• file
• latest
• revisions
• annotate
• diff
• comparison
• raw

libgaim/protocols/jabber/auth.c@77693555855f (annotated)

libgaim/protocols/jabber/auth.c

Sun, 20 May 2007 06:19:49 +0000

author

William Ehlhardt <williamehlhardt@gmail.com>

date

Sun, 20 May 2007 06:19:49 +0000

branch

gaim

changeset 20470

77693555855f

parent 12549

src/protocols/jabber/auth.c@0fc163c4927a

parent 15293

src/protocols/jabber/auth.c@6e1d6e29cd99

child 20471

1966704b3e42

permissions

-rw-r--r--

merge of 'b98e72d4089afb8a1879e5fe9627cfb132ee88de'
and 'b2836a24d81e7a1bd1d21b3aea8794b094391344'

7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	1	/*
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	2	* gaim - Jabber Protocol Plugin
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	3	*
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	4	* Copyright (C) 2003, Nathan Walp <faceprint@faceprint.com>
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	5	*
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	6	* This program is free software; you can redistribute it and/or modify
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	7	* it under the terms of the GNU General Public License as published by
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	8	* the Free Software Foundation; either version 2 of the License, or
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	9	* (at your option) any later version.
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	10	*
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	11	* This program is distributed in the hope that it will be useful,
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	14	* GNU General Public License for more details.
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	15	*
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	16	* You should have received a copy of the GNU General Public License
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	17	* along with this program; if not, write to the Free Software
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	18	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	19	*
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	20	*/
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	21	#include "internal.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	22
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	23	#include "jutil.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	24	#include "auth.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	25	#include "xmlnode.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	26	#include "jabber.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	27	#include "iq.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	28
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	29	#include "debug.h"
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	30	#include "util.h"
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	31	#include "cipher.h"
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	32	#include "sslconn.h"
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	33	#include "request.h"
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	34
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	35	static void auth_old_result_cb(JabberStream *js, xmlnode *packet,
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	36	gpointer data);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	37
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	38	gboolean
089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	39	jabber_process_starttls(JabberStream *js, xmlnode *packet)
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	40	{
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	41	xmlnode *starttls;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	42
7157 aad2cacc9238 [gaim-migrate @ 7724] Nathan Walp <nwalp@pidgin.im> parents: 7147 diff changeset	43	if((starttls = xmlnode_get_child(packet, "starttls"))) {
14660 7ae03d005ec1 [gaim-migrate @ 17325] Mark Doliner <markdoliner@pidgin.im> parents: 14254 diff changeset	44	if(gaim_ssl_is_supported()) {
7157 aad2cacc9238 [gaim-migrate @ 7724] Nathan Walp <nwalp@pidgin.im> parents: 7147 diff changeset	45	jabber_send_raw(js,
7642 4e1735a499f5 [gaim-migrate @ 8285] Nathan Walp <nwalp@pidgin.im> parents: 7630 diff changeset	46	"<starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/>", -1);
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	47	return TRUE;
7157 aad2cacc9238 [gaim-migrate @ 7724] Nathan Walp <nwalp@pidgin.im> parents: 7147 diff changeset	48	} else if(xmlnode_get_child(starttls, "required")) {
14660 7ae03d005ec1 [gaim-migrate @ 17325] Mark Doliner <markdoliner@pidgin.im> parents: 14254 diff changeset	49	gaim_connection_error(js->gc, _("Server requires TLS/SSL for login. No TLS/SSL support found."));
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	50	return TRUE;
7157 aad2cacc9238 [gaim-migrate @ 7724] Nathan Walp <nwalp@pidgin.im> parents: 7147 diff changeset	51	}
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	52	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	53
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	54	return FALSE;
089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	55	}
089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	56
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	57	static void finish_plaintext_authentication(JabberStream *js)
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	58	{
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	59	if(js->auth_type == JABBER_AUTH_PLAIN) {
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	60	xmlnode *auth;
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	61	GString *response;
11127 5e539d9d26a4 [gaim-migrate @ 13183] Mark Doliner <markdoliner@pidgin.im> parents: 10740 diff changeset	62	gchar *enc_out;
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	63
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	64	auth = xmlnode_new("auth");
13808 411ee56da344 [gaim-migrate @ 16229] Sean Egan <seanegan@pidgin.im> parents: 13207 diff changeset	65	xmlnode_set_namespace(auth, "urn:ietf:params:xml:ns:xmpp-sasl");
15271 d0fe65427f76 [gaim-migrate @ 17999] Sean Egan <seanegan@pidgin.im> parents: 15170 diff changeset	66
d0fe65427f76 [gaim-migrate @ 17999] Sean Egan <seanegan@pidgin.im> parents: 15170 diff changeset	67	xmlnode_set_attrib(auth, "xmlns:ga", "http://www.google.com/talk/protocol/auth");
15293 6e1d6e29cd99 [gaim-migrate @ 18021] Sean Egan <seanegan@pidgin.im> parents: 15271 diff changeset	68	xmlnode_set_attrib(auth, "ga:client-uses-full-bind-result", "true");
15271 d0fe65427f76 [gaim-migrate @ 17999] Sean Egan <seanegan@pidgin.im> parents: 15170 diff changeset	69
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	70	response = g_string_new("");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	71	response = g_string_append_len(response, "\0", 1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	72	response = g_string_append(response, js->user->node);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	73	response = g_string_append_len(response, "\0", 1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	74	response = g_string_append(response,
10740 a1cb6b819a21 [gaim-migrate @ 12342] Mark Doliner <markdoliner@pidgin.im> parents: 10687 diff changeset	75	gaim_connection_get_password(js->gc));
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	76
11137 cf40226ddff7 [gaim-migrate @ 13201] Mark Doliner <markdoliner@pidgin.im> parents: 11127 diff changeset	77	enc_out = gaim_base64_encode((guchar *)response->str, response->len);
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	78
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	79	xmlnode_set_attrib(auth, "mechanism", "PLAIN");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	80	xmlnode_insert_data(auth, enc_out, -1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	81	g_free(enc_out);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	82	g_string_free(response, TRUE);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	83
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	84	jabber_send(js, auth);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	85	xmlnode_free(auth);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	86	} else if(js->auth_type == JABBER_AUTH_IQ_AUTH) {
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	87	JabberIq *iq;
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	88	xmlnode *query, *x;
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	89
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	90	iq = jabber_iq_new_query(js, JABBER_IQ_SET, "jabber:iq:auth");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	91	query = xmlnode_get_child(iq->node, "query");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	92	x = xmlnode_new_child(query, "username");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	93	xmlnode_insert_data(x, js->user->node, -1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	94	x = xmlnode_new_child(query, "resource");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	95	xmlnode_insert_data(x, js->user->resource, -1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	96	x = xmlnode_new_child(query, "password");
10740 a1cb6b819a21 [gaim-migrate @ 12342] Mark Doliner <markdoliner@pidgin.im> parents: 10687 diff changeset	97	xmlnode_insert_data(x, gaim_connection_get_password(js->gc), -1);
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	98	jabber_iq_set_callback(iq, auth_old_result_cb, NULL);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	99	jabber_iq_send(iq);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	100	}
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	101	}
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	102
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	103	static void allow_plaintext_auth(GaimAccount *account)
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	104	{
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	105	gaim_account_set_bool(account, "auth_plain_in_clear", TRUE);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	106
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	107	finish_plaintext_authentication(account->gc->proto_data);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	108	}
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	109
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	110	static void disallow_plaintext_auth(GaimAccount *account)
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	111	{
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	112	gaim_connection_error(account->gc, _("Server requires plaintext authentication over an unencrypted stream"));
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	113	}
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	114
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	115	#ifdef HAVE_CYRUS_SASL
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	116
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	117	static void jabber_auth_start_cyrus(JabberStream *);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	118
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	119	/* Callbacks for Cyrus SASL */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	120
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	121	static int jabber_sasl_cb_realm(void *ctx, int id, const char **avail, const char **result)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	122	{
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	123	JabberStream *js = (JabberStream *)ctx;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	124
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	125	if (id != SASL_CB_GETREALM || !result) return SASL_BADPARAM;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	126
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	127	*result = js->user->domain;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	128
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	129	return SASL_OK;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	130	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	131
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	132	static int jabber_sasl_cb_simple(void *ctx, int id, const char **res, unsigned *len)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	133	{
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	134	JabberStream *js = (JabberStream *)ctx;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	135
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	136	switch(id) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	137	case SASL_CB_AUTHNAME:
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	138	*res = js->user->node;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	139	break;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	140	case SASL_CB_USER:
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	141	*res = "";
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	142	break;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	143	default:
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	144	return SASL_BADPARAM;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	145	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	146	if (len) *len = strlen((char *)*res);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	147	return SASL_OK;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	148	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	149
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	150	static int jabber_sasl_cb_secret(sasl_conn_t *conn, void *ctx, int id, sasl_secret_t **secret)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	151	{
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	152	JabberStream *js = (JabberStream *)ctx;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	153	const char *pw = gaim_account_get_password(js->gc->account);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	154	size_t len;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	155	static sasl_secret_t *x = NULL;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	156
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	157	if (!conn || !secret || id != SASL_CB_PASS)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	158	return SASL_BADPARAM;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	159
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	160	len = strlen(pw);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	161	x = (sasl_secret_t *) realloc(x, sizeof(sasl_secret_t) + len);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	162
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	163	if (!x)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	164	return SASL_NOMEM;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	165
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	166	x->len = len;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	167	strcpy((char*)x->data, pw);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	168
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	169	*secret = x;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	170	return SASL_OK;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	171	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	172
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	173	static void allow_cyrus_plaintext_auth(GaimAccount *account)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	174	{
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	175	gaim_account_set_bool(account, "auth_plain_in_clear", TRUE);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	176
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	177	jabber_auth_start_cyrus(account->gc->proto_data);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	178	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	179
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	180	static void jabber_auth_start_cyrus(JabberStream *js)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	181	{
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	182	const char *clientout = NULL, *mech = NULL;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	183	char *enc_out;
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	184	unsigned coutlen = 0;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	185	xmlnode *auth;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	186	sasl_security_properties_t secprops;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	187	gboolean again;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	188	gboolean plaintext = TRUE;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	189
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	190	/* Set up security properties and options */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	191	secprops.min_ssf = 0;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	192	secprops.security_flags = SASL_SEC_NOANONYMOUS;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	193
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	194	if (!js->gsc) {
13207 46462c13cb1b [gaim-migrate @ 15569] Nathan Walp <nwalp@pidgin.im> parents: 12549 diff changeset	195	secprops.max_ssf = -1;
46462c13cb1b [gaim-migrate @ 15569] Nathan Walp <nwalp@pidgin.im> parents: 12549 diff changeset	196	secprops.maxbufsize = 4096;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	197	plaintext = gaim_account_get_bool(js->gc->account, "auth_plain_in_clear", FALSE);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	198	if (!plaintext)
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	199	secprops.security_flags |= SASL_SEC_NOPLAINTEXT;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	200	} else {
13207 46462c13cb1b [gaim-migrate @ 15569] Nathan Walp <nwalp@pidgin.im> parents: 12549 diff changeset	201	secprops.max_ssf = 0;
46462c13cb1b [gaim-migrate @ 15569] Nathan Walp <nwalp@pidgin.im> parents: 12549 diff changeset	202	secprops.maxbufsize = 0;
12540 5efb9b4f2752 [gaim-migrate @ 14853] Nathan Walp <nwalp@pidgin.im> parents: 12520 diff changeset	203	plaintext = TRUE;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	204	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	205	secprops.property_names = 0;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	206	secprops.property_values = 0;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	207
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	208	do {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	209	again = FALSE;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	210	/* Use the user's domain for compatibility with the old
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	211	* DIGESTMD5 code. Note that this may cause problems where
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	212	* the user's domain doesn't match the FQDN of the jabber
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	213	* service
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	214	*/
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	215
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	216	js->sasl_state = sasl_client_new("xmpp", js->user->domain, NULL, NULL, js->sasl_cb, 0, &js->sasl);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	217	if (js->sasl_state==SASL_OK) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	218	sasl_setprop(js->sasl, SASL_SEC_PROPS, &secprops);
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	219	gaim_debug_info("sasl", "Mechs found: %s\n", js->sasl_mechs->str);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	220	js->sasl_state = sasl_client_start(js->sasl, js->sasl_mechs->str, NULL, &clientout, &coutlen, &mech);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	221	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	222	switch (js->sasl_state) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	223	/* Success */
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	224	case SASL_OK:
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	225	case SASL_CONTINUE:
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	226	break;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	227	case SASL_NOMECH:
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	228	/* No mechanisms do what we want. See if we can add
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	229	* plaintext ones to the list. */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	230
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	231	if (!gaim_account_get_password(js->gc->account)) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	232	gaim_connection_error(js->gc, _("Server couldn't authenticate you without a password"));
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	233	return;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	234	} else if (!plaintext) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	235	gaim_request_yes_no(js->gc, _("Plaintext Authentication"),
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	236	_("Plaintext Authentication"),
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	237	_("This server requires plaintext authentication over an unencrypted connection. Allow this and continue authentication?"),
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	238	2, js->gc->account,
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	239	allow_cyrus_plaintext_auth,
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	240	disallow_plaintext_auth);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	241	return;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	242	} else {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	243	gaim_connection_error(js->gc, _("Server does not use any supported authentication method"));
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	244	return;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	245	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	246	/* not reached */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	247	break;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	248
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	249	/* Fatal errors. Give up and go home */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	250	case SASL_BADPARAM:
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	251	case SASL_NOMEM:
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	252	break;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	253
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	254	/* For everything else, fail the mechanism and try again */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	255	default:
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	256	gaim_debug_info("sasl", "sasl_state is %d, failing the mech and trying again\n", js->sasl_state);
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	257
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	258	/*
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	259	* DAA: is this right?
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	260	* The manpage says that "mech" will contain the chosen mechanism on success.
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	261	* Presumably, if we get here that isn't the case and we shouldn't try again?
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	262	* I suspect that this never happens.
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	263	*/
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	264	if (mech && strlen(mech) > 0) {
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	265	char *pos;
14237 e5ce1ba029f9 [gaim-migrate @ 16825] Daniel Atallah <datallah@pidgin.im> parents: 14232 diff changeset	266	if ((pos = strstr(js->sasl_mechs->str, mech))) {
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	267	g_string_erase(js->sasl_mechs, pos-js->sasl_mechs->str, strlen(mech));
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	268	}
331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	269	again = TRUE;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	270	}
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	271
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	272	sasl_dispose(&js->sasl);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	273	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	274	} while (again);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	275
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	276	if (js->sasl_state == SASL_CONTINUE || js->sasl_state == SASL_OK) {
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	277	auth = xmlnode_new("auth");
13808 411ee56da344 [gaim-migrate @ 16229] Sean Egan <seanegan@pidgin.im> parents: 13207 diff changeset	278	xmlnode_set_namespace(auth, "urn:ietf:params:xml:ns:xmpp-sasl");
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	279	xmlnode_set_attrib(auth, "mechanism", mech);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	280	if (clientout) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	281	if (coutlen == 0) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	282	xmlnode_insert_data(auth, "=", -1);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	283	} else {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	284	enc_out = gaim_base64_encode((unsigned char*)clientout, coutlen);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	285	xmlnode_insert_data(auth, enc_out, -1);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	286	g_free(enc_out);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	287	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	288	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	289	jabber_send(js, auth);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	290	xmlnode_free(auth);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	291	} else {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	292	gaim_connection_error(js->gc, "SASL authentication failed\n");
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	293	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	294	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	295
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	296	static int
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	297	jabber_sasl_cb_log(void *context, int level, const char *message)
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	298	{
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	299	if(level <= SASL_LOG_TRACE)
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	300	gaim_debug_info("sasl", "%s\n", message);
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	301
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	302	return SASL_OK;
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	303	}
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	304
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	305	#endif
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	306
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	307	void
089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	308	jabber_auth_start(JabberStream *js, xmlnode *packet)
089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	309	{
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	310	#ifdef HAVE_CYRUS_SASL
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	311	int id;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	312	#else
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	313	gboolean digest_md5 = FALSE, plain=FALSE;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	314	#endif
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	315
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	316	xmlnode *mechs, *mechnode;
8296 089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	317
089b639ebd8f [gaim-migrate @ 9020] Nathan Walp <nwalp@pidgin.im> parents: 8223 diff changeset	318
8016 d75a4e86f7c3 [gaim-migrate @ 8696] Nathan Walp <nwalp@pidgin.im> parents: 7981 diff changeset	319	if(js->registration) {
d75a4e86f7c3 [gaim-migrate @ 8696] Nathan Walp <nwalp@pidgin.im> parents: 7981 diff changeset	320	jabber_register_start(js);
d75a4e86f7c3 [gaim-migrate @ 8696] Nathan Walp <nwalp@pidgin.im> parents: 7981 diff changeset	321	return;
d75a4e86f7c3 [gaim-migrate @ 8696] Nathan Walp <nwalp@pidgin.im> parents: 7981 diff changeset	322	}
d75a4e86f7c3 [gaim-migrate @ 8696] Nathan Walp <nwalp@pidgin.im> parents: 7981 diff changeset	323
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	324	mechs = xmlnode_get_child(packet, "mechanisms");
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	325
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	326	if(!mechs) {
7981 332cd6342bab [gaim-migrate @ 8658] Luke Schierer <lschiere@pidgin.im> parents: 7813 diff changeset	327	gaim_connection_error(js->gc, _("Invalid response from server."));
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	328	return;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	329	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	330
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	331	#ifdef HAVE_CYRUS_SASL
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	332	js->sasl_mechs = g_string_new("");
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	333	#endif
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	334
8135 d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	335	for(mechnode = xmlnode_get_child(mechs, "mechanism"); mechnode;
d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	336	mechnode = xmlnode_get_next_twin(mechnode))
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	337	{
8135 d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	338	char *mech_name = xmlnode_get_data(mechnode);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	339	#ifdef HAVE_CYRUS_SASL
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	340	g_string_append(js->sasl_mechs, mech_name);
14232 331b5d0a2fd4 [gaim-migrate @ 16820] Daniel Atallah <datallah@pidgin.im> parents: 13808 diff changeset	341	g_string_append_c(js->sasl_mechs, ' ');
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	342	#else
8135 d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	343	if(mech_name && !strcmp(mech_name, "DIGEST-MD5"))
d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	344	digest_md5 = TRUE;
d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	345	else if(mech_name && !strcmp(mech_name, "PLAIN"))
d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	346	plain = TRUE;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	347	#endif
8135 d4df7d1821a5 [gaim-migrate @ 8840] Nathan Walp <nwalp@pidgin.im> parents: 8110 diff changeset	348	g_free(mech_name);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	349	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	350
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	351	#ifdef HAVE_CYRUS_SASL
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	352	js->auth_type = JABBER_AUTH_CYRUS;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	353
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	354	/* Set up our callbacks structure */
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	355	js->sasl_cb = g_new0(sasl_callback_t,6);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	356
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	357	id = 0;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	358	js->sasl_cb[id].id = SASL_CB_GETREALM;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	359	js->sasl_cb[id].proc = jabber_sasl_cb_realm;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	360	js->sasl_cb[id].context = (void *)js;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	361	id++;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	362
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	363	js->sasl_cb[id].id = SASL_CB_AUTHNAME;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	364	js->sasl_cb[id].proc = jabber_sasl_cb_simple;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	365	js->sasl_cb[id].context = (void *)js;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	366	id++;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	367
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	368	js->sasl_cb[id].id = SASL_CB_USER;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	369	js->sasl_cb[id].proc = jabber_sasl_cb_simple;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	370	js->sasl_cb[id].context = (void *)js;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	371	id++;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	372
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	373	if (gaim_account_get_password(js->gc->account)) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	374	js->sasl_cb[id].id = SASL_CB_PASS;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	375	js->sasl_cb[id].proc = jabber_sasl_cb_secret;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	376	js->sasl_cb[id].context = (void *)js;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	377	id++;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	378	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	379
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	380	js->sasl_cb[id].id = SASL_CB_LOG;
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	381	js->sasl_cb[id].proc = jabber_sasl_cb_log;
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	382	js->sasl_cb[id].context = (void*)js;
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	383	id++;
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	384
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	385	js->sasl_cb[id].id = SASL_CB_LIST_END;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	386
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	387	jabber_auth_start_cyrus(js);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	388	#else
7703 118ef0876fe6 [gaim-migrate @ 8348] Nathan Walp <nwalp@pidgin.im> parents: 7645 diff changeset	389
7645 d625eeab3b75 [gaim-migrate @ 8288] Nathan Walp <nwalp@pidgin.im> parents: 7644 diff changeset	390	if(digest_md5) {
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	391	xmlnode *auth;
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	392
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	393	js->auth_type = JABBER_AUTH_DIGEST_MD5;
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	394	auth = xmlnode_new("auth");
13808 411ee56da344 [gaim-migrate @ 16229] Sean Egan <seanegan@pidgin.im> parents: 13207 diff changeset	395	xmlnode_set_namespace(auth, "urn:ietf:params:xml:ns:xmpp-sasl");
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	396	xmlnode_set_attrib(auth, "mechanism", "DIGEST-MD5");
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	397
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	398	jabber_send(js, auth);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	399	xmlnode_free(auth);
8086 7ac5092091f0 [gaim-migrate @ 8785] Nathan Walp <nwalp@pidgin.im> parents: 8084 diff changeset	400	} else if(plain) {
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	401	js->auth_type = JABBER_AUTH_PLAIN;
7703 118ef0876fe6 [gaim-migrate @ 8348] Nathan Walp <nwalp@pidgin.im> parents: 7645 diff changeset	402
8086 7ac5092091f0 [gaim-migrate @ 8785] Nathan Walp <nwalp@pidgin.im> parents: 8084 diff changeset	403	if(js->gsc == NULL && !gaim_account_get_bool(js->gc->account, "auth_plain_in_clear", FALSE)) {
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	404	gaim_request_yes_no(js->gc, _("Plaintext Authentication"),
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	405	_("Plaintext Authentication"),
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	406	_("This server requires plaintext authentication over an unencrypted connection. Allow this and continue authentication?"),
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	407	2, js->gc->account, allow_plaintext_auth,
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	408	disallow_plaintext_auth);
8086 7ac5092091f0 [gaim-migrate @ 8785] Nathan Walp <nwalp@pidgin.im> parents: 8084 diff changeset	409	return;
7ac5092091f0 [gaim-migrate @ 8785] Nathan Walp <nwalp@pidgin.im> parents: 8084 diff changeset	410	}
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	411	finish_plaintext_authentication(js);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	412	} else {
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	413	gaim_connection_error(js->gc,
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	414	_("Server does not use any supported authentication method"));
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	415	}
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	416	#endif
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	417	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	418
7395 e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	419	static void auth_old_result_cb(JabberStream *js, xmlnode *packet, gpointer data)
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	420	{
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	421	const char *type = xmlnode_get_attrib(packet, "type");
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	422
7730 b7280ceae395 [gaim-migrate @ 8375] Nathan Walp <nwalp@pidgin.im> parents: 7704 diff changeset	423	if(type && !strcmp(type, "result")) {
b7280ceae395 [gaim-migrate @ 8375] Nathan Walp <nwalp@pidgin.im> parents: 7704 diff changeset	424	jabber_stream_set_state(js, JABBER_STREAM_CONNECTED);
b7280ceae395 [gaim-migrate @ 8375] Nathan Walp <nwalp@pidgin.im> parents: 7704 diff changeset	425	} else {
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	426	char *msg = jabber_parse_error(js, packet);
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	427	xmlnode *error;
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	428	const char *err_code;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	429
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	430	if((error = xmlnode_get_child(packet, "error")) &&
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	431	(err_code = xmlnode_get_attrib(error, "code")) &&
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	432	!strcmp(err_code, "401")) {
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	433	js->gc->wants_to_die = TRUE;
7730 b7280ceae395 [gaim-migrate @ 8375] Nathan Walp <nwalp@pidgin.im> parents: 7704 diff changeset	434	}
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	435
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	436	gaim_connection_error(js->gc, msg);
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	437	g_free(msg);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	438	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	439	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	440
7395 e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	441	static void auth_old_cb(JabberStream *js, xmlnode *packet, gpointer data)
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	442	{
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	443	JabberIq *iq;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	444	xmlnode *query, *x;
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	445	const char *type = xmlnode_get_attrib(packet, "type");
10740 a1cb6b819a21 [gaim-migrate @ 12342] Mark Doliner <markdoliner@pidgin.im> parents: 10687 diff changeset	446	const char *pw = gaim_connection_get_password(js->gc);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	447
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	448	if(!type) {
7981 332cd6342bab [gaim-migrate @ 8658] Luke Schierer <lschiere@pidgin.im> parents: 7813 diff changeset	449	gaim_connection_error(js->gc, _("Invalid response from server."));
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	450	return;
7515 2abf05f562c3 [gaim-migrate @ 8128] Nathan Walp <nwalp@pidgin.im> parents: 7514 diff changeset	451	} else if(!strcmp(type, "error")) {
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	452	char *msg = jabber_parse_error(js, packet);
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	453	gaim_connection_error(js->gc, msg);
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	454	g_free(msg);
7515 2abf05f562c3 [gaim-migrate @ 8128] Nathan Walp <nwalp@pidgin.im> parents: 7514 diff changeset	455	} else if(!strcmp(type, "result")) {
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	456	query = xmlnode_get_child(packet, "query");
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	457	if(js->stream_id && xmlnode_get_child(query, "digest")) {
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	458	unsigned char hashval[20];
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	459	char *s, h[41], *p;
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	460	int i;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	461
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	462	iq = jabber_iq_new_query(js, JABBER_IQ_SET, "jabber:iq:auth");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	463	query = xmlnode_get_child(iq->node, "query");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	464	x = xmlnode_new_child(query, "username");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	465	xmlnode_insert_data(x, js->user->node, -1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	466	x = xmlnode_new_child(query, "resource");
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	467	xmlnode_insert_data(x, js->user->resource, -1);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	468
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	469	x = xmlnode_new_child(query, "digest");
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	470	s = g_strdup_printf("%s%s", js->stream_id, pw);
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	471
11183 be87fe695c93 [gaim-migrate @ 13295] Mark Doliner <markdoliner@pidgin.im> parents: 11163 diff changeset	472	gaim_cipher_digest_region("sha1", (guchar *)s, strlen(s),
10687 5ac4b470bee8 [gaim-migrate @ 12235] Etan Reisner <deryni@pidgin.im> parents: 10684 diff changeset	473	sizeof(hashval), hashval, NULL);
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	474
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	475	p = h;
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	476	for(i=0; i<20; i++, p+=2)
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	477	snprintf(p, 3, "%02x", hashval[i]);
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	478	xmlnode_insert_data(x, h, -1);
bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	479	g_free(s);
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	480	jabber_iq_set_callback(iq, auth_old_result_cb, NULL);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	481	jabber_iq_send(iq);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	482
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	483	} else if(xmlnode_get_child(query, "password")) {
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	484	if(js->gsc == NULL && !gaim_account_get_bool(js->gc->account,
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	485	"auth_plain_in_clear", FALSE)) {
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	486	gaim_request_yes_no(js->gc, _("Plaintext Authentication"),
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	487	_("Plaintext Authentication"),
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	488	_("This server requires plaintext authentication over an unencrypted connection. Allow this and continue authentication?"),
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	489	2, js->gc->account, allow_plaintext_auth,
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	490	disallow_plaintext_auth);
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	491	return;
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	492	}
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	493	finish_plaintext_authentication(js);
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	494	} else {
8397 fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	495	gaim_connection_error(js->gc,
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	496	_("Server does not use any supported authentication method"));
fdb63587b4db [gaim-migrate @ 9126] Nathan Walp <nwalp@pidgin.im> parents: 8296 diff changeset	497	return;
7514 bfea1665a240 [gaim-migrate @ 8127] Nathan Walp <nwalp@pidgin.im> parents: 7425 diff changeset	498	}
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	499	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	500	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	501
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	502	void jabber_auth_start_old(JabberStream *js)
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	503	{
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	504	JabberIq *iq;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	505	xmlnode *query, *username;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	506
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	507	iq = jabber_iq_new_query(js, JABBER_IQ_GET, "jabber:iq:auth");
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	508
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	509	query = xmlnode_get_child(iq->node, "query");
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	510	username = xmlnode_new_child(query, "username");
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	511	xmlnode_insert_data(username, js->user->node, -1);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	512
7395 e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	513	jabber_iq_set_callback(iq, auth_old_cb, NULL);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	514
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	515	jabber_iq_send(iq);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	516	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	517
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	518	static GHashTable* parse_challenge(const char *challenge)
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	519	{
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	520	GHashTable *ret = g_hash_table_new_full(g_str_hash, g_str_equal,
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	521	g_free, g_free);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	522	char **pairs;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	523	int i;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	524
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	525	pairs = g_strsplit(challenge, ",", -1);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	526
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	527	for(i=0; pairs[i]; i++) {
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	528	char **keyval = g_strsplit(pairs[i], "=", 2);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	529	if(keyval[0] && keyval[1]) {
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	530	if(keyval[1][0] == '"' && keyval[1][strlen(keyval[1])-1] == '"')
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	531	g_hash_table_replace(ret, g_strdup(keyval[0]), g_strndup(keyval[1]+1, strlen(keyval[1])-2));
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	532	else
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	533	g_hash_table_replace(ret, g_strdup(keyval[0]), g_strdup(keyval[1]));
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	534	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	535	g_strfreev(keyval);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	536	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	537
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	538	g_strfreev(pairs);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	539
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	540	return ret;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	541	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	542
11163 7fe2cec8e9e6 [gaim-migrate @ 13264] Mark Doliner <markdoliner@pidgin.im> parents: 11137 diff changeset	543	static char *
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	544	generate_response_value(JabberID *jid, const char *passwd, const char *nonce,
7267 803389f165af [gaim-migrate @ 7844] Karsten Huneycutt parents: 7255 diff changeset	545	const char *cnonce, const char *a2, const char *realm)
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	546	{
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	547	GaimCipher *cipher;
0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	548	GaimCipherContext *context;
11137 cf40226ddff7 [gaim-migrate @ 13201] Mark Doliner <markdoliner@pidgin.im> parents: 11127 diff changeset	549	guchar result[16];
10136 080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	550	size_t a1len;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	551
12549 0fc163c4927a [gaim-migrate @ 14867] Nathan Walp <nwalp@pidgin.im> parents: 12543 diff changeset	552	gchar *a1, *convnode=NULL, *convpasswd = NULL, *ha1, *ha2, *kd, *x, *z;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	553
10136 080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	554	if((convnode = g_convert(jid->node, strlen(jid->node), "iso-8859-1", "utf-8",
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	555	NULL, NULL, NULL)) == NULL) {
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	556	convnode = g_strdup(jid->node);
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	557	}
12549 0fc163c4927a [gaim-migrate @ 14867] Nathan Walp <nwalp@pidgin.im> parents: 12543 diff changeset	558	if(passwd && ((convpasswd = g_convert(passwd, strlen(passwd), "iso-8859-1",
0fc163c4927a [gaim-migrate @ 14867] Nathan Walp <nwalp@pidgin.im> parents: 12543 diff changeset	559	"utf-8", NULL, NULL, NULL)) == NULL)) {
10136 080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	560	convpasswd = g_strdup(passwd);
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	561	}
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	562
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	563	cipher = gaim_ciphers_find_cipher("md5");
0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	564	context = gaim_cipher_context_new(cipher, NULL);
0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	565
12549 0fc163c4927a [gaim-migrate @ 14867] Nathan Walp <nwalp@pidgin.im> parents: 12543 diff changeset	566	x = g_strdup_printf("%s:%s:%s", convnode, realm, convpasswd ? convpasswd : "");
11183 be87fe695c93 [gaim-migrate @ 13295] Mark Doliner <markdoliner@pidgin.im> parents: 11163 diff changeset	567	gaim_cipher_context_append(context, (const guchar *)x, strlen(x));
10687 5ac4b470bee8 [gaim-migrate @ 12235] Etan Reisner <deryni@pidgin.im> parents: 10684 diff changeset	568	gaim_cipher_context_digest(context, sizeof(result), result, NULL);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	569
10136 080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	570	a1 = g_strdup_printf("xxxxxxxxxxxxxxxx:%s:%s", nonce, cnonce);
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	571	a1len = strlen(a1);
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	572	g_memmove(a1, result, 16);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	573
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	574	gaim_cipher_context_reset(context, NULL);
11183 be87fe695c93 [gaim-migrate @ 13295] Mark Doliner <markdoliner@pidgin.im> parents: 11163 diff changeset	575	gaim_cipher_context_append(context, (const guchar *)a1, a1len);
10687 5ac4b470bee8 [gaim-migrate @ 12235] Etan Reisner <deryni@pidgin.im> parents: 10684 diff changeset	576	gaim_cipher_context_digest(context, sizeof(result), result, NULL);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	577
7106 eaeff5775818 [gaim-migrate @ 7671] Christian Hammond <chipx86@chipx86.com> parents: 7014 diff changeset	578	ha1 = gaim_base16_encode(result, 16);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	579
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	580	gaim_cipher_context_reset(context, NULL);
11183 be87fe695c93 [gaim-migrate @ 13295] Mark Doliner <markdoliner@pidgin.im> parents: 11163 diff changeset	581	gaim_cipher_context_append(context, (const guchar *)a2, strlen(a2));
10687 5ac4b470bee8 [gaim-migrate @ 12235] Etan Reisner <deryni@pidgin.im> parents: 10684 diff changeset	582	gaim_cipher_context_digest(context, sizeof(result), result, NULL);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	583
7106 eaeff5775818 [gaim-migrate @ 7671] Christian Hammond <chipx86@chipx86.com> parents: 7014 diff changeset	584	ha2 = gaim_base16_encode(result, 16);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	585
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	586	kd = g_strdup_printf("%s:%s:00000001:%s:auth:%s", ha1, nonce, cnonce, ha2);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	587
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	588	gaim_cipher_context_reset(context, NULL);
11183 be87fe695c93 [gaim-migrate @ 13295] Mark Doliner <markdoliner@pidgin.im> parents: 11163 diff changeset	589	gaim_cipher_context_append(context, (const guchar *)kd, strlen(kd));
10687 5ac4b470bee8 [gaim-migrate @ 12235] Etan Reisner <deryni@pidgin.im> parents: 10684 diff changeset	590	gaim_cipher_context_digest(context, sizeof(result), result, NULL);
10684 0325b164a7eb [gaim-migrate @ 12231] Luke Schierer <lschiere@pidgin.im> parents: 10496 diff changeset	591	gaim_cipher_context_destroy(context);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	592
7106 eaeff5775818 [gaim-migrate @ 7671] Christian Hammond <chipx86@chipx86.com> parents: 7014 diff changeset	593	z = gaim_base16_encode(result, 16);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	594
10136 080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	595	g_free(convnode);
080d718279c9 [gaim-migrate @ 11204] Nathan Walp <nwalp@pidgin.im> parents: 8401 diff changeset	596	g_free(convpasswd);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	597	g_free(x);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	598	g_free(a1);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	599	g_free(ha1);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	600	g_free(ha2);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	601	g_free(kd);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	602
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	603	return z;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	604	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	605
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	606	void
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	607	jabber_auth_handle_challenge(JabberStream *js, xmlnode *packet)
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	608	{
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	609
7703 118ef0876fe6 [gaim-migrate @ 8348] Nathan Walp <nwalp@pidgin.im> parents: 7645 diff changeset	610	if(js->auth_type == JABBER_AUTH_DIGEST_MD5) {
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	611	char *enc_in = xmlnode_get_data(packet);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	612	char *dec_in;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	613	char *enc_out;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	614	GHashTable *parts;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	615
7395 e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	616	if(!enc_in) {
7981 332cd6342bab [gaim-migrate @ 8658] Luke Schierer <lschiere@pidgin.im> parents: 7813 diff changeset	617	gaim_connection_error(js->gc, _("Invalid response from server."));
7395 e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	618	return;
e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	619	}
e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	620
11127 5e539d9d26a4 [gaim-migrate @ 13183] Mark Doliner <markdoliner@pidgin.im> parents: 10740 diff changeset	621	dec_in = (char *)gaim_base64_decode(enc_in, NULL);
7395 e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	622	gaim_debug(GAIM_DEBUG_MISC, "jabber", "decoded challenge (%d): %s\n",
e5595e8e13e4 [gaim-migrate @ 7990] Nathan Walp <nwalp@pidgin.im> parents: 7291 diff changeset	623	strlen(dec_in), dec_in);
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	624
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	625	parts = parse_challenge(dec_in);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	626
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	627
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	628	if (g_hash_table_lookup(parts, "rspauth")) {
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	629	char *rspauth = g_hash_table_lookup(parts, "rspauth");
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	630
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	631
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	632	if(rspauth && js->expected_rspauth &&
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	633	!strcmp(rspauth, js->expected_rspauth)) {
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	634	jabber_send_raw(js,
7642 4e1735a499f5 [gaim-migrate @ 8285] Nathan Walp <nwalp@pidgin.im> parents: 7630 diff changeset	635	"<response xmlns='urn:ietf:params:xml:ns:xmpp-sasl' />",
4e1735a499f5 [gaim-migrate @ 8285] Nathan Walp <nwalp@pidgin.im> parents: 7630 diff changeset	636	-1);
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	637	} else {
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	638	gaim_connection_error(js->gc, _("Invalid challenge from server"));
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	639	}
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	640	g_free(js->expected_rspauth);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	641	} else {
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	642	/* assemble a response, and send it */
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	643	/* see RFC 2831 */
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	644	GString *response = g_string_new("");
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	645	char *a2;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	646	char *auth_resp;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	647	char *buf;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	648	char *cnonce;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	649	char *realm;
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	650	char *nonce;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	651
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	652	/* we're actually supposed to prompt the user for a realm if
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	653	* the server doesn't send one, but that really complicates things,
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	654	* so i'm not gonna worry about it until is poses a problem to
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	655	* someone, or I get really bored */
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	656	realm = g_hash_table_lookup(parts, "realm");
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	657	if(!realm)
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	658	realm = js->user->domain;
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	659
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	660	cnonce = g_strdup_printf("%x%u%x", g_random_int(), (int)time(NULL),
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	661	g_random_int());
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	662	nonce = g_hash_table_lookup(parts, "nonce");
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	663
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	664
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	665	a2 = g_strdup_printf("AUTHENTICATE:xmpp/%s", realm);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	666	auth_resp = generate_response_value(js->user,
10740 a1cb6b819a21 [gaim-migrate @ 12342] Mark Doliner <markdoliner@pidgin.im> parents: 10687 diff changeset	667	gaim_connection_get_password(js->gc), nonce, cnonce, a2, realm);
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	668	g_free(a2);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	669
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	670	a2 = g_strdup_printf(":xmpp/%s", realm);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	671	js->expected_rspauth = generate_response_value(js->user,
10740 a1cb6b819a21 [gaim-migrate @ 12342] Mark Doliner <markdoliner@pidgin.im> parents: 10687 diff changeset	672	gaim_connection_get_password(js->gc), nonce, cnonce, a2, realm);
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	673	g_free(a2);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	674
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	675
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	676	g_string_append_printf(response, "username=\"%s\"", js->user->node);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	677	g_string_append_printf(response, ",realm=\"%s\"", realm);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	678	g_string_append_printf(response, ",nonce=\"%s\"", nonce);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	679	g_string_append_printf(response, ",cnonce=\"%s\"", cnonce);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	680	g_string_append_printf(response, ",nc=00000001");
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	681	g_string_append_printf(response, ",qop=auth");
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	682	g_string_append_printf(response, ",digest-uri=\"xmpp/%s\"", realm);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	683	g_string_append_printf(response, ",response=%s", auth_resp);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	684	g_string_append_printf(response, ",charset=utf-8");
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	685
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	686	g_free(auth_resp);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	687	g_free(cnonce);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	688
11137 cf40226ddff7 [gaim-migrate @ 13201] Mark Doliner <markdoliner@pidgin.im> parents: 11127 diff changeset	689	enc_out = gaim_base64_encode((guchar *)response->str, response->len);
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	690
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	691	gaim_debug(GAIM_DEBUG_MISC, "jabber", "decoded response (%d): %s\n", response->len, response->str);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	692
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	693	buf = g_strdup_printf("<response xmlns='urn:ietf:params:xml:ns:xmpp-sasl'>%s</response>", enc_out);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	694
7642 4e1735a499f5 [gaim-migrate @ 8285] Nathan Walp <nwalp@pidgin.im> parents: 7630 diff changeset	695	jabber_send_raw(js, buf, -1);
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	696
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	697	g_free(buf);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	698
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	699	g_free(enc_out);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	700
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	701	g_string_free(response, TRUE);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	702	}
7291 3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	703
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	704	g_free(enc_in);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	705	g_free(dec_in);
3d8a237f36cb [gaim-migrate @ 7872] Nathan Walp <nwalp@pidgin.im> parents: 7267 diff changeset	706	g_hash_table_destroy(parts);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	707	}
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	708	#ifdef HAVE_CYRUS_SASL
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	709	else if (js->auth_type == JABBER_AUTH_CYRUS) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	710	char *enc_in = xmlnode_get_data(packet);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	711	unsigned char *dec_in;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	712	char *enc_out;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	713	const char *c_out;
12543 8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	714	unsigned int clen;
8b13b94e4178 [gaim-migrate @ 14860] Nathan Walp <nwalp@pidgin.im> parents: 12540 diff changeset	715	gsize declen;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	716	xmlnode *response;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	717
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	718	dec_in = gaim_base64_decode(enc_in, &declen);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	719
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	720	js->sasl_state = sasl_client_step(js->sasl, (char*)dec_in, declen,
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	721	NULL, &c_out, &clen);
15170 2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	722	g_free(enc_in);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	723	g_free(dec_in);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	724	if (js->sasl_state != SASL_CONTINUE && js->sasl_state != SASL_OK) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	725	gaim_debug_error("jabber", "Error is %d : %s\n",js->sasl_state,sasl_errdetail(js->sasl));
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	726	gaim_connection_error(js->gc, _("SASL error"));
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	727	return;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	728	} else {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	729	response = xmlnode_new("response");
13808 411ee56da344 [gaim-migrate @ 16229] Sean Egan <seanegan@pidgin.im> parents: 13207 diff changeset	730	xmlnode_set_namespace(response, "urn:ietf:params:xml:ns:xmpp-sasl");
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	731	if (c_out) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	732	enc_out = gaim_base64_encode((unsigned char*)c_out, clen);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	733	xmlnode_insert_data(response, enc_out, -1);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	734	g_free(enc_out);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	735	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	736	jabber_send(js, response);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	737	xmlnode_free(response);
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	738	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	739	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	740	#endif
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	741	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	742
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	743	void jabber_auth_handle_success(JabberStream *js, xmlnode *packet)
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	744	{
13808 411ee56da344 [gaim-migrate @ 16229] Sean Egan <seanegan@pidgin.im> parents: 13207 diff changeset	745	const char *ns = xmlnode_get_namespace(packet);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	746	#ifdef HAVE_CYRUS_SASL
15143 37451143f5c4 [gaim-migrate @ 17867] Mark Doliner <markdoliner@pidgin.im> parents: 15112 diff changeset	747	const int *x;
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	748	#endif
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	749
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	750	if(!ns || strcmp(ns, "urn:ietf:params:xml:ns:xmpp-sasl")) {
7981 332cd6342bab [gaim-migrate @ 8658] Luke Schierer <lschiere@pidgin.im> parents: 7813 diff changeset	751	gaim_connection_error(js->gc, _("Invalid response from server."));
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	752	return;
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	753	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	754
12520 3ec49915efd8 [gaim-migrate @ 14832] Richard Laager <rlaager@pidgin.im> parents: 12508 diff changeset	755	#ifdef HAVE_CYRUS_SASL
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	756	/* The SASL docs say that if the client hasn't returned OK yet, we
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	757	* should try one more round against it
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	758	*/
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	759	if (js->sasl_state != SASL_OK) {
15170 2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	760	char *enc_in = xmlnode_get_data(packet);
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	761	unsigned char *dec_in = NULL;
15112 cf00caa09ed4 [gaim-migrate @ 17834] Mark Doliner <markdoliner@pidgin.im> parents: 14660 diff changeset	762	const char *c_out;
cf00caa09ed4 [gaim-migrate @ 17834] Mark Doliner <markdoliner@pidgin.im> parents: 14660 diff changeset	763	unsigned int clen;
15170 2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	764	gsize declen = 0;
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	765
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	766	if(enc_in != NULL)
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	767	dec_in = gaim_base64_decode(enc_in, &declen);
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	768
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	769	js->sasl_state = sasl_client_step(js->sasl, (char*)dec_in, declen, NULL, &c_out, &clen);
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	770
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	771	g_free(enc_in);
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	772	g_free(dec_in);
2a272f828453 [gaim-migrate @ 17894] Nathan Walp <nwalp@pidgin.im> parents: 15143 diff changeset	773
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	774	if (js->sasl_state != SASL_OK) {
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	775	/* This should never happen! */
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	776	gaim_connection_error(js->gc, _("Invalid response from server."));
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	777	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	778	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	779	/* If we've negotiated a security layer, we need to enable it */
15143 37451143f5c4 [gaim-migrate @ 17867] Mark Doliner <markdoliner@pidgin.im> parents: 15112 diff changeset	780	sasl_getprop(js->sasl, SASL_SSF, &x);
37451143f5c4 [gaim-migrate @ 17867] Mark Doliner <markdoliner@pidgin.im> parents: 15112 diff changeset	781	if (*x > 0) {
37451143f5c4 [gaim-migrate @ 17867] Mark Doliner <markdoliner@pidgin.im> parents: 15112 diff changeset	782	sasl_getprop(js->sasl, SASL_MAXOUTBUF, &x);
12508 32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	783	js->sasl_maxbuf = *x;
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	784	}
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	785	#endif
32f6f8bf3a57 [gaim-migrate @ 14820] Simon Wilkinson parents: 11183 diff changeset	786
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	787	jabber_stream_set_state(js, JABBER_STREAM_REINITIALIZING);
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	788	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	789
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	790	void jabber_auth_handle_failure(JabberStream *js, xmlnode *packet)
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	791	{
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	792	char *msg = jabber_parse_error(js, packet);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	793
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	794	if(!msg) {
7981 332cd6342bab [gaim-migrate @ 8658] Luke Schierer <lschiere@pidgin.im> parents: 7813 diff changeset	795	gaim_connection_error(js->gc, _("Invalid response from server."));
8401 9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	796	} else {
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	797	gaim_connection_error(js->gc, msg);
9fe6cadf2581 [gaim-migrate @ 9130] Nathan Walp <nwalp@pidgin.im> parents: 8397 diff changeset	798	g_free(msg);
7014 11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	799	}
11471fae7ba0 [gaim-migrate @ 7577] Nathan Walp <nwalp@pidgin.im> parents: diff changeset	800	}