid",
"Error",
"Translate Request",
"Translate Reply",
},
{"Chat Navigation",
"Invalid",
"Error",
"Request rights",
"Request Exchange Information",
"Request Room Information",
"Request Occupant List",
"Search for Room",
"Outgoing Message",
"Incoming Message",
"Evil Request",
"Evil Reply",
"Chat Error",
}
};
maxf = sizeof(literals) / sizeof(literals[0]);
maxs = sizeof(literals[0]) / sizeof(literals[0][0]);
if (frame->hdr.flap.channel == 0x02) {
family = aimbs_get16(&frame->data);
subtype = aimbs_get16(&frame->data);
if ((family < maxf) && (subtype+1 < maxs) && (literals[family][subtype] != NULL))
faimdprintf(sess, 0, "bleck: channel %s: null handler for %04x/%04x (%s)\n", channels[frame->hdr.flap.channel], family, subtype, literals[family][subtype+1]);
else
faimdprintf(sess, 0, "bleck: channel %s: null handler for %04x/%04x (no literal)\n", channels[frame->hdr.flap.channel], family, subtype);
} else {
if (frame->hdr.flap.channel <= maxchannels)
faimdprintf(sess, 0, "bleck: channel %s (0x%02x)\n", channels[frame->hdr.flap.channel], frame->hdr.flap.channel);
else
faimdprintf(sess, 0, "bleck: unknown channel 0x%02x\n", frame->hdr.flap.channel);
}
return 1;
}
/*
* aim_rxdispatch()
*
* Basically, heres what this should do:
* 1) Determine correct packet handler for this packet
* 2) Mark the packet handled (so it can be dequeued in purge_queue())
* 3) Send the packet to the packet handler
* 4) Go to next packet in the queue and start over
* 5) When done, run purge_queue() to purge handled commands
*
* TODO: Clean up.
* TODO: More support for mid-level handlers.
* TODO: Allow for NULL handlers.
*
*/
faim_export void aim_rxdispatch(aim_session_t *sess)
{
int i;
aim_frame_t *cur;
for (cur = sess->queue_incoming, i = 0; cur; cur = cur->next, i++) {
/*
* XXX: This is still fairly ugly.
*/
if (cur->handled)
continue;
if (cur->hdrtype == AIM_FRAMETYPE_FLAP) {
if (cur->hdr.flap.channel == 0x01) {
cur->handled = aim_callhandler_noparam(sess, cur->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_FLAPVER, cur); /* XXX use consumenonsnac */
continue;
} else if (cur->hdr.flap.channel == 0x02) {
if ((cur->handled = consumesnac(sess, cur)))
continue;
} else if (cur->hdr.flap.channel == 0x04) {
cur->handled = negchan_middle(sess, cur);
continue;
} else if (cur->hdr.flap.channel == 0x05) {
}
} else if (cur->hdrtype == AIM_FRAMETYPE_OFT) {
if (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS) {
aim_rxdispatch_rendezvous(sess, cur);
cur->handled = 1;
continue;
} else if (cur->conn->type == AIM_CONN_TYPE_LISTENER) {
/* not possible */
faimdprintf(sess, 0, "rxdispatch called on LISTENER connection!\n");
cur->handled = 1;
continue;
}
}
if (!cur->handled) {
consumenonsnac(sess, cur, 0xffff, 0xffff); /* last chance! */
cur->handled = 1;
}
}
/*
* This doesn't have to be called here. It could easily be done
* by a separate thread or something. It's an administrative operation,
* and can take a while. Though the less you call it the less memory
* you'll have :)
*/
aim_purge_rxqueue(sess);
return;
}
/*
* Grab a single command sequence off the socket, and enqueue it in the incoming event queue
* in a separate struct.
*/
faim_export int aim_get_command(aim_session_t *sess, aim_conn_t *conn)
{
aim_frame_t *newrx;
fu16_t payloadlen;
if (!sess || !conn)
return -EINVAL;
if (conn->fd == -1)
return -1; /* it's an aim_conn_close()'d connection */
if (conn->fd < 3) /* can happen when people abuse the interface */
return -1;
if (conn->status & AIM_CONN_STATUS_INPROGRESS)
return aim_conn_completeconnect(sess, conn);
if (!(newrx = (aim_frame_t *)calloc(sizeof(aim_frame_t), 1)))
return -ENOMEM;
/*
* Rendezvous (client to client) connections do not speak FLAP, so this
* function will break on them.
*/
if (conn->type == AIM_CONN_TYPE_RENDEZVOUS) {
int ret = aim_get_command_rendezvous(sess, conn, newrx);
if (ret < 0) {
free(newrx);
return -1;
}
payloadlen = ret;
} else if (conn->type == AIM_CONN_TYPE_LISTENER) {
faimdprintf(sess, 0, "AIM_CONN_TYPE_LISTENER on fd %d\n",
conn->fd);
free(newrx);
return -1;
} else
payloadlen = aim_get_command_flap(sess, conn, newrx);
newrx->nofree = 0; /* free by default */
if (payloadlen) {
fu8_t *payload = NULL;
if (!(payload = (fu8_t *)malloc(payloadlen))) {
aim_frame_destroy(newrx);
return -1;
}
aim_bstream_init(&newrx->data, payload, payloadlen);
/* read the payload */
if (aim_bstream_recv(&newrx->data, conn->fd,
payloadlen) < payloadlen) {
aim_frame_destroy(newrx); /* free's payload */
aim_conn_close(conn);
return -1;
}
} else
aim_bstream_init(&newrx->data, NULL, 0);
aim_bstream_rewind(&newrx->data);
newrx->conn = conn;
newrx->next = NULL; /* this will always be at the bottom */
if (!sess->queue_incoming)
sess->queue_incoming = newrx;
else {
aim_frame_t *cur;
for (cur = sess->queue_incoming; cur->next; cur = cur->next) ;
cur->next = newrx;
}
newrx->conn->lastactivity = time(NULL);
return 0;
}
