--- a/libpurple/protocols/mxit/cipher.c Mon Aug 15 19:24:16 2011 +0000
+++ b/libpurple/protocols/mxit/cipher.c Mon Aug 15 20:10:35 2011 +0000
@@ -1,7 +1,7 @@
* MXit Protocol libPurple Plugin
- * -- user password encryption --
* Pieter Loubser <libpurple@mxit.com>
@@ -31,35 +31,13 @@
-/* password encryption */
#define INITIAL_KEY "6170383452343567"
#define SECRET_HEADER "<mxit/>"
#define ENCRYPT_HEADER "<mxitencrypted ver=\"5.2\"/>"
/*------------------------------------------------------------------------
- * Pad the secret data using ISO10126 Padding.
- * @param secret The data to pad (caller must ensure buffer has enough space for padding)
- * @return The total number of 128-bit blocks used
-static int pad_secret_data( char* secret )
- passlen = strlen( secret );
- blocks = ( passlen / 16 ) + 1;
- padding = ( blocks * 16 ) - passlen;
- secret[passlen] = 0x50;
- secret[(blocks * 16) - 1] = padding;
-/*------------------------------------------------------------------------
* Add ISO10126 Padding to the data.
* @param data The data to pad.
@@ -101,7 +79,7 @@
static char* transport_layer_key( struct MXitSession* session )
- int pwdlen = strlen( session->acc->password );
+ int passlen = strlen( session->acc->password ); /* initialize with initial key */
g_strlcpy( key, INITIAL_KEY, sizeof( key ) );
@@ -110,10 +88,10 @@
memcpy( key, session->clientkey, strlen( session->clientkey ) );
/* add last 8 characters of the PIN (no padding if less characters) */
- memcpy( key + 8, session->acc->password, pwdlen );
+ memcpy( key + 8, session->acc->password, passlen ); - memcpy( key + 8, session->acc->password + ( pwdlen - 8 ), 8 );
+ memcpy( key + 8, session->acc->password + ( passlen - 8 ), 8 ); @@ -128,41 +106,35 @@
char* mxit_encrypt_password( struct MXitSession* session )
purple_debug_info( MXIT_PLUGIN_ID, "mxit_encrypt_password\n" );
memset( encrypted, 0x00, sizeof( encrypted ) );
- memset( exkey, 0x00, sizeof( exkey ) );
- memset( pass, 0x58, sizeof( pass ) );
- pass[sizeof( pass ) - 1] = '\0';
- /* build the custom AES encryption key */
+ /* build the AES encryption key */ g_strlcpy( key, INITIAL_KEY, sizeof( key ) );
memcpy( key, session->clientkey, strlen( session->clientkey ) );
ExpandKey( (unsigned char*) key, (unsigned char*) exkey );
- /* build the custom data to be encrypted */
- g_strlcpy( pass, SECRET_HEADER, sizeof( pass ) );
- strcat( pass, session->acc->password );
+ /* build the secret data to be encrypted: SECRET_HEADER + password */ + pass = g_string_new( SECRET_HEADER ); + g_string_append( pass, session->acc->password ); + padding_add( pass ); /* add ISO10126 padding */ - /* pad the secret data */
- blocks = pad_secret_data( pass );
- /* now encrypt the password. we encrypt each block separately (ECB mode) */
- for ( i = 0; i < size; i += 16 )
- Encrypt( (unsigned char*) pass + i, (unsigned char*) exkey, (unsigned char*) encrypted + i );
+ /* now encrypt the secret. we encrypt each block separately (ECB mode) */ + for ( i = 0; i < pass->len; i += 16 ) + Encrypt( (unsigned char*) pass->str + i, (unsigned char*) exkey, (unsigned char*) encrypted + i ); /* now base64 encode the encrypted password */
- base64 = purple_base64_encode( (unsigned char*) encrypted, size );
+ base64 = purple_base64_encode( (unsigned char*) encrypted, pass->len ); + g_string_free( pass, TRUE ); @@ -177,11 +149,11 @@
char* mxit_decrypt_message( struct MXitSession* session, char* message )
+ GString* decoded = NULL; - GString* decoded = NULL;
/* remove optional header: <mxitencrypted ver="5.2"/> */
if ( strncmp( message, ENCRYPT_HEADER, strlen( ENCRYPT_HEADER ) ) == 0 )
@@ -228,26 +200,23 @@
char* mxit_encrypt_message( struct MXitSession* session, char* message )
+ GString* raw_message = NULL;
- GString* raw_message = NULL;
purple_debug_info( MXIT_PLUGIN_ID, "encrypt message: '%s'\n", message );
+ /* append encryption header to message data */ + raw_message = g_string_new( SECRET_HEADER ); + g_string_append( raw_message, message ); + padding_add( raw_message ); /* add ISO10126 padding */ ExpandKey( (unsigned char*) transport_layer_key( session ), (unsigned char*) exkey );
- /* append encryption header to message data */
- raw_message = g_string_sized_new( strlen( SECRET_HEADER ) + strlen( message ) );
- g_string_append( raw_message, SECRET_HEADER );
- g_string_append( raw_message, message );
- /* add ISO10126 padding */
- padding_add( raw_message );
- /* encrypt each block */
+ /* AES encrypt each block */ encoded = g_string_sized_new( raw_message->len );
for ( i = 0; i < raw_message->len; i += 16 ) {
--- a/libpurple/protocols/mxit/cipher.h Mon Aug 15 19:24:16 2011 +0000
+++ b/libpurple/protocols/mxit/cipher.h Mon Aug 15 20:10:35 2011 +0000
@@ -1,7 +1,7 @@
* MXit Protocol libPurple Plugin
- * -- user password encryption --
* Pieter Loubser <libpurple@mxit.com>