login_logout.c

浏览该文件的文档。

// START OF FILE
/*****************************************************************************/
#include "debug.h"              // gaim_debug
#include "internal.h"           // memcpy, _("get_text")
#include "server.h"             // serv_finish_login

#include "utils.h"              // gen_ip_str
#include "packet_parse.h"       // create_packet
#include "buddy_info.h"         // qq_send_packet_get_info
#include "buddy_list.h"         // qq_send_packet_get_buddies_list
#include "buddy_status.h"       // QQ_SELF_STATUS_AVAILABLE
#include "char_conv.h"          // qq_to_utf8
#include "crypt.h"              // qq_crypt
#include "group.h"              // qq_group_init
#include "header_info.h"        // QQ_CMD_LOGIN
#include "login_logout.h"
#include "qq_proxy.h"           // qq_connect
#include "send_core.h"          // qq_send_cmd
#include "qq.h"                 // qq_data

#define QQ_LOGIN_DATA_LENGTH                416 //69    //length of plain login packet
#define QQ_LOGIN_REPLY_OK_PACKET_LEN        139
#define QQ_LOGIN_REPLY_REDIRECT_PACKET_LEN  11

#define QQ_LOGIN_REPLY_OK                   0x00
#define QQ_LOGIN_REPLY_REDIRECT             0x01
#define QQ_LOGIN_REPLY_PWD_ERROR            0x02
#define QQ_LOGIN_REPLY_MISC_ERROR           0xff        // defined by myself

// for QQ 2003iii 0117, fixed value
/* static const guint8 login_23_51[29] = {
        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
        0x00, 0x00, 0x00, 0x00, 0xbf, 0x14, 0x11, 0x20,
        0x03, 0x9d, 0xb2, 0xe6, 0xb3, 0x11, 0xb7, 0x13,
        0x95, 0x67, 0xda, 0x2c, 0x01 
}; */

// for QQ 2003iii 0304, fixed value
/*static const guint8 login_23_51[29] = {
        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
        0x00, 0x00, 0x00, 0x00, 0x9a, 0x93, 0xfe, 0x85,
        0xd3, 0xd9, 0x2a, 0x41, 0xc8, 0x0d, 0xff, 0xb6,
        0x40, 0xb8, 0xac, 0x32, 0x01
};*/
// for QQ 2006 with sp1 modify by Yuan Qingyun
static const guint8 login_23_51[29] = {
        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
        0x00, 0x00, 0x00, 0x00, 0x29, 0xc0, 0xf8, 0xc4,
        0x04, 0x3b, 0xee, 0x57, 0x92, 0xd2, 0x42, 0xa6,
        0xbe, 0x41, 0x98, 0x97, 0x9e
};

// fixed value, not affected by version, or mac address
/*static const guint8 login_53_68[16] = {
        0x82, 0x2a, 0x91, 0xfd, 0xa5, 0xca, 0x67, 0x4c,
        0xac, 0x81, 0x1f, 0x6f, 0x52, 0x05, 0xa7, 0xbf
};*/
// for QQ 2006 with sp1 modify by Yuan Qingyun
static const guint8 login_53_68[16] = {
        0x2e, 0xda, 0x0c, 0x59, 0xa7, 0x1a, 0xd6, 0x4a,
        0xb1, 0x48, 0x5d, 0xba, 0x37, 0x1e, 0xac, 0xb9
};
// for QQ 2006 with sp1 add by Yuan Qingyun
static const guint8 login_94_118[25] = {
        0x01, 0x40, 0x01, 0xd7, 0x50, 0x72, 0xc8, 0x00,
        0x10, 0x4a, 0xc3, 0x1b, 0x6c, 0xf9, 0x85, 0xf5,
        0xd9, 0xa8, 0x05, 0xac, 0x95, 0xa0, 0xe2, 0x44,
        0x01
};

typedef struct _qq_login_reply_ok qq_login_reply_ok_packet;
typedef struct _qq_login_reply_redirect qq_login_reply_redirect_packet;

struct _qq_login_reply_ok {
        guint8 result;
        guint8 *session_key;
        guint32 uid;
        guint8 client_ip[4];    // those detected by server
        guint16 client_port;
        guint8 server_ip[4];
        guint16 server_port;
        time_t login_time;
        guint8 unknown1[26];
        guint8 unknown_server1_ip[4];
        guint16 unknown_server1_port;
        guint8 unknown_server2_ip[4];
        guint16 unknown_server2_port;
        guint16 unknown2;       // 0x0001
        guint16 unknown3;       // 0x0000
        guint8 unknown4[32];
        guint8 unknown5[12];
        guint8 last_client_ip[4];
        time_t last_login_time;
        guint8 unknown6[8];
};

struct _qq_login_reply_redirect {
        guint8 result;
        guint32 uid;
        guint8 new_server_ip[4];
        guint16 new_server_port;
};

extern gint                     // defined in send_core.c
 _create_packet_head_seq(guint8 * buf,
                         guint8 ** cursor, GaimConnection * gc, guint16 cmd, gboolean is_auto_seq, guint16 * seq);
extern gint                     // defined in send_core.c
 _qq_send_packet(GaimConnection * gc, guint8 * buf, gint len, guint16 cmd);

/*****************************************************************************/
// It is fixed to 16 bytes 0x01 for QQ2003, 
// Any value works (or a random 16 bytes string)
static gchar *_gen_login_key(void)
{
        return g_strnfill(QQ_KEY_LENGTH, 0x01);
}                               // _gen_login_key

/*****************************************************************************/
// process login reply which says OK
static gint _qq_process_login_ok(GaimConnection * gc, guint8 * data, gint len)
{
        gint bytes;
        guint8 *cursor;
        qq_data *qd;
        qq_login_reply_ok_packet lrop;

        g_return_val_if_fail(gc != NULL && gc->proto_data != NULL, QQ_LOGIN_REPLY_MISC_ERROR);

        qd = (qq_data *) gc->proto_data;
        cursor = data;
        bytes = 0;

        // 000-000: reply code
        bytes += read_packet_b(data, &cursor, len, &lrop.result);
        // 001-016: session key
        lrop.session_key = g_memdup(cursor, QQ_KEY_LENGTH);
        cursor += QQ_KEY_LENGTH;
        bytes += QQ_KEY_LENGTH;
        gaim_debug(GAIM_DEBUG_INFO, "QQ", "Get session_key done\n");
        // 017-020: login uid
        bytes += read_packet_dw(data, &cursor, len, &lrop.uid);
        // 021-024: server detected user public IP
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.client_ip, 4);
        // 025-026: server detected user port
        bytes += read_packet_w(data, &cursor, len, &lrop.client_port);
        // 027-030: server detected itself ip 127.0.0.1 ?
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.server_ip, 4);
        // 031-032: server listening port
        bytes += read_packet_w(data, &cursor, len, &lrop.server_port);
        // 033-036: login time for current session
        bytes += read_packet_dw(data, &cursor, len, (guint32 *) & lrop.login_time);
        // 037-062: 26 bytes, unknown
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.unknown1, 26);
        // 063-066: unknown server1 ip address
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.unknown_server1_ip, 4);
        // 067-068: unknown server1 port
        bytes += read_packet_w(data, &cursor, len, &lrop.unknown_server1_port);
        // 069-072: unknown server2 ip address
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.unknown_server2_ip, 4);
        // 073-074: unknown server2 port
        bytes += read_packet_w(data, &cursor, len, &lrop.unknown_server2_port);
        // 075-076: 2 bytes unknown
        bytes += read_packet_w(data, &cursor, len, &lrop.unknown2);
        // 077-078: 2 bytes unknown
        bytes += read_packet_w(data, &cursor, len, &lrop.unknown3);
        // 079-110: 32 bytes unknown 
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.unknown4, 32);
        // 111-122: 12 bytes unknown
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.unknown5, 12);
        // 123-126: login IP of last session
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.last_client_ip, 4);
        // 127-130: login time of last session
        bytes += read_packet_dw(data, &cursor, len, (guint32 *) & lrop.last_login_time);
        // 131-138: 8 bytes unknown 
        bytes += read_packet_data(data, &cursor, len, (guint8 *) & lrop.unknown6, 8);

        if (bytes != QQ_LOGIN_REPLY_OK_PACKET_LEN) {    // fail parsing login info       
                gaim_debug(GAIM_DEBUG_WARNING, "QQ",
                           "Fail parsing login info, expect %d bytes, read %d bytes\n",
                           QQ_LOGIN_REPLY_OK_PACKET_LEN, bytes);
        }                       // but we still goes on as login OK

        qd->session_key = g_memdup(lrop.session_key, QQ_KEY_LENGTH);
        qd->my_ip = gen_ip_str(lrop.client_ip);
        qd->my_port = lrop.client_port;
        qd->login_time = lrop.login_time;
        qd->last_login_time = lrop.last_login_time;
        qd->last_login_ip = gen_ip_str(lrop.last_client_ip);

        g_free(lrop.session_key);

        gaim_connection_set_state(gc, GAIM_CONNECTED);
        serv_finish_login(gc);
        qd->logged_in = TRUE;   // must be defined after sev_finish_login

        // now initiate QQ Qun, do it first as it may take longer to finish
        qq_group_init(gc);

        // Now goes on updating my icon/nickname, not showing info_window
        qq_send_packet_get_info(gc, qd->uid, FALSE);
        // change my status manually, even server may broadcast my online
        qd->status = (qd->login_mode == QQ_LOGIN_MODE_HIDDEN) ? QQ_SELF_STATUS_INVISIBLE : QQ_SELF_STATUS_AVAILABLE;
        qq_send_packet_change_status(gc);
        // now refresh buddy list
        qq_send_packet_get_buddies_list(gc, QQ_FRIENDS_LIST_POSITION_START);

        return QQ_LOGIN_REPLY_OK;
}                               // _qq_process_login_ok

/*****************************************************************************/
// process login reply packet which includes redirected new server address
static gint _qq_process_login_redirect(GaimConnection * gc, guint8 * data, gint len)
{
        gint bytes, ret;
        guint8 *cursor;
        gchar *new_server_str;
        qq_data *qd;
        qq_login_reply_redirect_packet lrrp;

        g_return_val_if_fail(gc != NULL && gc->proto_data != NULL, QQ_LOGIN_REPLY_MISC_ERROR);

        qd = (qq_data *) gc->proto_data;
        cursor = data;
        bytes = 0;
        // 000-000: reply code
        bytes += read_packet_b(data, &cursor, len, &lrrp.result);
        // 001-004: login uid
        bytes += read_packet_dw(data, &cursor, len, &lrrp.uid);
        // 005-008: redirected new server IP
        bytes += read_packet_data(data, &cursor, len, lrrp.new_server_ip, 4);
        // 009-010: redirected new server port
        bytes += read_packet_w(data, &cursor, len, &lrrp.new_server_port);

        if (bytes != QQ_LOGIN_REPLY_REDIRECT_PACKET_LEN) {
                gaim_debug(GAIM_DEBUG_ERROR, "QQ",
                           "Fail parsing login redirect packet, expect %d bytes, read %d bytes\n",
                           QQ_LOGIN_REPLY_REDIRECT_PACKET_LEN, bytes);
                ret = QQ_LOGIN_REPLY_MISC_ERROR;
        } else {                // start new connection
                new_server_str = gen_ip_str(lrrp.new_server_ip);
                gaim_debug(GAIM_DEBUG_WARNING, "QQ",
                           "Redirected to new server: %s:%d\n", new_server_str, lrrp.new_server_port);
                qq_connect(gc->account, new_server_str, lrrp.new_server_port, qd->use_tcp, TRUE);
                g_free(new_server_str);
                ret = QQ_LOGIN_REPLY_REDIRECT;
        }                       // if bytes != QQ_LOGIN_REPLY_MISC_ERROR 

        return ret;
}                               // _qq_process_login_redirect

/*****************************************************************************/
// process login reply which says wrong password
static gint _qq_process_login_wrong_pwd(GaimConnection * gc, guint8 * data, gint len)
{
        gchar *server_reply, *server_reply_utf8;
        server_reply = g_new0(gchar, len);
        g_memmove(server_reply, data + 1, len - 1);
        server_reply_utf8 = qq_to_utf8(server_reply, QQ_CHARSET_DEFAULT);
        gaim_debug(GAIM_DEBUG_ERROR, "QQ", "Wrong password, server msg in UTF8: %s\n", server_reply_utf8);
        g_free(server_reply);
        g_free(server_reply_utf8);

        return QQ_LOGIN_REPLY_PWD_ERROR;
}                               // _qq_process_login_wrong_pwd

/*****************************************************************************/
// send login packet to QQ server
void qq_send_packet_login(GaimConnection * gc)
{
        qq_data *qd;
        guint8 *buf, *cursor, *raw_data, *encrypted_data;
        guint16 seq_ret;
        gint encrypted_len, bytes;

        g_return_if_fail(gc != NULL && gc->proto_data != NULL);

        qd = (qq_data *) gc->proto_data;
        buf = g_newa(guint8, MAX_PACKET_SIZE);
        raw_data = g_new0(guint8, QQ_LOGIN_DATA_LENGTH);
        encrypted_data = g_newa(guint8, QQ_LOGIN_DATA_LENGTH + 16);     // 16 bytes more
        qd->inikey = _gen_login_key();

        // now generate the encrypted data
        // 000-015 use pwkey as key to encrypt empty string
        qq_crypt(ENCRYPT, "", 0, qd->pwkey, raw_data, &encrypted_len);
        // 016-016 
        raw_data[16] = 0x00;
        // 017-020, used to be IP, now zero
        *((guint32 *) (raw_data + 17)) = 0x00000000;
        // 021-022, used to be port, now zero
        *((guint16 *) (raw_data + 21)) = 0x0000;
        // 023-051, fixed value, unknown
        g_memmove(raw_data + 23, login_23_51, 29);
        // 052-052, login mode
        raw_data[52] = qd->login_mode;
        // 053-068, fixed value, maybe related to per machine
        g_memmove(raw_data + 53, login_53_68, 16);
        // 069-069, login token length
        raw_data[69] = qd->token_len;
        // 070-093, login token
        g_memmove(raw_data + 70, qd->ptoken, qd->token_len);
        // 094-118, unknown
        g_memmove(raw_data + 70 + qd->token_len, login_94_118, 25);
        qq_crypt(ENCRYPT, raw_data, QQ_LOGIN_DATA_LENGTH, qd->inikey, encrypted_data, &encrypted_len);

        cursor = buf;
        bytes = 0;
        bytes += _create_packet_head_seq(buf, &cursor, gc, QQ_CMD_LOGIN, TRUE, &seq_ret);
        bytes += create_packet_dw(buf, &cursor, qd->uid);
        bytes += create_packet_data(buf, &cursor, qd->inikey, QQ_KEY_LENGTH);
        bytes += create_packet_data(buf, &cursor, encrypted_data, encrypted_len);
        bytes += create_packet_b(buf, &cursor, QQ_PACKET_TAIL);

        if (bytes == (cursor - buf))    // packet creation OK
                _qq_send_packet(gc, buf, bytes, QQ_CMD_LOGIN);
        else
                gaim_debug(GAIM_DEBUG_ERROR, "QQ", "Fail create login packet\n");
}                               // qq_send_packet_login

/*****************************************************************************/
// send logout packets to QQ server
void qq_send_packet_logout(GaimConnection * gc)
{
        gint i;
        qq_data *qd;

        g_return_if_fail(gc != NULL && gc->proto_data != NULL);

        qd = (qq_data *) gc->proto_data;
        for (i = 0; i < 4; i++)
                qq_send_cmd(gc, QQ_CMD_LOGOUT, FALSE, 0xffff, FALSE, qd->pwkey, QQ_KEY_LENGTH);

        qd->logged_in = FALSE;  // update login status AFTER sending logout packets
}                               // qq_send_packet_logout

/*****************************************************************************/
// process the login reply packet
void qq_process_login_reply(guint8 * buf, gint buf_len, GaimConnection * gc)
{
        gint len, ret, bytes;
        guint8 *data;
        qq_data *qd;

        g_return_if_fail(gc != NULL && gc->proto_data != NULL);
        g_return_if_fail(buf != NULL && buf_len != 0);

        qd = (qq_data *) gc->proto_data;
        len = buf_len;
        data = g_newa(guint8, len);     // no need to be freed in the future

        if (qq_crypt(DECRYPT, buf, buf_len, qd->pwkey, data, &len)) {
                // should be able to decrypt with pwkey
                gaim_debug(GAIM_DEBUG_INFO, "QQ", "Decrypt login reply packet with pwkey, %d bytes\n", len);
                if (data[0] == QQ_LOGIN_REPLY_OK) {
                        ret = _qq_process_login_ok(gc, data, len);
                } else {
                        gaim_debug(GAIM_DEBUG_ERROR, "QQ", "Unknown login reply code : %d\n", data[0]);
                        ret = QQ_LOGIN_REPLY_MISC_ERROR;
                }               // if QQ_LOGIN_REPLY_OK
        } else {                // decrypt with pwkey error
                len = buf_len;  // reset len, decrypt will fail if len is too short              
                if (qq_crypt(DECRYPT, buf, buf_len, qd->inikey, data, &len)) {
                        // decrypt ok with inipwd, it might be password error
                        gaim_debug(GAIM_DEBUG_WARNING, "QQ", "Decrypt login reply packet with inikey, %d bytes data[0] is %x\n", len, data[0]);
                        bytes = 0;
                        switch (data[0]) {
                        case QQ_LOGIN_REPLY_REDIRECT:
                                ret = _qq_process_login_redirect(gc, data, len);
                                break;
                        case QQ_LOGIN_REPLY_PWD_ERROR:
                                ret = _qq_process_login_wrong_pwd(gc, data, len);
                                break;
                        default:
                                gaim_debug(GAIM_DEBUG_ERROR, "QQ", "Unknown reply code: %d\n", data[0]);
                                ret = QQ_LOGIN_REPLY_MISC_ERROR;
                        }       // switch data[0]
                } else {        // no idea how to decrypt
                        gaim_debug(GAIM_DEBUG_ERROR, "QQ", "No idea how to decrypt login reply\n");
                        ret = QQ_LOGIN_REPLY_MISC_ERROR;
                }               // if qq_crypt with qd->inikey
        }                       // if qq_crypt with qd->pwkey

        switch (ret) {
        case QQ_LOGIN_REPLY_PWD_ERROR:
                gaim_connection_error(gc, _("Wrong password!"));
                break;
        case QQ_LOGIN_REPLY_MISC_ERROR:
                gaim_connection_error(gc, _("Unable to login, check debug log"));
                break;
        case QQ_LOGIN_REPLY_OK:
                gaim_debug(GAIM_DEBUG_INFO, "QQ", "Login replys OK, everything is fine\n");
                break;
        case QQ_LOGIN_REPLY_REDIRECT:
                // the redirect has been done in _qq_process_login_reply
                break;
        default:{;
                }
        }                       // switch ret
}                               // qq_process_login_reply

//add by Yuan Qingyun to process login token
void qq_process_login_token_relay(guint8 * buf, gint buf_len, GaimConnection * gc)
{
        gint bytes;
        guint8 retCode = 0;
        guint8 *cursor;
        qq_data *qd;
        if (NULL ==gc || NULL == gc->proto_data)
                return;
        qd = (qq_data *) gc->proto_data;
        cursor = buf;
        bytes = 0;

        // 000-000: reply code
        bytes += read_packet_b(buf, &cursor, buf_len, &retCode);
        if (retCode != 0)
        {
                gaim_debug(GAIM_DEBUG_ERROR, "QQ", "Fail get login tocken from server\n");
                return;
        }
        bytes += read_packet_b(buf, &cursor, buf_len, &qd->token_len);
        if (qd->ptoken != NULL)
                g_free(qd->ptoken);
        qd->ptoken = g_new0(guint8, qd->token_len);
        bytes += read_packet_data(buf, &cursor, buf_len, qd->ptoken, qd->token_len);
        qq_send_packet_login(gc);

}

//add by Yuan Qingyun for send login token
void qq_send_packet_login_token(GaimConnection * gc)
{
        qq_data *qd;
        guint8 *buf, *cursor;
        gint bytes;
        guint16 seq_ret;
        g_return_if_fail(gc != NULL && gc->proto_data != NULL);
        qd = (qq_data *) gc->proto_data;
        buf = g_newa(guint8, MAX_PACKET_SIZE);
        cursor = buf;
        qd->token_len = 0;
        qd->ptoken = NULL;
        bytes = 0;
        bytes += _create_packet_head_seq(buf, &cursor, gc, QQ_CMD_GET_LOGIN_TOKEN, TRUE, &seq_ret);
        bytes += create_packet_dw(buf, &cursor, qd->uid);
        bytes += create_packet_b(buf, &cursor, 0x00);
        bytes += create_packet_b(buf, &cursor, QQ_PACKET_TAIL);
        if (bytes == (cursor - buf))    // packet creation OK
                _qq_send_packet(gc, buf, bytes, QQ_CMD_GET_LOGIN_TOKEN);
        else
                gaim_debug(GAIM_DEBUG_ERROR, "QQ", "Fail create login tocken packet\n");
}

/*****************************************************************************/
// END OF FILE

---