Context Navigation

← Previous Changeset
Next Changeset →

Changeset be999a5

Timestamp:

2010-08-23T23:12:24Z (14 years ago)

Author:

Wilmer van der Gaast <wilmer@…>

Branches:

master

Children:

ad2d8bc

Parents:

237eadd (diff), eb6df6a (diff)
Note: this is a merge changeset, the changes displayed below correspond to the merge itself.
Use the (diff) links above to see all the changes relative to each parent.

Message:

First step in this merge. Mostly a bzr merge and then a cleanup of conflicts
and parts I want to/have to redo (because of ui-fix).

Files:

: 2 added
: 23 edited

bitlbee.h (modified) (2 diffs)
configure (modified) (4 diffs)
doc/README (modified) (2 diffs)
doc/user-guide/commands.xml (modified) (3 diffs)
irc.h (modified) (2 diffs)
lib/misc.c (modified) (2 diffs)
lib/ssl_bogus.c (modified) (2 diffs)
lib/ssl_client.h (modified) (1 diff)
lib/ssl_gnutls.c (modified) (2 diffs)
lib/ssl_nss.c (modified) (2 diffs)
lib/ssl_openssl.c (modified) (2 diffs)
log.c (modified) (6 diffs)
log.h (modified) (2 diffs)
otr.c (added)
otr.h (added)
protocols/jabber/jabber.c (modified) (1 diff)
protocols/msn/msn.c (modified) (1 diff)
protocols/nogaim.h (modified) (2 diffs)
protocols/oscar/oscar.c (modified) (1 diff)
protocols/twitter/twitter.c (modified) (1 diff)
protocols/yahoo/yahoo.c (modified) (1 diff)
query.c (modified) (3 diffs)
root_commands.c (modified) (2 diffs)
storage.c (modified) (6 diffs)
unix.c (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

bitlbee.h

-                      r237eadd
+                      rbe999a5
 #include "misc.h"
 #include "proxy.h"
+#include "otr.h"
 typedef struct global {
 …
         char *helpfile;
         int restart;
+        OtrlMessageAppOps otr_ops;   /* collects interface functions required by OTR */
 } global_t;

configure

-                      r237eadd
+                      rbe999a5
 gcov=0
 plugins=1
+otr=auto
 events=glib
 …
 --gcov=0/1      Disable/enable test coverage reporting  $gcov
 --plugins=0/1   Disable/enable plugins support          $plugins
+--otr=0/1       Disable/enable OTR encryption support   $otr
 --events=...    Event handler (glib, libevent)          $events
 …
 fi
+otrprefix=""
+for i in / /usr /usr/local; do
+        if [ -f ${i}/lib/libotr.a ]; then
+                otrprefix=${i}
+                break
+        fi
+done
+if [ "$otr" = "auto" ]; then
+        if [ -n "$otrprefix" ]; then
+                otr=1
+        else
+                otr=0
+        fi
+fi
+if [ "$otr" = 1 ]; then
+        echo '#define WITH_OTR' >> config.h
+        echo "EFLAGS+=-L${otrprefix}/lib -lotr" >> Makefile.settings
+        echo "CFLAGS+=-I${otrprefix}/include" >> Makefile.settings
+else
+        echo '#undef WITH_OTR' >> config.h
+fi
 if [ ! -e doc/user-guide/help.txt ] && ! type xmlto > /dev/null 2> /dev/null; then
         echo
 …
 fi
+if [ "$otr" = "1" ]; then
+        echo '  Off-the-Record (OTR) Messaging enabled.'
+else
+        echo '  Off-the-Record (OTR) Messaging disabled.'
+fi
 echo '  Using event handler: '$events
 echo '  Using SSL library: '$ssl

doc/README

-                      r237eadd
+                      rbe999a5
 BitlBee's only real dependency is GLib. This is available on virtually every
 platform. Any recent version of GLib (2.4 or higher) will work.
+Off-the-Record encryption support will be included by default if the
+configure script finds libotr in one of the usual places. You can pass
+--otr=1 or --otr=0 to force it on or off, respectively.
 These days, MSN Messenger clients have to connect to the MS Passport servers
 …
 A NOTE ON ENCRYPTION
 ====================
+A NOTE ON PASSWORD ENCRYPTION
+=============================
 There used to be a note here about the simple obfuscation method used to

doc/user-guide/commands.xml

-                      r237eadd
+                      rbe999a5
                 </description>
         </bitlbee-command>
+        <bitlbee-command name="otr">
+                <short-description>Off-the-Record encryption control</short-description>
+                <syntax>otr &lt;subcommand&gt; [&lt;arguments&gt;]</syntax>
+                <description>
+                        <para>
+                                Available subcommands: connect, disconnect, smp, trust, info, keygen, and forget. See <emphasis>help otr &lt;subcommand&gt;</emphasis> for more information.
+                        </para>
+                </description>
+                <bitlbee-command name="connect">
+                        <syntax>otr connect &lt;nick&gt;</syntax>
+                        <description>
+                                <para>
+                                        Attempts to establish an encrypted connection with the specified user by sending a magic string.
+                                </para>
+                        </description>
+                </bitlbee-command>
+                <bitlbee-command name="disconnect">
+                        <syntax>otr disconnect &lt;nick&gt;</syntax>
+                        <description>
+                                <para>
+                                        Resets the connection with the specified user to cleartext.
+                                </para>
+                        </description>
+                </bitlbee-command>
+                <bitlbee-command name="smp">
+                        <syntax>otr smp &lt;nick&gt; &lt;secret&gt;</syntax>
+                        <description>
+                                <para>
+                                        Attempts to authenticate the given user's active fingerprint via the Socialist Millionaires' Protocol.
+                                </para>
+                                <para>
+                                        If an SMP challenge has already been received from the given user, responds with the specified secret. Otherwise, a challenge for the secret will be sent. If the protocol succeeds (i.e. both parties gave the same secret), the fingerprint will be trusted.
+                                </para>
+                        </description>
+                </bitlbee-command>
+                <bitlbee-command name="trust">
+                        <syntax>otr trust &lt;nick&gt; &lt;fp1&gt; &lt;fp2&gt; &lt;fp3&gt; &lt;fp4&gt; &lt;fp5&gt;</syntax>
+                        <description>
+                                <para>
+                                        Manually affirms trust in the specified fingerprint, given as five blocks of precisely eight (hexadecimal) digits each.
+                                </para>
+                        </description>
+                </bitlbee-command>
+                <bitlbee-command name="info">
+                        <syntax>otr info</syntax>
+                        <syntax>otr info &lt;nick&gt;</syntax>
+                        <description>
+                                <para>
+                                        Shows information about the OTR state. The first form lists our private keys and current OTR contexts. The second form displays information about the connection with a given user, including the list of their known fingerprints.
+                                </para>
+                        </description>
+                </bitlbee-command>
+                <bitlbee-command name="keygen">
+                        <syntax>otr keygen &lt;account-no&gt;</syntax>
+                        <description>
+                                <para>
+                                        Generates a new OTR private key for the given account.
+                                </para>
+                        </description>
+                </bitlbee-command>
+                <bitlbee-command name="forget">
+                        <syntax>otr forget &lt;thing&gt; &lt;arguments&gt;</syntax>
+                        <description>
+                                <para>
+                                        Forgets some part of our OTR userstate. Available things: fingerprint, context, and key. See <emphasis>help otr forget &lt;thing&gt;</emphasis> for more information.
+                                </para>
+                        </description>
+                        <bitlbee-command name="fingerprint">
+                                <syntax>otr forget fingerprint &lt;nick&gt; &lt;fingerprint&gt;</syntax>
+                                <description>
+                                        <para>
+                                                Drops the specified fingerprint from the given user's OTR connection context. It is allowed to specify only a (unique) prefix of the desired fingerprint.
+                                        </para>
+                                </description>
+                        </bitlbee-command>
+                        <bitlbee-command name="context">
+                                <syntax>otr forget context &lt;nick&gt;</syntax>
+                                <description>
+                                        <para>
+                                                Forgets the entire OTR context associated with the given user. This includes current message and protocol states, as well as any fingerprints for that user.
+                                        </para>
+                                </description>
+                        </bitlbee-command>
+                        <bitlbee-command name="key">
+                                <syntax>otr forget key &lt;fingerprint&gt;</syntax>
+                                <description>
+                                        <para>
+                                                Forgets an OTR private key matching the specified fingerprint. It is allowed to specify only a (unique) prefix of the fingerprint.
+                                        </para>
+                                </description>
+                        </bitlbee-command>
+                </bitlbee-command>
+        </bitlbee-command>
         <bitlbee-command name="set">
 …
                 </description>
+        </bitlbee-setting>
+        <bitlbee-setting name="color_encrypted" type="boolean" scope="global">
+                <default>true</default>
+                <description>
+                        <para>
+                                If set to true, BitlBee will color incoming encrypted messages according to their fingerprint trust level: untrusted=red, trusted=green.
+                        </para>
+                </description>
         </bitlbee-setting>
 …
         </bitlbee-setting>
+        <bitlbee-setting name="otr_policy" type="string" scope="global">
+                <default>opportunistic</default>
+                <possible-values>never, opportunistic, manual, always</possible-values>
+                <description>
+                        <para>
+                                This setting controls the policy for establishing Off-the-Record connections.
+                        </para>
+                        <para>
+                                A value of "never" effectively disables the OTR subsystem. In "opportunistic" mode, a magic whitespace pattern will be appended to the first message sent to any user. If the peer is also running opportunistic OTR, an encrypted connection will be set up automatically. On "manual", on the other hand, OTR connections must be established explicitly using <emphasis>otr connect</emphasis>. Finally, the setting "always" enforces encrypted communication by causing BitlBee to refuse to send any cleartext messages at all.
+                        </para>
+                </description>
+        </bitlbee-setting>
         <bitlbee-setting name="password" type="string" scope="both">
                 <description>

irc.h

-                      r237eadd
+                      rbe999a5
 #define _IRC_H
+#include "otr.h"
 #define IRC_MAX_LINE 512
 #define IRC_MAX_ARGS 8
+#define IRC_MAX_ARGS 16
 #define IRC_LOGIN_TIMEOUT 60
 …
         gint ping_source_id;
         gint login_source_id; /* To slightly delay some events at login time. */
+        otr_t *otr;            /* OTR state and book keeping */
         struct bee *b;

lib/misc.c

-                      r237eadd
+                      rbe999a5
         char *s = out, *cs;
         int i, matched;
+        int taglen;
         memset( out, 0, sizeof( out ) );
 …
                                 in ++;
+                        taglen = in - cs - 1;   /* not <0 because the above loop runs at least once */
                         if( *in )
+                        {
+                                if( g_strncasecmp( cs+1, "br", 2) == 0 )
+                                if( g_strncasecmp( cs+1, "b", taglen) == 0 )
+                                        *(s++) = '\x02';
+                                else if( g_strncasecmp( cs+1, "/b", taglen) == 0 )
+                                        *(s++) = '\x02';
+                                else if( g_strncasecmp( cs+1, "i", taglen) == 0 )
+                                        *(s++) = '\x1f';
+                                else if( g_strncasecmp( cs+1, "/i", taglen) == 0 )
+                                        *(s++) = '\x1f';
+                                else if( g_strncasecmp( cs+1, "br", taglen) == 0 )
                                         *(s++) = '\n';
                                 in ++;

lib/ssl_bogus.c

-                      r237eadd
+                      rbe999a5
 int ssl_errno;
+void ssl_init( void )
+{
+}
 void *ssl_connect( char *host, int port, ssl_input_function func, gpointer data )
 …
         return 0;
+}
+int ssl_pending( void *conn )
+{
+        return 0;
+}

lib/ssl_client.h

-                      r237eadd
+                      rbe999a5
+/* Perform any global initialization the SSL library might need. */
+G_MODULE_EXPORT void ssl_init( void );
 /* Connect to host:port, call the given function when the connection is
    ready to be used for SSL traffic. This is all done asynchronously, no

lib/ssl_gnutls.c

-                      r237eadd
+                      rbe999a5
 static gboolean ssl_handshake( gpointer data, gint source, b_input_condition cond );
+void ssl_init( void )
+{
+        gnutls_global_init();
+        initialized = TRUE;
+        atexit( gnutls_global_deinit );
+}
 void *ssl_connect( char *host, int port, ssl_input_function func, gpointer data )
 …
         if( !initialized )
+        {
+                gnutls_global_init();
+                initialized = TRUE;
+                atexit( gnutls_global_deinit );
+                ssl_init();
+        }

lib/ssl_nss.c

-                      r237eadd
+                      rbe999a5
+void ssl_init( void )
+{
+        PR_Init( PR_SYSTEM_THREAD, PR_PRIORITY_NORMAL, 1);
+        NSS_NoDB_Init(NULL);
+        NSS_SetDomesticPolicy();
+        initialized = TRUE;
+}
 void *ssl_connect( char *host, int port, ssl_input_function func, gpointer data )
+{
 …
         if( !initialized )
+        {
+                PR_Init( PR_SYSTEM_THREAD, PR_PRIORITY_NORMAL, 1);
+                NSS_NoDB_Init(NULL);
+                NSS_SetDomesticPolicy();
+                ssl_init();
+        }

lib/ssl_openssl.c

-                      r237eadd
+                      rbe999a5
 static gboolean ssl_handshake( gpointer data, gint source, b_input_condition cond );
+void ssl_init( void )
+{
+        initialized = TRUE;
+        SSLeay_add_ssl_algorithms();
+}
 void *ssl_connect( char *host, int port, ssl_input_function func, gpointer data )
 …
         if( !initialized )
+        {
+                initialized = TRUE;
+                SSLeay_add_ssl_algorithms();
+                ssl_init();
+        }

log.c

-                      r237eadd
+                      rbe999a5
 static log_t logoutput;
 static void log_null(int level, char *logmessage);
 static void log_irc(int level, char *logmessage);
 static void log_syslog(int level, char *logmessage);
 static void log_console(int level, char *logmessage);
+static void log_null(int level, const char *logmessage);
+static void log_irc(int level, const char *logmessage);
+static void log_syslog(int level, const char *logmessage);
+static void log_console(int level, const char *logmessage);
 void log_init(void) {
 …
+}
 void log_message(int level, char *message, ... ) {
+void log_message(int level, const char *message, ... ) {
         va_list ap;
 …
+}
 void log_error(char *functionname) {
+void log_error(const char *functionname) {
         log_message(LOGLVL_ERROR, "%s: %s", functionname, strerror(errno));
 …
+}
 static void log_null(int level, char *message) {
+static void log_null(int level, const char *message) {
         return;
+}
 static void log_irc(int level, char *message) {
+static void log_irc(int level, const char *message) {
         if(level == LOGLVL_ERROR)
                 irc_write_all(1, "ERROR :Error: %s", message);
 …
+}
 static void log_syslog(int level, char *message) {
+static void log_syslog(int level, const char *message) {
         if(level == LOGLVL_ERROR)
                 syslog(LOG_ERR, "%s", message);
 …
+}
 static void log_console(int level, char *message) {
+static void log_console(int level, const char *message) {
         if(level == LOGLVL_ERROR)
                 fprintf(stderr, "Error: %s\n", message);

log.h

-                      r237eadd
+                      rbe999a5
 typedef struct log_t {
         void (*error)(int level, char *logmessage);
         void (*warning)(int level, char *logmessage);
         void (*informational)(int level, char *logmessage);
+        void (*error)(int level, const char *logmessage);
+        void (*warning)(int level, const char *logmessage);
+        void (*informational)(int level, const char *logmessage);
 #ifdef DEBUG
         void (*debug)(int level, char *logmessage);
+        void (*debug)(int level, const char *logmessage);
 #endif
 } log_t;
 …
 void log_init(void);
 void log_link(int level, int output);
 void log_message(int level, char *message, ...) G_GNUC_PRINTF( 2, 3 );
 void log_error(char *functionname);
+void log_message(int level, const char *message, ...) G_GNUC_PRINTF( 2, 3 );
+void log_error(const char *functionname);
 #endif

protocols/jabber/jabber.c

r237eadd	rbe999a5
557	557
558	558	ret->name = "jabber";
	559	ret->mms = 0; /* no limit */
559	560	ret->login = jabber_login;
560	561	ret->init = jabber_init;

protocols/msn/msn.c

r237eadd	rbe999a5
336	336
337	337	ret->name = "msn";
	338	ret->mms = 1409; /* this guess taken from libotr UPGRADING file */
338	339	ret->login = msn_login;
339	340	ret->init = msn_init;

protocols/nogaim.h

-                      r237eadd
+                      rbe999a5
 #define OPT_TYPING      0x00000100 /* Some pieces of code make assumptions */
 #define OPT_THINKING    0x00000200 /* about these values... Stupid me! */
+#define OPT_NOOTR       0x00001000 /* protocol not suitable for OTR */
 /* ok. now the fun begins. first we create a connection structure */
 …
         const char *name;
         void *data;
+        /* Maximum Message Size of this protocol.
+         * - Introduced for OTR, in order to fragment large protocol messages.
+         * - 0 means "unlimited". */
+        unsigned int mms;
         /* Added this one to be able to add per-account settings, don't think

protocols/oscar/oscar.c

r237eadd	rbe999a5
2604	2604	struct prpl *ret = g_new0(struct prpl, 1);
2605	2605	ret->name = "oscar";
	2606	ret->mms = 2343; /* this guess taken from libotr UPGRADING file */
2606	2607	ret->away_states = oscar_away_states;
2607	2608	ret->init = oscar_init;

protocols/twitter/twitter.c

r237eadd	rbe999a5
519	519	struct prpl *ret = g_new0(struct prpl, 1);
520	520
	521	ret->options = OPT_NOOTR;
521	522	ret->name = "twitter";
522	523	ret->login = twitter_login;

protocols/yahoo/yahoo.c

r237eadd	rbe999a5
379	379	struct prpl *ret = g_new0(struct prpl, 1);
380	380	ret->name = "yahoo";
	381	ret->mms = 832; /* this guess taken from libotr UPGRADING file */
381	382	ret->init = byahoo_init;
382	383

query.c

-                      r237eadd
+                      rbe999a5
         int count = 0;
+        if( !ic )
+                return;
         q = irc->queries;
         def = query_default( irc );
 …
                 else
                         irc_usermsg( irc, "Accepted: %s", q->question );
+                q->yes( q->data );
+                if( q->yes )
+                        q->yes( q->data );
+        }
         else
 …
                 else
                         irc_usermsg( irc, "Rejected: %s", q->question );
+                q->no( q->data );
+                if( q->no )
+                        q->no( q->data );
+        }
         q->data = NULL;

root_commands.c

-                      r237eadd
+                      rbe999a5
 #include "help.h"
 #include "ipc.h"
+#include "otr.h"
 void root_command_string( irc_t *irc, char *command )
 …
         { "info",           1, cmd_info,           0 },
         { "no",             0, cmd_yesno,          0 },
+        { "otr",            1, cmd_otr,            0 },
         { "qlist",          0, cmd_qlist,          0 },
         { "register",       1, cmd_register,       0 },

storage.c

-                      r237eadd
+                      rbe999a5
 #define BITLBEE_CORE
 #include "bitlbee.h"
+#include "otr.h"
 extern storage_t storage_text;
 …
                 status = st->load(irc, password);
+                if (status == STORAGE_OK)
+                if (status == STORAGE_OK) {
+                        otr_load(irc);
                         return status;
+                }
                 if (status != STORAGE_NO_SUCH_USER)
                         return status;
 …
                 return STORAGE_NO_SUCH_USER;
+        }
+        otr_save(irc);
         st = ((storage_t *)global.storage->data)->save(irc, overwrite);
 …
                         ret = status;
+        }
+        if (ret == STORAGE_OK) {
+                otr_remove(nick);
+        }
         return ret;
 …
         storage_t *primary_storage = gl->data;
         irc_t *irc;
         /* First, try to rename in the current write backend, assuming onick
          * is stored there */
         status = primary_storage->rename(onick, nnick, password);
+        if (status != STORAGE_NO_SUCH_USER)
+        if (status != STORAGE_NO_SUCH_USER) {
+                otr_rename(onick, nnick);
                 return status;
+        }
         /* Try to load from a migration backend and save to the current backend.
 …
         storage_remove(onick, password);
+        otr_rename(onick, nnick);
         return STORAGE_OK;

unix.c

-                      r237eadd
+                      rbe999a5
 #include "base64.h"
 #include "commands.h"
+#include "otr.h"
 #include "protocols/nogaim.h"
 #include "help.h"
 #include "ipc.h"
+#include "lib/ssl_client.h"
 #include "md5.h"
 #include "misc.h"
 …
         b_main_init();
+        /* Ugly Note: libotr and gnutls both use libgcrypt. libgcrypt
+           has a process-global config state whose initialization happpens
+           twice if libotr and gnutls are used together. libotr installs custom
+           memory management functions for libgcrypt while our gnutls module
+           uses the defaults. Therefore we initialize OTR after SSL. *sigh* */
+        ssl_init();
+        otr_init();
         srand( time( NULL ) ^ getpid() );

Note: See TracChangeset for help on using the changeset viewer.

Context Navigation

Changeset be999a5

Legend:

Download in other formats: