aim-oscar-server/0x17_authorization_registration_service.go

package main

import (
	"bytes"
	"context"
	"crypto/md5"
	"crypto/rand"
	"encoding/base32"
	"io"

	"github.com/pkg/errors"
	"github.com/uptrace/bun"

	"aim-oscar/models"
)

const CIPHER_LENGTH = 64
const AIM_MD5_STRING = "AOL Instant Messenger (SM)"

type AuthorizationRegistrationService struct{}

func (a *AuthorizationRegistrationService) GenerateCipher() string {
	randomBytes := make([]byte, 64)
	_, err := rand.Read(randomBytes)
	if err != nil {
		panic(err)
	}
	return base32.StdEncoding.EncodeToString(randomBytes)[:CIPHER_LENGTH]
}

func (a *AuthorizationRegistrationService) HandleSNAC(db *bun.DB, session *Session, snac *SNAC) error {
	switch snac.Header.Subtype {
	// Request MD5 Auth Key
	case 0x06:
		tlvs, err := UnmarshalTLVs(snac.Data.Bytes())
		panicIfError(err)

		usernameTLV := FindTLV(tlvs, 1)
		if usernameTLV == nil {
			return errors.New("missing username TLV")
		}

		// Fetch the user
		ctx := context.Background()
		user, err := models.UserByUsername(ctx, db, string(usernameTLV.Data))
		if err != nil {
			return err
		}
		if user == nil {
			snac := NewSNAC(0x17, 0x03)
			snac.Data.WriteBinary(usernameTLV)
			snac.Data.WriteBinary(NewTLV(0x08, []byte{0, 4}))
			resp := NewFLAP(2)
			resp.Data.WriteBinary(snac)
			return session.Send(resp)
		}

		// Create cipher for this user
		user.Cipher = a.GenerateCipher()
		if err = user.Update(ctx, db); err != nil {
			return err
		}

		snac := NewSNAC(0x17, 0x07)
		snac.Data.WriteUint16(uint16(len(user.Cipher)))
		snac.Data.WriteString(user.Cipher)

		resp := NewFLAP(2)
		resp.Data.WriteBinary(snac)
		return session.Send(resp)

	// Client Authorization Request
	case 0x02:
		tlvs, err := UnmarshalTLVs(snac.Data.Bytes())
		panicIfError(err)

		usernameTLV := FindTLV(tlvs, 1)
		if usernameTLV == nil {
			return errors.New("missing username TLV 0x1")
		}

		username := string(usernameTLV.Data)
		ctx := context.Background()
		user, err := models.UserByUsername(ctx, db, username)
		if err != nil {
			return err
		}

		if user == nil {
			snac := NewSNAC(0x17, 0x03)
			snac.Data.WriteBinary(usernameTLV)
			snac.Data.WriteBinary(NewTLV(0x08, []byte{0, 4}))
			resp := NewFLAP(2)
			resp.Data.WriteBinary(snac)
			return session.Send(resp)
		}

		passwordHashTLV := FindTLV(tlvs, 0x25)
		if passwordHashTLV == nil {
			return errors.New("missing password hash TLV 0x25")
		}

		h := md5.New()
		io.WriteString(h, user.Cipher)
		io.WriteString(h, user.Password)
		io.WriteString(h, AIM_MD5_STRING)
		expectedPasswordHash := h.Sum(nil)

		if !bytes.Equal(expectedPasswordHash, passwordHashTLV.Data) {
			// Tell the client this was a bad password
			badPasswordSnac := NewSNAC(0x17, 0x03)
			badPasswordSnac.Data.WriteBinary(usernameTLV)
			badPasswordSnac.Data.WriteBinary(NewTLV(0x08, []byte{0, 4}))
			badPasswordFlap := NewFLAP(2)
			badPasswordFlap.Data.WriteBinary(badPasswordSnac)
			session.Send(badPasswordFlap)

			// Tell tem to leave
			discoFlap := NewFLAP(4)
			return session.Send(discoFlap)
		}

		// Send BOS response + cookie
		authSnac := NewSNAC(0x17, 0x3)
		authSnac.Data.WriteBinary(usernameTLV)
		authSnac.Data.WriteBinary(NewTLV(0x5, []byte("10.0.1.2:5191")))
		authSnac.Data.WriteBinary(NewTLV(0x6, []byte(`{"hello": "uwu"}`)))
		authFlap := NewFLAP(2)
		authFlap.Data.WriteBinary(authSnac)
		session.Send(authFlap)

		// Tell tem to leave
		discoFlap := NewFLAP(4)
		return session.Send(discoFlap)
	}

	return nil
}
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00			`package main`

			`import (`
successful auth 2021-12-16 18:02:48 -05:00			`"bytes"`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`"context"`
successful auth 2021-12-16 18:02:48 -05:00			`"crypto/md5"`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`"crypto/rand"`
			`"encoding/base32"`
successful auth 2021-12-16 18:02:48 -05:00			`"io"`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00
			`"github.com/pkg/errors"`
			`"github.com/uptrace/bun"`

			`"aim-oscar/models"`
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00			`)`

make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`const CIPHER_LENGTH = 64`
successful auth 2021-12-16 18:02:48 -05:00			`const AIM_MD5_STRING = "AOL Instant Messenger (SM)"`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00			`type AuthorizationRegistrationService struct{}`

make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`func (a *AuthorizationRegistrationService) GenerateCipher() string {`
			`randomBytes := make([]byte, 64)`
			`_, err := rand.Read(randomBytes)`
			`if err != nil {`
			`panic(err)`
			`}`
			`return base32.StdEncoding.EncodeToString(randomBytes)[:CIPHER_LENGTH]`
			`}`

			`func (a AuthorizationRegistrationService) HandleSNAC(db bun.DB, session Session, snac SNAC) error {`
flesh out data types and start some db access 2021-12-15 19:55:43 -05:00			`switch snac.Header.Subtype {`
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00			`// Request MD5 Auth Key`
flesh out data types and start some db access 2021-12-15 19:55:43 -05:00			`case 0x06:`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`tlvs, err := UnmarshalTLVs(snac.Data.Bytes())`
flesh out data types and start some db access 2021-12-15 19:55:43 -05:00			`panicIfError(err)`

			`usernameTLV := FindTLV(tlvs, 1)`
			`if usernameTLV == nil {`
			`return errors.New("missing username TLV")`
			`}`
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`// Fetch the user`
			`ctx := context.Background()`
			`user, err := models.UserByUsername(ctx, db, string(usernameTLV.Data))`
			`if err != nil {`
			`return err`
			`}`
			`if user == nil {`
			`snac := NewSNAC(0x17, 0x03)`
			`snac.Data.WriteBinary(usernameTLV)`
			`snac.Data.WriteBinary(NewTLV(0x08, []byte{0, 4}))`
separate FLAP from session 2021-12-16 18:37:27 -05:00			`resp := NewFLAP(2)`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`resp.Data.WriteBinary(snac)`
			`return session.Send(resp)`
			`}`

flesh out data types and start some db access 2021-12-15 19:55:43 -05:00			`// Create cipher for this user`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`user.Cipher = a.GenerateCipher()`
			`if err = user.Update(ctx, db); err != nil {`
			`return err`
			`}`

			`snac := NewSNAC(0x17, 0x07)`
			`snac.Data.WriteUint16(uint16(len(user.Cipher)))`
			`snac.Data.WriteString(user.Cipher)`
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00
separate FLAP from session 2021-12-16 18:37:27 -05:00			`resp := NewFLAP(2)`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`resp.Data.WriteBinary(snac)`
			`return session.Send(resp)`

			`// Client Authorization Request`
			`case 0x02:`
			`tlvs, err := UnmarshalTLVs(snac.Data.Bytes())`
flesh out data types and start some db access 2021-12-15 19:55:43 -05:00			`panicIfError(err)`

make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`usernameTLV := FindTLV(tlvs, 1)`
			`if usernameTLV == nil {`
successful auth 2021-12-16 18:02:48 -05:00			`return errors.New("missing username TLV 0x1")`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`}`

			`username := string(usernameTLV.Data)`
			`ctx := context.Background()`
			`user, err := models.UserByUsername(ctx, db, username)`
			`if err != nil {`
			`return err`
			`}`

			`if user == nil {`
			`snac := NewSNAC(0x17, 0x03)`
			`snac.Data.WriteBinary(usernameTLV)`
			`snac.Data.WriteBinary(NewTLV(0x08, []byte{0, 4}))`
separate FLAP from session 2021-12-16 18:37:27 -05:00			`resp := NewFLAP(2)`
make our own Buffer, add sql, add test 2021-12-16 17:41:17 -05:00			`resp.Data.WriteBinary(snac)`
			`return session.Send(resp)`
			`}`

successful auth 2021-12-16 18:02:48 -05:00			`passwordHashTLV := FindTLV(tlvs, 0x25)`
			`if passwordHashTLV == nil {`
			`return errors.New("missing password hash TLV 0x25")`
			`}`

			`h := md5.New()`
			`io.WriteString(h, user.Cipher)`
			`io.WriteString(h, user.Password)`
			`io.WriteString(h, AIM_MD5_STRING)`
			`expectedPasswordHash := h.Sum(nil)`

			`if !bytes.Equal(expectedPasswordHash, passwordHashTLV.Data) {`
			`// Tell the client this was a bad password`
			`badPasswordSnac := NewSNAC(0x17, 0x03)`
			`badPasswordSnac.Data.WriteBinary(usernameTLV)`
			`badPasswordSnac.Data.WriteBinary(NewTLV(0x08, []byte{0, 4}))`
separate FLAP from session 2021-12-16 18:37:27 -05:00			`badPasswordFlap := NewFLAP(2)`
successful auth 2021-12-16 18:02:48 -05:00			`badPasswordFlap.Data.WriteBinary(badPasswordSnac)`
			`session.Send(badPasswordFlap)`

			`// Tell tem to leave`
separate FLAP from session 2021-12-16 18:37:27 -05:00			`discoFlap := NewFLAP(4)`
successful auth 2021-12-16 18:02:48 -05:00			`return session.Send(discoFlap)`
			`}`

			`// Send BOS response + cookie`
			`authSnac := NewSNAC(0x17, 0x3)`
			`authSnac.Data.WriteBinary(usernameTLV)`
			`authSnac.Data.WriteBinary(NewTLV(0x5, []byte("10.0.1.2:5191")))`
			authSnac.Data.WriteBinary(NewTLV(0x6, []byte(`{"hello": "uwu"}`)))
separate FLAP from session 2021-12-16 18:37:27 -05:00			`authFlap := NewFLAP(2)`
successful auth 2021-12-16 18:02:48 -05:00			`authFlap.Data.WriteBinary(authSnac)`
			`session.Send(authFlap)`

			`// Tell tem to leave`
separate FLAP from session 2021-12-16 18:37:27 -05:00			`discoFlap := NewFLAP(4)`
successful auth 2021-12-16 18:02:48 -05:00			`return session.Send(discoFlap)`
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00			`}`
flesh out data types and start some db access 2021-12-15 19:55:43 -05:00
			`return nil`
figuring out FLAP, SNAC, marshal/unmarshaling 2021-11-16 16:44:29 -05:00			`}`