Changeset e374dee for libfaim

libfaim/admin.c

-                      r862371b
+                      re374dee
  * Used for stuff like changing the formating of your screen name, changing your
  * email address, requesting an account confirmation email, getting account info,
+ *
+ *
  */
 …
 static int accountconfirm(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         fu16_t status;
 …
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 return userfunc(sess, rx, status);
         return 0;
+                ret = userfunc(sess, rx, status);
+        return ret;
+}
 …
         mod->family = 0x0007;
         mod->version = 0x0001;
         mod->toolid = AIM_TOOL_NEWWIN;
         mod->toolversion = 0x0361; /* XXX this and above aren't right */
+        mod->toolid = 0x0010;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "admin", sizeof(mod->name));

libfaim/aim.h

-                      r862371b
+                      re374dee
+ *
  * "come on, i turned a chick lesbian; i think this is the hackish equivalent"
  *                                                -- Josh Meyer
+ *                                                -- Josh Myer
+ *
  */
 …
 #include <sys/time.h>
 #include <unistd.h>
+#include <netdb.h>
 #include <netinet/in.h>
 #include <sys/socket.h>
 …
 #endif
+#ifdef __cplusplus
+extern "C" {
+#endif
 /* XXX adjust these based on autoconf-detected platform */
 typedef unsigned char fu8_t;
 typedef unsigned short fu16_t;
 typedef unsigned long fu32_t;
+typedef unsigned int fu32_t;
 typedef fu32_t aim_snacid_t;
 typedef fu16_t flap_seqnum_t;
 …
 #if defined(mach) && defined(__APPLE__)
 #define gethostbyname(x) gethostbyname2(x, AF_INET)
-#endif
-#if defined(_WIN32) || defined(STRICT_ANSI)
-#define faim_shortfunc
-#else
-#define faim_shortfunc inline
 #endif
 …
 #endif
+#ifndef FALSE
+#define FALSE (0)
+#endif
+#ifndef TRUE
+#define TRUE (!FALSE)
+#endif
 /*
  * Current Maximum Length for Screen Names (not including NULL)
 …
  * however it is aparently legal for them to be larger.
  */
 #define MAXSNLEN 32
+#define MAXSNLEN 97
 /*
 …
 #define MAXCHATMSGLEN 512
 /*
  * Standard size of an AIM authorization cookie
  */
 #define AIM_COOKIELEN            0x100
+/**
+ * Maximum length for the password of an ICQ account
+ */
+#define MAXICQPASSLEN 8
 #define AIM_MD5_STRING "AOL Instant Messenger (SM)"
 …
         const char *clientstring;
         fu16_t clientid;
+        int major;
+        int minor;
+        int point;
+        int build;
+        fu16_t major;
+        fu16_t minor;
+        fu16_t point;
+        fu16_t build;
+        fu32_t distrib;
         const char *country; /* two-letter abbrev */
         const char *lang; /* two-letter abbrev */
 };
+/* Needs to be checked */
 #define CLIENTINFO_AIM_3_5_1670 { \
         "AOL Instant Messenger (SM), version 3.5.1670/WIN32", \
 x0004, \
+x0003, \
+x0005, \
+x0000, \
+x0686, \
+        "us", \
+        "en", \
+x0003, 0x0005, \
+x0000, 0x0686, \
+x0000002a, \
+        "us", "en", \
+}
+/* Needs to be checked */
+/* Latest winaim without ssi */
 #define CLIENTINFO_AIM_4_1_2010 { \
+          "AOL Instant Messenger (SM), version 4.1.2010/WIN32", \
+x0004, \
+x0004, \
+x0001, \
+x0000, \
+x07da, \
+          "us", \
+          "en", \
+        "AOL Instant Messenger (SM), version 4.1.2010/WIN32", \
+x0004, \
+x0004, 0x0001, \
+x0000, 0x07da, \
+x0000004b, \
+        "us", "en", \
+}
+/* Needs to be checked */
+#define CLIENTINFO_AIM_4_3_2188 { \
+        "AOL Instant Messenger (SM), version 4.3.2188/WIN32", \
+x0109, \
+x0400, 0x0003, \
+x0000, 0x088c, \
+x00000086, \
+        "us", "en", \
+}
+/* Needs to be checked */
+#define CLIENTINFO_AIM_4_8_2540 { \
+        "AOL Instant Messenger (SM), version 4.8.2540/WIN32", \
+x0109, \
+x0004, 0x0008, \
+x0000, 0x09ec, \
+x000000af, \
+        "us", "en", \
+}
+/* Needs to be checked */
 #define CLIENTINFO_AIM_5_0_2938 { \
+          "AOL Instant Messenger, version 5.0.2938/WIN32", \
+x0109, \
+x0005, \
+x0000, \
+x0000, \
+x0b7a, \
+          "us", \
+          "en", \
+        "AOL Instant Messenger, version 5.0.2938/WIN32", \
+x0109, \
+x0005, 0x0000, \
+x0000, 0x0b7a, \
+x00000000, \
+        "us", "en", \
+}
+#define CLIENTINFO_AIM_5_1_3036 { \
+        "AOL Instant Messenger, version 5.1.3036/WIN32", \
+x0109, \
+x0005, 0x0001, \
+x0000, 0x0bdc, \
+x000000d2, \
+        "us", "en", \
+}
+#define CLIENTINFO_ICHAT_1_0 { \
+        "Apple iChat", \
+x311a, \
+x0001, 0x0000, \
+x0000, 0x003c, \
+x000000c6, \
+        "us", "en", \
+}
+/* Needs to be checked */
 #define CLIENTINFO_ICQ_4_65_3281 { \
         "ICQ Inc. - Product of ICQ (TM) 2000b.4.65.1.3281.85", \
 x010a, \
+x0004, \
+x0041, \
+x0001, \
+x0cd1, \
+        "us", \
+        "en", \
+x0004, 0x0041, \
+x0001, 0x0cd1, \
+x00000055, \
+        "us", "en", \
+}
+/* Needs to be checked */
 #define CLIENTINFO_ICQ_5_34_3728 { \
         "ICQ Inc. - Product of ICQ (TM).2002a.5.34.1.3728.85", \
 x010a, \
+x0005, \
+x0022, \
+x0001, \
+x0e8f, \
+        "us", \
+        "en", \
+x0005, 0x0022, \
+x0001, 0x0e8f, \
+x00000055, \
+        "us", "en", \
+}
+/*
+ * I would make 4.1.2010 the default, but they seem to have found
+ * an alternate way of breaking that one.
+ *
+ * 3.5.1670 should work fine, however, you will be subjected to the
+ * memory test, which may require you to have a WinAIM binary lying
+ * around. (see login.c::memrequest())
+ */
+#define CLIENTINFO_AIM_KNOWNGOOD CLIENTINFO_AIM_3_5_1670
+#define CLIENTINFO_ICQ_KNOWNGOOD CLIENTINFO_ICQ_4_65_3281
+#ifndef TRUE
+#define TRUE 1
+#define FALSE 0
+#endif
+#define CLIENTINFO_ICQ_5_45_3777 { \
+        "ICQ Inc. - Product of ICQ (TM).2003a.5.45.1.3777.85", \
+x010a, \
+x0005, 0x002d, \
+x0001, 0x0ec1, \
+x00000055, \
+        "us", "en", \
+}
+#define CLIENTINFO_ICQBasic_14_3_1068 { \
+        "ICQBasic", \
+x010a, \
+x0014, 0x0003, \
+x0000, 0x042c, \
+x0000043d, \
+        "us", "en", \
+}
+#define CLIENTINFO_Netscape_7_0_1 { \
+        "Netscape 2000 an approved user of AOL Instant Messenger (SM)", \
+x1d0d, \
+x0007, 0x0000, \
+x0001, 0x0000, \
+x00000058, \
+        "us", "en", \
+}
+#define CLIENTINFO_AIM_KNOWNGOOD CLIENTINFO_AIM_5_1_3036
+#define CLIENTINFO_ICQ_KNOWNGOOD CLIENTINFO_ICQ_5_45_3777
 /*
  * These could be arbitrary, but its easier to use the actual AIM values
  */
+#define AIM_CONN_TYPE_AUTH          0x0007
+#define AIM_CONN_TYPE_ADS           0x0005
+#define AIM_CONN_TYPE_BOS           0x0002
+#define AIM_CONN_TYPE_CHAT          0x000e
+#define AIM_CONN_TYPE_CHATNAV       0x000d
+#define AIM_CONN_TYPE_SEARCH        0x000f
+#define AIM_CONN_TYPE_EMAIL         0x0018
+/* they start getting arbitrary in rendezvous stuff =) */
+#define AIM_CONN_TYPE_RENDEZVOUS    0x0101 /* these do not speak FLAP! */
+#define AIM_CONN_TYPE_RENDEZVOUS_OUT 0x0102 /* socket waiting for accept() */
+#define AIM_CONN_TYPE_BOS               0x0002
+#define AIM_CONN_TYPE_ADS               0x0005
+#define AIM_CONN_TYPE_AUTH              0x0007
+#define AIM_CONN_TYPE_CHATNAV           0x000d
+#define AIM_CONN_TYPE_CHAT              0x000e
+#define AIM_CONN_TYPE_SEARCH            0x000f
+#define AIM_CONN_TYPE_ICON              0x0010
+#define AIM_CONN_TYPE_EMAIL             0x0018
+/* they start getting arbitrary for rendezvous stuff =) */
+#define AIM_CONN_TYPE_RENDEZVOUS        0xfffe /* these do not speak FLAP! */
+#define AIM_CONN_TYPE_LISTENER          0xffff /* socket waiting for accept() */
 /*
  * Subtypes, we need these for OFT stuff.
  */
 #define AIM_CONN_SUBTYPE_OFT_DIRECTIM  0x0001
 #define AIM_CONN_SUBTYPE_OFT_GETFILE   0x0002
 #define AIM_CONN_SUBTYPE_OFT_SENDFILE  0x0003
 #define AIM_CONN_SUBTYPE_OFT_BUDDYICON 0x0004
 #define AIM_CONN_SUBTYPE_OFT_VOICE     0x0005
+#define AIM_CONN_SUBTYPE_OFT_DIRECTIM   0x0001
+#define AIM_CONN_SUBTYPE_OFT_GETFILE    0x0002
+#define AIM_CONN_SUBTYPE_OFT_SENDFILE   0x0003
+#define AIM_CONN_SUBTYPE_OFT_BUDDYICON  0x0004
+#define AIM_CONN_SUBTYPE_OFT_VOICE      0x0005
 /*
  * Status values returned from aim_conn_new().  ORed together.
  */
 #define AIM_CONN_STATUS_READY       0x0001
 #define AIM_CONN_STATUS_INTERNALERR 0x0002
 #define AIM_CONN_STATUS_RESOLVERR   0x0040
 #define AIM_CONN_STATUS_CONNERR     0x0080
 #define AIM_CONN_STATUS_INPROGRESS  0x0100
 #define AIM_FRAMETYPE_FLAP 0x0000
 #define AIM_FRAMETYPE_OFT  0x0001
+#define AIM_CONN_STATUS_READY           0x0001
+#define AIM_CONN_STATUS_INTERNALERR     0x0002
+#define AIM_CONN_STATUS_RESOLVERR       0x0040
+#define AIM_CONN_STATUS_CONNERR         0x0080
+#define AIM_CONN_STATUS_INPROGRESS      0x0100
+#define AIM_FRAMETYPE_FLAP              0x0000
+#define AIM_FRAMETYPE_OFT               0x0001
 typedef struct aim_conn_s {
 …
                 } flap;
                 struct {
                         fu8_t magic[4]; /* ODC2 OFT2 */
+                        fu8_t magic[4]; /* ODC2 or OFT2 */
                         fu16_t hdrlen;
                         fu16_t type;
 …
         fu8_t handled;          /* 0 = new, !0 = been handled */
         fu8_t nofree;           /* 0 = free data on purge, 1 = only unlink */
         aim_conn_t *conn;  /* the connection it came in on... */
+        aim_conn_t *conn;       /* the connection it came in on... */
         struct aim_frame_s *next;
 } aim_frame_t;
 typedef struct aim_msgcookie_s {
         unsigned char cookie[8];
+        fu8_t cookie[8];
         int type;
         void *data;
 …
         struct aim_msgcookie_s *next;
 } aim_msgcookie_t;
+/* Values for sess->flags */
+#define AIM_SESS_FLAGS_SNACLOGIN         0x00000001
+#define AIM_SESS_FLAGS_XORLOGIN          0x00000002
+#define AIM_SESS_FLAGS_NONBLOCKCONNECT   0x00000004
+#define AIM_SESS_FLAGS_DONTTIMEOUTONICBM 0x00000008
 /*
 …
         /* ---- Internal Use Only ------------------------ */
-        /* Server-stored information (ssi) */
-        struct {
-                int received_data;
-                fu16_t revision;
-                struct aim_ssi_item *items;
-                time_t timestamp;
-                int waiting_for_ack;
-                aim_frame_t *holding_queue;
-        } ssi;
-        struct aim_emailinfo *emailinfo;
         /* Connection information */
 …
         int (*tx_enqueue)(struct aim_session_s *, aim_frame_t *);
+        void *modlistv;
+        struct {
+                char server[128];
+                char username[128];
+                char password[128];
+        } socksproxy;
+        fu32_t flags; /* AIM_SESS_FLAGS_ */
+        int debug;
+        void (*debugcb)(struct aim_session_s *sess, int level, const char *format, va_list va); /* same as faim_debugging_callback_t */
         /*
          * Outstanding snac handling
 …
         aim_snacid_t snacid_next;
+        aim_msgcookie_t *msgcookies;
+        struct aim_icq_info *icq_info;
+        struct aim_oft_info *oft_info;
+        struct aim_authresp_info *authinfo;
+        struct aim_emailinfo *emailinfo;
+        /* Server-stored information (ssi) */
         struct {
+                char server[128];
+                char username[128];
+                char password[128];
+        } socksproxy;
+        fu32_t flags; /* AIM_SESS_FLAGS_ */
+        int debug;
+        void (*debugcb)(struct aim_session_s *sess, int level, const char *format, va_list va); /* same as faim_debugging_callback_t */
+        aim_msgcookie_t *msgcookies;
+        void *modlistv;
+                int received_data;
+                fu16_t numitems;
+                struct aim_ssi_item *official;
+                struct aim_ssi_item *local;
+                struct aim_ssi_tmp *pending;
+                time_t timestamp;
+                int waiting_for_ack;
+        } ssi;
 } aim_session_t;
-/* Values for sess->flags */
-#define AIM_SESS_FLAGS_SNACLOGIN         0x00000001
-#define AIM_SESS_FLAGS_XORLOGIN          0x00000002
-#define AIM_SESS_FLAGS_NONBLOCKCONNECT   0x00000004
-#define AIM_SESS_FLAGS_DONTTIMEOUTONICBM 0x00000008
 /* Valid for calling aim_icq_setstatus() and for aim_userinfo_t->icqinfo.status */
+#define AIM_ICQ_STATE_NORMAL    0x00000000
+#define AIM_ICQ_STATE_AWAY      0x00000001
+#define AIM_ICQ_STATE_DND       0x00000002
+#define AIM_ICQ_STATE_OUT       0x00000004
+#define AIM_ICQ_STATE_BUSY      0x00000010
+#define AIM_ICQ_STATE_CHAT      0x00000020
+#define AIM_ICQ_STATE_INVISIBLE 0x00000100
+#define AIM_ICQ_STATE_WEBAWARE  0x00010000
+/*
+ * AIM User Info, Standard Form.
+ */
+typedef struct {
+        char sn[MAXSNLEN+1];
+        fu16_t warnlevel; /* evil percent * 10 (999 = 99.9%) */
+        fu16_t idletime; /* in seconds */
+        fu16_t flags;
+        fu32_t createtime; /* time_t */
+        fu32_t membersince; /* time_t */
+        fu32_t onlinesince; /* time_t */
+        fu32_t sessionlen;  /* in seconds */
+        fu32_t capabilities;
+        struct {
+                fu32_t status;
+                fu32_t ipaddr;
+                fu8_t crap[0x25]; /* until we figure it out... */
+        } icqinfo;
+        fu32_t present;
+} aim_userinfo_t;
+#define AIM_USERINFO_PRESENT_FLAGS        0x00000001
+#define AIM_USERINFO_PRESENT_MEMBERSINCE  0x00000002
+#define AIM_USERINFO_PRESENT_ONLINESINCE  0x00000004
+#define AIM_USERINFO_PRESENT_IDLE         0x00000008
+#define AIM_USERINFO_PRESENT_ICQEXTSTATUS 0x00000010
+#define AIM_USERINFO_PRESENT_ICQIPADDR    0x00000020
+#define AIM_USERINFO_PRESENT_ICQDATA      0x00000040
+#define AIM_USERINFO_PRESENT_CAPABILITIES 0x00000080
+#define AIM_USERINFO_PRESENT_SESSIONLEN   0x00000100
+#define AIM_USERINFO_PRESENT_CREATETIME   0x00000200
+faim_export const char *aim_userinfo_sn(aim_userinfo_t *ui);
+faim_export fu16_t aim_userinfo_flags(aim_userinfo_t *ui);
+faim_export fu16_t aim_userinfo_idle(aim_userinfo_t *ui);
+faim_export float aim_userinfo_warnlevel(aim_userinfo_t *ui);
+faim_export time_t aim_userinfo_createtime(aim_userinfo_t *ui);
+faim_export time_t aim_userinfo_membersince(aim_userinfo_t *ui);
+faim_export time_t aim_userinfo_onlinesince(aim_userinfo_t *ui);
+faim_export fu32_t aim_userinfo_sessionlen(aim_userinfo_t *ui);
+faim_export int aim_userinfo_hascap(aim_userinfo_t *ui, fu32_t cap);
+#define AIM_FLAG_UNCONFIRMED    0x0001 /* "damned transients" */
+#define AIM_FLAG_ADMINISTRATOR  0x0002
+#define AIM_FLAG_AOL            0x0004
+#define AIM_FLAG_OSCAR_PAY      0x0008
+#define AIM_FLAG_FREE           0x0010
+#define AIM_FLAG_AWAY           0x0020
+#define AIM_FLAG_ICQ            0x0040
+#define AIM_FLAG_WIRELESS       0x0080
+#define AIM_FLAG_UNKNOWN100     0x0100
+#define AIM_FLAG_UNKNOWN200     0x0200
+#define AIM_FLAG_ACTIVEBUDDY    0x0400
+#define AIM_FLAG_UNKNOWN800     0x0800
+#define AIM_FLAG_ABINTERNAL     0x1000
+#define AIM_FLAG_ALLUSERS       0x001f
+#if defined(FAIM_INTERNAL) || defined(FAIM_NEED_TLV)
+/*
+ * TLV handling
+ */
+/* Generic TLV structure. */
+typedef struct aim_tlv_s {
+        fu16_t type;
+        fu16_t length;
+        fu8_t *value;
+} aim_tlv_t;
+/* List of above. */
+typedef struct aim_tlvlist_s {
+        aim_tlv_t *tlv;
+        struct aim_tlvlist_s *next;
+} aim_tlvlist_t;
+/* TLV-handling functions */
+#if 0
+/* Very, very raw TLV handling. */
+faim_internal int aim_puttlv_8(fu8_t *buf, const fu16_t t, const fu8_t v);
+faim_internal int aim_puttlv_16(fu8_t *buf, const fu16_t t, const fu16_t v);
+faim_internal int aim_puttlv_32(fu8_t *buf, const fu16_t t, const fu32_t v);
+faim_internal int aim_puttlv_raw(fu8_t *buf, const fu16_t t, const fu16_t l, const fu8_t *v);
+#endif
+/* TLV list handling. */
+faim_internal aim_tlvlist_t *aim_readtlvchain(aim_bstream_t *bs);
+faim_internal aim_tlvlist_t *aim_readtlvchain_num(aim_bstream_t *bs, fu16_t num);
+faim_internal void aim_freetlvchain(aim_tlvlist_t **list);
+faim_internal aim_tlv_t *aim_gettlv(aim_tlvlist_t *, fu16_t t, const int n);
+faim_internal char *aim_gettlv_str(aim_tlvlist_t *, const fu16_t t, const int n);
+faim_internal fu8_t aim_gettlv8(aim_tlvlist_t *list, const fu16_t type, const int num);
+faim_internal fu16_t aim_gettlv16(aim_tlvlist_t *list, const fu16_t t, const int n);
+faim_internal fu32_t aim_gettlv32(aim_tlvlist_t *list, const fu16_t t, const int n);
+faim_internal int aim_writetlvchain(aim_bstream_t *bs, aim_tlvlist_t **list);
+faim_internal int aim_addtlvtochain8(aim_tlvlist_t **list, const fu16_t t, const fu8_t v);
+faim_internal int aim_addtlvtochain16(aim_tlvlist_t **list, const fu16_t t, const fu16_t v);
+faim_internal int aim_addtlvtochain32(aim_tlvlist_t **list, const fu16_t type, const fu32_t v);
+faim_internal int aim_addtlvtochain_raw(aim_tlvlist_t **list, const fu16_t t, const fu16_t l, const fu8_t *v);
+faim_internal int aim_addtlvtochain_caps(aim_tlvlist_t **list, const fu16_t t, const fu32_t caps);
+faim_internal int aim_addtlvtochain_noval(aim_tlvlist_t **list, const fu16_t type);
+faim_internal int aim_addtlvtochain_userinfo(aim_tlvlist_t **list, fu16_t type, aim_userinfo_t *ui);
+faim_internal int aim_addtlvtochain_frozentlvlist(aim_tlvlist_t **list, fu16_t type, aim_tlvlist_t **tl);
+faim_internal int aim_counttlvchain(aim_tlvlist_t **list);
+faim_internal int aim_sizetlvchain(aim_tlvlist_t **list);
+#endif /* FAIM_INTERNAL */
+#define AIM_ICQ_STATE_NORMAL            0x00000000
+#define AIM_ICQ_STATE_AWAY              0x00000001
+#define AIM_ICQ_STATE_DND               0x00000002
+#define AIM_ICQ_STATE_OUT               0x00000004
+#define AIM_ICQ_STATE_BUSY              0x00000010
+#define AIM_ICQ_STATE_CHAT              0x00000020
+#define AIM_ICQ_STATE_INVISIBLE         0x00000100
+#define AIM_ICQ_STATE_WEBAWARE          0x00010000
+#define AIM_ICQ_STATE_HIDEIP            0x00020000
+#define AIM_ICQ_STATE_BIRTHDAY          0x00080000
+#define AIM_ICQ_STATE_DIRECTDISABLED    0x00100000
+#define AIM_ICQ_STATE_ICQHOMEPAGE       0x00200000
+#define AIM_ICQ_STATE_DIRECTREQUIREAUTH 0x10000000
+#define AIM_ICQ_STATE_DIRECTCONTACTLIST 0x20000000
 /*
 …
 typedef int (*aim_rxcallback_t)(aim_session_t *, aim_frame_t *, ...);
+/* auth.c */
 struct aim_clientrelease {
         char *name;
 …
         char *email;
         char *bosip;
+        fu16_t cookielen;
         fu8_t *cookie;
         char *chpassurl;
 …
         fu16_t group;
         const char *ip;
+        fu16_t cookielen;
         const fu8_t *cookie;
         struct { /* group == AIM_CONN_TYPE_CHAT */
 …
 faim_export int aim_request_login(aim_session_t *sess, aim_conn_t *conn, const char *sn);
 faim_export int aim_send_login(aim_session_t *, aim_conn_t *, const char *, const char *, struct client_info_s *, const char *key);
 faim_export int aim_encode_password_md5(const char *password, const char *key, unsigned char *digest);
+faim_export int aim_encode_password_md5(const char *password, const char *key, fu8_t *digest);
 faim_export void aim_purge_rxqueue(aim_session_t *);
+faim_export void aim_cleansnacs(aim_session_t *, int maxage);
 #define AIM_TX_QUEUED    0 /* default */
 …
 faim_export int aim_conn_setlatency(aim_conn_t *conn, int newval);
 faim_export int aim_conn_addhandler(aim_session_t *, aim_conn_t *conn, u_short family, u_short type, aim_rxcallback_t newhandler, u_short flags);
+faim_export int aim_conn_addhandler(aim_session_t *, aim_conn_t *conn, fu16_t family, fu16_t type, aim_rxcallback_t newhandler, fu16_t flags);
 faim_export int aim_clearhandlers(aim_conn_t *conn);
 …
 faim_export int aim_conngetmaxfd(aim_session_t *);
 faim_export aim_conn_t *aim_select(aim_session_t *, struct timeval *, int *);
+faim_export int aim_conn_in_sess(aim_session_t *sess, aim_conn_t *conn);
 faim_export int aim_conn_isready(aim_conn_t *);
 faim_export int aim_conn_setstatus(aim_conn_t *, int);
 …
 typedef void (*faim_debugging_callback_t)(aim_session_t *sess, int level, const char *format, va_list va);
 faim_export int aim_setdebuggingcb(aim_session_t *sess, faim_debugging_callback_t);
 faim_export void aim_session_init(aim_session_t *, unsigned long flags, int debuglevel);
+faim_export void aim_session_init(aim_session_t *, fu32_t flags, int debuglevel);
 faim_export void aim_session_kill(aim_session_t *);
 faim_export void aim_setupproxy(aim_session_t *sess, const char *server, const char *username, const char *password);
 …
 faim_export aim_conn_t *aim_getconn_fd(aim_session_t *, int fd);
+/* service.c */
+faim_export int aim_srv_setavailmsg(aim_session_t *sess, char *msg);
 /* misc.c */
 …
 faim_export int aim_sendpauseack(aim_session_t *sess, aim_conn_t *conn);
-faim_export int aim_send_warning(aim_session_t *sess, aim_conn_t *conn, const char *destsn, fu32_t flags);
 faim_export int aim_nop(aim_session_t *, aim_conn_t *);
 faim_export int aim_flap_nop(aim_session_t *sess, aim_conn_t *conn);
 …
 faim_export int aim_bos_changevisibility(aim_session_t *, aim_conn_t *, int, const char *);
 faim_export int aim_bos_setbuddylist(aim_session_t *, aim_conn_t *, const char *);
 faim_export int aim_bos_setprofile(aim_session_t *sess, aim_conn_t *conn, const char *profile, const char *awaymsg, fu32_t caps);
+faim_export int aim_bos_setprofile(aim_session_t *sess, aim_conn_t *conn, const char *profile_encoding, const char *profile, const int profile_len, const char *awaymsg_encoding, const char *awaymsg, const int awaymsg_len, fu32_t caps);
 faim_export int aim_bos_setgroupperm(aim_session_t *, aim_conn_t *, fu32_t mask);
 faim_export int aim_bos_setprivacyflags(aim_session_t *, aim_conn_t *, fu32_t);
 …
 faim_export int aim_setdirectoryinfo(aim_session_t *sess, aim_conn_t *conn, const char *first, const char *middle, const char *last, const char *maiden, const char *nickname, const char *street, const char *city, const char *state, const char *zip, int country, fu16_t privacy);
 faim_export int aim_setuserinterests(aim_session_t *sess, aim_conn_t *conn, const char *interest1, const char *interest2, const char *interest3, const char *interest4, const char *interest5, fu16_t privacy);
+faim_export int aim_setextstatus(aim_session_t *sess, aim_conn_t *conn, fu32_t status);
+faim_export struct aim_fileheader_t *aim_getlisting(aim_session_t *sess, FILE *);
+faim_export int aim_setextstatus(aim_session_t *sess, fu32_t status);
 #define AIM_CLIENTTYPE_UNKNOWN  0x0000
 …
 #define AIM_CLIENTTYPE_WINAIM41 0x0003
 #define AIM_CLIENTTYPE_AOL_TOC  0x0004
 faim_export unsigned short aim_fingerprintclient(unsigned char *msghdr, int len);
+faim_export fu16_t aim_im_fingerprint(const fu8_t *msghdr, int len);
 #define AIM_RATE_CODE_CHANGE     0x0001
 …
 faim_export int aim_ads_requestads(aim_session_t *sess, aim_conn_t *conn);
 /* im.c */
+struct aim_fileheader_t {
+#if 0
+        char  magic[4];         /* 0 */
+        short hdrlen;           /* 4 */
+        short hdrtype;          /* 6 */
+#endif
+        char  bcookie[8];       /* 8 */
+        short encrypt;          /* 16 */
+        short compress;         /* 18 */
+        short totfiles;         /* 20 */
+        short filesleft;        /* 22 */
+        short totparts;         /* 24 */
+        short partsleft;        /* 26 */
+        long  totsize;          /* 28 */
+        long  size;             /* 32 */
+        long  modtime;          /* 36 */
+        long  checksum;         /* 40 */
+        long  rfrcsum;          /* 44 */
+        long  rfsize;           /* 48 */
+        long  cretime;          /* 52 */
+        long  rfcsum;           /* 56 */
+        long  nrecvd;           /* 60 */
+        long  recvcsum;         /* 64 */
+        char  idstring[32];     /* 68 */
+        char  flags;            /* 100 */
+        char  lnameoffset;      /* 101 */
+        char  lsizeoffset;      /* 102 */
+        char  dummy[69];        /* 103 */
+        char  macfileinfo[16];  /* 172 */
+        short nencode;          /* 188 */
+        short nlanguage;        /* 190 */
+        char  name[64];         /* 192 */
+                                /* 256 */
+};
+#define AIM_OFT_SUBTYPE_SEND_FILE 0x0001
+#define AIM_OFT_SUBTYPE_SEND_DIR 0x0002
+#define AIM_OFT_SUBTYPE_GET_FILE 0x0011
+#define AIM_OPT_SUBTYPE_GET_LIST 0x0012
+#define AIM_OFT_SUBTYPE_SEND_FILE       0x0001
+#define AIM_OFT_SUBTYPE_SEND_DIR        0x0002
+#define AIM_OFT_SUBTYPE_GET_FILE        0x0011
+#define AIM_OPT_SUBTYPE_GET_LIST        0x0012
+#define AIM_TRANSFER_DENY_NOTSUPPORTED  0x0000
+#define AIM_TRANSFER_DENY_DECLINE       0x0001
+#define AIM_TRANSFER_DENY_NOTACCEPTING  0x0002
+#define AIM_IMPARAM_FLAG_CHANMSGS_ALLOWED       0x00000001
+#define AIM_IMPARAM_FLAG_MISSEDCALLS_ENABLED    0x00000002
+/* This is what the server will give you if you don't set them yourself. */
+#define AIM_IMPARAM_DEFAULTS { \
+, \
+        AIM_IMPARAM_FLAG_CHANMSGS_ALLOWED | AIM_IMPARAM_FLAG_MISSEDCALLS_ENABLED, \
+, /* !! Note how small this is. */ \
+        (99.9)*10, (99.9)*10, \
+/* !! And how large this is. */ \
+}
+/* This is what most AIM versions use. */
+#define AIM_IMPARAM_REASONABLE { \
+, \
+        AIM_IMPARAM_FLAG_CHANMSGS_ALLOWED | AIM_IMPARAM_FLAG_MISSEDCALLS_ENABLED, \
+, \
+        (99.9)*10, (99.9)*10, \
+\
+}
+struct aim_icbmparameters {
+        fu16_t maxchan;
+        fu32_t flags; /* AIM_IMPARAM_FLAG_ */
+        fu16_t maxmsglen; /* message size that you will accept */
+        fu16_t maxsenderwarn; /* this and below are *10 (999=99.9%) */
+        fu16_t maxrecverwarn;
+        fu32_t minmsginterval; /* in milliseconds? */
+};
 struct aim_chat_roominfo {
         unsigned short exchange;
+        fu16_t exchange;
         char *name;
         unsigned short instance;
+        fu16_t instance;
 };
 …
 #define AIM_IMFLAGS_CUSTOMFEATURES      0x0080 /* features field present */
 #define AIM_IMFLAGS_EXTDATA             0x0100
 #define AIM_IMFLAGS_CUSTOMCHARSET       0x0200 /* charset fields set */
+#define AIM_IMFLAGS_X                   0x0200
 #define AIM_IMFLAGS_MULTIPART           0x0400 /* ->mpmsg section valid */
 #define AIM_IMFLAGS_OFFLINE             0x0800 /* send to offline user */
 …
 /* Valid values for channel 2 args->status */
 #define AIM_RENDEZVOUS_PROPOSE 0x0000
 #define AIM_RENDEZVOUS_CANCEL  0x0001
 #define AIM_RENDEZVOUS_ACCEPT  0x0002
+#define AIM_RENDEZVOUS_PROPOSE  0x0000
+#define AIM_RENDEZVOUS_CANCEL   0x0001
+#define AIM_RENDEZVOUS_ACCEPT   0x0002
 struct aim_incomingim_ch2_args {
+        fu16_t status;
         fu8_t cookie[8];
+        fu16_t reqclass;
+        fu16_t status;
+        fu16_t errorcode;
+        int reqclass;
+        const char *proxyip;
         const char *clientip;
-        const char *clientip2;
         const char *verifiedip;
         fu16_t port;
+        fu16_t errorcode;
         const char *msg; /* invite message or file description */
         const char *encoding;
 …
 /* Valid values for channel 4 args->type */
 #define AIM_ICQMSG_AUTHREQUEST 0x0006
 #define AIM_ICQMSG_AUTHDENIED 0x0007
 #define AIM_ICQMSG_AUTHGRANTED 0x0008
+#define AIM_ICQMSG_AUTHREQUEST  0x0006
+#define AIM_ICQMSG_AUTHDENIED   0x0007
+#define AIM_ICQMSG_AUTHGRANTED  0x0008
 struct aim_incomingim_ch4_args {
         fu32_t uin; /* Of the sender of the ICBM */
+        fu16_t type;
+        fu8_t type;
+        fu8_t flags;
         char *msg; /* Reason for auth request, deny, or accept */
+};
+faim_export int aim_send_rtfmsg(aim_session_t *sess, struct aim_sendrtfmsg_args *args);
+faim_export int aim_send_im_ext(aim_session_t *sess, struct aim_sendimext_args *args);
+faim_export int aim_send_im(aim_session_t *, const char *destsn, unsigned short flags, const char *msg);
+faim_export int aim_send_icon(aim_session_t *sess, const char *sn, const fu8_t *icon, int iconlen, time_t stamp, fu16_t iconsum);
+faim_export fu16_t aim_iconsum(const fu8_t *buf, int buflen);
+faim_export int aim_send_typing(aim_session_t *sess, aim_conn_t *conn, int typing);
+faim_export int aim_send_im_direct(aim_session_t *, aim_conn_t *, const char *msg, int len, int encoding);
+faim_export const char *aim_directim_getsn(aim_conn_t *conn);
+faim_export aim_conn_t *aim_directim_initiate(aim_session_t *, const char *destsn);
+faim_export aim_conn_t *aim_directim_connect(aim_session_t *, const char *sn, const char *addr, const fu8_t *cookie);
+faim_export int aim_send_im_ch2_geticqmessage(aim_session_t *sess, const char *sn, int type);
+faim_export aim_conn_t *aim_sendfile_initiate(aim_session_t *, const char *destsn, const char *filename, fu16_t numfiles, fu32_t totsize, char *cookret);
+faim_export int aim_send_im_ch4(aim_session_t *sess, char *sn, fu16_t type, fu8_t *message);
+faim_export int aim_mtn_send(aim_session_t *sess, fu16_t type1, char *sn, fu16_t type2);
+faim_export aim_conn_t *aim_getfile_initiate(aim_session_t *sess, aim_conn_t *conn, const char *destsn);
+faim_export int aim_oft_getfile_request(aim_session_t *sess, aim_conn_t *conn, const char *name, int size);
+faim_export int aim_oft_sendfile_request(aim_session_t *sess, aim_conn_t *conn,
+                const char *name, int filesdone, int numfiles, int size,
+                int totsize);
+faim_export int aim_oft_getfile_ack(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_oft_end(aim_session_t *sess, aim_conn_t *conn);
+        int msglen;
+};
+/* SNAC sending functions */
+/* 0x0002 */ faim_export int aim_im_setparams(aim_session_t *sess, struct aim_icbmparameters *params);
+/* 0x0004 */ faim_export int aim_im_reqparams(aim_session_t *sess);
+/* 0x0006 */ faim_export int aim_im_sendch1_ext(aim_session_t *sess, struct aim_sendimext_args *args);
+/* 0x0006 */ faim_export int aim_im_sendch1(aim_session_t *, const char *destsn, fu16_t flags, const char *msg);
+/* 0x0006 */ faim_export int aim_im_sendch2_icon(aim_session_t *sess, const char *sn, const fu8_t *icon, int iconlen, time_t stamp, fu16_t iconsum);
+/* 0x0006 */ faim_export int aim_im_sendch2_rtfmsg(aim_session_t *sess, struct aim_sendrtfmsg_args *args);
+/* 0x0006 */ faim_export int aim_im_sendch2_odcrequest(aim_session_t *sess, fu8_t *cookie, const char *sn, const fu8_t *ip, fu16_t port);
+/* 0x0006 */ faim_export int aim_im_sendch2_sendfile_ask(aim_session_t *sess, struct aim_oft_info *oft_info);
+/* 0x0006 */ faim_export int aim_im_sendch2_sendfile_accept(aim_session_t *sess, struct aim_oft_info *info);
+/* 0x0006 */ faim_export int aim_im_sendch2_sendfile_cancel(aim_session_t *sess, struct aim_oft_info *oft_info);
+/* 0x0006 */ faim_export int aim_im_sendch2_geticqaway(aim_session_t *sess, const char *sn, int type);
+/* 0x0006 */ faim_export int aim_im_sendch4(aim_session_t *sess, char *sn, fu16_t type, fu8_t *message);
+/* 0x0008 */ faim_export int aim_im_warn(aim_session_t *sess, aim_conn_t *conn, const char *destsn, fu32_t flags);
+/* 0x000b */ faim_export int aim_im_denytransfer(aim_session_t *sess, const char *sender, const char *cookie, fu16_t code);
+/* 0x0014 */ faim_export int aim_im_sendmtn(aim_session_t *sess, fu16_t type1, const char *sn, fu16_t type2);
+/* ft.c */
+struct aim_fileheader_t {
+#if 0
+        char magic[4];          /* 0 */
+        fu16_t hdrlen;          /* 4 */
+        fu16_t hdrtype;         /* 6 */
+#endif
+        char bcookie[8];        /* 8 */
+        fu16_t encrypt;         /* 16 */
+        fu16_t compress;        /* 18 */
+        fu16_t totfiles;        /* 20 */
+        fu16_t filesleft;       /* 22 */
+        fu16_t totparts;        /* 24 */
+        fu16_t partsleft;       /* 26 */
+        fu32_t totsize;         /* 28 */
+        fu32_t size;            /* 32 */
+        fu32_t modtime;         /* 36 */
+        fu32_t checksum;        /* 40 */
+        fu32_t rfrcsum;         /* 44 */
+        fu32_t rfsize;          /* 48 */
+        fu32_t cretime;         /* 52 */
+        fu32_t rfcsum;          /* 56 */
+        fu32_t nrecvd;          /* 60 */
+        fu32_t recvcsum;        /* 64 */
+        fu8_t idstring[32];     /* 68 */
+        fu8_t flags;            /* 100 */
+        fu8_t lnameoffset;      /* 101 */
+        fu8_t lsizeoffset;      /* 102 */
+        char dummy[69];         /* 103 */
+        char macfileinfo[16];   /* 172 */
+        fu16_t nencode;         /* 188 */
+        fu16_t nlanguage;       /* 190 */
+        char name[64];          /* 192 */
+                                /* 256 */
+};
+struct aim_oft_info {
+        char cookie[8];
+        char *sn;
+        char *proxyip;
+        char *clientip;
+        char *verifiedip;
+        fu16_t port;
+        aim_conn_t *conn;
+        aim_session_t *sess;
+        struct aim_fileheader_t fh;
+        struct aim_oft_info *next;
+};
+faim_export fu32_t aim_oft_checksum_chunk(const fu8_t *buffer, int bufferlen, fu32_t prevcheck);
+faim_export fu32_t aim_oft_checksum_file(char *filename);
+faim_export int aim_handlerendconnect(aim_session_t *sess, aim_conn_t *cur);
+faim_export int aim_odc_send_typing(aim_session_t *sess, aim_conn_t *conn, int typing);
+faim_export int aim_odc_send_im(aim_session_t *sess, aim_conn_t *conn, const char *msg, int len, int encoding, int isawaymsg);
+faim_export const char *aim_odc_getsn(aim_conn_t *conn);
+faim_export aim_conn_t *aim_odc_getconn(aim_session_t *sess, const char *sn);
+faim_export aim_conn_t *aim_odc_initiate(aim_session_t *sess, const char *sn);
+faim_export aim_conn_t *aim_odc_connect(aim_session_t *sess, const char *sn, const char *addr, const fu8_t *cookie);
+faim_export struct aim_oft_info *aim_oft_createinfo(aim_session_t *sess, const fu8_t *cookie, const char *sn, const char *ip, fu16_t port, fu32_t size, fu32_t modtime, char *filename);
+faim_export int aim_oft_destroyinfo(struct aim_oft_info *oft_info);
+faim_export int aim_sendfile_listen(aim_session_t *sess, struct aim_oft_info *oft_info);
+faim_export int aim_oft_sendheader(aim_session_t *sess, fu16_t type, struct aim_oft_info *oft_info);
 /* info.c */
+#define AIM_CAPS_BUDDYICON      0x00000001
+#define AIM_CAPS_VOICE          0x00000002
+#define AIM_CAPS_IMIMAGE        0x00000004
+#define AIM_CAPS_CHAT           0x00000008
+#define AIM_CAPS_GETFILE        0x00000010
+#define AIM_CAPS_SENDFILE       0x00000020
+#define AIM_CAPS_GAMES          0x00000040
+#define AIM_CAPS_SAVESTOCKS     0x00000080
+#define AIM_CAPS_SENDBUDDYLIST  0x00000100
+#define AIM_CAPS_GAMES2         0x00000200
+#define AIM_CAPS_ICQ            0x00000400
+#define AIM_CAPS_APINFO         0x00000800
+/*
+ * AIM User Info, Standard Form.
+ */
+#define AIM_FLAG_UNCONFIRMED    0x0001 /* "damned transients" */
+#define AIM_FLAG_ADMINISTRATOR  0x0002
+#define AIM_FLAG_AOL            0x0004
+#define AIM_FLAG_OSCAR_PAY      0x0008
+#define AIM_FLAG_FREE           0x0010
+#define AIM_FLAG_AWAY           0x0020
+#define AIM_FLAG_ICQ            0x0040
+#define AIM_FLAG_WIRELESS       0x0080
+#define AIM_FLAG_UNKNOWN100     0x0100
+#define AIM_FLAG_UNKNOWN200     0x0200
+#define AIM_FLAG_ACTIVEBUDDY    0x0400
+#define AIM_FLAG_UNKNOWN800     0x0800
+#define AIM_FLAG_ABINTERNAL     0x1000
+#define AIM_FLAG_ALLUSERS       0x001f
+#define AIM_USERINFO_PRESENT_FLAGS        0x00000001
+#define AIM_USERINFO_PRESENT_MEMBERSINCE  0x00000002
+#define AIM_USERINFO_PRESENT_ONLINESINCE  0x00000004
+#define AIM_USERINFO_PRESENT_IDLE         0x00000008
+#define AIM_USERINFO_PRESENT_ICQEXTSTATUS 0x00000010
+#define AIM_USERINFO_PRESENT_ICQIPADDR    0x00000020
+#define AIM_USERINFO_PRESENT_ICQDATA      0x00000040
+#define AIM_USERINFO_PRESENT_CAPABILITIES 0x00000080
+#define AIM_USERINFO_PRESENT_SESSIONLEN   0x00000100
+#define AIM_USERINFO_PRESENT_CREATETIME   0x00000200
+typedef struct {
+        char sn[MAXSNLEN+1];
+        fu16_t warnlevel; /* evil percent * 10 (999 = 99.9%) */
+        fu16_t idletime; /* in seconds */
+        fu16_t flags;
+        fu32_t createtime; /* time_t */
+        fu32_t membersince; /* time_t */
+        fu32_t onlinesince; /* time_t */
+        fu32_t sessionlen;  /* in seconds */
+        fu32_t capabilities;
+        struct {
+                fu32_t status;
+                fu32_t ipaddr;
+                fu8_t crap[0x25]; /* until we figure it out... */
+        } icqinfo;
+        fu32_t present;
+        fu16_t iconcsumlen;
+        fu8_t *iconcsum;
+        char *availmsg_encoding;
+        char *availmsg;
+        int availmsg_len;
+} aim_userinfo_t;
+faim_export const char *aim_userinfo_sn(aim_userinfo_t *ui);
+faim_export fu16_t aim_userinfo_flags(aim_userinfo_t *ui);
+faim_export fu16_t aim_userinfo_idle(aim_userinfo_t *ui);
+faim_export float aim_userinfo_warnlevel(aim_userinfo_t *ui);
+faim_export time_t aim_userinfo_createtime(aim_userinfo_t *ui);
+faim_export time_t aim_userinfo_membersince(aim_userinfo_t *ui);
+faim_export time_t aim_userinfo_onlinesince(aim_userinfo_t *ui);
+faim_export fu32_t aim_userinfo_sessionlen(aim_userinfo_t *ui);
+faim_export int aim_userinfo_hascap(aim_userinfo_t *ui, fu32_t cap);
+#define AIM_CAPS_BUDDYICON      0x00000001
+#define AIM_CAPS_VOICE          0x00000002
+#define AIM_CAPS_DIRECTIM       0x00000004
+#define AIM_CAPS_CHAT           0x00000008
+#define AIM_CAPS_GETFILE        0x00000010
+#define AIM_CAPS_SENDFILE       0x00000020
+#define AIM_CAPS_GAMES          0x00000040
+#define AIM_CAPS_SAVESTOCKS     0x00000080
+#define AIM_CAPS_SENDBUDDYLIST  0x00000100
+#define AIM_CAPS_GAMES2         0x00000200
+#define AIM_CAPS_ICQ            0x00000400
+#define AIM_CAPS_APINFO         0x00000800
 #define AIM_CAPS_ICQRTF         0x00001000
 #define AIM_CAPS_EMPTY          0x00002000
+#define AIM_CAPS_ICQSERVERRELAY 0x00004000
+#define AIM_CAPS_ICQUNKNOWN     0x00008000
+#define AIM_CAPS_TRILLIANCRYPT  0x00010000
+#define AIM_CAPS_LAST           0x00020000
+#define AIM_CAPS_ICQSERVERRELAY 0x00004000
+#define AIM_CAPS_ICQUTF8OLD     0x00008000
+#define AIM_CAPS_TRILLIANCRYPT  0x00010000
+#define AIM_CAPS_ICQUTF8        0x00020000
+#define AIM_CAPS_INTEROPERATE   0x00040000
+#define AIM_CAPS_ICHAT          0x00080000
+#define AIM_CAPS_HIPTOP         0x00100000
+#define AIM_CAPS_SECUREIM       0x00200000
+#define AIM_CAPS_LAST           0x00400000
 faim_export int aim_0002_000b(aim_session_t *sess, aim_conn_t *conn, const char *sn);
 …
 #define AIM_SENDMEMBLOCK_FLAG_ISHASH     1
 faim_export int aim_sendmemblock(aim_session_t *sess, aim_conn_t *conn, unsigned long offset, unsigned long len, const unsigned char *buf, unsigned char flag);
+faim_export int aim_sendmemblock(aim_session_t *sess, aim_conn_t *conn, fu32_t offset, fu32_t len, const fu8_t *buf, fu8_t flag);
 #define AIM_GETINFO_GENERALINFO 0x00001
 …
 #define AIM_COOKIETYPE_OFTICON  0x15
+faim_export int aim_handlerendconnect(aim_session_t *sess, aim_conn_t *cur);
+#define AIM_TRANSFER_DENY_NOTSUPPORTED 0x0000
+#define AIM_TRANSFER_DENY_DECLINE 0x0001
+#define AIM_TRANSFER_DENY_NOTACCEPTING 0x0002
+faim_export int aim_denytransfer(aim_session_t *sess, const char *sender, const char *cookie, unsigned short code);
+faim_export aim_conn_t *aim_accepttransfer(aim_session_t *sess, aim_conn_t *conn, const char *sn, const fu8_t *cookie, const fu8_t *ip, fu16_t port, fu16_t rendid, ...);
+faim_export int aim_canceltransfer(aim_session_t *sess, aim_conn_t *conn,
+                                const char *cookie, const char *sn, int rendid);
+faim_export fu32_t aim_update_checksum(aim_session_t *sess, aim_conn_t *conn,
+                                const unsigned char *buffer, int bufferlen);
+faim_export int aim_getinfo(aim_session_t *, aim_conn_t *, const char *, unsigned short);
+faim_export int aim_sendbuddyoncoming(aim_session_t *sess, aim_conn_t *conn, aim_userinfo_t *info);
+faim_export int aim_sendbuddyoffgoing(aim_session_t *sess, aim_conn_t *conn, const char *sn);
+#define AIM_IMPARAM_FLAG_CHANMSGS_ALLOWED       0x00000001
+#define AIM_IMPARAM_FLAG_MISSEDCALLS_ENABLED    0x00000002
+/* This is what the server will give you if you don't set them yourself. */
+#define AIM_IMPARAM_DEFAULTS { \
+, \
+        AIM_IMPARAM_FLAG_CHANMSGS_ALLOWED | AIM_IMPARAM_FLAG_MISSEDCALLS_ENABLED, \
+, /* !! Note how small this is. */ \
+        (99.9)*10, (99.9)*10, \
+/* !! And how large this is. */ \
+}
+/* This is what most AIM versions use. */
+#define AIM_IMPARAM_REASONABLE { \
+, \
+        AIM_IMPARAM_FLAG_CHANMSGS_ALLOWED | AIM_IMPARAM_FLAG_MISSEDCALLS_ENABLED, \
+, \
+        (99.9)*10, (99.9)*10, \
+\
+}
+struct aim_icbmparameters {
+        fu16_t maxchan;
+        fu32_t flags; /* AIM_IMPARAM_FLAG_ */
+        fu16_t maxmsglen; /* message size that you will accept */
+        fu16_t maxsenderwarn; /* this and below are *10 (999=99.9%) */
+        fu16_t maxrecverwarn;
+        fu32_t minmsginterval; /* in milliseconds? */
+};
+faim_export int aim_reqicbmparams(aim_session_t *sess);
+faim_export int aim_seticbmparam(aim_session_t *sess, struct aim_icbmparameters *params);
+/* auth.c */
+faim_export int aim_sendcookie(aim_session_t *, aim_conn_t *, const fu8_t *);
+faim_export int aim_admin_changepasswd(aim_session_t *, aim_conn_t *, const char *newpw, const char *curpw);
+faim_export int aim_admin_reqconfirm(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_admin_getinfo(aim_session_t *sess, aim_conn_t *conn, fu16_t info);
+faim_export int aim_admin_setemail(aim_session_t *sess, aim_conn_t *conn, const char *newemail);
+faim_export int aim_admin_setnick(aim_session_t *sess, aim_conn_t *conn, const char *newnick);
+/* buddylist.c */
+faim_export int aim_add_buddy(aim_session_t *, aim_conn_t *, const char *);
+faim_export int aim_remove_buddy(aim_session_t *, aim_conn_t *, const char *);
+/* search.c */
+faim_export int aim_usersearch_address(aim_session_t *, aim_conn_t *, const char *);
+/* newsearch.c */
+struct aim_usersearch {
+/* 0x0005 */ faim_export int aim_getinfo(aim_session_t *, aim_conn_t *, const char *, fu16_t);
+/* 0x0003 - buddylist.c */
+/* 0x0004 */ faim_export int aim_add_buddy(aim_session_t *, aim_conn_t *, const char *);
+/* 0x0005 */ faim_export int aim_remove_buddy(aim_session_t *, aim_conn_t *, const char *);
+/* 0x000b */ faim_export int aim_sendbuddyoncoming(aim_session_t *sess, aim_conn_t *conn, aim_userinfo_t *info);
+/* 0x000c */ faim_export int aim_sendbuddyoffgoing(aim_session_t *sess, aim_conn_t *conn, const char *sn);
+/* 0x000a - search.c */
+faim_export int aim_search_address(aim_session_t *, aim_conn_t *, const char *);
+/* 0x000d - chatnav.c */
+/* 0x000e - chat.c */
+/* These apply to exchanges as well. */
+#define AIM_CHATROOM_FLAG_EVILABLE 0x0001
+#define AIM_CHATROOM_FLAG_NAV_ONLY 0x0002
+#define AIM_CHATROOM_FLAG_INSTANCING_ALLOWED 0x0004
+#define AIM_CHATROOM_FLAG_OCCUPANT_PEEK_ALLOWED 0x0008
+struct aim_chat_exchangeinfo {
+        fu16_t number;
+        fu16_t flags;
+        char *name;
+        char *charset1;
+        char *lang1;
+        char *charset2;
+        char *lang2;
+};
+#define AIM_CHATFLAGS_NOREFLECT 0x0001
+#define AIM_CHATFLAGS_AWAY      0x0002
+faim_export int aim_chat_send_im(aim_session_t *sess, aim_conn_t *conn, fu16_t flags, const char *msg, int msglen);
+faim_export int aim_chat_join(aim_session_t *sess, aim_conn_t *conn, fu16_t exchange, const char *roomname, fu16_t instance);
+faim_export int aim_chat_attachname(aim_conn_t *conn, fu16_t exchange, const char *roomname, fu16_t instance);
+faim_export char *aim_chat_getname(aim_conn_t *conn);
+faim_export aim_conn_t *aim_chat_getconn(aim_session_t *, const char *name);
+faim_export int aim_chatnav_reqrights(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_chat_invite(aim_session_t *sess, aim_conn_t *conn, const char *sn, const char *msg, fu16_t exchange, const char *roomname, fu16_t instance);
+faim_export int aim_chatnav_createroom(aim_session_t *sess, aim_conn_t *conn, const char *name, fu16_t exchange);
+faim_export int aim_chat_leaveroom(aim_session_t *sess, const char *name);
+/* 0x000f - odir.c */
+struct aim_odir {
         char *first;
         char *last;
 …
         char *region;
         char *address;
+        struct aim_usersearch *next;
+};
+faim_export int aim_usersearch_email(aim_session_t *, const char *, const char *);
+faim_export int aim_usersearch_name(aim_session_t *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *);
+faim_export int aim_usersearch_interest(aim_session_t *, const char *, const char *);
+/* These apply to exchanges as well. */
+#define AIM_CHATROOM_FLAG_EVILABLE 0x0001
+#define AIM_CHATROOM_FLAG_NAV_ONLY 0x0002
+#define AIM_CHATROOM_FLAG_INSTANCING_ALLOWED 0x0004
+#define AIM_CHATROOM_FLAG_OCCUPANT_PEEK_ALLOWED 0x0008
+struct aim_chat_exchangeinfo {
+        fu16_t number;
+        fu16_t flags;
+        char *name;
+        char *charset1;
+        char *lang1;
+        char *charset2;
+        char *lang2;
+};
+#define AIM_CHATFLAGS_NOREFLECT 0x0001
+#define AIM_CHATFLAGS_AWAY      0x0002
+faim_export int aim_chat_send_im(aim_session_t *sess, aim_conn_t *conn, fu16_t flags, const char *msg, int msglen);
+faim_export int aim_chat_join(aim_session_t *sess, aim_conn_t *conn, fu16_t exchange, const char *roomname, fu16_t instance);
+faim_export int aim_chat_attachname(aim_conn_t *conn, fu16_t exchange, const char *roomname, fu16_t instance);
+faim_export char *aim_chat_getname(aim_conn_t *conn);
+faim_export aim_conn_t *aim_chat_getconn(aim_session_t *, const char *name);
+faim_export int aim_chatnav_reqrights(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_chat_invite(aim_session_t *sess, aim_conn_t *conn, const char *sn, const char *msg, fu16_t exchange, const char *roomname, fu16_t instance);
+faim_export int aim_chatnav_createroom(aim_session_t *sess, aim_conn_t *conn, const char *name, fu16_t exchange);
+faim_export int aim_chat_leaveroom(aim_session_t *sess, const char *name);
+#define AIM_SSI_TYPE_BUDDY         0x0000
+#define AIM_SSI_TYPE_GROUP         0x0001
+#define AIM_SSI_TYPE_PERMIT        0x0002
+#define AIM_SSI_TYPE_DENY          0x0003
+#define AIM_SSI_TYPE_PDINFO        0x0004
+#define AIM_SSI_TYPE_PRESENCEPREFS 0x0005
+        struct aim_odir *next;
+};
+faim_export int aim_odir_email(aim_session_t *, const char *, const char *);
+faim_export int aim_odir_name(aim_session_t *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *, const char *);
+faim_export int aim_odir_interest(aim_session_t *, const char *, const char *);
+/* 0x0010 - icon.c */
+faim_export int aim_bart_upload(aim_session_t *sess, const fu8_t *icon, fu16_t iconlen);
+faim_export int aim_bart_request(aim_session_t *sess, const char *sn, const fu8_t *iconstr, fu16_t iconstrlen);
+/* 0x0013 - ssi.c */
+#define AIM_SSI_TYPE_BUDDY              0x0000
+#define AIM_SSI_TYPE_GROUP              0x0001
+#define AIM_SSI_TYPE_PERMIT             0x0002
+#define AIM_SSI_TYPE_DENY               0x0003
+#define AIM_SSI_TYPE_PDINFO             0x0004
+#define AIM_SSI_TYPE_PRESENCEPREFS      0x0005
+#define AIM_SSI_TYPE_ICONINFO           0x0014
+#define AIM_SSI_ACK_SUCCESS             0x0000
+#define AIM_SSI_ACK_ITEMNOTFOUND        0x0002
+#define AIM_SSI_ACK_IDNUMINUSE          0x000a
+#define AIM_SSI_ACK_ATMAX               0x000c
+#define AIM_SSI_ACK_INVALIDNAME         0x000d
+#define AIM_SSI_ACK_AUTHREQUIRED        0x000e
 struct aim_ssi_item {
 …
         fu16_t bid;
         fu16_t type;
         void *data;
+        struct aim_tlvlist_s *data;
         struct aim_ssi_item *next;
 };
+struct aim_ssi_tmp {
+        fu16_t action;
+        fu16_t ack;
+        char *name;
+        struct aim_ssi_item *item;
+        struct aim_ssi_tmp *next;
+};
 /* These build the actual SNACs and queue them to be sent */
+faim_export int aim_ssi_reqrights(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_reqdata(aim_session_t *sess, aim_conn_t *conn, time_t localstamp, fu16_t localrev);
+faim_export int aim_ssi_enable(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_addmoddel(aim_session_t *sess, aim_conn_t *conn, struct aim_ssi_item **items, unsigned int num, fu16_t subtype);
+faim_export int aim_ssi_modbegin(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_modend(aim_session_t *sess, aim_conn_t *conn);
+/* These handle the local variables */
+/* 0x0002 */ faim_export int aim_ssi_reqrights(aim_session_t *sess);
+/* 0x0004 */ faim_export int aim_ssi_reqdata(aim_session_t *sess);
+/* 0x0005 */ faim_export int aim_ssi_reqifchanged(aim_session_t *sess, time_t localstamp, fu16_t localrev);
+/* 0x0007 */ faim_export int aim_ssi_enable(aim_session_t *sess);
+/* 0x0008 */ faim_export int aim_ssi_addmoddel(aim_session_t *sess);
+/* 0x0011 */ faim_export int aim_ssi_modbegin(aim_session_t *sess);
+/* 0x0012 */ faim_export int aim_ssi_modend(aim_session_t *sess);
+/* 0x0014 */ faim_export int aim_ssi_sendauth(aim_session_t *sess, char *sn, char *msg);
+/* 0x0018 */ faim_export int aim_ssi_sendauthrequest(aim_session_t *sess, char *sn, char *msg);
+/* 0x001a */ faim_export int aim_ssi_sendauthreply(aim_session_t *sess, char *sn, fu8_t reply, char *msg);
+/* Client functions for retrieving SSI data */
 faim_export struct aim_ssi_item *aim_ssi_itemlist_find(struct aim_ssi_item *list, fu16_t gid, fu16_t bid);
 faim_export struct aim_ssi_item *aim_ssi_itemlist_finditem(struct aim_ssi_item *list, const char *gn, const char *sn, fu16_t type);
+faim_export struct aim_ssi_item *aim_ssi_itemlist_findparent(struct aim_ssi_item *list, char *sn);
+faim_export struct aim_ssi_item *aim_ssi_itemlist_exists(struct aim_ssi_item *list, const char *sn);
+faim_export char *aim_ssi_itemlist_findparentname(struct aim_ssi_item *list, const char *sn);
 faim_export int aim_ssi_getpermdeny(struct aim_ssi_item *list);
 faim_export fu32_t aim_ssi_getpresence(struct aim_ssi_item *list);
+faim_export int aim_ssi_cleanlist(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_addbuddies(aim_session_t *sess, aim_conn_t *conn, const char *gn, const char **sn, unsigned int num);
+faim_export int aim_ssi_addmastergroup(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_addgroups(aim_session_t *sess, aim_conn_t *conn, const char **gn, unsigned int num);
+faim_export int aim_ssi_addpord(aim_session_t *sess, aim_conn_t *conn, const char **sn, unsigned int num, fu16_t type);
+faim_export int aim_ssi_movebuddy(aim_session_t *sess, aim_conn_t *conn, const char *oldgn, const char *newgn, const char *sn);
+faim_export int aim_ssi_rename_group(aim_session_t *sess, aim_conn_t *conn, const char *oldgn, const char *newgn);
+faim_export int aim_ssi_delbuddies(aim_session_t *sess, aim_conn_t *conn, const char *gn, char **sn, unsigned int num);
+faim_export int aim_ssi_delmastergroup(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_delgroups(aim_session_t *sess, aim_conn_t *conn, char **gn, unsigned int num);
+faim_export int aim_ssi_deletelist(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_ssi_delpord(aim_session_t *sess, aim_conn_t *conn, const char **sn, unsigned int num, fu16_t type);
+faim_export int aim_ssi_setpermdeny(aim_session_t *sess, aim_conn_t *conn, fu8_t permdeny, fu32_t vismask);
+faim_export int aim_ssi_setpresence(aim_session_t *sess, aim_conn_t *conn, fu32_t presence);
+faim_export char *aim_ssi_getalias(struct aim_ssi_item *list, const char *gn, const char *sn);
+faim_export int aim_ssi_waitingforauth(struct aim_ssi_item *list, const char *gn, const char *sn);
+/* Client functions for changing SSI data */
+faim_export int aim_ssi_addbuddy(aim_session_t *sess, const char *name, const char *group, const char *alias, const char *comment, const char *smsnum, int needauth);
+faim_export int aim_ssi_addpermit(aim_session_t *sess, const char *name);
+faim_export int aim_ssi_adddeny(aim_session_t *sess, const char *name);
+faim_export int aim_ssi_delbuddy(aim_session_t *sess, const char *name, const char *group);
+faim_export int aim_ssi_delpermit(aim_session_t *sess, const char *name);
+faim_export int aim_ssi_deldeny(aim_session_t *sess, const char *name);
+faim_export int aim_ssi_movebuddy(aim_session_t *sess, const char *oldgn, const char *newgn, const char *sn);
+faim_export int aim_ssi_aliasbuddy(aim_session_t *sess, const char *gn, const char *sn, const char *alias);
+faim_export int aim_ssi_rename_group(aim_session_t *sess, const char *oldgn, const char *newgn);
+faim_export int aim_ssi_cleanlist(aim_session_t *sess);
+faim_export int aim_ssi_deletelist(aim_session_t *sess);
+faim_export int aim_ssi_setpermdeny(aim_session_t *sess, fu8_t permdeny, fu32_t vismask);
+faim_export int aim_ssi_setpresence(aim_session_t *sess, fu32_t presence);
+faim_export int aim_ssi_seticon(aim_session_t *sess, fu8_t *iconsum, fu16_t iconsumlen);
+/* 0x0015 - icq.c */
+#define AIM_ICQ_INFO_SIMPLE     0x001
+#define AIM_ICQ_INFO_SUMMARY    0x002
+#define AIM_ICQ_INFO_EMAIL      0x004
+#define AIM_ICQ_INFO_PERSONAL   0x008
+#define AIM_ICQ_INFO_ADDITIONAL 0x010
+#define AIM_ICQ_INFO_WORK       0x020
+#define AIM_ICQ_INFO_INTERESTS  0x040
+#define AIM_ICQ_INFO_ORGS       0x080
+#define AIM_ICQ_INFO_UNKNOWN    0x100
+#define AIM_ICQ_INFO_HAVEALL    0x1ff
 struct aim_icq_offlinemsg {
 …
         fu16_t year;
         fu8_t month, day, hour, minute;
+        fu16_t type;
+        fu8_t type;
+        fu8_t flags;
         char *msg;
+};
+struct aim_icq_simpleinfo {
+        int msglen;
+};
+struct aim_icq_info {
+        fu16_t reqid;
+        /* simple */
         fu32_t uin;
+        /* general and "home" information (0x00c8) */
         char *nick;
         char *first;
         char *last;
         char *email;
+        char *homecity;
+        char *homestate;
+        char *homephone;
+        char *homefax;
+        char *homeaddr;
+        char *mobile;
+        char *homezip;
+        fu16_t homecountry;
+/*      fu8_t timezone;
+        fu8_t hideemail; */
+        /* personal (0x00dc) */
+        fu8_t age;
+        fu8_t unknown;
+        fu8_t gender;
+        char *personalwebpage;
+        fu16_t birthyear;
+        fu8_t birthmonth;
+        fu8_t birthday;
+        fu8_t language1;
+        fu8_t language2;
+        fu8_t language3;
+        /* work (0x00d2) */
+        char *workcity;
+        char *workstate;
+        char *workphone;
+        char *workfax;
+        char *workaddr;
+        char *workzip;
+        fu16_t workcountry;
+        char *workcompany;
+        char *workdivision;
+        char *workposition;
+        char *workwebpage;
+        /* additional personal information (0x00e6) */
+        char *info;
+        /* email (0x00eb) */
+        fu16_t numaddresses;
+        char **email2;
+        /* we keep track of these in a linked list because we're 1337 */
+        struct aim_icq_info *next;
 };
 faim_export int aim_icq_reqofflinemsgs(aim_session_t *sess);
 faim_export int aim_icq_ackofflinemsgs(aim_session_t *sess);
+faim_export int aim_icq_hideip(aim_session_t *sess);
+faim_export int aim_icq_changepasswd(aim_session_t *sess, const char *passwd);
 faim_export int aim_icq_getsimpleinfo(aim_session_t *sess, const char *uin);
+/* email.c */
+faim_export int aim_icq_getalias(aim_session_t *sess, const char *uin);
+faim_export int aim_icq_getallinfo(aim_session_t *sess, const char *uin);
+/* 0x0017 - auth.c */
+faim_export int aim_sendcookie(aim_session_t *, aim_conn_t *, const fu16_t length, const fu8_t *);
+faim_export int aim_admin_changepasswd(aim_session_t *, aim_conn_t *, const char *newpw, const char *curpw);
+faim_export int aim_admin_reqconfirm(aim_session_t *sess, aim_conn_t *conn);
+faim_export int aim_admin_getinfo(aim_session_t *sess, aim_conn_t *conn, fu16_t info);
+faim_export int aim_admin_setemail(aim_session_t *sess, aim_conn_t *conn, const char *newemail);
+faim_export int aim_admin_setnick(aim_session_t *sess, aim_conn_t *conn, const char *newnick);
+/* 0x0018 - email.c */
 struct aim_emailinfo {
         fu8_t *cookie16;
 …
 faim_export int aim_email_activate(aim_session_t *sess, aim_conn_t *conn);
+/* tlv.c - TLV handling */
+#if defined(FAIM_INTERNAL) || defined(FAIM_NEED_TLV)
+/* Generic TLV structure. */
+typedef struct aim_tlv_s {
+        fu16_t type;
+        fu16_t length;
+        fu8_t *value;
+} aim_tlv_t;
+/* List of above. */
+typedef struct aim_tlvlist_s {
+        aim_tlv_t *tlv;
+        struct aim_tlvlist_s *next;
+} aim_tlvlist_t;
+/* TLV-handling functions */
+#if 0
+/* Very, very raw TLV handling. */
+faim_internal int aim_puttlv_8(fu8_t *buf, const fu16_t t, const fu8_t v);
+faim_internal int aim_puttlv_16(fu8_t *buf, const fu16_t t, const fu16_t v);
+faim_internal int aim_puttlv_32(fu8_t *buf, const fu16_t t, const fu32_t v);
+faim_internal int aim_puttlv_raw(fu8_t *buf, const fu16_t t, const fu16_t l, const fu8_t *v);
+#endif
+/* TLV list handling. */
+faim_internal aim_tlvlist_t *aim_readtlvchain(aim_bstream_t *bs);
+faim_internal aim_tlvlist_t *aim_readtlvchain_num(aim_bstream_t *bs, fu16_t num);
+faim_internal aim_tlvlist_t *aim_readtlvchain_len(aim_bstream_t *bs, fu16_t len);
+faim_internal aim_tlvlist_t *aim_tlvlist_copy(aim_tlvlist_t *orig);
+faim_internal int aim_tlvlist_cmp(aim_tlvlist_t *one, aim_tlvlist_t *two);
+faim_internal void aim_freetlvchain(aim_tlvlist_t **list);
+faim_internal aim_tlv_t *aim_gettlv(aim_tlvlist_t *, fu16_t t, const int n);
+faim_internal char *aim_gettlv_str(aim_tlvlist_t *, const fu16_t t, const int n);
+faim_internal fu8_t aim_gettlv8(aim_tlvlist_t *list, const fu16_t type, const int num);
+faim_internal fu16_t aim_gettlv16(aim_tlvlist_t *list, const fu16_t t, const int n);
+faim_internal fu32_t aim_gettlv32(aim_tlvlist_t *list, const fu16_t t, const int n);
+faim_internal int aim_writetlvchain(aim_bstream_t *bs, aim_tlvlist_t **list);
+faim_internal int aim_addtlvtochain8(aim_tlvlist_t **list, const fu16_t t, const fu8_t v);
+faim_internal int aim_addtlvtochain16(aim_tlvlist_t **list, const fu16_t t, const fu16_t v);
+faim_internal int aim_addtlvtochain32(aim_tlvlist_t **list, const fu16_t type, const fu32_t v);
+faim_internal int aim_addtlvtochain_raw(aim_tlvlist_t **list, const fu16_t t, const fu16_t l, const fu8_t *v);
+faim_internal int aim_addtlvtochain_caps(aim_tlvlist_t **list, const fu16_t t, const fu32_t caps);
+faim_internal int aim_addtlvtochain_noval(aim_tlvlist_t **list, const fu16_t type);
+faim_internal int aim_addtlvtochain_userinfo(aim_tlvlist_t **list, fu16_t type, aim_userinfo_t *ui);
+faim_internal int aim_addtlvtochain_frozentlvlist(aim_tlvlist_t **list, fu16_t type, aim_tlvlist_t **tl);
+faim_internal int aim_counttlvchain(aim_tlvlist_t **list);
+faim_internal int aim_sizetlvchain(aim_tlvlist_t **list);
+#endif /* FAIM_INTERNAL */
 /* util.c */
 /*
 …
+ *
  */
 #define aimutil_put8(buf, data) ((*(buf) = (u_char)(data)&0xff),1)
+#define aimutil_put8(buf, data) ((*(buf) = (fu8_t)(data)&0xff),1)
 #define aimutil_get8(buf) ((*(buf))&0xff)
 #define aimutil_put16(buf, data) ( \
                 (*(buf) = (u_char)((data)>>8)&0xff), \
                 (*((buf)+1) = (u_char)(data)&0xff),  \
+                (*(buf) = (fu8_t)((data)>>8)&0xff), \
+                (*((buf)+1) = (fu8_t)(data)&0xff),  \
 )
 #define aimutil_get16(buf) ((((*(buf))<<8)&0xff00) + ((*((buf)+1)) & 0xff))
 #define aimutil_put32(buf, data) ( \
                 (*((buf)) = (u_char)((data)>>24)&0xff), \
                 (*((buf)+1) = (u_char)((data)>>16)&0xff), \
                 (*((buf)+2) = (u_char)((data)>>8)&0xff), \
                 (*((buf)+3) = (u_char)(data)&0xff), \
+                (*((buf)) = (fu8_t)((data)>>24)&0xff), \
+                (*((buf)+1) = (fu8_t)((data)>>16)&0xff), \
+                (*((buf)+2) = (fu8_t)((data)>>8)&0xff), \
+                (*((buf)+3) = (fu8_t)(data)&0xff), \
 )
 #define aimutil_get32(buf) ((((*(buf))<<24)&0xff000000) + \
 …
 /* Little-endian versions (damn ICQ) */
 #define aimutil_putle8(buf, data) ( \
                 (*(buf) = (unsigned char)(data) & 0xff), \
+                (*(buf) = (fu8_t)(data) & 0xff), \
 )
 #define aimutil_getle8(buf) ( \
 …
+                )
 #define aimutil_putle16(buf, data) ( \
                 (*((buf)+0) = (unsigned char)((data) >> 0) & 0xff),  \
                 (*((buf)+1) = (unsigned char)((data) >> 8) & 0xff), \
+                (*((buf)+0) = (fu8_t)((data) >> 0) & 0xff),  \
+                (*((buf)+1) = (fu8_t)((data) >> 8) & 0xff), \
 )
 #define aimutil_getle16(buf) ( \
 …
+                )
 #define aimutil_putle32(buf, data) ( \
                 (*((buf)+0) = (unsigned char)((data) >>  0) & 0xff), \
                 (*((buf)+1) = (unsigned char)((data) >>  8) & 0xff), \
                 (*((buf)+2) = (unsigned char)((data) >> 16) & 0xff), \
                 (*((buf)+3) = (unsigned char)((data) >> 24) & 0xff), \
+                (*((buf)+0) = (fu8_t)((data) >>  0) & 0xff), \
+                (*((buf)+1) = (fu8_t)((data) >>  8) & 0xff), \
+                (*((buf)+2) = (fu8_t)((data) >> 16) & 0xff), \
+                (*((buf)+3) = (fu8_t)((data) >> 24) & 0xff), \
 )
 #define aimutil_getle32(buf) ( \
 …
+faim_export int aimutil_putstr(u_char *, const char *, int);
+faim_export int aimutil_tokslen(char *toSearch, int index, char dl);
+faim_export int aimutil_putstr(char *, const char *, int);
+faim_export fu16_t aimutil_iconsum(const fu8_t *buf, int buflen);
+faim_export int aim_util_getlocalip(fu8_t *ip);
+faim_export int aimutil_tokslen(char *toSearch, int theindex, char dl);
 faim_export int aimutil_itemcnt(char *toSearch, char dl);
 faim_export char *aimutil_itemidx(char *toSearch, int index, char dl);
+faim_export char *aimutil_itemindex(char *toSearch, int theindex, char dl);
 faim_export int aim_snlen(const char *sn);
 faim_export int aim_sncmp(const char *sn1, const char *sn2);
-/* for libc's that dont have it */
-faim_export char *aim_strsep(char **pp, const char *delim);
-/* meta.c */
-faim_export char *aim_getbuilddate(void);
-faim_export char *aim_getbuildtime(void);
-faim_export int aim_getbuildstring(char *buf, int buflen);
 #include <aim_internal.h>
+#ifdef __cplusplus
+}
+#endif
 #endif /* __AIM_H__ */

libfaim/aim_cbtypes.h

-                      r862371b
+                      re374dee
 #define AIM_CB_FAM_CHT 0x000e /* Chat */
 #define AIM_CB_FAM_SCH 0x000f /* "New" search */
+#define AIM_CB_FAM_ICO 0x0010 /* Used for uploading buddy icons */
 #define AIM_CB_FAM_SSI 0x0013 /* Server stored information */
 #define AIM_CB_FAM_ICQ 0x0015
 …
 /*
  * SNAC Family: "New" Search
+ *
- * Most of these are actually special.
  */
 #define AIM_CB_SCH_ERROR 0x0001
 …
 /*
+ * SNAC Family: Buddy icons
+ */
+#define AIM_CB_ICO_ERROR 0x0001
+#define AIM_CB_ICO_REQUEST 0x0004
+#define AIM_CB_ICO_RESPONSE 0x0005
+/*
  * SNAC Family: ICQ
+ *
 …
 #define AIM_CB_ICQ_OFFLINEMSG 0x00f0
 #define AIM_CB_ICQ_OFFLINEMSGCOMPLETE 0x00f1
+#define AIM_CB_ICQ_SIMPLEINFO 0x00f2
+#define AIM_CB_ICQ_INFO 0x00f2
+#define AIM_CB_ICQ_ALIAS 0x00f3
 #define AIM_CB_ICQ_DEFAULT 0xffff
 …
 #define AIM_CB_SSI_REQRIGHTS 0x0002
 #define AIM_CB_SSI_RIGHTSINFO 0x0003
+#define AIM_CB_SSI_REQLIST 0x0005
+#define AIM_CB_SSI_REQDATA 0x0004
+#define AIM_CB_SSI_REQIFCHANGED 0x0005
 #define AIM_CB_SSI_LIST 0x0006
 #define AIM_CB_SSI_ACTIVATE 0x0007
 …
 #define AIM_CB_SSI_EDITSTART 0x0011
 #define AIM_CB_SSI_EDITSTOP 0x0012
+#define AIM_CB_SSI_SENDAUTH 0x0014
+#define AIM_CB_SSI_RECVAUTH 0x0015
+#define AIM_CB_SSI_SENDAUTHREQ 0x0018
+#define AIM_CB_SSI_RECVAUTHREQ 0x0019
+#define AIM_CB_SSI_SENDAUTHREP 0x001a
+#define AIM_CB_SSI_RECVAUTHREP 0x001b
+#define AIM_CB_SSI_ADDED 0x001c
 /*
 …
  * OFT Services
+ *
+ * See non-SNAC note below.
+ */
+#define AIM_CB_OFT_DIRECTIMCONNECTREQ 0x0001/* connect request -- actually an OSCAR CAP*/
+ * For all of the above #defines, the number is the subtype
+ * of the SNAC.  For OFT #defines, the number is the
+ * "hdrtype" which comes after the magic string and OFT
+ * packet length.
+ *
+ * I'm pretty sure the ODC ones are arbitrary right now,
+ * that should be changed.
+ */
+#define AIM_CB_OFT_DIRECTIMCONNECTREQ 0x0001    /* connect request -- actually an OSCAR CAP */
 #define AIM_CB_OFT_DIRECTIMINCOMING 0x0002
 #define AIM_CB_OFT_DIRECTIMDISCONNECT 0x0003
 #define AIM_CB_OFT_DIRECTIMTYPING 0x0004
+#define AIM_CB_OFT_DIRECTIMINITIATE 0x0005
+/* had been removed, put back by kretch */
+#define AIM_CB_OFT_GETFILECONNECTREQ 0x0006 /* connect request -- actually an OSCAR CAP*/
+#define AIM_CB_OFT_GETFILELISTINGREQ 0x0007 /* OFT listing.txt request */
+#define AIM_CB_OFT_GETFILEFILEREQ 0x0008    /* received file request */
+#define AIM_CB_OFT_GETFILEFILESEND 0x0009   /* received file request confirm -- send data */
+#define AIM_CB_OFT_GETFILECOMPLETE 0x000a   /* received file send complete*/
+#define AIM_CB_OFT_GETFILEINITIATE 0x000b   /* request for file get acknowledge */
+#define AIM_CB_OFT_GETFILEDISCONNECT 0x000c   /* OFT connection disconnected.*/
+#define AIM_CB_OFT_GETFILELISTING 0x000d   /* OFT listing.txt received.*/
+#define AIM_CB_OFT_GETFILERECEIVE 0x000e   /* OFT file incoming.*/
+#define AIM_CB_OFT_GETFILELISTINGRXCONFIRM 0x000f
+#define AIM_CB_OFT_GETFILESTATE4 0x0010
+#define AIM_CB_OFT_SENDFILEFILEREQ 0x0011 /* started receiving file */
+#define AIM_CB_OFT_SENDFILEFILESEND 0x0012 /* buddy ready to for us to send */
+#define AIM_CB_OFT_SENDFILECOMPLETE 0x0013 /* send to buddy complete */
+#define AIM_CB_OFT_SENDFILEINITIATE 0x0014 /* connection to buddy initiated */
+#define AIM_CB_OFT_DIRECTIM_ESTABLISHED 0x0005
+#define AIM_CB_OFT_PROMPT 0x0101                /* "I am going to send you this file, is that ok?" */
+#define AIM_CB_OFT_RESUMESOMETHING 0x0106       /* I really don't know */
+#define AIM_CB_OFT_ACK 0x0202                   /* "Yes, it is ok for you to send me that file" */
+#define AIM_CB_OFT_DONE 0x0204                  /* "I received that file with no problems, thanks a bunch" */
+#define AIM_CB_OFT_RESUME 0x0205                /* Resume transferring, sent by whoever paused? */
+#define AIM_CB_OFT_RESUMEACK 0x0207             /* Not really sure */
+#define AIM_CB_OFT_GETFILE_REQUESTLISTING 0x1108 /* "I have a listing.txt file, do you want it?" */
+#define AIM_CB_OFT_GETFILE_RECEIVELISTING 0x1209 /* "Yes, please send me your listing.txt file" */
+#define AIM_CB_OFT_GETFILE_RECEIVEDLISTING 0x120a /* received corrupt listing.txt file? */ /* I'm just guessing about this one... */
+#define AIM_CB_OFT_GETFILE_ACKLISTING 0x120b    /* "I received the listing.txt file successfully" */
+#define AIM_CB_OFT_GETFILE_REQUESTFILE 0x120c   /* "Please send me this file" */
+#define AIM_CB_OFT_ESTABLISHED 0xFFFF           /* connection to buddy initiated */
 /*
 …
 #define AIM_CB_SPECIAL_FLAPVER 0x0005
 #define AIM_CB_SPECIAL_CONNINITDONE 0x0006
+#define AIM_CB_SPECIAL_IMAGETRANSFER 0x007
+#define AIM_CB_SPECIAL_MSGTIMEOUT 0x008
+#define AIM_CB_SPECIAL_IMAGETRANSFER 0x0007
+#define AIM_CB_SPECIAL_MSGTIMEOUT 0x0008
+#define AIM_CB_SPECIAL_CONNDEAD 0x0009
 #define AIM_CB_SPECIAL_UNKNOWN 0xffff
 #define AIM_CB_SPECIAL_DEFAULT AIM_CB_SPECIAL_UNKNOWN

libfaim/aim_internal.h

-                      r862371b
+                      re374dee
         char name[AIM_MODULENAME_MAXLEN+1];
         int (*snachandler)(aim_session_t *sess, struct aim_module_s *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs);
-        int (*snacdestructor)(aim_session_t *sess, aim_conn_t *conn, aim_modsnac_t *snac, void *data);
         void (*shutdown)(aim_session_t *sess, struct aim_module_s *mod);
 …
 faim_internal aim_module_t *aim__findmodule(aim_session_t *sess, const char *name);
+faim_internal int admin_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int buddylist_modfirst(aim_session_t *sess, aim_module_t *mod);
-faim_internal int admin_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int bos_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int search_modfirst(aim_session_t *sess, aim_module_t *mod);
 …
 faim_internal int locate_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int general_modfirst(aim_session_t *sess, aim_module_t *mod);
-faim_internal int ssi_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int invite_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int translate_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int popups_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int adverts_modfirst(aim_session_t *sess, aim_module_t *mod);
+faim_internal int odir_modfirst(aim_session_t *sess, aim_module_t *mod);
+faim_internal int bart_modfirst(aim_session_t *sess, aim_module_t *mod);
+faim_internal int ssi_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int icq_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int email_modfirst(aim_session_t *sess, aim_module_t *mod);
-faim_internal int newsearch_modfirst(aim_session_t *sess, aim_module_t *mod);
 faim_internal int aim_genericreq_n(aim_session_t *, aim_conn_t *conn, fu16_t family, fu16_t subtype);
 …
 /* rxhandlers.c */
 faim_internal aim_rxcallback_t aim_callhandler(aim_session_t *sess, aim_conn_t *conn, u_short family, u_short type);
+faim_internal aim_rxcallback_t aim_callhandler(aim_session_t *sess, aim_conn_t *conn, fu16_t family, fu16_t type);
 faim_internal int aim_callhandler_noparam(aim_session_t *sess, aim_conn_t *conn, fu16_t family, fu16_t type, aim_frame_t *ptr);
 faim_internal int aim_parse_unknown(aim_session_t *, aim_frame_t *, ...);
 …
 } aim_snac_t;
-struct aim_snac_destructor {
-        aim_conn_t *conn;
-        void *data;
-};
 /* snac.c */
 faim_internal void aim_initsnachash(aim_session_t *sess);
 …
 faim_internal aim_snacid_t aim_cachesnac(aim_session_t *sess, const fu16_t family, const fu16_t type, const fu16_t flags, const void *data, const int datalen);
 faim_internal aim_snac_t *aim_remsnac(aim_session_t *, aim_snacid_t id);
-faim_internal void aim_cleansnacs(aim_session_t *, int maxage);
 faim_internal int aim_putsnac(aim_bstream_t *, fu16_t family, fu16_t type, fu16_t flags, aim_snacid_t id);
 …
         char name[128];
         fu16_t instance;
-};
-/* these are used by aim_*_clientready */
-#define AIM_TOOL_JAVA   0x0001
-#define AIM_TOOL_MAC    0x0002
-#define AIM_TOOL_WIN16  0x0003
-#define AIM_TOOL_WIN32  0x0004
-#define AIM_TOOL_MAC68K 0x0005
-#define AIM_TOOL_MACPPC 0x0006
-#define AIM_TOOL_NEWWIN 0x0010
-struct aim_tool_version {
-        fu16_t group;
-        fu16_t version;
-        fu16_t tool;
-        fu16_t toolversion;
 };
 …
 faim_internal int aim_cookie_free(aim_session_t *sess, aim_msgcookie_t *cookie);
+faim_internal int aim_extractuserinfo(aim_session_t *sess, aim_bstream_t *bs, aim_userinfo_t *);
+faim_internal void aim_info_free(aim_userinfo_t *);
+faim_internal int aim_info_extract(aim_session_t *sess, aim_bstream_t *bs, aim_userinfo_t *);
 faim_internal int aim_putuserinfo(aim_bstream_t *bs, aim_userinfo_t *info);
 …
 faim_internal void faimdprintf(aim_session_t *sess, int dlevel, const char *format, ...);
-faim_internal int aim_request_directim(aim_session_t *sess, const char *destsn, fu8_t *ip, fu16_t port, fu8_t *ckret);
-faim_internal int aim_request_sendfile(aim_session_t *sess, const char *sn, const char *filename, fu16_t numfiles, fu32_t totsize, fu8_t *ip, fu16_t port, fu8_t *ckret);
-faim_internal void aim_conn_close_rend(aim_session_t *sess, aim_conn_t *conn);
-faim_internal void aim_conn_kill_rend(aim_session_t *sess, aim_conn_t *conn);
 faim_internal void aim_conn_kill_chat(aim_session_t *sess, aim_conn_t *conn);

libfaim/auth.c

-                      r862371b
+                      re374dee
 #define FAIM_INTERNAL
 #include <aim.h>
+#include <aim.h>
 #include "md5.h"
 static int aim_encode_password(const char *password, unsigned char *encoded);
+static int aim_encode_password(const char *password, fu8_t *encoded);
 /*
 …
+ *
  */
 faim_export int aim_sendcookie(aim_session_t *sess, aim_conn_t *conn, const fu8_t *chipsahoy)
+faim_export int aim_sendcookie(aim_session_t *sess, aim_conn_t *conn, const fu16_t length, const fu8_t *chipsahoy)
+{
         aim_frame_t *fr;
         aim_tlvlist_t *tl = NULL;
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x0001, 4+2+2+AIM_COOKIELEN)))
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x0001, 4+2+2+length)))
                 return -ENOMEM;
         aimbs_put32(&fr->data, 0x00000001);
         aim_addtlvtochain_raw(&tl, 0x0006, AIM_COOKIELEN, chipsahoy);
+        aim_addtlvtochain_raw(&tl, 0x0006, length, chipsahoy);
         aim_writetlvchain(&fr->data, &tl);
         aim_freetlvchain(&tl);
 …
         aim_frame_t *fr;
         aim_tlvlist_t *tl = NULL;
+        char *password_encoded;
+        if (!(password_encoded = (char *) malloc(strlen(password))))
+        int passwdlen;
+        fu8_t *password_encoded;
+        passwdlen = strlen(password);
+        if (!(password_encoded = (char *)malloc(passwdlen+1)))
                 return -ENOMEM;
+        if (passwdlen > MAXICQPASSLEN)
+                passwdlen = MAXICQPASSLEN;
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x01, 1152))) {
 …
         aimbs_put32(&fr->data, 0x00000001); /* FLAP Version */
         aim_addtlvtochain_raw(&tl, 0x0001, strlen(sn), sn);
         aim_addtlvtochain_raw(&tl, 0x0002, strlen(password), password_encoded);
+        aim_addtlvtochain_raw(&tl, 0x0002, passwdlen, password_encoded);
         if (ci->clientstring)
 …
         aim_addtlvtochain16(&tl, 0x0019, (fu16_t)ci->point);
         aim_addtlvtochain16(&tl, 0x001a, (fu16_t)ci->build);
         aim_addtlvtochain32(&tl, 0x0014, 0x00000055); /* distribution chan */
+        aim_addtlvtochain32(&tl, 0x0014, (fu32_t)ci->distrib); /* distribution chan */
         aim_addtlvtochain_raw(&tl, 0x000f, strlen(ci->lang), ci->lang);
         aim_addtlvtochain_raw(&tl, 0x000e, strlen(ci->country), ci->country);
 …
  * then the client information you send here must exactly match the
  * executable that you're pulling the data from.
+ *
- * WinAIM 4.8.2540
- *   clientstring = "AOL Instant Messenger (SM), version 4.8.2540/WIN32"
- *   clientid = 0x0109
- *   major = 0x0004
- *   minor = 0x0008
- *   point = 0x0000
- *   build = 0x09ec
- *   t(0x0014) = 0x000000af
- *   t(0x004a) = 0x01
+ *
- * WinAIM 4.3.2188:
- *   clientstring = "AOL Instant Messenger (SM), version 4.3.2188/WIN32"
- *   clientid = 0x0109
- *   major = 0x0400
- *   minor = 0x0003
- *   point = 0x0000
- *   build = 0x088c
- *   unknown = 0x00000086
- *   lang = "en"
- *   country = "us"
- *   unknown4a = 0x01
+ *
- * Latest WinAIM that libfaim can emulate without server-side buddylists:
- *   clientstring = "AOL Instant Messenger (SM), version 4.1.2010/WIN32"
- *   clientid = 0x0004
- *   major  = 0x0004
- *   minor  = 0x0001
- *   point = 0x0000
- *   build  = 0x07da
- *   unknown= 0x0000004b
+ *
- * WinAIM 3.5.1670:
- *   clientstring = "AOL Instant Messenger (SM), version 3.5.1670/WIN32"
- *   clientid = 0x0004
- *   major =  0x0003
- *   minor =  0x0005
- *   point = 0x0000
- *   build =  0x0686
- *   unknown =0x0000002a
+ *
  * Java AIM 1.1.19:
 …
         aim_addtlvtochain16(&tl, 0x0019, (fu16_t)ci->point);
         aim_addtlvtochain16(&tl, 0x001a, (fu16_t)ci->build);
+        aim_addtlvtochain32(&tl, 0x0014, (fu32_t)ci->distrib);
         aim_addtlvtochain_raw(&tl, 0x000e, strlen(ci->country), ci->country);
         aim_addtlvtochain_raw(&tl, 0x000f, strlen(ci->lang), ci->lang);
+#ifndef NOSSI
         /*
          * If set, old-fashioned buddy lists will not work. You will need
 …
          */
         aim_addtlvtochain8(&tl, 0x004a, 0x01);
+#endif
         aim_writetlvchain(&fr->data, &tl);
 …
         aim_tlvlist_t *tlvlist;
         aim_rxcallback_t userfunc;
         struct aim_authresp_info info;
+        struct aim_authresp_info *info;
         int ret = 0;
+        memset(&info, 0, sizeof(info));
+        info = (struct aim_authresp_info *)malloc(sizeof(struct aim_authresp_info));
+        memset(info, 0, sizeof(struct aim_authresp_info));
         /*
 …
         memset(sess->sn, 0, sizeof(sess->sn));
         if (aim_gettlv(tlvlist, 0x0001, 1)) {
                 info.sn = aim_gettlv_str(tlvlist, 0x0001, 1);
                 strncpy(sess->sn, info.sn, sizeof(sess->sn));
+                info->sn = aim_gettlv_str(tlvlist, 0x0001, 1);
+                strncpy(sess->sn, info->sn, sizeof(sess->sn));
+        }
 …
          */
         if (aim_gettlv(tlvlist, 0x0008, 1))
                 info.errorcode = aim_gettlv16(tlvlist, 0x0008, 1);
+                info->errorcode = aim_gettlv16(tlvlist, 0x0008, 1);
         if (aim_gettlv(tlvlist, 0x0004, 1))
                 info.errorurl = aim_gettlv_str(tlvlist, 0x0004, 1);
+                info->errorurl = aim_gettlv_str(tlvlist, 0x0004, 1);
         /*
 …
          */
         if (aim_gettlv(tlvlist, 0x0005, 1))
                 info.bosip = aim_gettlv_str(tlvlist, 0x0005, 1);
+                info->bosip = aim_gettlv_str(tlvlist, 0x0005, 1);
         /*
 …
                 tmptlv = aim_gettlv(tlvlist, 0x0006, 1);
+                info.cookie = tmptlv->value;
+                info->cookielen = tmptlv->length;
+                info->cookie = tmptlv->value;
+        }
         /*
          * The email address attached to this account
+         *   Not available for ICQ logins.
+         *   Not available for ICQ or @mac.com logins.
+         *   If you receive this TLV, then you are allowed to use
+         *   family 0x0018 to check the status of your email.
+         * XXX - Not really true!
          */
         if (aim_gettlv(tlvlist, 0x0011, 1))
                 info.email = aim_gettlv_str(tlvlist, 0x0011, 1);
+                info->email = aim_gettlv_str(tlvlist, 0x0011, 1);
         /*
          * The registration status.  (Not real sure what it means.)
          *   Not available for ICQ logins.
+         *   Not available for ICQ or @mac.com logins.
+         *
          *   1 = No disclosure
 …
          * to other users or not.  AFAIK, this feature is no longer used.
+         *
+         * Means you can use the admin family? (0x0007)
+         *
          */
         if (aim_gettlv(tlvlist, 0x0013, 1))
                 info.regstatus = aim_gettlv16(tlvlist, 0x0013, 1);
+                info->regstatus = aim_gettlv16(tlvlist, 0x0013, 1);
         if (aim_gettlv(tlvlist, 0x0040, 1))
                 info.latestbeta.build = aim_gettlv32(tlvlist, 0x0040, 1);
+                info->latestbeta.build = aim_gettlv32(tlvlist, 0x0040, 1);
         if (aim_gettlv(tlvlist, 0x0041, 1))
                 info.latestbeta.url = aim_gettlv_str(tlvlist, 0x0041, 1);
+                info->latestbeta.url = aim_gettlv_str(tlvlist, 0x0041, 1);
         if (aim_gettlv(tlvlist, 0x0042, 1))
                 info.latestbeta.info = aim_gettlv_str(tlvlist, 0x0042, 1);
+                info->latestbeta.info = aim_gettlv_str(tlvlist, 0x0042, 1);
         if (aim_gettlv(tlvlist, 0x0043, 1))
                 info.latestbeta.name = aim_gettlv_str(tlvlist, 0x0043, 1);
+                info->latestbeta.name = aim_gettlv_str(tlvlist, 0x0043, 1);
         if (aim_gettlv(tlvlist, 0x0048, 1))
                 ; /* no idea what this is */
         if (aim_gettlv(tlvlist, 0x0044, 1))
                 info.latestrelease.build = aim_gettlv32(tlvlist, 0x0044, 1);
+                info->latestrelease.build = aim_gettlv32(tlvlist, 0x0044, 1);
         if (aim_gettlv(tlvlist, 0x0045, 1))
                 info.latestrelease.url = aim_gettlv_str(tlvlist, 0x0045, 1);
+                info->latestrelease.url = aim_gettlv_str(tlvlist, 0x0045, 1);
         if (aim_gettlv(tlvlist, 0x0046, 1))
                 info.latestrelease.info = aim_gettlv_str(tlvlist, 0x0046, 1);
+                info->latestrelease.info = aim_gettlv_str(tlvlist, 0x0046, 1);
         if (aim_gettlv(tlvlist, 0x0047, 1))
                 info.latestrelease.name = aim_gettlv_str(tlvlist, 0x0047, 1);
+                info->latestrelease.name = aim_gettlv_str(tlvlist, 0x0047, 1);
         if (aim_gettlv(tlvlist, 0x0049, 1))
                 ; /* no idea what this is */
 …
          */
         if (aim_gettlv(tlvlist, 0x0054, 1))
+                info.chpassurl = aim_gettlv_str(tlvlist, 0x0054, 1);
+                info->chpassurl = aim_gettlv_str(tlvlist, 0x0054, 1);
+        /*
+         * Unknown.  Seen on an @mac.com screen name with value of 0x003f
+         */
+        if (aim_gettlv(tlvlist, 0x0055, 1))
+                ;
+        sess->authinfo = info;
         if ((userfunc = aim_callhandler(sess, rx->conn, snac ? snac->family : 0x0017, snac ? snac->subtype : 0x0003)))
+                ret = userfunc(sess, rx, &info);
+        free(info.sn);
+        free(info.bosip);
+        free(info.errorurl);
+        free(info.email);
+        free(info.chpassurl);
+        free(info.latestrelease.name);
+        free(info.latestrelease.url);
+        free(info.latestrelease.info);
+        free(info.latestbeta.name);
+        free(info.latestbeta.url);
+        free(info.latestbeta.info);
+                ret = userfunc(sess, rx, info);
         aim_freetlvchain(&tlvlist);
 …
         keystr = aimbs_getstr(bs, keylen);
+        /* XXX - When GiantGrayPanda signed on AIM I got a thing asking me to register
+         * for the netscape network.  This SNAC had a type 0x0058 TLV with length 10.
+         * Data is 0x0007 0004 3e19 ae1e 0006 0004 0000 0005 */
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 ret = userfunc(sess, rx, keystr);
 …
         return ret;
+}
+static void auth_shutdown(aim_session_t *sess, aim_module_t *mod)
+{
+        if (sess->authinfo) {
+                free(sess->authinfo->sn);
+                free(sess->authinfo->bosip);
+                free(sess->authinfo->errorurl);
+                free(sess->authinfo->email);
+                free(sess->authinfo->chpassurl);
+                free(sess->authinfo->latestrelease.name);
+                free(sess->authinfo->latestrelease.url);
+                free(sess->authinfo->latestrelease.info);
+                free(sess->authinfo->latestbeta.name);
+                free(sess->authinfo->latestbeta.url);
+                free(sess->authinfo->latestbeta.info);
+                free(sess->authinfo);
+        }
+}
 …
         strncpy(mod->name, "auth", sizeof(mod->name));
         mod->snachandler = snachandler;
+        return 0;
+}
+        mod->shutdown = auth_shutdown;
+        return 0;
+}

libfaim/bos.c

-                      r862371b
+                      re374dee
  * Family 0x0009 - Basic Oscar Service.
+ *
+ * The functionality of this family has been replaced by SSI.
  */
 #define FAIM_INTERNAL
 #include <aim.h>
+#include <string.h>
 /* Subtype 0x0002 - Request BOS rights. */
 …
         for (i = 0; (i < (listcount - 1)) && (i < 99); i++) {
                 tmpptr = aimutil_itemidx(localcpy, i, '&');
+                tmpptr = aimutil_itemindex(localcpy, i, '&');
                 aimbs_put8(&fr->data, strlen(tmpptr));
 …
         mod->version = 0x0001;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "bos", sizeof(mod->name));

libfaim/bstream.c

r862371b	re374dee
231	231	return NULL;
232	232	}
233
	233
234	234	ob[len] = '\0';
235	235

libfaim/buddylist.c

-                      r862371b
+                      re374dee
 #define FAIM_INTERNAL
 #include <aim.h>
+#include <string.h>
 /*
 …
+ *
  * Oncoming Buddy notifications contain a subset of the
  * user information structure.  Its close enough to run
  * through aim_extractuserinfo() however.
+ * user information structure.  It's close enough to run
+ * through aim_info_extract() however.
+ *
  * Although the offgoing notification contains no information,
  * it is still in a format parsable by extractuserinfo.
+ * it is still in a format parsable by aim_info_extract().
+ *
  */
 static int buddychange(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_userinfo_t userinfo;
         aim_rxcallback_t userfunc;
         aim_extractuserinfo(sess, bs, &userinfo);
+        aim_info_extract(sess, bs, &userinfo);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                return userfunc(sess, rx, &userinfo);
+        return 0;
+                ret = userfunc(sess, rx, &userinfo);
+        aim_info_free(&userinfo);
+        return ret;
+}
 …
         mod->version = 0x0001;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "buddylist", sizeof(mod->name));

libfaim/chat.c

-                      r862371b
+                      re374dee
 #define FAIM_INTERNAL
 #include <aim.h>
+#include <string.h>
 /* Stored in the ->priv of chat connections */
 …
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
         /*
          * Cookie
          */
         for (i = 0; i < sizeof(ckstr); i++)
                 aimutil_put8(ckstr, (fu8_t) rand());
+        for (i = 0; i < 8; i++)
+                ckstr[i] = (fu8_t)rand();
         /* XXX should be uncached by an unwritten 'invite accept' handler */
 …
                 free(priv);
+        for (i = 0; i < sizeof(ckstr); i++)
+                aimbs_put8(&fr->data, ckstr[i]);
+        /*
+         * Channel (2)
+         */
+        aimbs_put16(&fr->data, 0x0002);
+        /*
+         * Dest sn
+         */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /* ICBM Header */
+        aimbs_putraw(&fr->data, ckstr, 8); /* Cookie */
+        aimbs_put16(&fr->data, 0x0002); /* Channel */
+        aimbs_put8(&fr->data, strlen(sn)); /* Screename length */
+        aimbs_putraw(&fr->data, sn, strlen(sn)); /* Screenname */
         /*
 …
                 while (curoccupant < usercount)
                         aim_extractuserinfo(sess, &occbs, &userinfo[curoccupant++]);
+                        aim_info_extract(sess, &occbs, &userinfo[curoccupant++]);
+        }
 …
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype))) {
                 ret = userfunc(sess,
                                 rx,
+                                rx,
                                 &roominfo,
                                 roomname,
                                 usercount,
                                 userinfo,
+                                userinfo,
                                 roomdesc,
                                 flags,
 …
         free(roominfo.name);
+        while (usercount > 0)
+                aim_info_free(&userinfo[--usercount]);
         free(userinfo);
         free(roomname);
 …
                 curcount++;
                 userinfo = realloc(userinfo, curcount * sizeof(aim_userinfo_t));
                 aim_extractuserinfo(sess, bs, &userinfo[curcount-1]);
+                aim_info_extract(sess, bs, &userinfo[curcount-1]);
+        }
 …
                 ret = userfunc(sess, rx, curcount, userinfo);
+        aim_info_free(userinfo);
         free(userinfo);
 …
         aim_putsnac(&fr->data, 0x000e, 0x0005, 0x0000, snacid);
+        /*
+         * Generate a random message cookie.
+        /*
+         * Cookie
+         *
          * XXX mkcookie should generate the cookie and cache it in one
          * operation to preserve uniqueness.
+         *
+         */
+        for (i = 0; i < sizeof(ckstr); i++)
+                aimutil_put8(ckstr+i, (fu8_t) rand());
+         */
+        for (i = 0; i < 8; i++)
+                ckstr[i] = (fu8_t)rand();
         cookie = aim_mkcookie(ckstr, AIM_COOKIETYPE_CHAT, NULL);
 …
         aim_cachecookie(sess, cookie);
+        for (i = 0; i < sizeof(ckstr); i++)
+                aimbs_put8(&fr->data, ckstr[i]);
+        /*
+         * Channel ID.
+         */
+        aimbs_put16(&fr->data, 0x0003);
+        /* ICBM Header */
+        aimbs_putraw(&fr->data, ckstr, 8); /* Cookie */
+        aimbs_put16(&fr->data, 0x0003); /* Channel */
         /*
 …
          * SubTLV: Type 1: Message
          */
         aim_addtlvtochain_raw(&itl, 0x0001, strlen(msg), msg);
+        aim_addtlvtochain_raw(&itl, 0x0001, msglen, msg);
         /*
 …
                 aim_bstream_init(&tbs, userinfotlv->value, userinfotlv->length);
                 aim_extractuserinfo(sess, &tbs, &userinfo);
+                aim_info_extract(sess, &tbs, &userinfo);
+        }
 …
                 ret = userfunc(sess, rx, &userinfo, msg);
+        aim_info_free(&userinfo);
         free(cookie);
         free(msg);
 …
         mod->family = 0x000e;
         mod->version = 0x0001;
         mod->toolid = 0x0004; /* XXX this doesn't look right */
         mod->toolversion = 0x0001; /* nor does this */
+        mod->toolid = 0x0010;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "chat", sizeof(mod->name));

libfaim/chatnav.c

-                      r862371b
+                      re374dee
         mod->family = 0x000d;
         mod->version = 0x0003;
+        mod->version = 0x0001;
         mod->toolid = 0x0010;
         mod->toolversion = 0x047c;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "chatnav", sizeof(mod->name));

libfaim/configure

r5e53c4a	re374dee
747	747
748	748	if test "$GCC" = yes; then
749		CFLAGS="$CFLAGS -Wall";
	749	CFLAGS="$CFLAGS -Wall -g";
750	750	fi
751	751	# Extract the first word of "ranlib", so it can be a program name with args.

libfaim/configure.in

r5e53c4a	re374dee
6	6	dnl we're using GCC, enable all warnings
7	7	if test "$GCC" = yes; then
8		CFLAGS="$CFLAGS -Wall";
	8	CFLAGS="$CFLAGS -Wall -g";
9	9	fi
10	10	AC_PROG_RANLIB

libfaim/conn.c

-                      r862371b
+                      re374dee
          * This will free ->internal if it necessary...
          */
+        if ((*deadconn)->type == AIM_CONN_TYPE_RENDEZVOUS)
+                aim_conn_kill_rend(sess, *deadconn);
+        else if ((*deadconn)->type == AIM_CONN_TYPE_CHAT)
+        if ((*deadconn)->type == AIM_CONN_TYPE_CHAT)
                 aim_conn_kill_chat(sess, *deadconn);
 …
 faim_export void aim_conn_close(aim_conn_t *deadconn)
+{
+        aim_rxcallback_t userfunc;
         if (deadconn->fd >= 3)
                 close(deadconn->fd);
         deadconn->fd = -1;
+        if ((userfunc = aim_callhandler(deadconn->sessv, deadconn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_CONNDEAD)))
+                userfunc(deadconn->sessv, NULL, deadconn);
         if (deadconn->handlerlist)
                 aim_clearhandlers(deadconn);
-        if (deadconn->type == AIM_CONN_TYPE_RENDEZVOUS)
-                aim_conn_close_rend((aim_session_t *)deadconn->sessv, deadconn);
         return;
 …
         aim_initsnachash(sess);
         sess->msgcookies = NULL;
+        sess->icq_info = NULL;
+        sess->oft_info = NULL;
         sess->snacid_next = 0x00000001;
 …
         sess->ssi.received_data = 0;
+        sess->ssi.numitems = 0;
+        sess->ssi.official = NULL;
+        sess->ssi.local = NULL;
+        sess->ssi.pending = NULL;
+        sess->ssi.timestamp = (time_t)0;
         sess->ssi.waiting_for_ack = 0;
+        sess->ssi.holding_queue = NULL;
+        sess->ssi.revision = 0;
+        sess->ssi.items = NULL;
+        sess->ssi.timestamp = (time_t)0;
+        sess->authinfo = NULL;
         sess->emailinfo = NULL;
 …
         aim__registermodule(sess, chatnav_modfirst);
         aim__registermodule(sess, chat_modfirst);
+        aim__registermodule(sess, newsearch_modfirst);
+        /* missing 0x10 - 0x12 */
+        /*      aim__registermodule(sess, odir_modfirst); */ /* kretch */
+        /*      aim__registermodule(sess, bart_modfirst); */ /* kretch */
+        /* missing 0x11 - 0x12 */
         aim__registermodule(sess, ssi_modfirst);
         /* missing 0x14 */
 …
 faim_export int aim_conn_completeconnect(aim_session_t *sess, aim_conn_t *conn)
+{
-        fd_set fds, wfds;
-        struct timeval tv;
-        int res;
-        int error = ETIMEDOUT;
         aim_rxcallback_t userfunc;
 …
                 return -1;
+        FD_ZERO(&fds);
+        FD_SET(conn->fd, &fds);
+        FD_ZERO(&wfds);
+        FD_SET(conn->fd, &wfds);
+        tv.tv_sec = 0;
+        tv.tv_usec = 0;
+        if ((res = select(conn->fd+1, &fds, &wfds, NULL, &tv)) == -1) {
+                error = errno;
+                aim_conn_close(conn);
+                errno = error;
+                return -1;
+        } else if (res == 0) {
+                faimdprintf(sess, 0, "aim_conn_completeconnect: false alarm on %d\n", conn->fd);
+                return 0; /* hasn't really completed yet... */
+        }
+        if (FD_ISSET(conn->fd, &fds) || FD_ISSET(conn->fd, &wfds)) {
+                int len = sizeof(error);
+                if (getsockopt(conn->fd, SOL_SOCKET, SO_ERROR, &error, &len) < 0)
+                        error = errno;
+        }
+        if (error) {
+                aim_conn_close(conn);
+                errno = error;
+                return -1;
+        }
+        fcntl(conn->fd, F_SETFL, 0); /* XXX should restore original flags */
+        fcntl(conn->fd, F_SETFL, 0);
         conn->status &= ~AIM_CONN_STATUS_INPROGRESS;

libfaim/email.c

-                      r862371b
+                      re374dee
 /**
  * Subtype 0x0007 - Receive information about your email account
+ *
  * So I don't even know if you can have multiple 16 byte keys,
  * but this is coded so it will handle that, and handle it well.
 …
 static int parseinfo(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         struct aim_emailinfo *new;
 …
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                return userfunc(sess, rx, new, havenewmail);
+        return 0;
+                ret = userfunc(sess, rx, new, havenewmail);
+        aim_freetlvchain(&tlvlist);
+        return ret;
+}

libfaim/ft.c

-                      r862371b
+                      re374dee
 /*
+ * File transfer (OFT) and DirectIM (ODC).
+ * (OSCAR File Transfer, Oscar Direct Connect(ion?)
+ * Oscar File transfer (OFT) and Oscar Direct Connect (ODC).
+ * (ODC is also referred to as DirectIM and IM Image.)
+ *
+ * There are a few static helper functions at the top, then
+ * ODC stuff, then ft stuff.
+ *
+ * I feel like this is a good place to explain OFT, so I'm going to
+ * do just that.  Each OFT packet has a header type.  I guess this
+ * is pretty similar to the subtype of a SNAC packet.  The type
+ * basically tells the other client the meaning of the OFT packet.
+ * There are two distinct types of file transfer, which I usually
+ * call "sendfile" and "getfile."  Sendfile is when you send a file
+ * to another AIM user.  Getfile is when you share a group of files,
+ * and other users request that you send them the files.
+ *
+ * A typical sendfile file transfer goes like this:
+ *   1) Sender sends a channel 2 ICBM telling the other user that
+ *      we want to send them a file.  At the same time, we open a
+ *      listener socket (this should be done before sending the
+ *      ICBM) on some port, and wait for them to connect to us.
+ *      The ICBM we sent should contain our IP address and the port
+ *      number that we're listening on.
+ *   2) The receiver connects to the sender on the given IP address
+ *      and port.  After the connection is established, the receiver
+ *      sends an ICBM signifying that we are ready and waiting.
+ *   3) The sender sends an OFT PROMPT message over the OFT
+ *      connection.
+ *   4) The receiver of the file sends back an exact copy of this
+ *      OFT packet, except the cookie is filled in with the cookie
+ *      from the ICBM.  I think this might be an attempt to verify
+ *      that the user that is connected is actually the guy that
+ *      we sent the ICBM to.  Oh, I've been calling this the ACK.
+ *   5) The sender starts sending raw data across the connection
+ *      until the entire file has been sent.
+ *   6) The receiver knows the file is finished because the sender
+ *      sent the file size in an earlier OFT packet.  So then the
+ *      receiver sends the DONE thingy (after filling in the
+ *      "received" checksum and size) and closes the connection.
  */
 #define FAIM_INTERNAL
 #ifdef HAVE_CONFIG_H
 #include <config.h>
+#include  <config.h>
 #endif
 #include <aim.h>
 #ifndef _WIN32
+#include <stdio.h>
 #include <netdb.h>
 #include <sys/socket.h>
 #include <netinet/in.h>
 #include <sys/utsname.h> /* for aim_directim_initiate */
+#include <sys/utsname.h> /* for aim_odc_initiate */
 #include <arpa/inet.h> /* for inet_ntoa */
 #define G_DIR_SEPARATOR '/'
 …
 #endif
+#define AIM_OFT_PROTO_OFFER          0x0101
+#define AIM_OFT_PROTO_ACCEPT         0x0202
+#define AIM_OFT_PROTO_RESUME         0x0205
+#define AIM_OFT_PROTO_RESUMEACCEPT   0x0207
+#define AIM_OFT_PROTO_ACK            0x0204
+struct aim_filetransfer_priv {
+        char sn[MAXSNLEN+1];
+        char cookie[8];
+        char ip[30];
+        int state;
+        struct aim_fileheader_t fh;
+};
+struct aim_directim_intdata {
+struct aim_odc_intdata {
         fu8_t cookie[8];
         char sn[MAXSNLEN+1];
 …
 };
+static int listenestablish(fu16_t portnum);
+static struct aim_fileheader_t *aim_oft_getfh(aim_bstream_t *bs);
+static void oft_dirconvert(char *name);
+static int aim_oft_buildheader(aim_bstream_t *bs, struct aim_fileheader_t *fh);
+/**
+ * aim_handlerendconnect - call this to accept OFT connections and set up the required structures
+ * @sess: the session
+ * @cur: the conn the incoming connection is on
+ *
+ * call this when you get an outstanding read on a conn with subtype
+ * AIM_CONN_SUBTYPE_RENDEZVOUS_OUT, it will clone the current
+ * &aim_conn_t and tweak things as appropriate. the new conn and the
+ * listener conn are both returned to the client in the
+ * %AIM_CB_FAM_OFT, %AIM_CB_OFT_<CLASS>INITIATE callback.
+ */
+faim_export int aim_handlerendconnect(aim_session_t *sess, aim_conn_t *cur)
+{
+        int acceptfd = 0;
+        struct sockaddr cliaddr;
+        int clilen = sizeof(cliaddr);
+        int ret = 0;
+        aim_conn_t *newconn;
+        if ((acceptfd = accept(cur->fd, &cliaddr, &clilen)) == -1)
+                return 0; /* not an error */
+        if (cliaddr.sa_family != AF_INET) { /* just in case IPv6 really is happening */
+                close(acceptfd);
+                aim_conn_close(cur);
+                return -1;
+        }
+        if (!(newconn = aim_cloneconn(sess, cur))) {
+                close(acceptfd);
+                aim_conn_close(cur);
+                return -1;
+        }
+        newconn->type = AIM_CONN_TYPE_RENDEZVOUS;
+        newconn->fd = acceptfd;
+        if (newconn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM) {
+                struct aim_directim_intdata *priv;
+                aim_rxcallback_t userfunc;
+                priv = (struct aim_directim_intdata *)(newconn->internal = cur->internal);
+                cur->internal = NULL;
+                snprintf(priv->ip, sizeof(priv->ip), "%s:%u",
+                                inet_ntoa(((struct sockaddr_in *)&cliaddr)->sin_addr),
+                                ntohs(((struct sockaddr_in *)&cliaddr)->sin_port));
+                if ((userfunc = aim_callhandler(sess, newconn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMINITIATE)))
+                        ret = userfunc(sess, NULL, newconn, cur);
+        } else if (newconn->subtype == AIM_CONN_SUBTYPE_OFT_GETFILE) {
+#if 0
+                struct aim_filetransfer_priv *priv;
+                aim_rxcallback_t userfunc;
+                newconn->priv = cur->priv;
+                cur->priv = NULL;
+                priv = (struct aim_filetransfer_priv *)newconn->priv;
+                snprintf(priv->ip, sizeof(priv->ip), "%s:%u", inet_ntoa(((struct sockaddr_in *)&cliaddr)->sin_addr), ntohs(((struct sockaddr_in *)&cliaddr)->sin_port));
+                if ((userfunc = aim_callhandler(sess, newconn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILEINITIATE)))
+                        ret = userfunc(sess, NULL, newconn, cur);
+#endif
+        } else if (newconn->subtype == AIM_CONN_SUBTYPE_OFT_SENDFILE) {
+                struct aim_filetransfer_priv *ft;
+                aim_rxcallback_t userfunc;
+                /* The new conn automatically inherits the internal value
+                 * of cur. */
+                cur->internal = NULL;
+                ft = (struct aim_filetransfer_priv *)newconn->internal;
+                snprintf(ft->ip, sizeof(ft->ip), "%s:%u", inet_ntoa(((struct sockaddr_in *)&cliaddr)->sin_addr), ntohs(((struct sockaddr_in *)&cliaddr)->sin_port));
+                if ((userfunc = aim_callhandler(sess, newconn, AIM_CB_FAM_OFT, AIM_CB_OFT_SENDFILEINITIATE)))
+                        ret = userfunc(sess, NULL, newconn, cur);
+        } else {
+                faimdprintf(sess, 1,"Got a Connection on a listener that's not Rendezvous Closing conn.\n");
+                aim_conn_close(newconn);
+                ret = -1;
+        }
+        return ret;
+}
+/**
+ * aim_send_typing - send client-to-client typing notification over established connection
+ * @sess: session to conn
+ * @conn: directim connection
+ * @typing: If true, notify user has started typing; if false, notify user has stopped.
+ *
+ * The connection must have been previously established.
+ */
+faim_export int aim_send_typing(aim_session_t *sess, aim_conn_t *conn, int typing)
+{
+        struct aim_directim_intdata *intdata = (struct aim_directim_intdata *)conn->internal;
+        aim_frame_t *fr;
+        aim_bstream_t *hdrbs;
+        fu8_t *hdr;
+        int hdrlen = 0x44;
+        if (!sess || !conn || (conn->type != AIM_CONN_TYPE_RENDEZVOUS))
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x01, 0)))
+                return -ENOMEM;
+        memcpy(fr->hdr.rend.magic, "ODC2", 4);
+        fr->hdr.rend.hdrlen = hdrlen;
+        if (!(hdr = calloc(1, hdrlen))) {
+                aim_frame_destroy(fr);
+                return -ENOMEM;
+        }
+        hdrbs = &(fr->data);
+        aim_bstream_init(hdrbs, hdr, hdrlen);
+        aimbs_put16(hdrbs, 0x0006);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, intdata->cookie, 8);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put32(hdrbs, 0x00000000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        /* flags -- 0x000e for "started typing", 0x0002 for "stopped typing */
+        aimbs_put16(hdrbs, ( typing ? 0x000e : 0x0002));
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, sess->sn, strlen(sess->sn));
+        aim_bstream_setpos(hdrbs, 52); /* bleeehh */
+        aimbs_put8(hdrbs, 0x00);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put8(hdrbs, 0x00);
+        /* end of hdr */
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/**
+ * aim_send_im_direct - send IM client-to-client over established connection
+ * @sess: session to conn
+ * @conn: directim connection
+ * @msg: null-terminated string to send.
+ * @len: The length of the message to send, including binary data.
+ * @encoding: 0 for ascii, 2 for Unicode, 3 for ISO 8859-1
+ *
+ * Call this just like you would aim_send_im, to send a directim. You
+ * _must_ have previously established the directim connection.
+ */
+faim_export int aim_send_im_direct(aim_session_t *sess, aim_conn_t *conn, const char *msg, int len, int encoding)
+{
+        struct aim_directim_intdata *intdata = (struct aim_directim_intdata *)conn->internal;
+        aim_frame_t *fr;
+        aim_bstream_t *hdrbs;
+        int hdrlen = 0x44;
+        fu8_t *hdr;
+        if (!sess || !conn || !msg || (conn->type != AIM_CONN_TYPE_RENDEZVOUS))
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x01, len)))
+                return -ENOMEM;
+        memcpy(fr->hdr.rend.magic, "ODC2", 4);
+        fr->hdr.rend.hdrlen = hdrlen;
+        if (!(hdr = calloc(1, hdrlen + len))) {
+                aim_frame_destroy(fr);
+                return -ENOMEM;
+        }
+        hdrbs = &(fr->data);
+        aim_bstream_init(hdrbs, hdr, hdrlen + len);
+        aimbs_put16(hdrbs, 0x0006);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, intdata->cookie, 8);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put32(hdrbs, len);
+        aimbs_put16(hdrbs, encoding);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        /* flags -- 0x000e for "started typing", 0x0002 for "stopped typing, 0x0000 for message */
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, sess->sn, strlen(sess->sn));
+        aim_bstream_setpos(hdrbs, 52); /* bleeehh */
+        aimbs_put8(hdrbs, 0x00);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put8(hdrbs, 0x00);
+        /* end of hdr2 */
+#if 0 /* XXX this is how you send buddy icon info... */
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x0008);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x000c);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x0000);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x1466);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x0001);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x2e0f);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0x393e);
+        i += aimutil_put16(newpacket->hdr.oft.hdr2+i, 0xcac8);
+#endif
+        aimbs_putraw(hdrbs, msg, len);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+static int getlocalip(fu8_t *ip)
+{
+        struct hostent *hptr;
+        char localhost[129];
+        /* XXX if available, use getaddrinfo() */
+        /* XXX allow client to specify which IP to use for multihomed boxes */
+        if (gethostname(localhost, 128) < 0)
+                return -1;
+        if (!(hptr = gethostbyname(localhost)))
+                return -1;
+        memcpy(ip, hptr->h_addr_list[0], 4);
+        return 0;
+}
+/**
+ * aim_directim_intitiate - For those times when we want to open up the directim channel ourselves.
+ * @sess: your session,
+ * @conn: the BOS conn,
+ * @priv: a dummy priv value (we'll let it get filled in later) (if you pass a %NULL, we alloc one)
+ * @destsn: the SN to connect to.
+ *
+ */
+faim_export aim_conn_t *aim_directim_initiate(aim_session_t *sess, const char *destsn)
+{
+        aim_conn_t *newconn;
+        aim_msgcookie_t *cookie;
+        struct aim_directim_intdata *priv;
+        int listenfd;
+        fu16_t port = 4443;
+        fu8_t localip[4];
+        fu8_t ck[8];
+        if (getlocalip(localip) == -1)
+                return NULL;
+        if ((listenfd = listenestablish(port)) == -1)
+                return NULL;
+        aim_request_directim(sess, destsn, localip, port, ck);
+        cookie = (aim_msgcookie_t *)calloc(1, sizeof(aim_msgcookie_t));
+        memcpy(cookie->cookie, ck, 8);
+        cookie->type = AIM_COOKIETYPE_OFTIM;
+        /* this one is for the cookie */
+        priv = (struct aim_directim_intdata *)calloc(1, sizeof(struct aim_directim_intdata));
+        memcpy(priv->cookie, ck, 8);
+        strncpy(priv->sn, destsn, sizeof(priv->sn));
+        cookie->data = priv;
+        aim_cachecookie(sess, cookie);
+        /* XXX switch to aim_cloneconn()? */
+        if (!(newconn = aim_newconn(sess, AIM_CONN_TYPE_RENDEZVOUS_OUT, NULL))) {
+                close(listenfd);
+                return NULL;
+        }
+        /* this one is for the conn */
+        priv = (struct aim_directim_intdata *)calloc(1, sizeof(struct aim_directim_intdata));
+        memcpy(priv->cookie, ck, 8);
+        strncpy(priv->sn, destsn, sizeof(priv->sn));
+        newconn->fd = listenfd;
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_DIRECTIM;
+        newconn->internal = priv;
+        newconn->lastactivity = time(NULL);
+        faimdprintf(sess, 2,"faim: listening (fd = %d, unconnected)\n", newconn->fd);
+        return newconn;
+}
+/**
+ * aim_sendfile_intitiate - For those times when we want to send the file ourselves.
+ * @sess: your session,
+ * @conn: the BOS conn,
+ * @destsn: the SN to connect to.
+ * @filename: the name of the files you want to send
+ *
+ */
+faim_export aim_conn_t *aim_sendfile_initiate(aim_session_t *sess, const char *destsn, const char *filename, fu16_t numfiles, fu32_t totsize, char *cookret)
+{
+        aim_conn_t *newconn;
+        aim_msgcookie_t *cookie;
+        struct aim_filetransfer_priv *ft;
+        int listenfd;
+        /* XXX allow different ports */
+        fu16_t port = 4443;
+        fu8_t localip[4];
+        fu8_t ck[8];
+        if (getlocalip(localip) == -1)
+                return NULL;
+        if ((listenfd = listenestablish(port)) == -1)
+                return NULL;
+        aim_request_sendfile(sess, destsn, filename, numfiles, totsize, localip, port, ck);
+        cookie = (aim_msgcookie_t *)calloc(1, sizeof(aim_msgcookie_t));
+        memcpy(cookie->cookie, ck, 8);
+        cookie->type = AIM_COOKIETYPE_OFTSEND;
+        memcpy(cookret, ck, 8);
+        /* this one is for the cookie */
+        ft = (struct aim_filetransfer_priv *)calloc(1, sizeof(struct aim_filetransfer_priv));
+        memcpy(ft->cookie, ck, 8);
+        strncpy(ft->sn, destsn, sizeof(ft->sn));
+        cookie->data = ft;
+        aim_cachecookie(sess, cookie);
+        if (!(newconn = aim_newconn(sess, AIM_CONN_TYPE_RENDEZVOUS_OUT, NULL))) {
+                close(listenfd);
+                return NULL;
+        }
+        /* this one is for the conn */
+        ft = (struct aim_filetransfer_priv *)calloc(1, sizeof(struct aim_filetransfer_priv));
+        memcpy(ft->cookie, ck, 8);
+        strncpy(ft->sn, destsn, sizeof(ft->sn));
+        newconn->fd = listenfd;
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_SENDFILE;
+        newconn->internal = ft;
+        newconn->lastactivity = time(NULL);
+        faimdprintf(sess, 2,"faim: listening (fd = %d, unconnected)\n", newconn->fd);
+        return newconn;
+}
+#if 0
+/**
+ * unsigned int aim_oft_listener_clean - close up old listeners
+ * @sess: session to clean up in
+ * @age: maximum age in seconds
+ *
+ * returns number closed, -1 on error.
+ */
+faim_export unsigned int aim_oft_listener_clean(aim_session_t *sess, time_t age)
+{
+        aim_conn_t *cur;
+        time_t now;
+        unsigned int hit = 0;
+        if (!sess)
+                return -1;
+        now = time(NULL);
+        for(cur = sess->connlist;cur; cur = cur->next)
+                if (cur->type == AIM_CONN_TYPE_RENDEZVOUS_OUT) {
+                        if (cur->lastactivity < (now - age) ) {
+                                aim_conn_close(cur);
+                                hit++;
+                        }
+                }
+        return hit;
+}
+#endif
+faim_export const char *aim_directim_getsn(aim_conn_t *conn)
+{
+        struct aim_directim_intdata *intdata;
+        if (!conn)
+                return NULL;
+        if ((conn->type != AIM_CONN_TYPE_RENDEZVOUS) ||
+                        (conn->subtype != AIM_CONN_SUBTYPE_OFT_DIRECTIM))
+                return NULL;
+        if (!conn->internal)
+                return NULL;
+        intdata = (struct aim_directim_intdata *)conn->internal;
+        return intdata->sn;
+}
+/**
+ * aim_directim_connect - connect to buddy for directim
+ * @sess: the session to append the conn to,
+ * @sn: the SN we're connecting to
+ * @addr: address to connect to
+ *
+ * This is a wrapper for aim_newconn.
+ *
+ * If addr is NULL, the socket is not created, but the connection is
+ * allocated and setup to connect.
+ *
+ */
+faim_export aim_conn_t *aim_directim_connect(aim_session_t *sess, const char *sn, const char *addr, const fu8_t *cookie)
+{
+        aim_conn_t *newconn;
+        struct aim_directim_intdata *intdata;
+        if (!sess || !sn)
+                return NULL;
+        if (!(intdata = malloc(sizeof(struct aim_directim_intdata))))
+                return NULL;
+        memset(intdata, 0, sizeof(struct aim_directim_intdata));
+        memcpy(intdata->cookie, cookie, 8);
+        strncpy(intdata->sn, sn, sizeof(intdata->sn));
+        if (addr)
+                strncpy(intdata->ip, addr, sizeof(intdata->ip));
+        /* XXX verify that non-blocking connects actually work */
+        if (!(newconn = aim_newconn(sess, AIM_CONN_TYPE_RENDEZVOUS, addr))) {
+                free(intdata);
+                return NULL;
+        }
+        if (!newconn) {
+                free(intdata);
+                return newconn;
+        }
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_DIRECTIM;
+        newconn->internal = intdata;
+        return newconn;
+}
+/**
+ * aim_directim_getconn - find a directim conn for buddy name
+ * @sess: your session,
+ * @name: the name to get,
+ *
+ * returns conn for directim with name, %NULL if none found.
+ *
+ */
+faim_export aim_conn_t *aim_directim_getconn(aim_session_t *sess, const char *name)
+{
+        aim_conn_t *cur;
+        if (!sess || !name || !strlen(name))
+                return NULL;
+        for (cur = sess->connlist; cur; cur = cur->next) {
+                struct aim_directim_intdata *intdata;
+                if ((cur->type != AIM_CONN_TYPE_RENDEZVOUS) || (cur->subtype != AIM_CONN_SUBTYPE_OFT_DIRECTIM))
+                        continue;
+                intdata = cur->internal;
+                if (aim_sncmp(intdata->sn, name) == 0)
+                        break;
+        }
+        return cur;
+}
+/**
+ * aim_accepttransfer - accept a file transfer request
+ * @sess: the session,
+ * @conn: the BOS conn for the CAP reply
+ * @sn: the screenname to send it to,
+ * @cookie: the cookie used
+ * @ip: the ip to connect to
+ * @port: the port to use
+ * @rendid: capability type (%AIM_CAPS_GETFILE or %AIM_CAPS_SENDFILE)
+ *
+ * @listingfiles: number of files to share
+ * @listingtotsize: total size of shared files
+ * @listingsize: length of the listing file(buffer)
+ * @listingchecksum: checksum of the listing
+ *
+ * Returns new connection or %NULL on error.
+ *
+ * XXX this should take a struct.
+ */
+faim_export aim_conn_t *aim_accepttransfer(aim_session_t *sess, aim_conn_t *conn, const char *sn,
+                                                const fu8_t *cookie, const fu8_t *ip,
+                                                fu16_t port, fu16_t rendid, ...)
+{
+        aim_frame_t *newpacket;
+        aim_conn_t *newconn;
+        struct aim_filetransfer_priv *priv;
+/**
+ * Convert the directory separator from / (0x2f) to ^A (0x01)
+ *
+ * @param name The filename to convert.
+ */
+static void aim_oft_dirconvert_tostupid(char *name)
+{
+        while (name[0]) {
+                if (name[0] == 0x01)
+                        name[0] = G_DIR_SEPARATOR;
+                name++;
+        }
+}
+/**
+ * Convert the directory separator from ^A (0x01) to / (0x2f)
+ *
+ * @param name The filename to convert.
+ */
+static void aim_oft_dirconvert_fromstupid(char *name)
+{
+        while (name[0]) {
+                if (name[0] == G_DIR_SEPARATOR)
+                        name[0] = 0x01;
+                name++;
+        }
+}
+/**
+ * Calculate oft checksum of buffer
+ *
+ * Prevcheck should be 0xFFFF0000 when starting a checksum of a file.  The
+ * checksum is kind of a rolling checksum thing, so each time you get bytes
+ * of a file you just call this puppy and it updates the checksum.  You can
+ * calculate the checksum of an entire file by calling this in a while or a
+ * for loop, or something.
+ *
+ * Thanks to Graham Booker for providing this improved checksum routine,
+ * which is simpler and should be more accurate than Josh Myer's original
+ * code. -- wtm
+ *
+ * This algorithim works every time I have tried it.  The other fails
+ * sometimes.  So, AOL who thought this up?  It has got to be the weirdest
+ * checksum I have ever seen.
+ *
+ * @param buffer Buffer of data to checksum.  Man I'd like to buff her...
+ * @param bufsize Size of buffer.
+ * @param prevcheck Previous checksum.
+ */
+faim_export fu32_t aim_oft_checksum_chunk(const fu8_t *buffer, int bufferlen, fu32_t prevcheck)
+{
+        fu32_t check = (prevcheck >> 16) & 0xffff, oldcheck;
         int i;
+        char addr[21];
+        if (!sess || !conn || !sn || !cookie || !ip) {
+                return NULL;
+        }
+        /* OSCAR CAP accept packet */
+        if (!(newpacket = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x0002, 10+8+2+1+strlen(sn)+4+2+8+16))) {
+                return NULL;
+        }
+        aim_putsnac(&newpacket->data, 0x0004, 0x0006, 0x0000, sess->snacid_next);
+        for (i = 0; i < 8; i++)
+                aimbs_put8(&newpacket->data, cookie[i]);
+        aimbs_put16(&newpacket->data, 0x0002);
+        aimbs_put8(&newpacket->data, strlen(sn));
+        aimbs_putraw(&newpacket->data, sn, strlen(sn));
+        aimbs_put16(&newpacket->data, 0x0005);
+        aimbs_put16(&newpacket->data, 0x001a);
+        aimbs_put16(&newpacket->data, AIM_RENDEZVOUS_ACCEPT);
+        for (i = 0; i < 8; i++) /* yes, again... */
+                aimbs_put8(&newpacket->data, cookie[i]);
+        aim_putcap(&newpacket->data, rendid);
+        aim_tx_enqueue(sess, newpacket);
+        snprintf(addr, sizeof(addr), "%s:%d", ip, port);
+        newconn = aim_newconn(sess, AIM_CONN_TYPE_RENDEZVOUS, addr);
+        if (newconn->status & AIM_CONN_STATUS_CONNERR) {
+                return NULL;
+        }
+        if (!newconn || (newconn->fd == -1)) {
+                perror("aim_newconn");
+        faimdprintf(sess, 2, "could not connect to %s (fd: %i)\n", ip, newconn?newconn->fd:0);
+                return newconn;
+        }
+        priv = (struct aim_filetransfer_priv *)calloc(1, sizeof(struct aim_filetransfer_priv));
+        memcpy(priv->cookie, cookie, 8);
+        priv->state = 0;
+        strncpy(priv->sn, sn, MAXSNLEN);
+        strncpy(priv->ip, ip, sizeof(priv->ip));
+        newconn->internal = (void *)priv;
+        faimdprintf(sess, 2, "faim: connected to peer (fd = %d)\n", newconn->fd);
+        if (rendid == AIM_CAPS_GETFILE) {
+                return NULL; /* This should never happen for now. -- wtm */
+#if 0
+        struct aim_fileheader_t *fh;
+        aim_frame_t *newoft;
+        aim_msgcookie_t *cachedcook;
+        /* XXX take the following parameters    fu16_t listingfiles,
+                                                fu16_t listingtotsize,
+                                                fu16_t listingsize,
+                                                fu32_t listingchecksum, */
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_GETFILE;
+        faimdprintf(sess, 2, "faim: getfile request accept\n");
+        if (!(newoft = aim_tx_new(sess, newconn, AIM_FRAMETYPE_OFT, 0x1108, 0))) {
+                faimdprintf(sess, 2, "faim: aim_accepttransfer: tx_new OFT failed\n");
+                /* XXX: conn leak here */
+                return NULL;
+        }
+        memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+        newoft->hdr.oft.hdr2len = 0x100 - 8;
+        if (!(fh = (struct aim_fileheader_t*)calloc(1, sizeof(struct aim_fileheader_t)))) {
+                /* XXX: conn leak here */
+                perror("calloc");
+                return NULL;
+        }
+        fh->encrypt = 0x0000;
+        fh->compress = 0x0000;
+        fh->totfiles = listingfiles;
+        fh->filesleft = listingfiles; /* is this right -- total parts and parts left?*/
+        fh->totparts = 0x0001;
+        fh->partsleft = 0x0001;
+        fh->totsize = listingtotsize;
+        fh->size = listingsize; /* ls -l listing.txt */
+        fh->modtime = (int)time(NULL); /* we'll go with current time for now */
+        fh->checksum = listingchecksum;
+        fh->rfcsum = 0x00000000;
+        fh->rfsize = 0x00000000;
+        fh->cretime = 0x00000000;
+        fh->rfcsum = 0x00000000;
+        fh->nrecvd = 0x00000000;
+        fh->recvcsum = 0x00000000;
+        memset(fh->idstring, 0, sizeof(fh->idstring));
+        strncpy(fh->idstring, "OFT_Windows ICBMFT V1.1 32", sizeof(fh->idstring));
+        fh->flags = 0x02;
+        fh->lnameoffset = 0x1a;
+        fh->lsizeoffset = 0x10;
+        memset(fh->dummy, 0, sizeof(fh->dummy));
+        memset(fh->macfileinfo, 0, sizeof(fh->macfileinfo));
+        /* we need to figure out these encodings for filenames */
+        fh->nencode = 0x0000;
+        fh->nlanguage = 0x0000;
+        memset(fh->name, 0, sizeof(fh->name));
+        strncpy(fh->name, "listing.txt", sizeof(fh->name));
+        if (!(newoft->hdr.oft.hdr2 = (char *)calloc(1,newoft->hdr.oft.hdr2len))) {
+                aim_frame_destroy(newoft);
+                /* XXX: conn leak */
+                perror("calloc (1)");
+                return NULL;
+        }
+        memcpy(fh->bcookie, cookie, 8);
+        if (!(aim_oft_buildheader((unsigned char *)newoft->hdr.oft.hdr2, fh)))
+                faimdprintf(sess, 1, "eek, bh fail!\n");
+        aim_tx_enqueue(sess, newoft);
+        if (!(cachedcook = (aim_msgcookie_t *)calloc(1, sizeof(aim_msgcookie_t)))) {
+                faimdprintf(sess, 1, "faim: accepttransfer: couldn't calloc cachedcook. yeep!\n");
+                /* XXX: more cleanup, conn leak */
+                perror("calloc (2)");
+                return NULL;
+        }
+        memcpy(&(priv->fh), fh, sizeof(struct aim_fileheader_t));
+        memcpy(cachedcook->cookie, cookie, 8);
+        cachedcook->type = AIM_COOKIETYPE_OFTGET;
+        /* XXX doesn't priv need to be copied so we don't
+         * double free? -- wtm
+         */
+        cachedcook->data = (void *)priv;
+        if (aim_cachecookie(sess, cachedcook) == -1)
+                faimdprintf(sess, 1, "faim: ERROR caching message cookie\n");
+        free(fh);
+#endif
+        } else if (rendid == AIM_CAPS_SENDFILE) {
+                newconn->subtype = AIM_CONN_SUBTYPE_OFT_SENDFILE;
+                priv->fh.recvcsum = 0xffff0000;
+        } else {
+                return NULL;
+        }
+        return newconn;
+}
+/* conn is a BOS connection over which to send the cancel msg */
+faim_export int aim_canceltransfer(aim_session_t *sess, aim_conn_t *conn,
+                const char *cookie, const char *sn, int rendid)
+{
+        aim_frame_t *newpacket;
+        int i;
+        if (!(newpacket = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x0002, 10+8+2+1+strlen(sn)+4+2+8+16))) {
+                return 1;
+        }
+        aim_putsnac(&newpacket->data, 0x0004, 0x0006, 0x0000, sess->snacid_next);
+        for (i = 0; i < 8; i++)
+                aimbs_put8(&newpacket->data, cookie[i]);
+        aimbs_put16(&newpacket->data, 0x0002);
+        aimbs_put8(&newpacket->data, strlen(sn));
+        aimbs_putraw(&newpacket->data, sn, strlen(sn));
+        aimbs_put16(&newpacket->data, 0x0005);
+        aimbs_put16(&newpacket->data, 0x001a);
+        aimbs_put16(&newpacket->data, AIM_RENDEZVOUS_CANCEL);
+        for (i = 0; i < 8; i++)
+                aimbs_put8(&newpacket->data, cookie[i]);
+        aim_putcap(&newpacket->data, rendid);
+        aim_tx_enqueue(sess, newpacket);
+        return 0;
+}
+/**
+ * aim_getlisting(FILE *file) -- get an aim_fileheader_t for a given FILE*
+ * @file is an opened listing file
+ *
+ * returns a pointer to the filled-in fileheader_t
+ *
+ * Currently omits checksum. we'll fix this when AOL breaks us, i
+ * guess.
+ *
+ */
+faim_export struct aim_fileheader_t *aim_getlisting(aim_session_t *sess, FILE *file)
+{
+        return NULL;
+#if 0
+        struct aim_fileheader_t *fh;
+        u_long totsize = 0, size = 0, checksum = 0xffff0000;
+        short totfiles = 0;
+        char *linebuf, sizebuf[9];
+        int linelength = 1024;
+        /* XXX: if we have a line longer than 1024chars, God help us. */
+        if ((linebuf = (char *)calloc(1, linelength)) == NULL ) {
+                faimdprintf(sess, 2, "linebuf calloc failed\n");
+                return NULL;
+        }
+        if (fseek(file, 0, SEEK_END) == -1) { /* use this for sanity check */
+                perror("getlisting END1 fseek:");
+                faimdprintf(sess, 2, "getlising fseek END1 error\n");
+        }
+        if ((size = ftell(file)) == -1) {
+                perror("getlisting END1 getpos:");
+                faimdprintf(sess, 2, "getlising getpos END1 error\n");
+        }
+        if (fseek(file, 0, SEEK_SET) != 0) {
+                perror("getlesting fseek(SET):");
+                faimdprintf(sess, 2, "faim: getlisting: couldn't seek to beginning of listing file\n");
+        }
+        memset(linebuf, 0, linelength);
+        size = 0;
+        while(fgets(linebuf, linelength, file)) {
+                totfiles++;
+                memset(sizebuf, 0, 9);
+                size += strlen(linebuf);
+                if (strlen(linebuf) < 23) {
+                        faimdprintf(sess, 2, "line \"%s\" too short. skipping\n", linebuf);
+                        continue;
+                }
+                if (linebuf[strlen(linebuf)-1] != '\n') {
+                        faimdprintf(sess, 2, "faim: OFT: getlisting -- hit EOF or line too long!\n");
+                }
+                memcpy(sizebuf, linebuf+17, 8);
+                totsize += strtol(sizebuf, NULL, 10);
+                memset(linebuf, 0, linelength);
+        }
+        if (fseek(file, 0, SEEK_SET) == -1) {
+                perror("getlisting END2 fseek:");
+                faimdprintf(sess, 2, "getlising fseek END2 error\n");
+        }
+        free(linebuf);
+        /* we're going to ignore checksumming the data for now -- that
+         * requires walking the whole listing.txt. it should probably be
+         * done at register time and cached, but, eh. */
+        if (!(fh = (struct aim_fileheader_t*)calloc(1, sizeof(struct aim_fileheader_t))))
+                return NULL;
+        fh->encrypt = 0x0000;
+        fh->compress = 0x0000;
+        fh->totfiles = totfiles;
+        fh->filesleft = totfiles; /* is this right? */
+        fh->totparts = 0x0001;
+        fh->partsleft = 0x0001;
+        fh->totsize = totsize;
+        fh->size = size; /* ls -l listing.txt */
+        fh->modtime = (int)time(NULL); /* we'll go with current time for now */
+        fh->checksum = checksum; /* XXX: checksum ! */
+        fh->rfcsum = 0x00000000;
+        fh->rfsize = 0x00000000;
+        fh->cretime = 0x00000000;
+        fh->rfcsum = 0x00000000;
+        fh->nrecvd = 0x00000000;
+        fh->recvcsum = 0x00000000;
+        /* memset(fh->idstring, 0, sizeof(fh->idstring)); */
+        memcpy(fh->idstring, "OFT_Windows ICBMFT V1.1 32", sizeof(fh->idstring));
+        memset(fh->idstring+strlen(fh->idstring), 0, sizeof(fh->idstring)-strlen(fh->idstring));
+        fh->flags = 0x02;
+        fh->lnameoffset = 0x1a;
+        fh->lsizeoffset = 0x10;
+        /* memset(fh->dummy, 0, sizeof(fh->dummy)); */
+        memset(fh->macfileinfo, 0, sizeof(fh->macfileinfo));
+        fh->nencode = 0x0000; /* we need to figure out these encodings for filenames */
+        fh->nlanguage = 0x0000;
+        /* memset(fh->name, 0, sizeof(fh->name)); */
+        strncpy(fh->name, "listing.txt", sizeof(fh->name));
+        memset(fh->name+strlen(fh->name), 0, 64-strlen(fh->name));
+        faimdprintf(sess, 2, "faim: OFT: listing fh name %s / %s\n", fh->name, (fh->name+(strlen(fh->name))));
+        return fh;
+#endif
+}
+/**
+ * aim_listenestablish - create a listening socket on a port.
+ * @portnum: the port number to bind to.
+ *
+ * you need to call accept() when it's connected. returns your fd
+ *
+ * XXX: give the client author the responsibility of setting up a
+ * listener, then we no longer have a libfaim problem with broken
+ * solaris *innocent smile* -jbm
+        unsigned short val;
+        for (i=0; i<bufferlen; i++) {
+                oldcheck = check;
+                if (i&1)
+                        val = buffer[i];
+                else
+                        val = buffer[i] << 8;
+                check -= val;
+                /*
+                 * The following appears to be necessary.... It happens
+                 * every once in a while and the checksum doesn't fail.
+                 */
+                if (check > oldcheck)
+                        check--;
+        }
+        check = ((check & 0x0000ffff) + (check >> 16));
+        check = ((check & 0x0000ffff) + (check >> 16));
+        return check << 16;
+}
+faim_export fu32_t aim_oft_checksum_file(char *filename) {
+        FILE *fd;
+        fu32_t checksum = 0xffff0000;
+        if ((fd = fopen(filename, "rb"))) {
+                int bytes;
+                fu8_t buffer[1024];
+                while ((bytes = fread(buffer, 1, 1024, fd)))
+                        checksum = aim_oft_checksum_chunk(buffer, bytes, checksum);
+                fclose(fd);
+        }
+        return checksum;
+}
+/**
+ * Create a listening socket on a given port.
+ *
+ * XXX - Give the client author the responsibility of setting up a
+ *       listener, then we no longer have a libfaim problem with broken
+ *       solaris *innocent smile* -- jbm
+ *
+ * @param portnum The port number to bind to.
+ * @return The file descriptor of the listening socket.
  */
 static int listenestablish(fu16_t portnum)
 …
         hints.ai_family = AF_UNSPEC;
         hints.ai_socktype = SOCK_STREAM;
         if (getaddrinfo(NULL /*any IP*/, serv, &hints, &res) != 0) {
+        if (getaddrinfo(NULL /* any IP */, serv, &hints, &res) != 0) {
                 perror("getaddrinfo");
                 return -1;
 …
                 setsockopt(listenfd, SOL_SOCKET, SO_REUSEADDR, &on, sizeof(on));
                 if (bind(listenfd, res->ai_addr, res->ai_addrlen) == 0)
+                        break;
+                /* success */
+                        break; /* success */
                 close(listenfd);
         } while ( (res = res->ai_next) );
 …
                 return -1;
-        if (listen(listenfd, 1024)!=0) {
-                perror("listen");
-                return -1;
+        }
-        fcntl(listenfd, F_SETFL, O_NONBLOCK);
         freeaddrinfo(ressave);
-        return listenfd;
 #else
         int listenfd;
 …
         if ((listenfd = socket(AF_INET, SOCK_STREAM, 0)) < 0) {
                 perror("socket(listenfd)");
+                perror("socket");
                 return -1;
+        }
         if (setsockopt(listenfd, SOL_SOCKET, SO_REUSEADDR, (char *)&on, sizeof(on)) != 0) {
                 perror("setsockopt(listenfd)");
+                perror("setsockopt");
                 close(listenfd);
                 return -1;
+        }
+        }
         memset(&sockin, 0, sizeof(struct sockaddr_in));
 …
         if (bind(listenfd, (struct sockaddr *)&sockin, sizeof(struct sockaddr_in)) != 0) {
                 perror("bind(listenfd)");
+                perror("bind");
                 close(listenfd);
                 return -1;
+        }
+#endif
         if (listen(listenfd, 4) != 0) {
                 perror("listen(listenfd)");
+                perror("listen");
                 close(listenfd);
                 return -1;
+        }
         fcntl(listenfd, F_SETFL, O_NONBLOCK);
         return listenfd;
+}
+/**
+ * After establishing a listening socket, this is called to accept a connection.  It
+ * clones the conn used by the listener, and passes both of these to a signal handler.
+ * The signal handler should close the listener conn and keep track of the new conn,
+ * since this is what is used for file transfers and what not.
+ *
+ * @param sess The session.
+ * @param cur The conn the incoming connection is on.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_handlerendconnect(aim_session_t *sess, aim_conn_t *cur)
+{
+        int acceptfd = 0;
+        struct sockaddr addr;
+        socklen_t addrlen = sizeof(addr);
+        int ret = 0;
+        aim_conn_t *newconn;
+        char ip[20];
+        int port;
+        if ((acceptfd = accept(cur->fd, &addr, &addrlen)) == -1)
+                return 0; /* not an error */
+        if (addr.sa_family != AF_INET) { /* just in case IPv6 really is happening */
+                close(acceptfd);
+                aim_conn_close(cur);
+                return -1;
+        }
+        strncpy(ip, inet_ntoa(((struct sockaddr_in *)&addr)->sin_addr), sizeof(ip));
+        port = ntohs(((struct sockaddr_in *)&addr)->sin_port);
+        if (!(newconn = aim_cloneconn(sess, cur))) {
+                close(acceptfd);
+                aim_conn_close(cur);
+                return -ENOMEM;
+        }
+        newconn->type = AIM_CONN_TYPE_RENDEZVOUS;
+        newconn->fd = acceptfd;
+        if (newconn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM) {
+                aim_rxcallback_t userfunc;
+                struct aim_odc_intdata *priv;
+                priv = (struct aim_odc_intdata *)(newconn->internal = cur->internal);
+                cur->internal = NULL;
+                snprintf(priv->ip, sizeof(priv->ip), "%s:%u", ip, port);
+                if ((userfunc = aim_callhandler(sess, newconn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIM_ESTABLISHED)))
+                        ret = userfunc(sess, NULL, newconn, cur);
+        } else if (newconn->subtype == AIM_CONN_SUBTYPE_OFT_GETFILE) {
+        } else if (newconn->subtype == AIM_CONN_SUBTYPE_OFT_SENDFILE) {
+                aim_rxcallback_t userfunc;
+                if ((userfunc = aim_callhandler(sess, newconn, AIM_CB_FAM_OFT, AIM_CB_OFT_ESTABLISHED)))
+                        ret = userfunc(sess, NULL, newconn, cur);
+        } else {
+                faimdprintf(sess, 1,"Got a connection on a listener that's not rendezvous.  Closing connection.\n");
+                aim_conn_close(newconn);
+                ret = -1;
+        }
+        return ret;
+}
+/**
+ * Send client-to-client typing notification over an established direct connection.
+ *
+ * @param sess The session.
+ * @param conn The already-connected ODC connection.
+ * @param typing If 0x0002, sends a "typing" message, 0x0001 sends "typed," and
+ *        0x0000 sends "stopped."
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_odc_send_typing(aim_session_t *sess, aim_conn_t *conn, int typing)
+{
+        struct aim_odc_intdata *intdata = (struct aim_odc_intdata *)conn->internal;
+        aim_frame_t *fr;
+        aim_bstream_t *hdrbs;
+        fu8_t *hdr;
+        int hdrlen = 0x44;
+        if (!sess || !conn || (conn->type != AIM_CONN_TYPE_RENDEZVOUS))
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x0001, 0)))
+                return -ENOMEM;
+        memcpy(fr->hdr.rend.magic, "ODC2", 4);
+        fr->hdr.rend.hdrlen = hdrlen;
+        if (!(hdr = calloc(1, hdrlen))) {
+                aim_frame_destroy(fr);
+                return -ENOMEM;
+        }
+        hdrbs = &(fr->data);
+        aim_bstream_init(hdrbs, hdr, hdrlen);
+        aimbs_put16(hdrbs, 0x0006);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, intdata->cookie, 8);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put32(hdrbs, 0x00000000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        if (typing == 0x0002)
+                aimbs_put16(hdrbs, 0x0002 | 0x0008);
+        else if (typing == 0x0001)
+                aimbs_put16(hdrbs, 0x0002 | 0x0004);
+        else
+                aimbs_put16(hdrbs, 0x0002);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, sess->sn, strlen(sess->sn));
+        aim_bstream_setpos(hdrbs, 52); /* bleeehh */
+        aimbs_put8(hdrbs, 0x00);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put8(hdrbs, 0x00);
+        /* end of hdr */
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/**
+ * Send client-to-client IM over an established direct connection.
+ * Call this just like you would aim_send_im, to send a directim.
+ *
+ * @param sess The session.
+ * @param conn The already-connected ODC connection.
+ * @param msg Null-terminated string to send.
+ * @param len The length of the message to send, including binary data.
+ * @param encoding 0 for ascii, 2 for Unicode, 3 for ISO 8859-1.
+ * @param isawaymsg 0 if this is not an auto-response, 1 if it is.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_odc_send_im(aim_session_t *sess, aim_conn_t *conn, const char *msg, int len, int encoding, int isawaymsg)
+{
+        aim_frame_t *fr;
+        aim_bstream_t *hdrbs;
+        struct aim_odc_intdata *intdata = (struct aim_odc_intdata *)conn->internal;
+        int hdrlen = 0x44;
+        fu8_t *hdr;
+        if (!sess || !conn || (conn->type != AIM_CONN_TYPE_RENDEZVOUS) || !msg)
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x01, 0)))
+                return -ENOMEM;
+        memcpy(fr->hdr.rend.magic, "ODC2", 4);
+        fr->hdr.rend.hdrlen = hdrlen;
+        if (!(hdr = calloc(1, hdrlen + len))) {
+                aim_frame_destroy(fr);
+                return -ENOMEM;
+        }
+        hdrbs = &(fr->data);
+        aim_bstream_init(hdrbs, hdr, hdrlen + len);
+        aimbs_put16(hdrbs, 0x0006);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, intdata->cookie, 8);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put32(hdrbs, len);
+        aimbs_put16(hdrbs, encoding);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        /* flags - used for typing notification and to mark if this is an away message */
+        aimbs_put16(hdrbs, 0x0000 | isawaymsg);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_putraw(hdrbs, sess->sn, strlen(sess->sn));
+        aim_bstream_setpos(hdrbs, 52); /* bleeehh */
+        aimbs_put8(hdrbs, 0x00);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put8(hdrbs, 0x00);
+        /* end of hdr2 */
+#if 0 /* XXX - this is how you send buddy icon info... */
+        aimbs_put16(hdrbs, 0x0008);
+        aimbs_put16(hdrbs, 0x000c);
+        aimbs_put16(hdrbs, 0x0000);
+        aimbs_put16(hdrbs, 0x1466);
+        aimbs_put16(hdrbs, 0x0001);
+        aimbs_put16(hdrbs, 0x2e0f);
+        aimbs_put16(hdrbs, 0x393e);
+        aimbs_put16(hdrbs, 0xcac8);
 #endif
+}
+static int getcommand_getfile(aim_session_t *sess, aim_conn_t *conn)
+{
+#if 0
+        struct aim_filetransfer_priv *ft;
+        aim_rxcallback_t userfunc;
+        ft = conn->priv;
+        if (ft->state == 2) {
+                /* waiting on listing data */
+                int ret = 0;
+                char *listing;
+                aim_frame_t *newoft;
+                if (!(listing = malloc(ft->fh.size)))
+                        return -1;
+                ft->state = 0;
+                if (aim_recv(conn->fd, listing, ft->fh.size) != ft->fh.size)
+                        faimdprintf(sess, 2, "OFT get: file %s was short. (0x%lx)\n", ft->fh.name, ft->fh.size);
+                if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x120b, 0))) {
+                        faimdprintf(sess, 2, "faim: aim_get_command_rendezvous: getfile listing: tx_new OFT failed\n");
+                        free(listing);
+                        aim_conn_close(conn);
+                        return -1;
+        aimbs_putraw(hdrbs, msg, len);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/**
+ * Get the screen name of the peer of a direct connection.
+ *
+ * @param conn The ODC connection.
+ * @return The screen name of the dude, or NULL if there was an anomaly.
+ */
+faim_export const char *aim_odc_getsn(aim_conn_t *conn)
+{
+        struct aim_odc_intdata *intdata;
+        if (!conn || !conn->internal)
+                return NULL;
+        if ((conn->type != AIM_CONN_TYPE_RENDEZVOUS) ||
+                        (conn->subtype != AIM_CONN_SUBTYPE_OFT_DIRECTIM))
+                return NULL;
+        intdata = (struct aim_odc_intdata *)conn->internal;
+        return intdata->sn;
+}
+/**
+ * Find the conn of a direct connection with the given buddy.
+ *
+ * @param sess The session.
+ * @param sn The screen name of the buddy whose direct connection you want to find.
+ * @return The conn for the direct connection with the given buddy, or NULL if no
+ *         connection was found.
+ */
+faim_export aim_conn_t *aim_odc_getconn(aim_session_t *sess, const char *sn)
+{
+        aim_conn_t *cur;
+        struct aim_odc_intdata *intdata;
+        if (!sess || !sn || !strlen(sn))
+                return NULL;
+        for (cur = sess->connlist; cur; cur = cur->next) {
+                if ((cur->type == AIM_CONN_TYPE_RENDEZVOUS) && (cur->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM)) {
+                        intdata = cur->internal;
+                        if (!aim_sncmp(intdata->sn, sn))
+                                return cur;
+                }
+                memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+                newoft->hdr.oft.hdr2len = 0x100 - 8;
+                /* Protocol BS - set nrecvd to size of listing, recvcsum to listing checksum, flags to 0 */
+                ft->fh.nrecvd = ft->fh.size;
+                ft->fh.recvcsum = ft->fh.checksum;
+                ft->fh.flags = 0;
+                if (!(newoft->hdr.oft.hdr2 = (char *)calloc(1,newoft->hdr.oft.hdr2len))) {
+                        aim_frame_destroy(newoft);
+                        free(listing);
+                        return -1;
+                }
+                if (!(aim_oft_buildheader((unsigned char *)newoft->hdr.oft.hdr2, &(ft->fh))))
+                        faimdprintf(sess, 2, "eek! bh fail listing\n");
+                /* send the 120b */
+                aim_tx_enqueue(sess, newoft);
+                if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILELISTING)) )
+                        ret = userfunc(sess, NULL, conn, ft, listing);
+                free(listing);
+                return ret;
+        }
+        if (ft->state == 3) {
+                /* waiting on file data */
+                if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILERECEIVE)) )
+                        return userfunc(sess, NULL, conn, ft->fh.name,
+                                        ft->fh.size);
+                return 0;
+        }
+        if (ft->state == 4) {
+                if( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILESTATE4)) )
+                        return userfunc(sess, NULL, conn);
+                aim_conn_close(conn);
+                return 0;
+        }
+        return 0;
+#else
+        return -1;
+#endif
+}
+static void connclose_sendfile(aim_session_t *sess, aim_conn_t *conn)
+{
+        aim_msgcookie_t *cook;
+        struct aim_filetransfer_priv *priv = (struct aim_filetransfer_priv *)conn->internal;
+        cook = aim_uncachecookie(sess, priv->cookie, AIM_COOKIETYPE_OFTSEND);
+        aim_cookie_free(sess, cook);
+        return;
+}
+static void connkill_sendfile(aim_session_t *sess, aim_conn_t *conn)
+{
+        free(conn->internal);
+        return;
+}
+static void connclose_getfile(aim_session_t *sess, aim_conn_t *conn)
+{
+#if 0
+        aim_msgcookie_t *cook;
+        struct aim_filetransfer_priv *priv = (struct aim_filetransfer_priv *)conn->priv;
+        cook = aim_uncachecookie(sess, priv->cookie, AIM_COOKIETYPE_OFTGET);
+        aim_cookie_free(sess, cook);
+#endif
+        return;
+}
+static void connkill_getfile(aim_session_t *sess, aim_conn_t *conn)
+{
+        free(conn->internal);
+        return;
+}
+static void connclose_directim(aim_session_t *sess, aim_conn_t *conn)
+{
+        struct aim_directim_intdata *intdata = (struct aim_directim_intdata *)conn->internal;
+        aim_msgcookie_t *cook;
+        cook = aim_uncachecookie(sess, intdata->cookie, AIM_COOKIETYPE_OFTIM);
+        aim_cookie_free(sess, cook);
+        return;
+}
+static void connkill_directim(aim_session_t *sess, aim_conn_t *conn)
+{
+        free(conn->internal);
+        return;
+}
+faim_internal void aim_conn_close_rend(aim_session_t *sess, aim_conn_t *conn)
+{
+        if (conn->type != AIM_CONN_TYPE_RENDEZVOUS)
+                return;
+        if (conn->subtype == AIM_CONN_SUBTYPE_OFT_SENDFILE)
+                connclose_sendfile(sess, conn);
+        else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_GETFILE)
+                connclose_getfile(sess, conn);
+        else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM)
+                connclose_directim(sess, conn);
+        return;
+}
+faim_internal void aim_conn_kill_rend(aim_session_t *sess, aim_conn_t *conn)
+{
+        if (conn->type != AIM_CONN_TYPE_RENDEZVOUS)
+                return;
+        if (conn->subtype == AIM_CONN_SUBTYPE_OFT_SENDFILE)
+                connkill_sendfile(sess, conn);
+        else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_GETFILE)
+                connkill_getfile(sess, conn);
+        else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM)
+                connkill_directim(sess, conn);
+        return;
+}
+static int handlehdr_directim(aim_session_t *sess, aim_conn_t *conn, aim_bstream_t *bs)
+        }
+        return NULL;
+}
+/**
+ * For those times when we want to open up the direct connection channel ourselves.
+ *
+ * You'll want to set up some kind of watcher on this socket.
+ * When the state changes, call aim_handlerendconnection with
+ * the connection returned by this.  aim_handlerendconnection
+ * will accept the pending connection and stop listening.
+ *
+ * @param sess The session
+ * @param sn The screen name to connect to.
+ * @return The new connection.
+ */
+faim_export aim_conn_t *aim_odc_initiate(aim_session_t *sess, const char *sn)
+{
+        aim_conn_t *newconn;
+        aim_msgcookie_t *cookie;
+        struct aim_odc_intdata *priv;
+        int listenfd;
+        fu16_t port = 4443;
+        fu8_t localip[4];
+        fu8_t ck[8];
+        if (aim_util_getlocalip(localip) == -1)
+                return NULL;
+        if ((listenfd = listenestablish(port)) == -1)
+                return NULL;
+        aim_im_sendch2_odcrequest(sess, ck, sn, localip, port);
+        cookie = (aim_msgcookie_t *)calloc(1, sizeof(aim_msgcookie_t));
+        memcpy(cookie->cookie, ck, 8);
+        cookie->type = AIM_COOKIETYPE_OFTIM;
+        /* this one is for the cookie */
+        priv = (struct aim_odc_intdata *)calloc(1, sizeof(struct aim_odc_intdata));
+        memcpy(priv->cookie, ck, 8);
+        strncpy(priv->sn, sn, sizeof(priv->sn));
+        cookie->data = priv;
+        aim_cachecookie(sess, cookie);
+        /* XXX - switch to aim_cloneconn()? */
+        if (!(newconn = aim_newconn(sess, AIM_CONN_TYPE_LISTENER, NULL))) {
+                close(listenfd);
+                return NULL;
+        }
+        /* this one is for the conn */
+        priv = (struct aim_odc_intdata *)calloc(1, sizeof(struct aim_odc_intdata));
+        memcpy(priv->cookie, ck, 8);
+        strncpy(priv->sn, sn, sizeof(priv->sn));
+        newconn->fd = listenfd;
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_DIRECTIM;
+        newconn->internal = priv;
+        newconn->lastactivity = time(NULL);
+        return newconn;
+}
+/**
+ * Connect directly to the given buddy for directim.
+ *
+ * This is a wrapper for aim_newconn.
+ *
+ * If addr is NULL, the socket is not created, but the connection is
+ * allocated and setup to connect.
+ *
+ * @param sess The Godly session.
+ * @param sn The screen name we're connecting to.  I hope it's a girl...
+ * @param addr Address to connect to.
+ * @return The new connection.
+ */
+faim_export aim_conn_t *aim_odc_connect(aim_session_t *sess, const char *sn, const char *addr, const fu8_t *cookie)
+{
+        aim_conn_t *newconn;
+        struct aim_odc_intdata *intdata;
+        if (!sess || !sn)
+                return NULL;
+        if (!(intdata = calloc(1, sizeof(struct aim_odc_intdata))))
+                return NULL;
+        memcpy(intdata->cookie, cookie, 8);
+        strncpy(intdata->sn, sn, sizeof(intdata->sn));
+        if (addr)
+                strncpy(intdata->ip, addr, sizeof(intdata->ip));
+        /* XXX - verify that non-blocking connects actually work */
+        if (!(newconn = aim_newconn(sess, AIM_CONN_TYPE_RENDEZVOUS, addr))) {
+                free(intdata);
+                return NULL;
+        }
+        newconn->internal = intdata;
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_DIRECTIM;
+        return newconn;
+}
+/**
+ * Sometimes you just don't know with these kinds of people.
+ *
+ * @param sess The session.
+ * @param conn The ODC connection of the incoming data.
+ * @param frr The frame allocated for the incoming data.
+ * @param bs It stands for "bologna sandwich."
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+static int handlehdr_odc(aim_session_t *sess, aim_conn_t *conn, aim_frame_t *frr, aim_bstream_t *bs)
+{
         aim_frame_t fr;
+        int ret = 0;
         aim_rxcallback_t userfunc;
         fu32_t payloadlength;
 …
         fr.conn = conn;
         /* XXX ugly */
+        /* AAA - ugly */
         aim_bstream_setpos(bs, 20);
         payloadlength = aimbs_get32(bs);
 …
         aim_bstream_setpos(bs, 36);
+        /* XXX -create an aimbs_getnullstr function? */
+        snptr = aimbs_getstr(bs, MAXSNLEN);
+        faimdprintf(sess, 2, "faim: OFT frame: handlehdr_directim: %04x / %04x / %s\n", payloadlength, flags, snptr);
+        if (flags & 0x0002) {
+                int ret = 0;
+                if (flags == 0x000c) {
+                        if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMTYPING)))
+                                ret = userfunc(sess, &fr, snptr, 1);
+                        return ret;
+                }
+        /* XXX - create an aimbs_getnullstr function? */
+        snptr = aimbs_getstr(bs, 32); /* Next 32 bytes contain the sn, padded with null chars */
+        faimdprintf(sess, 2, "faim: OFT frame: handlehdr_odc: %04x / %04x / %s\n", payloadlength, flags, snptr);
+        if (flags & 0x0008) {
+                if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMTYPING)))
+                        ret = userfunc(sess, &fr, snptr, 2);
+        } else if (flags & 0x0004) {
+                if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMTYPING)))
+                        ret = userfunc(sess, &fr, snptr, 1);
+        } else {
                 if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMTYPING)))
                         ret = userfunc(sess, &fr, snptr, 0);
+                return ret;
+        } else if (((flags & 0x000f) == 0x0000) && payloadlength) {
+                char *msg, *msg2;
+                int ret = 0;
+        }
+        if (payloadlength) {
+                char *msg;
                 int recvd = 0;
+                int i;
+                if (!(msg = calloc(1, payloadlength+1)))
+                        return -1;
+                msg2 = msg;
+                int i, isawaymsg;
+                isawaymsg = flags & 0x0001;
+                if (!(msg = calloc(1, payloadlength+1))) {
+                        free(snptr);
+                        return -ENOMEM;
+                }
                 while (payloadlength - recvd) {
                         if (payloadlength - recvd >= 1024)
                                 i = aim_recv(conn->fd, msg2, 1024);
+                                i = aim_recv(conn->fd, &msg[recvd], 1024);
                         else
                                 i = aim_recv(conn->fd, msg2, payloadlength - recvd);
+                                i = aim_recv(conn->fd, &msg[recvd], payloadlength - recvd);
                         if (i <= 0) {
                                 free(msg);
+                                free(snptr);
                                 return -1;
+                        }
                         recvd = recvd + i;
+                        msg2 = msg2 + i;
+                        if ((userfunc=aim_callhandler(sess, conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_IMAGETRANSFER)))
+                                userfunc(sess, &fr, snptr, (double)recvd / payloadlength);
+                        if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_IMAGETRANSFER)))
+                                ret = userfunc(sess, &fr, snptr, (double)recvd / payloadlength);
+                }
                 if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMINCOMING)) )
                         ret = userfunc(sess, &fr, snptr, msg, payloadlength, encoding);
+                if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_DIRECTIMINCOMING)))
+                        ret = userfunc(sess, &fr, snptr, msg, payloadlength, encoding, isawaymsg);
                 free(msg);
+                return ret;
+        }
+        }
+        free(snptr);
+        return ret;
+}
+faim_export struct aim_oft_info *aim_oft_createinfo(aim_session_t *sess, const fu8_t *cookie, const char *sn, const char *ip, fu16_t port, fu32_t size, fu32_t modtime, char *filename)
+{
+        struct aim_oft_info *new;
+        if (!sess)
+                return NULL;
+        if (!(new = (struct aim_oft_info *)calloc(1, sizeof(struct aim_oft_info))))
+                return NULL;
+        new->sess = sess;
+        if (cookie)
+                memcpy(new->cookie, cookie, 8);
+        if (ip)
+                new->clientip = strdup(ip);
+        if (sn)
+                new->sn = strdup(sn);
+        new->port = port;
+        new->fh.totfiles = 1;
+        new->fh.filesleft = 1;
+        new->fh.totparts = 1;
+        new->fh.partsleft = 1;
+        new->fh.totsize = size;
+        new->fh.size = size;
+        new->fh.modtime = modtime;
+        new->fh.checksum = 0xffff0000;
+        new->fh.rfrcsum = 0xffff0000;
+        new->fh.rfcsum = 0xffff0000;
+        new->fh.recvcsum = 0xffff0000;
+        strncpy(new->fh.idstring, "OFT_Windows ICBMFT V1.1 32", 31);
+        if (filename)
+                strncpy(new->fh.name, filename, 63);
+        new->next = sess->oft_info;
+        sess->oft_info = new;
+        return new;
+}
+/**
+ * Remove the given oft_info struct from the oft_info linked list, and
+ * then free its memory.
+ *
+ * @param sess The session.
+ * @param oft_info The aim_oft_info struct that we're destroying.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_oft_destroyinfo(struct aim_oft_info *oft_info)
+{
+        aim_session_t *sess;
+        if (!oft_info || !(sess = oft_info->sess))
+                return -EINVAL;
+        if (sess->oft_info && (sess->oft_info == oft_info)) {
+                sess->oft_info = sess->oft_info->next;
+        } else {
+                struct aim_oft_info *cur;
+                for (cur=sess->oft_info; (cur->next && (cur->next!=oft_info)); cur=cur->next);
+                if (cur->next)
+                        cur->next = cur->next->next;
+        }
+        free(oft_info->sn);
+        free(oft_info->proxyip);
+        free(oft_info->clientip);
+        free(oft_info->verifiedip);
+        free(oft_info);
         return 0;
+}
+static int handlehdr_getfile_listing(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_filetransfer_priv *ft;
+        struct aim_fileheader_t *fh;
+        struct aim_msgcookie_t *cook;
+        aim_frame_t *newoft;
+        aim_rxcallback_t userfunc;
+        faimdprintf(sess, 2,"faim: rend: fileget 0x1108\n");
+        fh = aim_oft_getfh(hdr);
+        faim_mutex_unlock(&conn->active);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTGET))) {
+                free(fh);
+                return -1;
+        }
+        ft = cook->data;
+        /* we're waaaaiiiting.. for listing.txt */
+        ft->state = 2;
+        memcpy(&(ft->fh), fh, sizeof(struct aim_fileheader_t));
+        free(fh);
+        if(aim_cachecookie(sess, cook) == -1) {
+                faimdprintf(sess, 1, "error caching cookie\n");
+                return -1;
+        }
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x1209, 0))) {
+                aim_conn_close(conn);
+                return -1;
+        }
+        memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+        newoft->hdr.oft.hdr2len = 0x100 - 8;
+        if (!(newoft->hdr.oft.hdr2 = (char *)calloc(1,newoft->hdr.oft.hdr2len))) {
+                newoft->lock = 0;
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        if (!(aim_oft_buildheader((unsigned char *)newoft->hdr.oft.hdr2, &(ft->fh)))) {
+                newoft->lock = 0;
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        newoft->lock = 0;
+        aim_tx_enqueue(sess, newoft);
+#endif
+        return -1;
+}
+static int handlehdr_getfile_listing2(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_filetransfer_priv *ft;
+        struct aim_fileheader_t *fh;
+        struct aim_msgcookie_t *cook;
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(hdr);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTGET)))
+                faimdprintf(sess, 2, "shit, no cookie in 0x1209. (%i/%s)going to crash..\n", AIM_COOKIETYPE_OFTGET, fh->bcookie);
+        ft = cook->data;
+        if (ft->fh.size != fh->size)
+                faimdprintf(sess, 2, "hrm. ft->fh.size (%ld) != fh->size (%ld). um. using ft->fh.size\n", ft->fh.size, fh->size);
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILELISTINGREQ)))
+                ret = userfunc(sess, NULL, conn, fh);
+        faimdprintf(sess, 2, "faim: get_command_rendezvous: hit end of 1209\n");
+        free(fh);
+        return ret;
+#else
+        return -1;
+#endif
+}
+static int handlehdr_getfile_listing3(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_filetransfer_priv *ft;
+        struct aim_msgcookie_t *cook;
+        struct aim_fileheader_t *fh;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(hdr);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTGET))) {
+                free(fh);
+                return -1;
+        }
+        free(fh);
+        ft = cook->data;
+        if (aim_cachecookie(sess, cook) == -1)
+                return -1;
+        if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILELISTINGRXCONFIRM)))
+                return userfunc(sess, NULL, conn);
+#endif
+        return -1;
+}
+static int handlehdr_getfile_request(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_filetransfer_priv *ft;
+        aim_msgcookie_t *cook;
+        struct aim_fileheader_t *fh;
+        aim_frame_t *newoft;
+        int i = 0;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(hdr);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTGET))) {
+                free(fh);
+                return -1;
+        }
+        ft = cook->data;
+        memcpy(&(ft->fh), fh, sizeof(struct aim_fileheader_t));
+        free(fh);
+        aim_cachecookie(sess, cook);
+        faimdprintf(sess, 2, "faim: fileget: %s seems to want %s\n", ft->sn, ft->fh.name);
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILEFILEREQ)) )
+                i = userfunc(sess, NULL, conn, &(ft->fh), cook->cookie);
+        if (i < 0)
+                return i;
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x0101, 0))) {
+                faimdprintf(sess, 2, "faim: send_final_transfer: tx_new OFT failed\n");
+                return -1;
+        }
+        memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+        newoft->hdr.oft.hdr2len = 0x100 - 8;
+        if (!(newoft->hdr.oft.hdr2 = calloc(1,newoft->hdr.oft.hdr2len))) {
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        /* protocol BS: nrecvd, recvcsum to 0, flags to 0x20. */
+        ft->fh.nrecvd = 0;
+        ft->fh.recvcsum = 0;
+        ft->fh.flags = 0x20;
+        aim_oft_buildheader((unsigned char *)newoft->hdr.oft.hdr2, &(ft->fh));
+        aim_tx_enqueue(sess, newoft);
+        faimdprintf(sess, 2, "faim: OFT: OFT file header enqueued.\n");
+        return i;
+#else
+        return -1;
+#endif
+}
+static int handlehdr_getfile_sending(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_fileheader_t *fh;
+        struct aim_filetransfer_priv *ft;
+        struct aim_msgcookie_t *cook;
+        struct command_tx_struct *newoft;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(hdr);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTGET))) {
+                free(fh);
+                return -1;
+        }
+        free(fh);
+        ft = cook->data;
+        ft->state = 3;
+        if (aim_cachecookie(sess, cook) == -1)
+                return -1;
+        faimdprintf(sess, 2, "faim: fileget: %s seems to want to send %s\n", ft->sn, ft->fh.name);
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x0202, 0))) {
+                faimdprintf(sess, 2, "faim: send_final_transfer: tx_new OFT failed\n");
+                return -1;
+        }
+        newoft->lock = 1;
+        memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+        newoft->hdr.oft.hdr2len = 0x100 - 8;
+        if (!(newoft->hdr.oft.hdr2 = calloc(1,newoft->hdr.oft.hdr2len))) {
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        aim_oft_buildheader((unsigned char *)newoft->hdr.oft.hdr2, &(ft->fh));
+        newoft->lock = 0;
+        aim_tx_enqueue(sess, newoft);
+        faimdprintf(sess, 2, "faim: OFT: OFT 0x0202 enqueued.\n");
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILEFILEREQ)) == NULL)
+/**
+ * Creates a listener socket so the other dude can connect to us.
+ *
+ * You'll want to set up some kind of watcher on this socket.
+ * When the state changes, call aim_handlerendconnection with
+ * the connection returned by this.  aim_handlerendconnection
+ * will accept the pending connection and stop listening.
+ *
+ * @param sess The session.
+ * @param oft_info File transfer information associated with this
+ *        connection.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_sendfile_listen(aim_session_t *sess, struct aim_oft_info *oft_info)
+{
+        int listenfd;
+        if (!oft_info)
+                return -EINVAL;
+        if ((listenfd = listenestablish(oft_info->port)) == -1)
                 return 1;
+#else
+        return -1;
+#endif
+}
+/* We are receiving a file, and the buddy sent us this header describing
+ * it.  We send back a similar header to confirm, then we're ready to
+ * start reading the raw data.
+ */
+static int handlehdr_sendfile_sending(aim_session_t *sess, aim_conn_t *conn, aim_bstream_t *bs)
+{
+        struct aim_filetransfer_priv *ft;
+        struct aim_fileheader_t *fh;
+        aim_frame_t *newoft;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(bs);
+        /* We receive a null cookie for the first file; we must fill
+         * it in to authenticate ourselves. -- wtm
+         */
+        ft = conn->internal;
+        memcpy(&(fh->bcookie), ft->cookie, 8);
+        memcpy(&(ft->fh), fh, sizeof(struct aim_fileheader_t));
+        free(fh);
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, AIM_OFT_PROTO_ACCEPT, 0))) {
+                faimdprintf(sess, 2, "faim: send_final_transfer: tx_new OFT failed\n");
+                return -1;
+        }
+        if (aim_oft_buildheader(&(newoft->data), &(ft->fh)) == -1) {
+                return -1;
+        }
+        memcpy(newoft->hdr.rend.magic, "OFT2", 4);
+        newoft->hdr.rend.hdrlen = aim_bstream_curpos(&newoft->data);
+        aim_tx_enqueue(sess, newoft);
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_SENDFILEFILEREQ)) == NULL)
+                return 1;
+        {
+                char *cur;
+                /* Convert the directory separator: it is sent
+                 * as ^A (0x01).
+                 */
+                while ((cur = strchr(ft->fh.name, 0x01))) {
+                        *cur = G_DIR_SEPARATOR;
+                }
+        }
+        return userfunc(sess, NULL, conn, &(ft->fh));
+}
+/*
+ * These were originally described by Josh Myer:
+ * http://www.geocrawler.com/archives/3/896/2000/9/0/4291064/
+ * XXX this doesn't actually work yet
+ * -- wtm
+ */
+static int handlehdr_sendfile_resume(aim_session_t *sess, aim_conn_t *conn, aim_bstream_t *bs) {
+        aim_frame_t *newoft;
+        aim_msgcookie_t *cook;
+        struct aim_fileheader_t *fh;
+        struct aim_filetransfer_priv *ft;
+        fh = aim_oft_getfh(bs);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTSEND))) {
+                free(fh);
+                return -1;
+        }
+        ft = (struct aim_filetransfer_priv *)cook->data;
+        ft->fh.nrecvd = fh->nrecvd;
+        ft->fh.recvcsum = fh->recvcsum;
+        strncpy(ft->fh.name, fh->name, sizeof(ft->fh.name));
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x0106, 0))) {
+                faimdprintf(sess, 2, "faim: aim_accepttransfer: tx_new OFT failed\n");
+                free(fh);
+                return -1;
+        }
+        if (aim_oft_buildheader(&(newoft->data), &(ft->fh)) == -1) {
+                aim_frame_destroy(newoft);
+                free(fh);
+                return -1;
+        }
+        memcpy(newoft->hdr.rend.magic, "OFT2", 4);
+        newoft->hdr.rend.hdrlen = aim_bstream_curpos(&newoft->data);
+        aim_tx_enqueue(sess, newoft);
+        free(fh);
+        if (!(oft_info->conn = aim_newconn(sess, AIM_CONN_TYPE_LISTENER, NULL))) {
+                close(listenfd);
+                return -ENOMEM;
+        }
+        oft_info->conn->fd = listenfd;
+        oft_info->conn->subtype = AIM_CONN_SUBTYPE_OFT_SENDFILE;
+        oft_info->conn->lastactivity = time(NULL);
         return 0;
+}
+/* We are sending a file, and the buddy sent us this header indicating
+ * that he or she is ready for the raw data.
+ */
+static int handlehdr_sendfile_recv(aim_session_t *sess, aim_conn_t *conn, aim_bstream_t *bs) {
+        struct aim_fileheader_t *fh;
+        aim_msgcookie_t *cook;
+        int ret = 1;
+        struct aim_filetransfer_priv *ft;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(bs);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTSEND))) {
+                free(fh);
+                return -1;
+        }
+        ft = (struct aim_filetransfer_priv *)cook->data;
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_SENDFILEFILESEND)) )
+                ret = userfunc(sess, NULL, conn, &(ft->fh));
+        free(fh);
+        return ret;
+}
+static int handlehdr_getfile_recv(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_fileheader_t *fh;
+        struct aim_msgcookie_t *cook;
+        int ret = 1;
+        aim_rxcallback_t userfunc;
+        struct aim_filetransfer_priv *ft;
+        fh = aim_oft_getfh(hdr);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTGET))) {
+                free(fh);
+                return -1;
+        }
+        ft = cook->data;
+        faimdprintf(sess, 2, "faim: get_rend: looks like we're ready to send data.(oft 0x0202)\n");
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILEFILESEND)) )
+                ret = userfunc(sess, NULL, conn, fh);
+        free(fh);
+        return ret;
+#else
+        return -1;
+#endif
+}
+/* We just sent the raw data of a file, and the buddy sent us back this
+ * header indicating that the transfer is complete.
+ */
+static int handlehdr_sendfile_finish(aim_session_t *sess, aim_conn_t *conn, aim_bstream_t *bs)
+{
+        struct aim_fileheader_t *fh;
+        aim_msgcookie_t *cook;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(bs);
+        if (!(cook = aim_checkcookie(sess, fh->bcookie, AIM_COOKIETYPE_OFTSEND))) {
+                free(fh);
+                return -1;
+        }
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_SENDFILECOMPLETE)) )
+                userfunc(sess, NULL, conn, fh->bcookie);
+        free(fh);
+        return 0;
+}
+static int handlehdr_getfile_finish(aim_session_t *sess, aim_conn_t *conn, fu8_t *hdr)
+{
+#if 0
+        struct aim_fileheader_t *fh;
+        aim_rxcallback_t userfunc;
+        fh = aim_oft_getfh(hdr);
+        faimdprintf(sess, 2, "faim: get_rend: looks like we're done with a transfer (oft 0x0204)\n");
+        if ( (userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, AIM_CB_OFT_GETFILECOMPLETE)) )
+                userfunc(sess, NULL, conn, fh);
+        free(fh);
+#endif
+        return -1;
+}
+faim_internal int aim_rxdispatch_rendezvous(aim_session_t *sess, aim_frame_t *fr)
+{
+        aim_conn_t *conn = fr->conn;
+        aim_bstream_t *bs = &fr->data;
+        int ret = -1;
+        if (conn->subtype == AIM_CONN_SUBTYPE_OFT_GETFILE) {
+                /* This should never happen. -- wtm */
+                return getcommand_getfile(sess, conn);
+        } else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_SENDFILE) {
+                switch(fr->hdr.rend.type) {
+                        case AIM_OFT_PROTO_OFFER:
+                                ret = handlehdr_sendfile_sending(sess, conn, bs);
+                                break;
+                        case AIM_OFT_PROTO_RESUME:
+                                ret = handlehdr_sendfile_resume(sess, conn, bs);
+                                break;
+                        case AIM_OFT_PROTO_RESUMEACCEPT: /* like _ACCEPT */;
+                        case AIM_OFT_PROTO_ACCEPT:
+                                ret = handlehdr_sendfile_recv(sess, conn, bs);
+                                break;
+                        case AIM_OFT_PROTO_ACK:
+                                ret = handlehdr_sendfile_finish(sess, conn, bs);
+                                break;
+                        default:
+                                faimdprintf(sess, 2, "faim: OFT frame: uknown type %04x\n", fr->hdr.rend.type);
+                                ret = -1;
+                                break;
+                }
+        } else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM) {
+                if (fr->hdr.rend.type == 0x0001)
+                        ret = handlehdr_directim(sess, conn, bs);
+                else
+                        faimdprintf(sess, 0, "faim: DIM frame: unknown type %04x\n", fr->hdr.rend.type);
+        } else if (conn->subtype == AIM_CONN_SUBTYPE_OFT_GETFILE) {
+                /* This _really_ shouldn't happen. :) -- wtm */
+                char *hdr = NULL;
+                int hdrtype = fr->hdr.rend.type;
+                if (hdrtype == 0x1108) /* getfile listing.txt incoming tx->rx */
+                        ret = handlehdr_getfile_listing(sess, conn, hdr);
+                else if (hdrtype == 0x1209) /* get file listing ack rx->tx */
+                        ret = handlehdr_getfile_listing2(sess, conn, hdr);
+                else if (hdrtype == 0x120b) /* get file listing rx confirm */
+                        ret = handlehdr_getfile_listing3(sess, conn, hdr);
+                else if (hdrtype == 0x120c) /* getfile request */
+                        ret = handlehdr_getfile_request(sess, conn, hdr);
+                else if (hdrtype == 0x0101) /* getfile sending data */
+                        ret = handlehdr_getfile_sending(sess, conn, hdr);
+                else if (hdrtype == 0x0202) /* getfile recv data */
+                        ret = handlehdr_getfile_recv(sess, conn, hdr);
+                else if (hdrtype == 0x0204) /* getfile finished */
+                        ret = handlehdr_getfile_finish(sess, conn, hdr);
+                else {
+                        faimdprintf(sess, 2,"faim: OFT frame: uknown type %04x\n", hdrtype);
+                        ret = -1;
+                }
+        }
+        if (ret == -1)
+                aim_conn_close(conn);
+        return ret;
+}
+/**
+ * aim_oft_getfh - extracts an &aim_fileheader_t from buffer hdr.
+ * @bs: bstream to extract header from
+ *
+ * returns pointer to new struct on success; %NULL on error.
+ *
+ */
+static struct aim_fileheader_t *aim_oft_getfh(aim_bstream_t *bs)
+/**
+ * Extract an &aim_fileheader_t from the given buffer.
+ *
+ * @param bs The should be from an incoming rendezvous packet.
+ * @return A pointer to new struct on success, or NULL on error.
+ */
+static struct aim_fileheader_t *aim_oft_getheader(aim_bstream_t *bs)
+{
         struct aim_fileheader_t *fh;
 …
         fh->nencode = aimbs_get16(bs);
         fh->nlanguage = aimbs_get16(bs);
         aimbs_getrawbuf(bs, fh->name, 64); /* XXX */
+        aimbs_getrawbuf(bs, fh->name, 64); /* XXX - filenames longer than 64B */
         return fh;
 …
 /**
+ * aim_oft_checksum - calculate oft checksum of buffer
+ * @buffer: buffer of data to checksum
+ * @bufsize: size of buffer
+ * @prevcheck: previous checksum
+ *
+ * Prevcheck should be 0xFFFF0000 for each new file; you can have this
+ * checksum chunks of files in series if you just call it repeatedly in a
+ * for(; ; ) loop and don't reset the checksum between each call. And you
+ * thought we didn't care about you and your pathetic client's meomry
+ * footprint ;^)
+ *
+ * Thanks to Graham Booker for providing this improved checksum
+ * routine, which is simpler and should be more accurate than Josh
+ * Myer's original code. -- wtm
+ *
+ * This algorithim works every time I have tried it.  The other fails
+ * sometimes.  So, AOL who thought this up?  It has got to be the weirdest
+ * checksum I have ever seen.
+ */
+faim_export fu32_t aim_oft_checksum(const unsigned char *buffer, int bufferlen, int prevcheck) {
+        fu32_t check = (prevcheck >> 16) & 0xffff, oldcheck;
+        int i;
+        unsigned short val;
+        for (i=0; i<bufferlen; i++) {
+                oldcheck = check;
+                if (i&1) {
+                        val = buffer[i];
+                } else {
+                        val = buffer[i] << 8;
+                }
+                check -= val;
+                /* The follownig appears to be necessary.... It happens every once in a while and the checksum doesn't fail. */
+                if (check > oldcheck) {
+                        check--;
+                }
+        }
+        check = ((check & 0x0000ffff) + (check >> 16));
+        check = ((check & 0x0000ffff) + (check >> 16));
+        return check << 16;
+}
+faim_export fu32_t aim_update_checksum(aim_session_t *sess, aim_conn_t *conn,
+                const unsigned char *buffer, int len) {
+        struct aim_filetransfer_priv *ft = conn->internal;
+        ft->fh.nrecvd += len;
+        ft->fh.recvcsum = aim_oft_checksum(buffer, len, ft->fh.recvcsum);
+        return 0;
+}
+/**
+ * aim_oft_buildheader - fills a buffer with network-order fh data
+ * @bs: bstream to fill -- automatically initialized
+ * @fh: fh to get data from
+ *
+ * returns -1 on error.
+ *
+ * Fills a buffer with network-order fh data
+ *
+ * @param bs A bstream to fill -- automatically initialized
+ * @param fh A struct aim_fileheader_t to get data from.
+ * @return Return non-zero on error.
  */
 static int aim_oft_buildheader(aim_bstream_t *bs, struct aim_fileheader_t *fh)
 …
         if (!bs || !fh)
+                return -1;
+        if (!(hdr = (unsigned char *)calloc(1, 0x100 - 8))) {
+                return -1;
+        }
+                return -EINVAL;
+        if (!(hdr = (unsigned char *)calloc(1, 0x100 - 8)))
+                return -ENOMEM;
         aim_bstream_init(bs, hdr, 0x100 - 8);
         aimbs_putraw(bs, fh->bcookie, 8);
         aimbs_put16(bs, fh->encrypt);
 …
         aimbs_put16(bs, fh->nencode);
         aimbs_put16(bs, fh->nlanguage);
+        aimbs_putraw(bs, fh->name, 64);
+        /* XXX: Filenames longer than 64B */
+        aimbs_putraw(bs, fh->name, 64); /* XXX - filenames longer than 64B */
         return 0;
+}
 /**
+ * aim_getfile_intitiate - Request an OFT getfile session
+ * @sess: your session,
+ * @conn: the BOS conn,
+ * @destsn is the SN to connect to.
+ *
+ * returns a new &aim_conn_t on success, %NULL on error
+ */
+faim_export aim_conn_t *aim_getfile_initiate(aim_session_t *sess, aim_conn_t *conn, const char *destsn)
+{
+        return NULL;
+ * Create an OFT packet based on the given information, and send it on its merry way.
+ *
+ * @param sess The session.
+ * @param type The subtype of the OFT packet we're sending.
+ * @param oft_info The aim_oft_info struct with the connection and OFT
+ *        info we're sending.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_oft_sendheader(aim_session_t *sess, fu16_t type, struct aim_oft_info *oft_info)
+{
+        aim_frame_t *fr;
+        if (!sess || !oft_info || !oft_info->conn || (oft_info->conn->type != AIM_CONN_TYPE_RENDEZVOUS))
+                return -EINVAL;
 #if 0
+        struct command_tx_struct *newpacket;
+        struct aim_conn_t *newconn;
+        struct aim_filetransfer_priv *priv;
+        struct aim_msgcookie_t *cookie;
+        int curbyte, i, listenfd;
+        short port = 4443;
+        struct hostent *hptr;
+        struct utsname myname;
+        char cap[16];
+        char d[4];
+        /* Open our socket */
+        if ( (listenfd = aim_listenestablish(port)) == -1)
+                return NULL;
+        /* get our local IP */
+        if (uname(&myname) < 0)
+                return NULL;
+        if ( (hptr = gethostbyname(myname.nodename)) == NULL)
+                return NULL;
+        memcpy(&d, hptr->h_addr_list[0], 4);
+        aim_putcap(cap, 16, AIM_CAPS_GETFILE);
+        /* create the OSCAR packet */
+        if (!(newpacket = aim_tx_new(sess, conn, AIM_FRAMETYPE_OSCAR, 0x0002, 10+8+2+1+strlen(destsn)+4+4+0x42)))
+                return NULL;
+        newpacket->lock = 1;
+        /* lock struct */
+        curbyte = 0;
+        curbyte += aim_putsnac(newpacket->data+curbyte, 0x0004, 0x0006, 0x0000, sess->snac_nextid);
+        /* XXX: check the cookie before commiting to using it */
+        /* Generate a random message cookie
+         * This cookie needs to be alphanumeric and NULL-terminated to be TOC-compatible. */
+        for (i=0; i<7; i++)
+                curbyte += aimutil_put8(newpacket->data+curbyte, 0x30 + ((u_char) random() % 10));
+        curbyte += aimutil_put8(newpacket->data+curbyte, 0x00);
+        /* grab all the data for cookie caching. */
+        if (!(cookie = (struct aim_msgcookie_t *)calloc(1, sizeof(struct aim_msgcookie_t))))
+                return NULL;
+        memcpy(cookie->cookie, newpacket->data+curbyte-8, 8);
+        cookie->type = AIM_COOKIETYPE_OFTGET;
+        if (!(priv = (struct aim_filetransfer_priv *)calloc(1, sizeof(struct aim_filetransfer_priv))))
+                return NULL;
+        memcpy(priv->cookie, cookie, 8);
+        memcpy(priv->sn, destsn, sizeof(priv->sn));
+        memcpy(priv->fh.name, "listing.txt", strlen("listing.txt"));
+        priv->state = 1;
+        cookie->data = priv;
+        aim_cachecookie(sess, cookie);
+        /* Channel ID */
+        curbyte += aimutil_put16(newpacket->data+curbyte,0x0002);
+        /* Destination SN (prepended with byte length) */
+        curbyte += aimutil_put8(newpacket->data+curbyte,strlen(destsn));
+        curbyte += aimutil_putstr(newpacket->data+curbyte, destsn, strlen(destsn));
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0003);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
+        /* enTLV start */
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0005);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0042);
+        /* Flag data / ICBM Parameters? */
+        curbyte += aimutil_put8(newpacket->data+curbyte, 0x00);
+        curbyte += aimutil_put8(newpacket->data+curbyte, 0x00);
+        /* Cookie */
+        curbyte += aimutil_putstr(newpacket->data+curbyte, (char *)cookie, 8);
+        /* Capability String */
+        curbyte += aimutil_putstr(newpacket->data+curbyte, (char *)cap, 0x10);
+        /* 000a/0002 : 0001 */
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x000a);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0002);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0001);
+        /* 0003/0004: IP address */
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0003);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0004);
+        for (i = 0; i < 4; i++)
+        curbyte += aimutil_put8(newpacket->data+curbyte, d[i]);
+        /* already in network byte order */
+        /* 0005/0002: Port */
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0005);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0002);
+        curbyte += aimutil_put16(newpacket->data+curbyte, port);
+        /* 000f/0000: ?? */
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x000f);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x0000);
+        /* 2711/000c: ?? */
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x2711);
+        curbyte += aimutil_put16(newpacket->data+curbyte, 0x000c);
+        curbyte += aimutil_put32(newpacket->data+curbyte, 0x00120001);
+        for (i = 0; i < 0x000c - 4; i++)
+                curbyte += aimutil_put8(newpacket->data+curbyte, 0x00);
+        newpacket->commandlen = curbyte;
+        newpacket->lock = 0;
+        aim_tx_enqueue(sess, newpacket);
+        /* allocate and set up our connection */
+        i = fcntl(listenfd, F_GETFL, 0);
+        fcntl(listenfd, F_SETFL, i | O_NONBLOCK);
+        newconn = aim_newconn(sess, AIM_CONN_TYPE_RENDEZVOUS_OUT, NULL);
+        if (!newconn){
+                perror("aim_newconn");
+                return NULL;
+        }
+        newconn->fd = listenfd;
+        newconn->subtype = AIM_CONN_SUBTYPE_OFT_GETFILE;
+        newconn->internal = priv;
+        faimdprintf(sess, 2,"faim: listening (fd = %d, unconnected)\n", newconn->fd);
+        return newconn;
+#endif
+}
+/**
+ * aim_oft_getfile_request - request a particular file over an established getfile connection
+ * @sess: your session
+ * @conn: the established OFT getfile connection
+ * @name: filename to request
+ * @size: size of the file
+ *
+ *
+ * returns -1 on error, 0 on successful enqueuing
+ */
+#if 0
+faim_export int aim_oft_getfile_request(aim_session_t *sess, aim_conn_t *conn, const char *name, int size)
+{
+        aim_frame_t *newoft;
+        struct aim_filetransfer_priv *ft;
+        if (!sess || !conn || !conn->priv || !name)
+                return -1;
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x120c, 0))) {
+                faimdprintf(sess, 2, "faim: aim_accepttransfer: tx_new OFT failed\n");
+                return -1;
+        }
+        memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+        newoft->hdr.oft.hdr2len = 0x100 - 8;
+        ft = (struct aim_filetransfer_priv *)conn->priv;
+        ft->fh.filesleft = 1;
+        ft->fh.totfiles = 1;
+        ft->fh.totparts = 1;
+        ft->fh.partsleft = 1;
+        ft->fh.totsize = size;
+        ft->fh.size = size;
+        ft->fh.checksum = 0;
+        memcpy(ft->fh.name, name, strlen(name));
+        memset(ft->fh.name+strlen(name), 0, 1);
+        if (!(newoft->hdr.oft.hdr2 = (unsigned char *)calloc(1,newoft->hdr.oft.hdr2len))) {
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        if (!(aim_oft_buildheader(newoft->hdr.oft.hdr2, &(ft->fh)))) {
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        aim_tx_enqueue(sess, newoft);
+        return 0;
+}
+#endif
+/* Identify a file that we are about to send by transmitting the
+ * appropriate header.
+ */
+faim_export int aim_oft_sendfile_request(aim_session_t *sess, aim_conn_t *conn, const char *filename, int filesdone, int numfiles, int size, int totsize)
+{
+        aim_frame_t *newoft;
+        aim_msgcookie_t *cook;
+        struct aim_filetransfer_priv *ft = (struct aim_filetransfer_priv *)conn->internal;
+        struct aim_fileheader_t *fh;
+        if (!sess || !conn || !filename)
+                return -1;
+        if (!(fh = (struct aim_fileheader_t*)calloc(1, sizeof(struct aim_fileheader_t))))
+                return -1;
+#ifdef DUMB_OFT_CHECKSUM
+        /* Yes, we are supposed to checksum the whole file before sending, and
+         * yes, it's dumb.  This is the only way to get some clients (such as
+         * Mac AIM v4.5.163) to successfully complete the transfer.  With
+         * the WinAIM clients, we seem to be able to get away with just
+         * setting the checksum to zero.
+         * -- wtm
+        /*
+         * If you are receiving a file, the cookie should be null, if you are sending a
+         * file, the cookie should be the same as the one used in the ICBM negotiation
+         * SNACs.
          */
+        {
-                int fd = open(filename, O_RDONLY);
-                if (fd >= 0) {
-                        int bytes;
-                        char buf[1024];
-                        fh->checksum = 0xffff0000;
-                        while ((bytes = aim_recv(fd, buf, 1024)) > 0) {
-                                fh->checksum = aim_oft_checksum(buf, bytes, fh->checksum);
+                        }
+                }
-                close(fd);
+        }
-#else
-        fh->checksum = 0x00000000;
-#endif
-        fh->encrypt = 0x0000;
-        fh->compress = 0x0000;
-        fh->totfiles = numfiles;
-        fh->filesleft = numfiles - filesdone;
-        fh->totparts = 0x0001; /* set to 0x0002 sending Mac resource forks */
-        fh->partsleft = 0x0001;
-        fh->totsize = totsize;
-        fh->size = size;
-        fh->modtime = (int)time(NULL); /* we'll go with current time for now */
-        /* fh->checksum set above */
-        fh->rfcsum = 0x00000000;
-        fh->rfsize = 0x00000000;
-        fh->cretime = 0x00000000;
-        fh->rfcsum = 0x00000000;
-        fh->nrecvd = 0x00000000; /* always zero initially */
-        fh->recvcsum= 0x00000000; /* ditto */
-        strncpy(fh->idstring, "OFT_Windows ICBMFT V1.1 32", sizeof(fh->idstring));
-        fh->flags = 0x02;
         fh->lnameoffset = 0x1a;
         fh->lsizeoffset = 0x10;
-        memset(fh->dummy, 0, sizeof(fh->dummy));
-        memset(fh->macfileinfo, 0, sizeof(fh->macfileinfo));
         /* apparently 0 is ASCII, 2 is UCS-2 */
         /* it is likely that 3 is ISO 8859-1 */
+        /* I think "nlanguage" might be the same thing as "subenc" in im.c */
         fh->nencode = 0x0000;
         fh->nlanguage = 0x0000;
+        /* Convert the directory separator to ^A for portability. */
+        strncpy(fh->name, filename, sizeof(fh->name));
+        oft_dirconvert(fh->name);
+        /* XXX we should normally send a null cookie here, and make
+         * the receiver fill it in for authentication -- wtm
+         */
+        memcpy(fh->bcookie, ft->cookie, 8);
+        if (!(cook = aim_checkcookie(sess, ft->cookie, AIM_COOKIETYPE_OFTSEND))) {
+                return -1;
+        }
+        /* Update both headers to be safe. */
+        memcpy(&(ft->fh), fh, sizeof(struct aim_fileheader_t));
+        memcpy(&(((struct aim_filetransfer_priv *)cook->data)->fh), fh, sizeof(struct aim_fileheader_t));
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, AIM_OFT_PROTO_OFFER, 0))) {
+                faimdprintf(sess, 2, "faim: aim_accepttransfer: tx_new OFT failed\n");
+                free(fh);
+                return -1;
+        }
+        if (aim_oft_buildheader(&newoft->data, fh) == -1) {
+                aim_frame_destroy(newoft);
+                free(fh);
+                return -1;
+        }
+        memcpy(newoft->hdr.rend.magic, "OFT2", 4);
+        newoft->hdr.rend.hdrlen = aim_bstream_curpos(&newoft->data);
+        aim_tx_enqueue(sess, newoft);
+        free(fh);
+#endif
+        aim_oft_dirconvert_tostupid(oft_info->fh.name);
+        if (!(fr = aim_tx_new(sess, oft_info->conn, AIM_FRAMETYPE_OFT, type, 0)))
+                return -ENOMEM;
+        if (aim_oft_buildheader(&fr->data, &oft_info->fh) == -1) {
+                aim_frame_destroy(fr);
+                return -ENOMEM;
+        }
+        memcpy(fr->hdr.rend.magic, "OFT2", 4);
+        fr->hdr.rend.hdrlen = aim_bstream_curpos(&fr->data);
+        aim_tx_enqueue(sess, fr);
         return 0;
+}
+/**
+ * aim_oft_getfile_ack - acknowledge a getfile download as complete
+ * @sess: your session
+ * @conn: the getfile conn to send the ack over
+ *
+ * Call this function after you have read all the data in a particular
+ * filetransfer. Returns -1 on error, 0 on apparent success
+ *
+ */
+faim_export int aim_oft_getfile_ack(aim_session_t *sess, aim_conn_t *conn)
+{
+        return -EINVAL;
+#if 0
+        struct command_tx_struct *newoft;
+        struct aim_filetransfer_priv *ft;
+        if (!sess || !conn || !conn->priv)
+                return -1;
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, 0x0202, 0))) {
+                faimdprintf(sess, 2, "faim: aim_accepttransfer: tx_new OFT failed\n");
+        return -1;
+        }
+        newoft->lock = 1;
+        memcpy(newoft->hdr.oft.magic, "OFT2", 4);
+        newoft->hdr.oft.hdr2len = 0x100-8;
+        if (!(newoft->hdr.oft.hdr2 = (char *)calloc(1,newoft->hdr.oft.hdr2len))) {
+                newoft->lock = 0;
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        ft = (struct aim_filetransfer_priv *)conn->priv;
+        if (!(aim_oft_buildheader((unsigned char *)newoft->hdr.oft.hdr2, &(ft->fh)))) {
+                newoft->lock = 0;
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        newoft->lock = 0;
+        aim_tx_enqueue(sess, newoft);
+        return 0;
+#endif
+}
+/**
+ * aim_oft_end - end a getfile/sendfile.
+ * @sess: your session
+ * @conn: the getfile connection
+ *
+ * call this before you close the getfile connection if you're on the
+ * receiving/requesting end.
+ */
+faim_export int aim_oft_end(aim_session_t *sess, aim_conn_t *conn)
+{
+        aim_frame_t *newoft;
+        struct aim_filetransfer_priv *ft;
+        if (!sess || !conn || !conn->internal)
+                return -1;
+        if (!(newoft = aim_tx_new(sess, conn, AIM_FRAMETYPE_OFT, AIM_OFT_PROTO_ACK, 0))) {
+                faimdprintf(sess, 2, "faim: aim_accepttransfer: tx_new OFT failed\n");
+                return -1;
+        }
+        ft = (struct aim_filetransfer_priv *)conn->internal;
+        ft->state = 4; /* no longer wanting data */
+        ft->fh.flags = 0x21;
+        if (aim_oft_buildheader(&(newoft->data), &(ft->fh)) == -1) {
+                aim_frame_destroy(newoft);
+                return -1;
+        }
+        memcpy(newoft->hdr.rend.magic, "OFT2", 4);
+        newoft->hdr.rend.hdrlen = aim_bstream_curpos(&newoft->data);
+        aim_tx_enqueue(sess, newoft);
+        return 0;
+}
+/*
+ * Convert the directory separator to ^A, which seems to be AOL's attempt at portability.
+ */
+static void oft_dirconvert(char *name) {
+        char *c = name;
+        while ((c = strchr(c, G_DIR_SEPARATOR)))
+                *c = 0x01;
+}
+/**
+ * Handle incoming data on a rendezvous connection.  This is analogous to the
+ * consumesnac function in rxhandlers.c, and I really think this should probably
+ * be in rxhandlers.c as well, but I haven't finished cleaning everything up yet.
+ *
+ * @param sess The session.
+ * @param fr The frame allocated for the incoming data.
+ * @return Return 0 if the packet was handled correctly, otherwise return the
+ *         error number.
+ */
+faim_internal int aim_rxdispatch_rendezvous(aim_session_t *sess, aim_frame_t *fr)
+{
+        aim_conn_t *conn = fr->conn;
+        int ret = 1;
+        if (conn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM) {
+                if (fr->hdr.rend.type == 0x0001)
+                        ret = handlehdr_odc(sess, conn, fr, &fr->data);
+                else
+                        faimdprintf(sess, 0, "faim: ODC directim frame unknown, type is %04x\n", fr->hdr.rend.type);
+        } else {
+                aim_rxcallback_t userfunc;
+                struct aim_fileheader_t *header = aim_oft_getheader(&fr->data);
+                aim_oft_dirconvert_fromstupid(header->name); /* XXX - This should be client-side */
+                if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_OFT, fr->hdr.rend.type)))
+                        ret = userfunc(sess, fr, conn, header->bcookie, header);
+                free(header);
+        }
+        if (ret == -1)
+                aim_conn_close(conn);
+        return ret;
+}

libfaim/icq.c

-                      r862371b
+                      re374dee
+}
+faim_export int aim_icq_hideip(aim_session_t *sess)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        int bslen;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0015)))
+                return -EINVAL;
+        bslen = 2+4+2+2+2+4;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + bslen)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0015, 0x0002, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0015, 0x0002, 0x0000, snacid);
+        /* For simplicity, don't bother using a tlvlist */
+        aimbs_put16(&fr->data, 0x0001);
+        aimbs_put16(&fr->data, bslen);
+        aimbs_putle16(&fr->data, bslen - 2);
+        aimbs_putle32(&fr->data, atoi(sess->sn));
+        aimbs_putle16(&fr->data, 0x07d0); /* I command thee. */
+        aimbs_putle16(&fr->data, snacid); /* eh. */
+        aimbs_putle16(&fr->data, 0x0424); /* shrug. */
+        aimbs_putle16(&fr->data, 0x0001);
+        aimbs_putle16(&fr->data, 0x0001);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/**
+ * Change your ICQ password.
+ *
+ * @param sess The oscar session
+ * @param passwd The new password.  If this is longer than 8 characters it
+ *        will be truncated.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_icq_changepasswd(aim_session_t *sess, const char *passwd)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        int bslen, passwdlen;
+        if (!passwd)
+                return -EINVAL;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0015)))
+                return -EINVAL;
+        passwdlen = strlen(passwd);
+        if (passwdlen > MAXICQPASSLEN)
+                passwdlen = MAXICQPASSLEN;
+        bslen = 2+4+2+2+2+2+passwdlen+1;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + bslen)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0015, 0x0002, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0015, 0x0002, 0x0000, snacid);
+        /* For simplicity, don't bother using a tlvlist */
+        aimbs_put16(&fr->data, 0x0001);
+        aimbs_put16(&fr->data, bslen);
+        aimbs_putle16(&fr->data, bslen - 2);
+        aimbs_putle32(&fr->data, atoi(sess->sn));
+        aimbs_putle16(&fr->data, 0x07d0); /* I command thee. */
+        aimbs_putle16(&fr->data, snacid); /* eh. */
+        aimbs_putle16(&fr->data, 0x042e); /* shrug. */
+        aimbs_putle16(&fr->data, passwdlen+1);
+        aimbs_putraw(&fr->data, passwd, passwdlen);
+        aimbs_putle8(&fr->data, '\0');
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+faim_export int aim_icq_getallinfo(aim_session_t *sess, const char *uin)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        int bslen;
+        struct aim_icq_info *info;
+        if (!uin || uin[0] < '0' || uin[0] > '9')
+                return -EINVAL;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0015)))
+                return -EINVAL;
+        bslen = 2 + 4 + 2 + 2 + 2 + 4;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + bslen)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0015, 0x0002, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0015, 0x0002, 0x0000, snacid);
+        /* For simplicity, don't bother using a tlvlist */
+        aimbs_put16(&fr->data, 0x0001);
+        aimbs_put16(&fr->data, bslen);
+        aimbs_putle16(&fr->data, bslen - 2);
+        aimbs_putle32(&fr->data, atoi(sess->sn));
+        aimbs_putle16(&fr->data, 0x07d0); /* I command thee. */
+        aimbs_putle16(&fr->data, snacid); /* eh. */
+        aimbs_putle16(&fr->data, 0x04b2); /* shrug. */
+        aimbs_putle32(&fr->data, atoi(uin));
+        aim_tx_enqueue(sess, fr);
+        /* Keep track of this request and the ICQ number and request ID */
+        info = (struct aim_icq_info *)calloc(1, sizeof(struct aim_icq_info));
+        info->reqid = snacid;
+        info->uin = atoi(uin);
+        info->next = sess->icq_info;
+        sess->icq_info = info;
+        return 0;
+}
+faim_export int aim_icq_getalias(aim_session_t *sess, const char *uin)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        int bslen;
+        struct aim_icq_info *info;
+        if (!uin || uin[0] < '0' || uin[0] > '9')
+                return -EINVAL;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0015)))
+                return -EINVAL;
+        bslen = 2 + 4 + 2 + 2 + 2 + 4;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + bslen)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0015, 0x0002, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0015, 0x0002, 0x0000, snacid);
+        /* For simplicity, don't bother using a tlvlist */
+        aimbs_put16(&fr->data, 0x0001);
+        aimbs_put16(&fr->data, bslen);
+        aimbs_putle16(&fr->data, bslen - 2);
+        aimbs_putle32(&fr->data, atoi(sess->sn));
+        aimbs_putle16(&fr->data, 0x07d0); /* I command thee. */
+        aimbs_putle16(&fr->data, snacid); /* eh. */
+        aimbs_putle16(&fr->data, 0x04ba); /* shrug. */
+        aimbs_putle32(&fr->data, atoi(uin));
+        aim_tx_enqueue(sess, fr);
+        /* Keep track of this request and the ICQ number and request ID */
+        info = (struct aim_icq_info *)calloc(1, sizeof(struct aim_icq_info));
+        info->reqid = snacid;
+        info->uin = atoi(uin);
+        info->next = sess->icq_info;
+        sess->icq_info = info;
+        return 0;
+}
+faim_export int aim_icq_getsimpleinfo(aim_session_t *sess, const char *uin)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        int bslen;
+        if (!uin || uin[0] < '0' || uin[0] > '9')
+                return -EINVAL;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0015)))
+                return -EINVAL;
+        bslen = 2 + 4 + 2 + 2 + 2 + 4;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + bslen)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0015, 0x0002, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0015, 0x0002, 0x0000, snacid);
+        /* For simplicity, don't bother using a tlvlist */
+        aimbs_put16(&fr->data, 0x0001);
+        aimbs_put16(&fr->data, bslen);
+        aimbs_putle16(&fr->data, bslen - 2);
+        aimbs_putle32(&fr->data, atoi(sess->sn));
+        aimbs_putle16(&fr->data, 0x07d0); /* I command thee. */
+        aimbs_putle16(&fr->data, snacid); /* eh. */
+        aimbs_putle16(&fr->data, 0x051f); /* shrug. */
+        aimbs_putle32(&fr->data, atoi(uin));
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
 faim_export int aim_icq_sendxmlreq(aim_session_t *sess, const char *xml)
+{
 …
+}
+faim_export int aim_icq_getsimpleinfo(aim_session_t *sess, const char *uin)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        int bslen;
+        if (!uin || uin[0] < '0' || uin[0] > '9')
+                return -EINVAL;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0015)))
+                return -EINVAL;
+        bslen = 2 + 4 + 2 + 2 + 2 + 4;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + bslen)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0015, 0x0002, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0015, 0x0002, 0x0000, snacid);
+        /* For simplicity, don't bother using a tlvlist */
+        aimbs_put16(&fr->data, 0x0001);
+        aimbs_put16(&fr->data, bslen);
+        aimbs_putle16(&fr->data, bslen - 2);
+        aimbs_putle32(&fr->data, atoi(sess->sn));
+        aimbs_putle16(&fr->data, 0x07d0); /* I command thee. */
+        aimbs_putle16(&fr->data, snacid); /* eh. */
+        aimbs_putle16(&fr->data, 0x051f); /* shrug. */
+        aimbs_putle32(&fr->data, atoi(uin));
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * Response to 15/2, contains an ICQ packet.
+static void aim_icq_freeinfo(struct aim_icq_info *info) {
+        int i;
+        if (!info)
+                return;
+        free(info->nick);
+        free(info->first);
+        free(info->last);
+        free(info->email);
+        free(info->homecity);
+        free(info->homestate);
+        free(info->homephone);
+        free(info->homefax);
+        free(info->homeaddr);
+        free(info->mobile);
+        free(info->homezip);
+        free(info->personalwebpage);
+        if (info->email2)
+                for (i = 0; i < info->numaddresses; i++)
+                        free(info->email2[i]);
+        free(info->email2);
+        free(info->workcity);
+        free(info->workstate);
+        free(info->workphone);
+        free(info->workfax);
+        free(info->workaddr);
+        free(info->workzip);
+        free(info->workcompany);
+        free(info->workdivision);
+        free(info->workposition);
+        free(info->workwebpage);
+        free(info->info);
+        free(info);
+}
+/**
+ * Subtype 0x0003 - Response to 0x0015/0x002, contains an ICQesque packet.
  */
 static int icqresponse(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
 …
         faimdprintf(sess, 1, "icq response: %d bytes, %ld, 0x%04x, 0x%04x\n", cmdlen, ouruin, cmd, reqid);
+        if (cmd == 0x0041) {
+                fu16_t msglen;
+        if (cmd == 0x0041) { /* offline message */
                 struct aim_icq_offlinemsg msg;
                 aim_rxcallback_t userfunc;
 …
                 msg.hour = aimbs_getle8(&qbs);
                 msg.minute = aimbs_getle8(&qbs);
+                msg.type = aimbs_getle16(&qbs);
+                msglen = aimbs_getle16(&qbs);
+                msg.msg = aimbs_getstr(&qbs, msglen);
+                msg.type = aimbs_getle8(&qbs);
+                msg.flags = aimbs_getle8(&qbs);
+                msg.msglen = aimbs_getle16(&qbs);
+                msg.msg = aimbs_getstr(&qbs, msg.msglen);
                 if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_OFFLINEMSG)))
 …
                 if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_OFFLINEMSGCOMPLETE)))
                         ret = userfunc(sess, rx);
+        } else if (cmd == 0x07da) {
+        } else if (cmd == 0x07da) { /* information */
                 fu16_t subtype;
+                struct aim_icq_info *info;
+                aim_rxcallback_t userfunc;
                 subtype = aimbs_getle16(&qbs);
+                if (subtype == 0x019a) {
+                        fu16_t tlen;
+                        struct aim_icq_simpleinfo info;
+                        aim_rxcallback_t userfunc;
+                        memset(&info, 0, sizeof(info));
+                        aimbs_getle8(&qbs); /* no clue */
+                        aimbs_getle16(&qbs); /* no clue */
+                        info.uin = aimbs_getle32(&qbs);
+                        tlen = aimbs_getle16(&qbs);
+                        info.nick = aimbs_getstr(&qbs, tlen);
+                        tlen = aimbs_getle16(&qbs);
+                        info.first = aimbs_getstr(&qbs, tlen);
+                        tlen = aimbs_getle16(&qbs);
+                        info.last = aimbs_getstr(&qbs, tlen);
+                        tlen = aimbs_getle16(&qbs);
+                        info.email = aimbs_getstr(&qbs, tlen);
+                        /* no clue what the rest of it is */
+                        if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_SIMPLEINFO)))
+                                ret = userfunc(sess, rx, &info);
+                        free(info.nick);
+                        free(info.first);
+                        free(info.last);
+                        free(info.email);
+                aim_bstream_advance(&qbs, 1); /* 0x0a */
+                /* find other data from the same request */
+                for (info = sess->icq_info; info && (info->reqid != reqid); info = info->next);
+                if (!info) {
+                        info = (struct aim_icq_info *)calloc(1, sizeof(struct aim_icq_info));
+                        info->reqid = reqid;
+                        info->next = sess->icq_info;
+                        sess->icq_info = info;
+                }
+                switch (subtype) {
+                case 0x00a0: { /* hide ip status */
+                        /* nothing */
+                } break;
+                case 0x00aa: { /* password change status */
+                        /* nothing */
+                } break;
+                case 0x00c8: { /* general and "home" information */
+                        info->nick = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->first = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->last = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->email = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homecity = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homestate = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homephone = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homefax = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homeaddr = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->mobile = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homezip = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->homecountry = aimbs_getle16(&qbs);
+                        /* 0x0a 00 02 00 */
+                        /* 1 byte timezone? */
+                        /* 1 byte hide email flag? */
+                } break;
+                case 0x00dc: { /* personal information */
+                        info->age = aimbs_getle8(&qbs);
+                        info->unknown = aimbs_getle8(&qbs);
+                        info->gender = aimbs_getle8(&qbs);
+                        info->personalwebpage = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->birthyear = aimbs_getle16(&qbs);
+                        info->birthmonth = aimbs_getle8(&qbs);
+                        info->birthday = aimbs_getle8(&qbs);
+                        info->language1 = aimbs_getle8(&qbs);
+                        info->language2 = aimbs_getle8(&qbs);
+                        info->language3 = aimbs_getle8(&qbs);
+                        /* 0x00 00 01 00 00 01 00 00 00 00 00 */
+                } break;
+                case 0x00d2: { /* work information */
+                        info->workcity = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workstate = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workphone = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workfax = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workaddr = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workzip = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workcountry = aimbs_getle16(&qbs);
+                        info->workcompany = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workdivision = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->workposition = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        aim_bstream_advance(&qbs, 2); /* 0x01 00 */
+                        info->workwebpage = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                } break;
+                case 0x00e6: { /* additional personal information */
+                        info->info = aimbs_getstr(&qbs, aimbs_getle16(&qbs)-1);
+                } break;
+                case 0x00eb: { /* email address(es) */
+                        int i;
+                        info->numaddresses = aimbs_getle16(&qbs);
+                        info->email2 = (char **)calloc(info->numaddresses, sizeof(char *));
+                        for (i = 0; i < info->numaddresses; i++) {
+                                info->email2[i] = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                                if (i+1 != info->numaddresses)
+                                        aim_bstream_advance(&qbs, 1); /* 0x00 */
+                        }
+                } break;
+                case 0x00f0: { /* personal interests */
+                } break;
+                case 0x00fa: { /* past background and current organizations */
+                } break;
+                case 0x0104: { /* alias info */
+                        info->nick = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->first = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->last = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        aim_bstream_advance(&qbs, aimbs_getle16(&qbs)); /* email address? */
+                        /* Then 0x00 02 00 */
+                } break;
+                case 0x010e: { /* unknown */
+                        /* 0x00 00 */
+                } break;
+                case 0x019a: { /* simple info */
+                        aim_bstream_advance(&qbs, 2);
+                        info->uin = aimbs_getle32(&qbs);
+                        info->nick = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->first = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->last = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        info->email = aimbs_getstr(&qbs, aimbs_getle16(&qbs));
+                        /* Then 0x00 02 00 00 00 00 00 */
+                } break;
+                } /* End switch statement */
+                if (!(snac->flags & 0x0001)) {
+                        if (subtype != 0x0104)
+                                if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_INFO)))
+                                        ret = userfunc(sess, rx, info);
+                        if (info->uin && info->nick)
+                                if ((userfunc = aim_callhandler(sess, rx->conn, AIM_CB_FAM_ICQ, AIM_CB_ICQ_ALIAS)))
+                                        ret = userfunc(sess, rx, info);
+                        if (sess->icq_info == info) {
+                                sess->icq_info = info->next;
+                        } else {
+                                struct aim_icq_info *cur;
+                                for (cur=sess->icq_info; (cur->next && (cur->next!=info)); cur=cur->next);
+                                if (cur->next)
+                                        cur->next = cur->next->next;
+                        }
+                        aim_icq_freeinfo(info);
+                }
+        }
 …
         return 0;
+}
+static void icq_shutdown(aim_session_t *sess, aim_module_t *mod)
+{
+        struct aim_icq_info *del;
+        while (sess->icq_info) {
+                del = sess->icq_info;
+                sess->icq_info = sess->icq_info->next;
+                aim_icq_freeinfo(del);
+        }
+        return;
+}
 …
         mod->version = 0x0001;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x047c;
         mod->flags = 0;
         strncpy(mod->name, "icq", sizeof(mod->name));
         mod->snachandler = snachandler;
+        return 0;
+}
+        mod->shutdown = icq_shutdown;
+        return 0;
+}

libfaim/im.c

-                      r862371b
+                      re374dee
 /*
+ *  Family 0x0004 - Routines for sending/receiving Instant Messages.
+ *
+ *  Note the term ICBM (Inter-Client Basic Message) which blankets
+ *  all types of genericly routed through-server messages.  Within
+ *  the ICBM types (family 4), a channel is defined.  Each channel
+ *  represents a different type of message.  Channel 1 is used for
+ *  what would commonly be called an "instant message".  Channel 2
+ *  is used for negotiating "rendezvous".  These transactions end in
+ *  something more complex happening, such as a chat invitation, or
+ *  a file transfer.  Channel 3 is used for chat messages (not in
+ *  the same family as these channels).  Channel 4 is used for
+ *  various ICQ messages.  Examples are normal messages, URLs, and
+ *  old-style authorization.
+ *
+ *  In addition to the channel, every ICBM contains a cookie.  For
+ *  standard IMs, these are only used for error messages.  However,
+ *  the more complex rendezvous messages make suitably more complex
+ *  use of this field.
+ *
+ * Family 0x0004 - Routines for sending/receiving Instant Messages.
+ *
+ * Note the term ICBM (Inter-Client Basic Message) which blankets
+ * all types of genericly routed through-server messages.  Within
+ * the ICBM types (family 4), a channel is defined.  Each channel
+ * represents a different type of message.  Channel 1 is used for
+ * what would commonly be called an "instant message".  Channel 2
+ * is used for negotiating "rendezvous".  These transactions end in
+ * something more complex happening, such as a chat invitation, or
+ * a file transfer.  Channel 3 is used for chat messages (not in
+ * the same family as these channels).  Channel 4 is used for
+ * various ICQ messages.  Examples are normal messages, URLs, and
+ * old-style authorization.
+ *
+ * In addition to the channel, every ICBM contains a cookie.  For
+ * standard IMs, these are only used for error messages.  However,
+ * the more complex rendezvous messages make suitably more complex
+ * use of this field.
+ *
+ * TODO: Split this up into an im.c file an an icbm.c file.  It
+ *       will be beautiful, you'll see.
+ *
+ *       Need to rename all the mpmsg messages to aim_im_bleh.
+ *
+ *       Make sure aim_conn_findbygroup is used by all functions.
  */
 …
 #include "win32dep.h"
 #endif
+/**
+ * Add a standard ICBM header to the given bstream with the given
+ * information.
+ *
+ * @param bs The bstream to write the ICBM header to.
+ * @param c c is for cookie, and cookie is for me.
+ * @param ch The ICBM channel (1 through 4).
+ * @param sn Null-terminated scrizeen nizame.
+ * @return The number of bytes written.  It's really not useful.
+ */
+static int aim_im_puticbm(aim_bstream_t *bs, const fu8_t *c, fu16_t ch, const char *sn)
+{
+        aimbs_putraw(bs, c, 8);
+        aimbs_put16(bs, ch);
+        aimbs_put8(bs, strlen(sn));
+        aimbs_putraw(bs, sn, strlen(sn));
+        return 8+2+1+strlen(sn);
+}
 /*
 …
+ *
  * Heres the current collection:
  *  0501 0003 0101 0101 01       AOL Mobile Communicator, WinAIM 1.0.414
  *  0501 0003 0101 0201 01       WinAIM 2.0.847, 2.1.1187, 3.0.1464,
  *                                      4.3.2229, 4.4.2286
  *  0501 0004 0101 0102 0101     WinAIM 4.1.2010, libfaim (right here)
  *  0501 0003 0101 02            WinAIM 5
  *  0501 0001 01                 iChat x.x
  *  0501 0001 0101 01            AOL v6.0, CompuServe 2000 v6.0, any
  *                                      TOC client
+ *  0501 0003 0101 0101 01              AOL Mobile Communicator, WinAIM 1.0.414
+ *  0501 0003 0101 0201 01              WinAIM 2.0.847, 2.1.1187, 3.0.1464,
+ *                                      4.3.2229, 4.4.2286
+ *  0501 0004 0101 0102 0101            WinAIM 4.1.2010, libfaim (right here)
+ *  0501 0003 0101 02                   WinAIM 5
+ *  0501 0001 01                        iChat x.x, mobile buddies
+ *  0501 0001 0101 01                   AOL v6.0, CompuServe 2000 v6.0, any TOC client
+ *  0501 0002 0106                      WinICQ 5.45.1.3777.85
+ *
  * Note that in this function, only the feature bytes are tested, since
 …
+ *
  */
 faim_export fu16_t aim_fingerprintclient(fu8_t *msghdr, int len)
+faim_export fu16_t aim_im_fingerprint(const fu8_t *msghdr, int len)
+{
         static const struct {
 …
+}
 /*
  * Subtype 0x0002
+/**
+ * Subtype 0x0002 - Set ICBM parameters.
+ *
  * I definitly recommend sending this.  If you don't, you'll be stuck
  * with the rather unreasonable defaults.  You don't want those.  Send this.
+ * with the rather unreasonable defaults.
+ *
  */
 faim_export int aim_seticbmparam(aim_session_t *sess, struct aim_icbmparameters *params)
+faim_export int aim_im_setparams(aim_session_t *sess, struct aim_icbmparameters *params)
+{
         aim_conn_t *conn;
 …
+}
+/* Subtype 0x0004 - Request ICBM parameter information. */
+faim_export int aim_reqicbmparams(aim_session_t *sess)
+/**
+ * Subtype 0x0004 - Request ICBM parameter information.
+ *
+ */
+faim_export int aim_im_reqparams(aim_session_t *sess)
+{
         aim_conn_t *conn;
 …
+}
+/* Subtype 0x0005 */
+static int paraminfo(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+/**
+ * Subtype 0x0005 - Receive parameter information.
+ *
+ */
+static int aim_im_paraminfo(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        aim_rxcallback_t userfunc;
         struct aim_icbmparameters params;
-        aim_rxcallback_t userfunc;
         params.maxchan = aimbs_get16(bs);
 …
+}
+/* This should be endian-safe now... but who knows... */
+faim_export fu16_t aim_iconsum(const fu8_t *buf, int buflen)
+{
+        fu32_t sum;
+        int i;
+        for (i = 0, sum = 0; i + 1 < buflen; i += 2)
+                sum += (buf[i+1] << 8) + buf[i];
+        if (i < buflen)
+                sum += buf[i];
+        sum = ((sum & 0xffff0000) >> 16) + (sum & 0x0000ffff);
+        return (fu16_t)sum;
+}
+/*
+/**
  * Subtype 0x0006 - Send an ICBM (instant message).
+ *
 …
  * instead of writing out the bytes manually.
+ *
+ * XXX more precise verification that we never send SNACs larger than 8192
+ * XXX check SNAC size for multipart
+ *
+ */
+faim_export int aim_send_im_ext(aim_session_t *sess, struct aim_sendimext_args *args)
+{
+        static const fu8_t deffeatures[] = {
+x01, 0x01, 0x01, 0x02
+        };
+ * XXX - more precise verification that we never send SNACs larger than 8192
+ * XXX - check SNAC size for multipart
+ *
+ */
+faim_export int aim_im_sendch1_ext(aim_session_t *sess, struct aim_sendimext_args *args)
+{
         aim_conn_t *conn;
-        int i, msgtlvlen;
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        fu8_t ck[8];
+        int i, msgtlvlen;
+        static const fu8_t deffeatures[] = { 0x01, 0x01, 0x01, 0x02 };
         if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)))
 …
                 return -ENOMEM;
         /* XXX should be optional */
+        /* XXX - should be optional */
         snacid = aim_cachesnac(sess, 0x0004, 0x0006, 0x0000, args->destsn, strlen(args->destsn)+1);
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
         /*
          * Generate a random message cookie
+         * Generate a random message cookie
+         *
          * We could cache these like we do SNAC IDs.  (In fact, it
 …
          */
         for (i = 0; i < 8; i++)
+                aimbs_put8(&fr->data, (fu8_t) rand());
+        /*
+         * Channel ID
+         */
+        aimbs_put16(&fr->data, 0x0001);
+        /*
+         * Destination SN (prepended with byte length)
+         */
+        aimbs_put8(&fr->data, strlen(args->destsn));
+        aimbs_putraw(&fr->data, args->destsn, strlen(args->destsn));
+        /*
+         * Message TLV (type 2).
+         */
+                ck[i] = (fu8_t)rand();
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, ck, 0x0001, args->destsn);
+        /* Message TLV (type 0x0002) */
         aimbs_put16(&fr->data, 0x0002);
         aimbs_put16(&fr->data, msgtlvlen);
+        /*
+         * Features
+         *
+         */
+        aimbs_put8(&fr->data, 0x05);
+        aimbs_put8(&fr->data, 0x01);
+        /* Features TLV (type 0x0501) */
+        aimbs_put16(&fr->data, 0x0501);
         if (args->flags & AIM_IMFLAGS_CUSTOMFEATURES) {
                 aimbs_put16(&fr->data, args->featureslen);
 …
                 aim_mpmsg_section_t *sec;
+                /* Insert each message part in a TLV (type 0x0101) */
                 for (sec = args->mpmsg->parts; sec; sec = sec->next) {
                         aimbs_put16(&fr->data, 0x0101);
 …
         } else {
+                /* Insert message text in a TLV (type 0x0101) */
                 aimbs_put16(&fr->data, 0x0101);
+                /*
+                 * Message block length.
+                 */
+                /* Message block length */
                 aimbs_put16(&fr->data, args->msglen + 0x04);
+                /*
+                 * Character set.
+                 */
+                if (args->flags & AIM_IMFLAGS_CUSTOMCHARSET) {
+                        aimbs_put16(&fr->data, args->charset);
+                        aimbs_put16(&fr->data, args->charsubset);
+                } else {
+                        if (args->flags & AIM_IMFLAGS_UNICODE)
+                                aimbs_put16(&fr->data, 0x0002);
+                        else if (args->flags & AIM_IMFLAGS_ISO_8859_1)
+                                aimbs_put16(&fr->data, 0x0003);
+                        else
+                                aimbs_put16(&fr->data, 0x0000);
+                        aimbs_put16(&fr->data, 0x0000);
+                }
+                /*
+                 * Message.  Not terminated.
+                 */
+                /* Character set */
+                aimbs_put16(&fr->data, args->charset);
+                aimbs_put16(&fr->data, args->charsubset);
+                /* Message.  Not terminated */
                 aimbs_putraw(&fr->data, args->msg, args->msglen);
+        }
+        /*
+         * Set the Request Acknowledge flag.
+         */
+        if (args->flags & AIM_IMFLAGS_ACK) {
+                aimbs_put16(&fr->data, 0x0003);
+                aimbs_put16(&fr->data, 0x0000);
+        }
+        /*
+         * Set the Autoresponse flag.
+         */
+        /* Set the Autoresponse flag */
         if (args->flags & AIM_IMFLAGS_AWAY) {
                 aimbs_put16(&fr->data, 0x0004);
+                aimbs_put16(&fr->data, 0x0000);
+        } else if (args->flags & AIM_IMFLAGS_ACK) {
+                /* Set the Request Acknowledge flag */
+                aimbs_put16(&fr->data, 0x0003);
                 aimbs_put16(&fr->data, 0x0000);
+        }
 …
         aim_tx_enqueue(sess, fr);
+        /* Move this to receive aim_flap_nop and send aim_flap_nop */
         if (!(sess->flags & AIM_SESS_FLAGS_DONTTIMEOUTONICBM))
                 aim_cleansnacs(sess, 60); /* clean out SNACs over 60sec old */
 …
 /*
  * Simple wrapper for aim_send_im_ext()
+ * Simple wrapper for aim_im_sendch1_ext()
+ *
  * You cannot use aim_send_im if you need the HASICON flag.  You must
  * use aim_send_im_ext directly for that.
+ * use aim_im_sendch1_ext directly for that.
+ *
  * aim_send_im also cannot be used if you require UNICODE messages, because
  * that requires an explicit message length.  Use aim_send_im_ext().
+ *
  */
 faim_export int aim_send_im(aim_session_t *sess, const char *destsn, fu16_t flags, const char *msg)
+ * that requires an explicit message length.  Use aim_im_sendch1_ext().
+ *
+ */
+faim_export int aim_im_sendch1(aim_session_t *sess, const char *sn, fu16_t flags, const char *msg)
+{
         struct aim_sendimext_args args;
         args.destsn = destsn;
+        args.destsn = sn;
         args.flags = flags;
         args.msg = msg;
         args.msglen = strlen(msg);
+        /* Make these don't get set by accident -- they need aim_send_im_ext */
+        args.charset = 0x0000;
+        args.charsubset = 0x0000;
+        /* Make these don't get set by accident -- they need aim_im_sendch1_ext */
         args.flags &= ~(AIM_IMFLAGS_CUSTOMFEATURES | AIM_IMFLAGS_HASICON | AIM_IMFLAGS_MULTIPART);
         return aim_send_im_ext(sess, &args);
+}
 /*
  * Subtype 0x0006
+        return aim_im_sendch1_ext(sess, &args);
+}
+/**
+ * Subtype 0x0006 - Send your icon to a given user.
+ *
  * This is also performance sensitive. (If you can believe it...)
+ *
  */
 faim_export int aim_send_icon(aim_session_t *sess, const char *sn, const fu8_t *icon, int iconlen, time_t stamp, fu16_t iconsum)
+faim_export int aim_im_sendch2_icon(aim_session_t *sess, const char *sn, const fu8_t *icon, int iconlen, time_t stamp, fu16_t iconsum)
+{
         aim_conn_t *conn;
-        int i;
-        fu8_t ck[8];
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        fu8_t ck[8];
+        int i;
         if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)))
 …
         for (i = 0; i < 8; i++)
                 aimutil_put8(ck+i, (fu8_t) rand());
+                ck[i] = (fu8_t)rand();
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10+8+2+1+strlen(sn)+2+2+2+8+16+2+2+2+2+2+2+2+4+4+4+iconlen+strlen(AIM_ICONIDENT)+2+2)))
 …
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /*
+         * Cookie
+         */
+        aimbs_putraw(&fr->data, ck, 8);
+        /*
+         * Channel (2)
+         */
+        aimbs_put16(&fr->data, 0x0002);
+        /*
+         * Dest sn
+         */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, ck, 0x0002, sn);
         /*
 …
 /*
  * Subtype 0x0006
+ * Subtype 0x0006 - Send a rich text message.
+ *
  * This only works for ICQ 2001b (thats 2001 not 2000).  Better, only
 …
+ *
  */
+faim_export int aim_send_rtfmsg(aim_session_t *sess, struct aim_sendrtfmsg_args *args)
+{
+        const char rtfcap[] = {"{97B12751-243C-4334-AD22-D6ABF73F1492}"}; /* AIM_CAPS_ICQRTF capability in string form */
+faim_export int aim_im_sendch2_rtfmsg(aim_session_t *sess, struct aim_sendrtfmsg_args *args)
+{
         aim_conn_t *conn;
-        int i;
-        fu8_t ck[8];
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        int servdatalen;
+        fu8_t ck[8];
+        const char rtfcap[] = {"{97B12751-243C-4334-AD22-D6ABF73F1492}"}; /* AIM_CAPS_ICQRTF capability in string form */
+        int i, servdatalen;
         if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)))
 …
         for (i = 0; i < 8; i++)
                 aimutil_put8(ck+i, (fu8_t) rand());
+                ck[i] = (fu8_t)rand();
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10+128+servdatalen)))
 …
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /*
+         * Cookie
+         */
+        aimbs_putraw(&fr->data, ck, 8);
+        /*
+         * Channel (2)
+         */
+        aimbs_put16(&fr->data, 0x0002);
+        /*
+         * Dest sn
+         */
+        aimbs_put8(&fr->data, strlen(args->destsn));
+        aimbs_putraw(&fr->data, args->destsn, strlen(args->destsn));
+        /*
+         * TLV t(0005)
+         *
+         * Encompasses everything below.
+         */
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, ck, 0x0002, args->destsn);
+        /* TLV t(0005) - Encompasses everything below. */
         aimbs_put16(&fr->data, 0x0005);
         aimbs_put16(&fr->data, 2+8+16  +  2+2+2  +  2+2  +  2+2+servdatalen);
 …
         aim_putcap(&fr->data, AIM_CAPS_ICQSERVERRELAY);
+        /*
+         * t(000a) l(0002) v(0001)
+         */
+        /* t(000a) l(0002) v(0001) */
         aimbs_put16(&fr->data, 0x000a);
         aimbs_put16(&fr->data, 0x0002);
         aimbs_put16(&fr->data, 0x0001);
+        /*
+         * t(000f) l(0000) v()
+         */
+        /* t(000f) l(0000) v() */
         aimbs_put16(&fr->data, 0x000f);
         aimbs_put16(&fr->data, 0x0000);
+        /*
+         * Service Data TLV
+         */
+        /* Service Data TLV */
         aimbs_put16(&fr->data, 0x2711);
         aimbs_put16(&fr->data, servdatalen);
 …
+}
+/* Subtype 0x0006 */
+faim_internal int aim_request_directim(aim_session_t *sess, const char *destsn, fu8_t *ip, fu16_t port, fu8_t *ckret)
+/**
+ * Subtype 0x0006 - Send an "I want to directly connect to you" message
+ *
+ */
+faim_export int aim_im_sendch2_odcrequest(aim_session_t *sess, fu8_t *cookie, const char *sn, const fu8_t *ip, fu16_t port)
+{
         aim_conn_t *conn;
-        fu8_t ck[8];
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        fu8_t ck[8];
         aim_tlvlist_t *tl = NULL, *itl = NULL;
         int hdrlen, i;
 …
                 return -EINVAL;
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 256+strlen(destsn))))
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 256+strlen(sn))))
                 return -ENOMEM;
 …
          * TOC-compatible.
+         *
          * XXX have I mentioned these should be generated in msgcookie.c?
+         * XXX - have I mentioned these should be generated in msgcookie.c?
+         *
          */
 …
         ck[7] = '\0';
+        if (ckret)
+                memcpy(ckret, ck, 8);
+        /* Cookie */
+        aimbs_putraw(&fr->data, ck, 8);
+        /* Channel */
+        aimbs_put16(&fr->data, 0x0002);
+        /* Destination SN */
+        aimbs_put8(&fr->data, strlen(destsn));
+        aimbs_putraw(&fr->data, destsn, strlen(destsn));
+        if (cookie)
+                memcpy(cookie, ck, 8);
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, ck, 0x0002, sn);
         aim_addtlvtochain_noval(&tl, 0x0003);
 …
         aimbs_put16(&hdrbs, 0x0000);
         aimbs_putraw(&hdrbs, ck, 8);
         aim_putcap(&hdrbs, AIM_CAPS_IMIMAGE);
+        aim_putcap(&hdrbs, AIM_CAPS_DIRECTIM);
         aim_addtlvtochain16(&itl, 0x000a, 0x0001);
 …
+}
+/* Subtype 0x0006 */
+faim_internal int aim_request_sendfile(aim_session_t *sess, const char *sn, const char *filename, fu16_t numfiles, fu32_t totsize, fu8_t *ip, fu16_t port, fu8_t *ckret)
+/**
+ * Subtype 0x0006 - Send an "I want to send you this file" message
+ *
+ */
+faim_export int aim_im_sendch2_sendfile_ask(aim_session_t *sess, struct aim_oft_info *oft_info)
+{
         aim_conn_t *conn;
-        int i;
-        fu8_t ck[8];
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        struct aim_snac_destructor snacdest;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)))
+        aim_tlvlist_t *tl=NULL, *subtl=NULL;
+        int i;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)) || !oft_info)
                 return -EINVAL;
+        if (!sn || !filename)
+        /* XXX - Should be like "21CBF95" and null terminated */
+        for (i = 0; i < 7; i++)
+                oft_info->cookie[i] = 0x30 + ((fu8_t)rand() % 10);
+        oft_info->cookie[7] = '\0';
+        { /* Create the subTLV chain */
+                fu8_t *buf;
+                int buflen;
+                aim_bstream_t bs;
+                aim_addtlvtochain16(&subtl, 0x000a, 0x0001);
+                aim_addtlvtochain_noval(&subtl, 0x000f);
+/*              aim_addtlvtochain_raw(&subtl, 0x000e, 2, "en");
+                aim_addtlvtochain_raw(&subtl, 0x000d, 8, "us-ascii");
+                aim_addtlvtochain_raw(&subtl, 0x000c, 24, "Please accept this file."); */
+                if (oft_info->clientip) {
+                        fu8_t ip[4];
+                        char *nexttoken;
+                        int i = 0;
+                        nexttoken = strtok(oft_info->clientip, ".");
+                        while (nexttoken && i<4) {
+                                ip[i] = atoi(nexttoken);
+                                nexttoken = strtok(NULL, ".");
+                                i++;
+                        }
+                        aim_addtlvtochain_raw(&subtl, 0x0003, 4, ip);
+                }
+                aim_addtlvtochain16(&subtl, 0x0005, oft_info->port);
+                /* TLV t(2711) */
+                buflen = 2+2+4+strlen(oft_info->fh.name)+1;
+                buf = malloc(buflen);
+                aim_bstream_init(&bs, buf, buflen);
+                aimbs_put16(&bs, (oft_info->fh.totfiles > 1) ? 0x0002 : 0x0001);
+                aimbs_put16(&bs, oft_info->fh.totfiles);
+                aimbs_put32(&bs, oft_info->fh.totsize);
+                /* Filename - NULL terminated, for some odd reason */
+                aimbs_putraw(&bs, oft_info->fh.name, strlen(oft_info->fh.name));
+                aimbs_put8(&bs, 0x00);
+                aim_addtlvtochain_raw(&subtl, 0x2711, bs.len, bs.data);
+                free(buf);
+        }
+        { /* Create the main TLV chain */
+                fu8_t *buf;
+                int buflen;
+                aim_bstream_t bs;
+                /* TLV t(0005) - Encompasses everything from above. Gee. */
+                buflen = 2+8+16+aim_sizetlvchain(&subtl);
+                buf = malloc(buflen);
+                aim_bstream_init(&bs, buf, buflen);
+                aimbs_put16(&bs, AIM_RENDEZVOUS_PROPOSE);
+                aimbs_putraw(&bs, oft_info->cookie, 8);
+                aim_putcap(&bs, AIM_CAPS_SENDFILE);
+                aim_writetlvchain(&bs, &subtl);
+                aim_freetlvchain(&subtl);
+                aim_addtlvtochain_raw(&tl, 0x0005, bs.len, bs.data);
+                free(buf);
+                /* TLV t(0003) - Request an ack */
+                aim_addtlvtochain_noval(&tl, 0x0003);
+        }
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 11+strlen(oft_info->sn) + aim_sizetlvchain(&tl))))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0004, 0x0006, AIM_SNACFLAGS_DESTRUCTOR, oft_info->cookie, sizeof(oft_info->cookie));
+        aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, oft_info->cookie, 0x0002, oft_info->sn);
+        /* All that crap from above (the 0x0005 TLV and the 0x0003 TLV) */
+        aim_writetlvchain(&fr->data, &tl);
+        aim_freetlvchain(&tl);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/**
+ * Subtype 0x0006 - Send an "I will accept this file" message?
+ *
+ * @param rendid Capability type (AIM_CAPS_GETFILE or AIM_CAPS_SENDFILE)
+ */
+faim_export int aim_im_sendch2_sendfile_accept(aim_session_t *sess, struct aim_oft_info *oft_info)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)) || !oft_info)
                 return -EINVAL;
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10+8+2+1+strlen(sn)+2+2+2+8+16+6+8+6+4+2+2+2+2+4+strlen(filename)+4)))
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 11+strlen(oft_info->sn) + 4+2+8+16)))
                 return -ENOMEM;
+        for (i = 0; i < 7; i++)
+                aimutil_put8(ck+i, 0x30 + ((fu8_t) rand() % 10));
+        ck[7] = '\0';
+        if (ckret)
+                memcpy(ckret, ck, 8);
+        /* Fill in the snac destructor so we know if the request
+         * times out.  Use the cookie in the data field, so we
+         * know what request to cancel if there is an error.
+         */
+        snacdest.data = malloc(8);
+        memcpy(snacdest.data, ck, 8);
+        snacdest.conn = conn;
+        snacid = aim_cachesnac(sess, 0x0004, 0x0006, AIM_SNACFLAGS_DESTRUCTOR, &snacdest, sizeof(snacdest));
+        snacid = aim_cachesnac(sess, 0x0004, 0x0006, 0x0000, NULL, 0);
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /*
+         * Cookie
+         */
+        aimbs_putraw(&fr->data, ck, 8);
+        /*
+         * Channel (2)
+         */
+        aimbs_put16(&fr->data, 0x0002);
+        /*
+         * Dest sn
+         */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /*
+         * TLV t(0005)
+         *
+         * Encompasses everything below. Gee.
+         */
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, oft_info->cookie, 0x0002, oft_info->sn);
         aimbs_put16(&fr->data, 0x0005);
+        aimbs_put16(&fr->data, 2+8+16+6+8+6+4+2+2+2+2+4+strlen(filename)+4);
+        aimbs_put16(&fr->data, 0x0000);
+        aimbs_putraw(&fr->data, ck, 8);
+        aimbs_put16(&fr->data, 0x001a);
+        aimbs_put16(&fr->data, AIM_RENDEZVOUS_ACCEPT);
+        aimbs_putraw(&fr->data, oft_info->cookie, 8);
         aim_putcap(&fr->data, AIM_CAPS_SENDFILE);
+        /* TLV t(000a) */
+        aimbs_put16(&fr->data, 0x000a);
+        aimbs_put16(&fr->data, 0x0002);
+        aimbs_put16(&fr->data, 0x0001);
+        /* TLV t(0003) (IP) */
+        aimbs_put16(&fr->data, 0x0003);
+        aimbs_put16(&fr->data, 0x0004);
+        aimbs_putraw(&fr->data, ip, 4);
+        /* TLV t(0005) (port) */
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/**
+ * Subtype 0x0006 - Send a "cancel this file transfer" message?
+ *
+ */
+faim_export int aim_im_sendch2_sendfile_cancel(aim_session_t *sess, struct aim_oft_info *oft_info)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)) || !oft_info)
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 11+strlen(oft_info->sn) + 4+2+8+16)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0004, 0x0006, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, oft_info->cookie, 0x0002, oft_info->sn);
         aimbs_put16(&fr->data, 0x0005);
+        aimbs_put16(&fr->data, 0x0002);
+        aimbs_put16(&fr->data, port);
+        /* TLV t(000f) */
+        aimbs_put16(&fr->data, 0x000f);
+        aimbs_put16(&fr->data, 0x0000);
+        /* TLV t(2711) */
+        aimbs_put16(&fr->data, 0x2711);
+        aimbs_put16(&fr->data, 2+2+4+strlen(filename)+4);
+        /* ? */
+        aimbs_put16(&fr->data, (numfiles > 1) ? 0x0002 : 0x0001);
+        aimbs_put16(&fr->data, numfiles);
+        aimbs_put32(&fr->data, totsize);
+        aimbs_putraw(&fr->data, filename, strlen(filename));
+        /* ? */
+        aimbs_put32(&fr->data, 0x00000000);
+#if 0
+        /* Newer clients seem to send this (?) -- wtm */
+        aimbs_put32(&fr->data, 0x00030000);
+#endif
+        aimbs_put16(&fr->data, 0x001a);
+        aimbs_put16(&fr->data, AIM_RENDEZVOUS_CANCEL);
+        aimbs_putraw(&fr->data, oft_info->cookie, 8);
+        aim_putcap(&fr->data, AIM_CAPS_SENDFILE);
         aim_tx_enqueue(sess, fr);
 …
  * @return Return 0 if no errors, otherwise return the error number.
  */
 faim_export int aim_send_im_ch2_geticqmessage(aim_session_t *sess, const char *sn, int type)
+faim_export int aim_im_sendch2_geticqaway(aim_session_t *sess, const char *sn, int type)
+{
         aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
         int i;
         fu8_t ck[8];
-        aim_frame_t *fr;
-        aim_snacid_t snacid;
         if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)) || !sn)
 …
         for (i = 0; i < 8; i++)
                 aimutil_put8(ck+i, (fu8_t) rand());
+                ck[i] = (fu8_t)rand();
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10+8+2+1+strlen(sn) + 4+0x5e + 4)))
 …
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /* Cookie */
+        aimbs_putraw(&fr->data, ck, 8);
+        /* Channel (2) */
+        aimbs_put16(&fr->data, 0x0002);
+        /* Dest sn */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, ck, 0x0002, sn);
         /* TLV t(0005) - Encompasses almost everything below. */
 …
                         aimbs_putle16(&fr->data, 0x001b); /* L */
                         aimbs_putle16(&fr->data, 0x0008); /* XXX - Protocol version */
+                        aimbs_putle32(&fr->data, 0x00000000); /* Unknown */
+                        aimbs_putle32(&fr->data, 0x00000000); /* Unknown */
+                        aimbs_putle32(&fr->data, 0x00000000); /* Unknown */
+                        aimbs_putle32(&fr->data, 0x00000000); /* Unknown */
+                        aim_putcap(&fr->data, AIM_CAPS_EMPTY);
                         aimbs_putle16(&fr->data, 0x0000); /* Unknown */
                         aimbs_putle16(&fr->data, 0x0003); /* Client features? */
 …
                         aimbs_putle16(&fr->data, 0x0000); /* Status? */
                         aimbs_putle16(&fr->data, 0x0001); /* Priority of this message? */
                         aimbs_putle16(&fr->data, 0x0001); /* L? */
                         aimbs_putle8(&fr->data, 0x00); /* Null termination? */
+                        aimbs_putle16(&fr->data, 0x0001); /* L */
+                        aimbs_putle8(&fr->data, 0x00); /* String of length L */
                 } /* End TLV t(2711) */
         } /* End TLV t(0005) */
 …
 /**
  * Subtype 0x0006
+ * Subtype 0x0006 - Send an ICQ-esque ICBM.
+ *
  * This can be used to send an ICQ authorization reply (deny or grant).  It is the "old way."
 …
  * @return Return 0 if no errors, otherwise return the error number.
  */
 faim_export int aim_send_im_ch4(aim_session_t *sess, char *sn, fu16_t type, fu8_t *message)
+faim_export int aim_im_sendch4(aim_session_t *sess, char *sn, fu16_t type, fu8_t *message)
+{
         aim_conn_t *conn;
 …
         aim_snacid_t snacid;
         int i;
+        char ck[8];
         if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0002)))
 …
         aim_putsnac(&fr->data, 0x0004, 0x0006, 0x0000, snacid);
+        /*
+         * Cookie
+         */
+        /* Cookie */
         for (i=0; i<8; i++)
+                aimbs_put8(&fr->data, (fu8_t)rand());
+        /*
+         * Channel (4)
+         */
+        aimbs_put16(&fr->data, 0x0004);
+        /*
+         * Dest sn
+         */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+                ck[i] = (fu8_t)rand();
+        /* ICBM header */
+        aim_im_puticbm(&fr->data, ck, 0x0004, sn);
         /*
 …
+}
+/*
+ * XXX - I don't see when this would ever get called...
+ */
 static int outgoingim(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
 …
+}
 /* XXX should provide a way of saying ISO-8859-1 specifically */
+/* XXX - should provide a way of saying ISO-8859-1 specifically */
 faim_export int aim_mpmsg_addascii(aim_session_t *sess, aim_mpmsg_t *mpm, const char *ascii)
+{
 …
                  * the specified data length, which will not include the pad.
+                 *
                  * XXX There's an API bug here.  For sending, the UNICODE is
+                 * XXX - There's an API bug here.  For sending, the UNICODE is
                  * given in host byte order (aim_mpmsg_addunicode), but here
                  * the received messages are given in network byte order.
 …
                         args->charset = sec->charset;
                         args->charsubset = sec->charsubset;
-                        args->icbmflags |= AIM_IMFLAGS_CUSTOMCHARSET;
                         /* Set up the simple flags */
 …
                         else if (args->charsubset == 0xffff)
                                 ; /* no subencoding */
-#if 0
-                        /* XXX this isn't really necesary... */
-                        if (    ((args.flag1 != 0x0000) &&
-                                 (args.flag1 != 0x0002) &&
-                                 (args.flag1 != 0x0003) &&
-                                 (args.flag1 != 0xffff)) ||
-                                ((args.flag2 != 0x0000) &&
-                                 (args.flag2 != 0x000b) &&
-                                 (args.flag2 != 0xffff))) {
-                                faimdprintf(sess, 0, "icbm: **warning: encoding flags are being used! {%04x, %04x}\n", args.flag1, args.flag2);
+                        }
-#endif
                         args->msg = sec->data;
 …
                 } else if (type == 0x0006) { /* Message was received offline. */
                         /* XXX not sure if this actually gets sent. */
+                        /* XXX - not sure if this actually gets sent. */
                         args.icbmflags |= AIM_IMFLAGS_OFFLINE;
 …
+{
         /* XXX aim_chat_roominfo_free() */
+        /* XXX - aim_chat_roominfo_free() */
         free(args->info.chat.roominfo.name);
 …
         aim_bstream_advance(servdata, hdrlen);
         /* XXX This is such a hack. */
+        /* XXX - This is such a hack. */
         args->reqclass = AIM_CAPS_ICQRTF;
 …
         args->destructor = (void *)incomingim_ch2_sendfile_free;
+        if (servdata) {
+        /* Maybe there is a better way to tell what kind of sendfile
+         * this is?  Maybe TLV t(000a)? */
+        if (servdata) { /* Someone is sending us a file */
                 int flen;
 …
                 args->info.sendfile.totsize = aimbs_get32(servdata);
+                /* XXX - create an aimbs_getnullstr function */
+                /*
+                 * I hope to God I'm right when I guess that there is a
+                 * 32 char max filename length for single files.  I think
+                 * OFT tends to do that.  Gotta love inconsistency.  I saw
+                 * a 26 byte filename?
+                 */
+                /* AAA - create an aimbs_getnullstr function (don't anymore)(maybe) */
                 /* Use an inelegant way of getting the null-terminated filename,
                  * since there's no easy bstream routine. */
 …
                 /* There is sometimes more after the null-terminated filename,
                  * but I'm unsure of its format. */
+                /* I don't believe him. */
+        }
 …
         int ret = 0;
         char clientip1[30] = {""};
         char clientip2[30] = {""};
+        char proxyip[30] = {""};
+        char clientip[30] = {""};
         char verifiedip[30] = {""};
 …
         /*
+         * IP address from the perspective of the client.
+         * IP address to proxy the file transfer through.
+         *
+         * XXX - I don't like this.  Maybe just read in an int?  Or inet_ntoa...
          */
         if (aim_gettlv(list2, 0x0002, 1)) {
 …
                 iptlv = aim_gettlv(list2, 0x0002, 1);
+                snprintf(clientip1, sizeof(clientip1), "%d.%d.%d.%d",
+                                aimutil_get8(iptlv->value+0),
+                                aimutil_get8(iptlv->value+1),
+                                aimutil_get8(iptlv->value+2),
+                                aimutil_get8(iptlv->value+3));
+        }
+        /*
+         * Secondary IP address from the perspective of the client.
+                if (iptlv->length == 4)
+                        snprintf(proxyip, sizeof(proxyip), "%hhd.%hhd.%hhd.%hhd",
+                                iptlv->value[0], iptlv->value[1],
+                                iptlv->value[2], iptlv->value[3]);
+        }
+        /*
+         * IP address from the perspective of the client.
          */
         if (aim_gettlv(list2, 0x0003, 1)) {
 …
                 iptlv = aim_gettlv(list2, 0x0003, 1);
+                snprintf(clientip2, sizeof(clientip2), "%d.%d.%d.%d",
+                                aimutil_get8(iptlv->value+0),
+                                aimutil_get8(iptlv->value+1),
+                                aimutil_get8(iptlv->value+2),
+                                aimutil_get8(iptlv->value+3));
+                if (iptlv->length == 4)
+                        snprintf(clientip, sizeof(clientip), "%hhd.%hhd.%hhd.%hhd",
+                                iptlv->value[0], iptlv->value[1],
+                                iptlv->value[2], iptlv->value[3]);
+        }
 …
                 iptlv = aim_gettlv(list2, 0x0004, 1);
+                snprintf(verifiedip, sizeof(verifiedip), "%d.%d.%d.%d",
+                                aimutil_get8(iptlv->value+0),
+                                aimutil_get8(iptlv->value+1),
+                                aimutil_get8(iptlv->value+2),
+                                aimutil_get8(iptlv->value+3));
+                if (iptlv->length == 4)
+                        snprintf(verifiedip, sizeof(verifiedip), "%hhd.%hhd.%hhd.%hhd",
+                                iptlv->value[0], iptlv->value[1],
+                                iptlv->value[2], iptlv->value[3]);
+        }
 …
         if (aim_gettlv(list2, 0x0005, 1))
                 args.port = aim_gettlv16(list2, 0x0005, 1);
+        /*
+         * Something to do with ft -- two bytes
+         * 0x0001 - "I want to send you this file"
+         * 0x0002 - "I will accept this file from you"
+         */
+        if (aim_gettlv(list2, 0x000a, 1))
+                ;
         /*
 …
                 args.language = aim_gettlv_str(list2, 0x000e, 1);
         /* Unknown -- two bytes = 0x0001 */
         if (aim_gettlv(list2, 0x000a, 1))
+                ;
         /* Unknown -- no value */
+        /*
+         * Unknown -- no value
+         *
+         * Maybe means we should connect directly to transfer the file?
+         */
         if (aim_gettlv(list2, 0x000f, 1))
+                ;
+        if (strlen(clientip1))
+                args.clientip = (char *)clientip1;
+        if (strlen(clientip2))
+                args.clientip2 = (char *)clientip2;
+        /*
+         * Unknown -- no value
+         *
+         * Maybe means we should proxy the file transfer through an AIM server?
+         */
+        if (aim_gettlv(list2, 0x0010, 1))
+                ;
+        if (strlen(proxyip))
+                args.proxyip = (char *)proxyip;
+        if (strlen(clientip))
+                args.clientip = (char *)clientip;
         if (strlen(verifiedip))
                 args.verifiedip = (char *)verifiedip;
         /*
          * This is must be present in PROPOSALs, but will probably not
+         * This must be present in PROPOSALs, but will probably not
          * exist in CANCELs and ACCEPTs.
+         *
 …
         args.uin = aimbs_getle32(&meat);
+        args.type = aimbs_getle16(&meat);
+        args.msg = aimbs_getraw(&meat, aimbs_getle16(&meat));
+        args.type = aimbs_getle8(&meat);
+        args.flags = aimbs_getle8(&meat);
+        args.msglen = aimbs_getle16(&meat);
+        args.msg = aimbs_getraw(&meat, args.msglen);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
 …
          * Channel ID.
+         *
+         * Channel 0x0001 is the message channel.  There are
+         * other channels for things called "rendevous"
+         * which represent chat and some of the other new
+         * features of AIM2/3/3.5.
+         * Channel 0x0001 is the message channel.  It is
+         * used to send basic ICBMs.
+         *
          * Channel 0x0002 is the Rendevous channel, which
          * is where Chat Invitiations and various client-client
          * connection negotiations come from.
+         *
+         * Channel 0x0003 is used for chat messages.
+         *
          * Channel 0x0004 is used for ICQ authorization, or
 …
          * userinfo block contains the number of TLVs that contain user
          * information, the rest are not even though there is no seperation.
+         * aim_extractuserinfo() returns the number of bytes used by the
+         * userinfo tlvs, so you can start reading the rest of them right
+         * afterward.
+         * You can start reading the message TLVs after aim_info_extract()
+         * parses out the standard userinfo block.
+         *
          * That also means that TLV types can be duplicated between the
 …
+         *
          */
         aim_extractuserinfo(sess, bs, &userinfo);
+        aim_info_extract(sess, bs, &userinfo);
         /*
 …
         } else {
+                faimdprintf(sess, 0, "icbm: ICBM received on an unsupported channel.  Ignoring.\n (chan = %04x)", channel);
+                return 0;
+        }
+                faimdprintf(sess, 0, "icbm: ICBM received on an unsupported channel.  Ignoring.  (chan = %04x)\n", channel);
+        }
+        aim_info_free(&userinfo);
         return ret;
 …
 /*
  * Subtype 0x0008 - Send a warning to destsn.
+ * Subtype 0x0008 - Send a warning to sn.
+ *
  * Flags:
 …
+ *
  */
 faim_export int aim_send_warning(aim_session_t *sess, aim_conn_t *conn, const char *destsn, fu32_t flags)
+faim_export int aim_im_warn(aim_session_t *sess, aim_conn_t *conn, const char *sn, fu32_t flags)
+{
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        fu16_t outflags = 0x0000;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, strlen(destsn)+13)))
+        if (!sess || !conn || !sn)
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, strlen(sn)+13)))
                 return -ENOMEM;
+        snacid = aim_cachesnac(sess, 0x0004, 0x0008, 0x0000, destsn, strlen(destsn)+1);
+        snacid = aim_cachesnac(sess, 0x0004, 0x0008, 0x0000, sn, strlen(sn)+1);
         aim_putsnac(&fr->data, 0x0004, 0x0008, 0x0000, snacid);
+        if (flags & AIM_WARN_ANON)
+                outflags |= 0x0001;
+        aimbs_put16(&fr->data, outflags);
+        aimbs_put8(&fr->data, strlen(destsn));
+        aimbs_putraw(&fr->data, destsn, strlen(destsn));
+        aimbs_put16(&fr->data, (flags & AIM_WARN_ANON) ? 0x0001 : 0x0000);
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
         aim_tx_enqueue(sess, fr);
 …
                 channel = aimbs_get16(bs);
                 aim_extractuserinfo(sess, bs, &userinfo);
+                aim_info_extract(sess, bs, &userinfo);
                 nummissed = aimbs_get16(bs);
                 reason = aimbs_get16(bs);
 …
                 if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                          ret = userfunc(sess, rx, channel, &userinfo, nummissed, reason);
+                aim_info_free(&userinfo);
+        }
 …
+ *
  */
 faim_export int aim_denytransfer(aim_session_t *sess, const char *sender, const char *cookie, fu16_t code)
+faim_export int aim_im_denytransfer(aim_session_t *sess, const char *sender, const char *cookie, fu16_t code)
+{
         aim_conn_t *conn;
 …
         if (channel == 0x0002) { /* File transfer declined */
+                aimbs_get16(bs); /* Unknown */
+                aimbs_get16(bs); /* Unknown */
                 if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                         ret = userfunc(sess, rx, channel, sn, reason, ck);
 …
+}
+/* Subtype 0x000c */
+/*
+ * Subtype 0x000c - Receive an ack after sending an ICBM.
+ *
+ * You have to have send the message with the AIM_IMFLAGS_ACK flag set
+ * (TLV t(0003)).  The ack contains the ICBM header of the message you
+ * sent.
+ *
+ */
 static int msgack(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
         aim_rxcallback_t userfunc;
         fu16_t type;
         fu8_t snlen, *ck;
+        fu16_t ch;
+        fu8_t *ck;
         char *sn;
         int ret = 0;
         ck = aimbs_getraw(bs, 8);
+        type = aimbs_get16(bs);
+        snlen = aimbs_get8(bs);
+        sn = aimbs_getstr(bs, snlen);
+        ch = aimbs_get16(bs);
+        sn = aimbs_getstr(bs, aimbs_get8(bs));
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 ret = userfunc(sess, rx, type, sn);
+                ret = userfunc(sess, rx, ch, sn);
         free(sn);
 …
+ *
  */
 faim_export int aim_mtn_send(aim_session_t *sess, fu16_t type1, char *sn, fu16_t type2)
+faim_export int aim_im_sendmtn(aim_session_t *sess, fu16_t type1, const char *sn, fu16_t type2)
+{
         aim_conn_t *conn;
 …
         if (snac->subtype == 0x0005)
                 return paraminfo(sess, mod, rx, snac, bs);
+                return aim_im_paraminfo(sess, mod, rx, snac, bs);
         else if (snac->subtype == 0x0006)
                 return outgoingim(sess, mod, rx, snac, bs);
 …
+}
-static int snacdestructor(aim_session_t *sess, aim_conn_t *conn, aim_modsnac_t *snac, void *data)
+{
-        aim_rxcallback_t userfunc;
-        int ret = 0;
-        if (snac->subtype == 0x0006) {
-                if ((userfunc = aim_callhandler(sess, conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_MSGTIMEOUT)))
-                        ret = userfunc(sess, NULL, conn, data);
+        }
-        /* Note that we return 1 for success, 0 for failure. */
-        return ret;
+}
 faim_internal int msg_modfirst(aim_session_t *sess, aim_module_t *mod)
+{
 …
         mod->version = 0x0001;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "messaging", sizeof(mod->name));
         mod->snachandler = snachandler;
-        mod->snacdestructor = snacdestructor;
         return 0;

libfaim/info.c

-                      r862371b
+                      re374dee
 #define FAIM_INTERNAL
 #include <aim.h>
+#ifdef _WIN32
+#include "win32dep.h"
+#endif
 struct aim_priv_inforeq {
 …
+ *
  * Gives BOS your profile.
+ *
+ * profile_encoding and awaymsg_encoding MUST be set if profile or
+ * away are set, respectively, and their value may or may not be
+ * restricted to a few choices.  I am currently aware of:
+ *
+ */
+faim_export int aim_bos_setprofile(aim_session_t *sess, aim_conn_t *conn, const char *profile, const char *awaymsg, fu32_t caps)
+{
+        static const char defencoding[] = {"text/aolrtf; charset=\"us-ascii\""};
+ * us-ascii             Just that
+ * unicode-2-0          UCS2-BE
+ *
+ * profile_len and awaymsg_len MUST be set similarly, and they MUST
+ * be the length of their respective strings in bytes.
+ *
+ * To get the previous behavior of awaymsg == "" un-setting the away
+ * message, set awaymsg non-NULL and awaymsg_len to 0 (this is the
+ * obvious equivalent).
+ *
+ */
+faim_export int aim_bos_setprofile(aim_session_t *sess, aim_conn_t *conn,
+                                  const char *profile_encoding, const char *profile, const int profile_len,
+                                  const char *awaymsg_encoding, const char *awaymsg, const int awaymsg_len,
+                                  fu32_t caps)
+{
+        static const char defencoding[] = {"text/aolrtf; charset=\"%s\""};
         aim_frame_t *fr;
         aim_tlvlist_t *tl = NULL;
         aim_snacid_t snacid;
+        char *encoding;
+        if ((profile && profile_encoding == NULL) || (awaymsg && awaymsg_len && awaymsg_encoding == NULL)) {
+                return -EINVAL;
+        }
         /* Build to packet first to get real length */
         if (profile) {
+                aim_addtlvtochain_raw(&tl, 0x0001, strlen(defencoding), defencoding);
+                aim_addtlvtochain_raw(&tl, 0x0002, strlen(profile), profile);
+                /* no + 1 here because of %s */
+                encoding = malloc(strlen(defencoding) + strlen(profile_encoding));
+                if (encoding == NULL) {
+                        return -ENOMEM;
+                }
+                snprintf(encoding, strlen(defencoding) + strlen(profile_encoding), defencoding, profile_encoding);
+                aim_addtlvtochain_raw(&tl, 0x0001, strlen(encoding), encoding);
+                aim_addtlvtochain_raw(&tl, 0x0002, profile_len, profile);
+                free(encoding);
+        }
 …
          */
         if (awaymsg) {
+                if (strlen(awaymsg)) {
+                        aim_addtlvtochain_raw(&tl, 0x0003, strlen(defencoding), defencoding);
+                        aim_addtlvtochain_raw(&tl, 0x0004, strlen(awaymsg), awaymsg);
+                if (awaymsg_len) {
+                        encoding = malloc(strlen(defencoding) + strlen(awaymsg_encoding));
+                        if (encoding == NULL) {
+                                return -ENOMEM;
+                        }
+                        snprintf(encoding, strlen(defencoding) + strlen(awaymsg_encoding), defencoding, awaymsg_encoding);
+                        aim_addtlvtochain_raw(&tl, 0x0003, strlen(encoding), encoding);
+                        aim_addtlvtochain_raw(&tl, 0x0004, awaymsg_len, awaymsg);
+                        free(encoding);
                 } else
                         aim_addtlvtochain_noval(&tl, 0x0004);
 …
         /*
+         * Chat is oddball.
+         */
+        {AIM_CAPS_CHAT,
+         {0x74, 0x8f, 0x24, 0x20, 0x62, 0x87, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        /*
+         * These are mostly in order.
+         */
+         * These are in ascending numerical order.
+         */
+        {AIM_CAPS_ICHAT,
+         {0x09, 0x46, 0x00, 0x00, 0x4c, 0x7f, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        {AIM_CAPS_SECUREIM,
+         {0x09, 0x46, 0x00, 0x01, 0x4c, 0x7f, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        {AIM_CAPS_HIPTOP,
+         {0x09, 0x46, 0x13, 0x23, 0x4c, 0x7f, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
         {AIM_CAPS_VOICE,
          {0x09, 0x46, 0x13, 0x41, 0x4c, 0x7f, 0x11, 0xd1,
 …
 x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
         {AIM_CAPS_IMIMAGE,
+        {AIM_CAPS_DIRECTIM,
          {0x09, 0x46, 0x13, 0x45, 0x4c, 0x7f, 0x11, 0xd1,
 x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
 …
 x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        /*
+         * Windows AIM calls this "Add-ins," which is probably more accurate
+         */
         {AIM_CAPS_SAVESTOCKS,
          {0x09, 0x46, 0x13, 0x47, 0x4c, 0x7f, 0x11, 0xd1,
 …
 x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        /* from ICQ2002a
+        {AIM_CAPS_ICQUNKNOWN2,
+        /*
+         * Setting this lets AIM users receive messages from ICQ users, and ICQ
+         * users receive messages from AIM users.  It also lets ICQ users show
+         * up in buddy lists for AIM users, and AIM users show up in buddy lists
+         * for ICQ users.  And ICQ privacy/invisibility acts like AIM privacy,
+         * in that if you add a user to your deny list, you will not be able to
+         * see them as online (previous you could still see them, but they
+         * couldn't see you.
+         */
+        {AIM_CAPS_INTEROPERATE,
+         {0x09, 0x46, 0x13, 0x4d, 0x4c, 0x7f, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        {AIM_CAPS_ICQUTF8,
          {0x09, 0x46, 0x13, 0x4e, 0x4c, 0x7f, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}}, */
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        {AIM_CAPS_ICQUTF8OLD,
+         {0x2e, 0x7a, 0x64, 0x75, 0xfa, 0xdf, 0x4d, 0xc8,
+x88, 0x6f, 0xea, 0x35, 0x95, 0xfd, 0xb6, 0xdf}},
+        /*
+         * Chat is oddball.
+         */
+        {AIM_CAPS_CHAT,
+         {0x74, 0x8f, 0x24, 0x20, 0x62, 0x87, 0x11, 0xd1,
+x82, 0x22, 0x44, 0x45, 0x53, 0x54, 0x00, 0x00}},
+        /*
+        {AIM_CAPS_ICQ2GO,
+         {0x56, 0x3f, 0xc8, 0x09, 0x0b, 0x6f, 0x41, 0xbd,
+x9f, 0x79, 0x42, 0x26, 0x09, 0xdf, 0xa2, 0xf3}},
+        */
         {AIM_CAPS_ICQRTF,
          {0x97, 0xb1, 0x27, 0x51, 0x24, 0x3c, 0x43, 0x34,
+         {0x97, 0xb1, 0x27, 0x51, 0x24, 0x3c, 0x43, 0x34,
 xad, 0x22, 0xd6, 0xab, 0xf7, 0x3f, 0x14, 0x92}},
 …
 xad, 0x22, 0xd6, 0xab, 0xf7, 0x3f, 0x14, 0x09}}, */
+        {AIM_CAPS_ICQUNKNOWN,
+         {0x2e, 0x7a, 0x64, 0x75, 0xfa, 0xdf, 0x4d, 0xc8,
+x88, 0x6f, 0xea, 0x35, 0x95, 0xfd, 0xb6, 0xdf}},
+        {AIM_CAPS_APINFO,
+         {0xaa, 0x4a, 0x32, 0xb5, 0xf8, 0x84, 0x48, 0xc6,
+xa3, 0xd7, 0x8c, 0x50, 0x97, 0x19, 0xfd, 0x5b}},
+        {AIM_CAPS_TRILLIANCRYPT,
+         {0xf2, 0xe7, 0xc7, 0xf4, 0xfe, 0xad, 0x4d, 0xfb,
+xb2, 0x35, 0x36, 0x79, 0x8b, 0xdf, 0x00, 0x00}},
         {AIM_CAPS_EMPTY,
          {0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
 x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00}},
-        {AIM_CAPS_TRILLIANCRYPT,
-         {0xf2, 0xe7, 0xc7, 0xf4, 0xfe, 0xad, 0x4d, 0xfb,
-xb2, 0x35, 0x36, 0x79, 0x8b, 0xdf, 0x00, 0x00}},
-        {AIM_CAPS_APINFO,
-         {0xAA, 0x4A, 0x32, 0xB5, 0xF8, 0x84, 0x48, 0xc6,
-xA3, 0xD7, 0x8C, 0x50, 0x97, 0x19, 0xFD, 0x5B}},
         {AIM_CAPS_LAST}
 …
+}
+faim_internal void aim_info_free(aim_userinfo_t *info)
+{
+        free(info->iconcsum);
+        free(info->availmsg_encoding);
+        free(info->availmsg);
+}
 /*
  * AIM is fairly regular about providing user info.  This is a generic
  * routine to extract it in its standard form.
  */
 faim_internal int aim_extractuserinfo(aim_session_t *sess, aim_bstream_t *bs, aim_userinfo_t *outinfo)
+faim_internal int aim_info_extract(aim_session_t *sess, aim_bstream_t *bs, aim_userinfo_t *outinfo)
+{
         int curtlv, tlvcnt;
 …
                          * Type = 0x0004: Idle time.
+                         *
                          * Number of seconds since the user actively used the
+                         * Number of minutes since the user actively used the
                          * service.
+                         *
 …
                          * apparently a port number, and some Other Stuff.
+                         *
+                         * Format is:
+                         * 4 bytes - Our IP address, 0xc0 a8 01 2b for 192.168.1.43
+                         *
+                         *
                          */
                         aimbs_getrawbuf(bs, outinfo->icqinfo.crap, 0x25);
 …
                         outinfo->present |= AIM_USERINFO_PRESENT_SESSIONLEN;
+                } else if (type == 0x0019) {
+/*                      faimdprintf(sess, 0, "userinfo: **warning: unexpected TLV type 0x0019: from %s\n", outinfo->sn); */
+                } else if (type == 0x001b) {
+/*                      faimdprintf(sess, 0, "userinfo: **warning: unexpected TLV type 0x001b: from %s\n", outinfo->sn); */
                 } else if (type == 0x001d) {
                         /*
+                         * Type 29: Unknown.
+                         *
+                         * Currently very rare. Always 18 bytes of mostly zero.
+                         */
+                         * Type = 0x001d
+                         *
+                         * Buddy icon information and available messages.
+                         *
+                         * This almost seems like the AIM protocol guys gave
+                         * the iChat guys a Type, and the iChat guys tried to
+                         * cram as much cool shit into it as possible.  Then
+                         * the Windows AIM guys were like, "hey, that's
+                         * pretty neat, let's copy those prawns."
+                         *
+                         * In that spirit, this can contain a custom message,
+                         * kind of like an away message, but you're not away
+                         * (it's called an "available" message).  Or it can
+                         * contain information about the buddy icon the user
+                         * has stored on the server.
+                         */
+                        int type2, number, length2;
+                        while (aim_bstream_curpos(bs) < endpos) {
+                                type2 = aimbs_get16(bs);
+                                number = aimbs_get8(bs);
+                                length2 = aimbs_get8(bs);
+                                switch (type2) {
+                                        case 0x0000: { /* This is an official buddy icon? */
+                                                /* This is always 5 bytes of "0x02 01 d2 04 72"? */
+                                                aim_bstream_advance(bs, length2);
+                                        } break;
+                                        case 0x0001: { /* A buddy icon checksum */
+                                                if ((length2 > 0) && (number == 0x01)) {
+                                                        free(outinfo->iconcsum);
+                                                        outinfo->iconcsum = aimbs_getraw(bs, length2);
+                                                        outinfo->iconcsumlen = length2;
+                                                } else
+                                                        aim_bstream_advance(bs, length2);
+                                        } break;
+                                        case 0x0002: { /* An available message */
+                                                if (length2 > 4) {
+                                                        free(outinfo->availmsg);
+                                                        outinfo->availmsg_len = aimbs_get16(bs);
+                                                        outinfo->availmsg = aimbs_getstr(bs, outinfo->availmsg_len);
+                                                        if (aimbs_get16(bs) == 0x0001) { /* We have an encoding */
+                                                                aimbs_get16(bs);
+                                                                outinfo->availmsg_encoding = aimbs_getstr(bs, aimbs_get16(bs));
+                                                        } else {
+                                                                /* No explicit encoding, client should use UTF-8 */
+                                                                outinfo->availmsg_encoding = NULL;
+                                                        }
+                                                } else
+                                                        aim_bstream_advance(bs, length2);
+                                        } break;
+                                        default: {
+                                                aim_bstream_advance(bs, length2);
+                                        } break;
+                                }
+                        }
                 } else if (type == 0x001e) {
 …
 /*
  * Inverse of aim_extractuserinfo()
+ * Inverse of aim_info_extract()
  */
 faim_internal int aim_putuserinfo(aim_bstream_t *bs, aim_userinfo_t *info)
 …
         aim_userinfo_t userinfo;
         char *text_encoding = NULL, *text = NULL;
+        int textlen = 0;
         aim_rxcallback_t userfunc;
         aim_tlvlist_t *tlvlist;
+        aim_tlv_t *text_tlv = NULL;
         aim_snac_t *origsnac = NULL;
         struct aim_priv_inforeq *inforeq;
 …
+        }
         aim_extractuserinfo(sess, bs, &userinfo);
+        aim_info_extract(sess, bs, &userinfo);
         tlvlist = aim_readtlvchain(bs);
 …
         if (inforeq->infotype == AIM_GETINFO_GENERALINFO) {
                 text_encoding = aim_gettlv_str(tlvlist, 0x0001, 1);
                 text = aim_gettlv_str(tlvlist, 0x0002, 1);
+                text_tlv = aim_gettlv(tlvlist, 0x0002, 1);
         } else if (inforeq->infotype == AIM_GETINFO_AWAYMESSAGE) {
                 text_encoding = aim_gettlv_str(tlvlist, 0x0003, 1);
                 text = aim_gettlv_str(tlvlist, 0x0004, 1);
+                text_tlv = aim_gettlv(tlvlist, 0x0004, 1);
         } else if (inforeq->infotype == AIM_GETINFO_CAPABILITIES) {
                 aim_tlv_t *ct;
 …
+        }
+        if (text_tlv) {
+                text = text_tlv->value;
+                textlen = text_tlv->length;
+        }
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx, &userinfo, inforeq->infotype, text_encoding, text);
+                ret = userfunc(sess, rx, &userinfo, inforeq->infotype, text_encoding, text, textlen);
+        aim_info_free(&userinfo);
         free(text_encoding);
-        free(text);
         aim_freetlvchain(&tlvlist);
         if (origsnac)
                 free(origsnac->data);
 …
         mod->family = 0x0002;
         mod->version = 0x0001;
         mod->toolid = 0x0101;
         mod->toolversion = 0x047b;
+        mod->toolid = 0x0110;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "locate", sizeof(mod->name));

libfaim/invite.c

r862371b	re374dee
26	26	mod->version = 0x0001;
27	27	mod->toolid = 0x0110;
28		mod->toolversion = 0x0~~47b~~;
	28	mod->toolversion = 0x0629;
29	29	mod->flags = 0;
30	30	strncpy(mod->name, "invite", sizeof(mod->name));

libfaim/meta.c

r862371b	re374dee
35	35	}
36	36
	37	#if 0
37	38	faim_internal void faimdprintf(aim_session_t sess, int dlevel, const char format, ...)
38	39	{
…	…
55	56	}
56	57
	58	#endif

libfaim/msgcookie.c

-                      r862371b
+                      re374dee
 #if 0 /* debugging feature */
 faim_internal int aim_dumpcookie(aim_msgcookie_t *cookie)
+faim_internal int aim_dumpcookie(aim_session_t *sess, aim_msgcookie_t *cookie)
+{
 …
                 return -EINVAL;
+        printf("\tCookie at %p: %d/%s with %p, next %p\n",
+                        cookie, cookie->type, cookie->cookie,
+                        cookie->data, cookie->next);
+        faimdprintf(sess, 0, "\tCookie at %p: %d/%s with %p, next %p\n", cookie,
+                        cookie->type, cookie->cookie, cookie->data, cookie->next);
         return 0;
 …
         case AIM_CAPS_BUDDYICON: return AIM_COOKIETYPE_OFTICON;
         case AIM_CAPS_VOICE: return AIM_COOKIETYPE_OFTVOICE;
         case AIM_CAPS_IMIMAGE: return AIM_COOKIETYPE_OFTIMAGE;
+        case AIM_CAPS_DIRECTIM: return AIM_COOKIETYPE_OFTIMAGE;
         case AIM_CAPS_CHAT: return AIM_COOKIETYPE_CHAT;
         case AIM_CAPS_GETFILE: return AIM_COOKIETYPE_OFTGET;

libfaim/newsearch.c

r862371b	re374dee
160	160	static int parseresults(aim_session_t sess, aim_module_t mod, aim_frame_t rx, aim_modsnac_t snac, aim_bstream_t *bs)
161	161	{
	162	#if 0
162	163	aim_rxcallback_t userfunc;
163	164	fu16_t tmp, numresults;
…	…
217	218	free(del);
218	219	}
219
	220	#endif
220	221	return 0;
221	222	}

libfaim/rxhandlers.c

-                      r862371b
+                      re374dee
         fu16_t type;
         aim_rxcallback_t handler;
         u_short flags;
+        fu16_t flags;
         struct aim_rxcblist_s *next;
 };
 …
         snac.flags = aimbs_get16(&rx->data);
         snac.id = aimbs_get32(&rx->data);
+        /* SNAC flags are apparently uniform across all SNACs, so we handle them here */
+        if (snac.flags & 0x0001) {
+                /*
+                 * This means the SNAC will be followed by another SNAC with
+                 * related information.  We don't need to do anything about
+                 * this here.
+                 */
+        }
+        if (snac.flags & 0x8000) {
+                /*
+                 * This packet contains the version of the family that this SNAC is
+                 * in.  You get this when your SSI module is version 2 or higher.
+                 * For now we have no need for this, but you could always save
+                 * it as a part of aim_modnsac_t, or something.  The format is...
+                 * 2 byte length of total mini-header (which is 6 bytes), then TLV
+                 * of  type 0x0001, length 0x0002, value is the 2 byte version
+                 * number
+                 */
+                aim_bstream_advance(&rx->data, aimbs_get16(&rx->data));
+        }
         for (cur = (aim_module_t *)sess->modlistv; cur; cur = cur->next) {
 …
+}
-/*
- * Some SNACs we do not allow to be hooked, for good reason.
- */
-static int checkdisallowed(fu16_t group, fu16_t type)
+{
-        static const struct {
-                fu16_t group;
-                fu16_t type;
-        } dontuse[] = {
-                {0x0001, 0x0002},
-                {0x0001, 0x0003},
-                {0x0001, 0x0006},
-                {0x0001, 0x0007},
-                {0x0001, 0x0008},
-                {0x0001, 0x0017},
-                {0x0001, 0x0018},
-                {0x0000, 0x0000}
-        };
-        int i;
-        for (i = 0; dontuse[i].group != 0x0000; i++) {
-                if ((dontuse[i].group == group) && (dontuse[i].type == type))
-                        return 1;
+        }
-        return 0;
+}
 faim_export int aim_conn_addhandler(aim_session_t *sess, aim_conn_t *conn, fu16_t family, fu16_t type, aim_rxcallback_t newhandler, fu16_t flags)
+{
 …
         faimdprintf(sess, 1, "aim_conn_addhandler: adding for %04x/%04x\n", family, type);
-        if (checkdisallowed(family, type)) {
-                faimdprintf(sess, 0, "aim_conn_addhandler: client tried to hook %x/%x -- BUG!!!\n", family, type);
-                return -1;
+        }
         if (!(newcb = (struct aim_rxcblist_s *)calloc(1, sizeof(struct aim_rxcblist_s))))
 …
                         continue;
+                /*
+                 * This is a debugging/sanity check only and probably
+                 * could/should be removed for stable code.
+                 */
+                if (((cur->hdrtype == AIM_FRAMETYPE_OFT) &&
+                   (cur->conn->type != AIM_CONN_TYPE_RENDEZVOUS)) ||
+                  ((cur->hdrtype == AIM_FRAMETYPE_FLAP) &&
+                   (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS))) {
+                        faimdprintf(sess, 0, "rxhandlers: incompatible frame type %d on connection type 0x%04x\n", cur->hdrtype, cur->conn->type);
+                        cur->handled = 1;
+                        continue;
+                }
+                if (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS) {
+                        if (cur->hdrtype != AIM_FRAMETYPE_OFT) {
+                                faimdprintf(sess, 0, "internal error: non-OFT frames on OFT connection\n");
+                                cur->handled = 1; /* get rid of it */
+                        } else {
+                if (cur->hdrtype == AIM_FRAMETYPE_FLAP) {
+                        if (cur->hdr.flap.type == 0x01) {
+                                cur->handled = aim_callhandler_noparam(sess, cur->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_FLAPVER, cur); /* XXX use consumenonsnac */
+                                continue;
+                        } else if (cur->hdr.flap.type == 0x02) {
+                                if ((cur->handled = consumesnac(sess, cur)))
+                                        continue;
+                        } else if (cur->hdr.flap.type == 0x04) {
+                                cur->handled = negchan_middle(sess, cur);
+                                continue;
+                        } else if (cur->hdr.flap.type == 0x05) {
+                        }
+                } else if (cur->hdrtype == AIM_FRAMETYPE_OFT) {
+                        if (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS) {
                                 aim_rxdispatch_rendezvous(sess, cur);
                                 cur->handled = 1;
+                                continue;
+                        } else if (cur->conn->type == AIM_CONN_TYPE_LISTENER) {
+                                /* not possible */
+                                faimdprintf(sess, 0, "rxdispatch called on LISTENER connection!\n");
+                                cur->handled = 1;
+                                continue;
+                        }
-                        continue;
+                }
-                if (cur->conn->type == AIM_CONN_TYPE_RENDEZVOUS_OUT) {
-                        /* not possible */
-                        faimdprintf(sess, 0, "rxdispatch called on RENDEZVOUS_OUT connection!\n");
-                        cur->handled = 1;
-                        continue;
+                }
-                if (cur->hdr.flap.type == 0x01) {
-                        cur->handled = aim_callhandler_noparam(sess, cur->conn, AIM_CB_FAM_SPECIAL, AIM_CB_SPECIAL_FLAPVER, cur); /* XXX use consumenonsnac */
-                        continue;
-                } else if (cur->hdr.flap.type == 0x02) {
-                        if ((cur->handled = consumesnac(sess, cur)))
-                                continue;
-                } else if (cur->hdr.flap.type == 0x04) {
-                        cur->handled = negchan_middle(sess, cur);
-                        continue;
-                } else if (cur->hdr.flap.type == 0x05)
+                        ;
                 if (!cur->handled) {
                         consumenonsnac(sess, cur, 0xffff, 0xffff); /* last chance! */

libfaim/rxqueue.c

-                      r862371b
+                      re374dee
  * Read a FLAP header from conn into fr, and return the number of bytes in the payload.
  */
 static faim_shortfunc int aim_get_command_flap(aim_session_t *sess, aim_conn_t *conn, aim_frame_t *fr)
+static int aim_get_command_flap(aim_session_t *sess, aim_conn_t *conn, aim_frame_t *fr)
+{
         fu8_t flaphdr_raw[6];
 …
         if (!sess || !conn)
                 return -1;
+                return -EINVAL;
         if (conn->fd == -1)
 …
         if (!(newrx = (aim_frame_t *)calloc(sizeof(aim_frame_t), 1)))
                 return -1;
+                return -ENOMEM;
         /*
 …
          * function will break on them.
          */
+        if (conn->type == AIM_CONN_TYPE_RENDEZVOUS)
+                payloadlen = aim_get_command_rendezvous(sess, conn, newrx);
+        else if (conn->type == AIM_CONN_TYPE_RENDEZVOUS_OUT) {
+                faimdprintf(sess, 0, "AIM_CONN_TYPE_RENDEZVOUS_OUT on fd %d\n", conn->fd);
+        if (conn->type == AIM_CONN_TYPE_RENDEZVOUS) {
+                int ret = aim_get_command_rendezvous(sess, conn, newrx);
+                if (ret < 0) {
+                        free(newrx);
+                        return -1;
+                }
+                payloadlen = ret;
+        } else if (conn->type == AIM_CONN_TYPE_LISTENER) {
+                faimdprintf(sess, 0, "AIM_CONN_TYPE_LISTENER on fd %d\n", conn->fd);
                 free(newrx);
                 return -1;

libfaim/search.c

-                      r862371b
+                      re374dee
+ *
  */
 faim_export int aim_usersearch_address(aim_session_t *sess, aim_conn_t *conn, const char *address)
+faim_export int aim_search_address(aim_session_t *sess, aim_conn_t *conn, const char *address)
+{
         aim_frame_t *fr;
 …
         mod->version = 0x0001;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "search", sizeof(mod->name));

libfaim/service.c

-                      r862371b
+                      re374dee
         redir.group = aim_gettlv16(tlvlist, 0x000d, 1);
         redir.ip = aim_gettlv_str(tlvlist, 0x0005, 1);
+        redir.cookielen = aim_gettlv(tlvlist, 0x0006, 1)->length;
         redir.cookie = aim_gettlv_str(tlvlist, 0x0006, 1);
 …
 static int ratechange(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         fu16_t code, rateclass;
 …
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 return userfunc(sess, rx, code, rateclass, windowsize, clear, alert, limit, disconnect, currentavg, maxavg);
         return 0;
+                ret = userfunc(sess, rx, code, rateclass, windowsize, clear, alert, limit, disconnect, currentavg, maxavg);
+        return ret;
+}
 …
 static int serverpause(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 return userfunc(sess, rx);
         return 0;
+                ret = userfunc(sess, rx);
+        return ret;
+}
 …
 static int serverresume(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 return userfunc(sess, rx);
         return 0;
+                ret = userfunc(sess, rx);
+        return ret;
+}
 …
 static int selfinfo(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         aim_userinfo_t userinfo;
         aim_extractuserinfo(sess, bs, &userinfo);
+        aim_info_extract(sess, bs, &userinfo);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                return userfunc(sess, rx, &userinfo);
+        return 0;
+                ret = userfunc(sess, rx, &userinfo);
+        aim_info_free(&userinfo);
+        return ret;
+}
 …
 static int evilnotify(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         fu16_t newevil;
 …
         if (aim_bstream_empty(bs))
                 aim_extractuserinfo(sess, bs, &userinfo);
+                aim_info_extract(sess, bs, &userinfo);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                return userfunc(sess, rx, newevil, &userinfo);
+        return 0;
+                ret = userfunc(sess, rx, newevil, &userinfo);
+        aim_info_free(&userinfo);
+        return ret;
+}
 …
 /*
+ * Subtype 0x001e - Set Extended Status
+ *
+ * Currently only works if using ICQ.
+ *
+ */
+faim_export int aim_setextstatus(aim_session_t *sess, aim_conn_t *conn, fu32_t status)
+{
+ * Subtype 0x001e - Extended Status
+ *
+ * Sets your ICQ status (available, away, do not disturb, etc.)
+ *
+ * These are the same TLVs seen in user info.  You can
+ * also set 0x0008 and 0x000c.
+ */
+faim_export int aim_setextstatus(aim_session_t *sess, fu32_t status)
+{
+        aim_conn_t *conn;
         aim_frame_t *fr;
         aim_snacid_t snacid;
 …
         fu32_t data;
+        data = 0x00030000 | status; /* yay for error checking ;^) */
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0004)))
+                return -EINVAL;
+        data = AIM_ICQ_STATE_HIDEIP | AIM_ICQ_STATE_WEBAWARE | status; /* yay for error checking ;^) */
         if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 8)))
 …
         aim_freetlvchain(&tl);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * Subtype 0x001e - Extended Status.
+ *
+ * Sets your "available" message.  This is currently only supported by iChat
+ * and Gaim.
+ *
+ * These are the same TLVs seen in user info.  You can
+ * also set 0x0008 and 0x000c.
+ */
+faim_export int aim_srv_setavailmsg(aim_session_t *sess, char *msg)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, 0x0001)))
+                return -EINVAL;
+        if (msg) {
+                if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + strlen(msg) + 8)))
+                        return -ENOMEM;
+                snacid = aim_cachesnac(sess, 0x0001, 0x001e, 0x0000, NULL, 0);
+                aim_putsnac(&fr->data, 0x0001, 0x001e, 0x0000, snacid);
+                aimbs_put16(&fr->data, 0x001d);
+                aimbs_put16(&fr->data, strlen(msg)+8);
+                aimbs_put16(&fr->data, 0x0002);
+                aimbs_put8(&fr->data, 0x04);
+                aimbs_put8(&fr->data, strlen(msg)+4);
+                aimbs_put16(&fr->data, strlen(msg));
+                aimbs_putraw(&fr->data, msg, strlen(msg));
+                aimbs_put16(&fr->data, 0x0000);
+        } else {
+                if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 4 + 8)))
+                        return -ENOMEM;
+                snacid = aim_cachesnac(sess, 0x0001, 0x001e, 0x0000, NULL, 0);
+                aim_putsnac(&fr->data, 0x0001, 0x001e, 0x0000, snacid);
+                aimbs_put16(&fr->data, 0x001d);
+                aimbs_put16(&fr->data, 0x0008);
+                aimbs_put16(&fr->data, 0x0002);
+                aimbs_put16(&fr->data, 0x0404);
+                aimbs_put16(&fr->data, 0x0000);
+                aimbs_put16(&fr->data, 0x0000);
+        }
         aim_tx_enqueue(sess, fr);
 …
 static int memrequest(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
         aim_rxcallback_t userfunc;
         fu32_t offset, len;
 …
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 return userfunc(sess, rx, offset, len, modname);
+                ret = userfunc(sess, rx, offset, len, modname);
         free(modname);
         aim_freetlvchain(&list);
         return 0;
+        return ret;
+}
 …
         return 0;
+}
+/*
+ * Subtype 0x0021 - Receive our extended status
+ *
+ * This is used for iChat's "available" messages, and maybe ICQ extended
+ * status messages?  It's also used to tell the client whether or not it
+ * needs to upload an SSI buddy icon... who engineers this stuff, anyway?
+ */
+static int aim_parse_extstatus(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        fu16_t type;
+        fu8_t flags, length;
+        type = aimbs_get16(bs);
+        flags = aimbs_get8(bs);
+        length = aimbs_get8(bs);
+        if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype))) {
+                switch (type) {
+                case 0x0000:
+                case 0x0001: { /* buddy icon checksum */
+                        /* not sure what the difference between 1 and 0 is */
+                        fu8_t *md5 = aimbs_getraw(bs, length);
+                        ret = userfunc(sess, rx, type, flags, length, md5);
+                        free(md5);
+                        } break;
+                case 0x0002: { /* available message */
+                        /* there is a second length that is just for the message */
+                        char *msg = aimbs_getstr(bs, aimbs_get16(bs));
+                        ret = userfunc(sess, rx, msg);
+                        free(msg);
+                        } break;
+                }
+        }
+        return ret;
+}
 …
         else if (snac->subtype == 0x001f)
                 return memrequest(sess, mod, rx, snac, bs);
+        else if (snac->subtype == 0x0021)
+                return aim_parse_extstatus(sess, mod, rx, snac, bs);
         return 0;
 …
         mod->version = 0x0003;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "general", sizeof(mod->name));

libfaim/snac.c

-                      r862371b
+                      re374dee
                         *prev = cur->next;
                         if (cur->flags & AIM_SNACFLAGS_DESTRUCTOR) {
+                                struct aim_snac_destructor *asd = cur->data;
+                                cur->data = asd->data;
+                                free(asd);
+                                free(cur->data);
+                                cur->data = NULL;
+                        }
                         return cur;
 …
+}
-/* Free a SNAC, and call the appropriate destructor if necessary.
- */
-faim_internal faim_shortfunc void aim_cleansnac(aim_session_t *sess, aim_snac_t *snac)
+{
-        aim_module_t *cur;
-        if (snac->flags & AIM_SNACFLAGS_DESTRUCTOR) {
-                struct aim_snac_destructor *d = snac->data;
-                aim_modsnac_t modsnac;
-                modsnac.id = snac->id;
-                modsnac.subtype = snac->type;
-                modsnac.family = snac->family;
-                modsnac.flags = snac->flags;
-                for (cur = (aim_module_t *)sess->modlistv; cur; cur = cur->next)
+                {
-                        if (!cur->snacdestructor)
-                                continue;
-                        if (!(cur->flags & AIM_MODFLAG_MULTIFAMILY) &&
-                                (cur->family != modsnac.family))
-                                continue;
-                        if (cur->snacdestructor(sess, d->conn, &modsnac,
-                                                d->data))
-                                break;
+                }
-                free(d->data);
+        }
-        free(snac->data);
-        free(snac);
+}
 /*
  * This is for cleaning up old SNACs that either don't get replies or
 …
+ *
  */
 faim_internal void aim_cleansnacs(aim_session_t *sess, int maxage)
+faim_export void aim_cleansnacs(aim_session_t *sess, int maxage)
+{
         int i;
 …
                                 *prev = cur->next;
+                                aim_cleansnac(sess, cur);
+                                free(cur->data);
+                                free(cur);
                         } else
                                 prev = &cur->next;

libfaim/ssi.c

-                      r862371b
+                      re374dee
 /*
+ * Server-Side/Stored Information.
+ *
+ * Relatively new facility that allows storing of certain types of information,
+ * such as a users buddy list, permit/deny list, and permit/deny preferences,
+ * to be stored on the server, so that they can be accessed from any client.
+ *
+ * We keep a copy of the ssi data in sess->ssi, because the data needs to be
+ * accessed for various reasons.  So all the "aim_ssi_itemlist_bleh" functions
+ * near the top just manage the local data.
+ * Family 0x0013 - Server-Side/Stored Information.
+ *
+ * Relatively new facility that allows certain types of information, such as
+ * a user's buddy list, permit/deny list, and permit/deny preferences, to be
+ * stored on the server, so that they can be accessed from any client.
+ *
+ * We keep 2 copies of SSI data:
+ * 1) An exact copy of what is stored on the AIM servers.
+ * 2) A local copy that we make changes to, and then send diffs
+ *    between this and the exact copy to keep them in sync.
+ *
+ * All the "aim_ssi_itemlist_bleh" functions near the top just modify the list
+ * that is given to them (i.e. they don't send SNACs).
+ *
  * The SNAC sending and receiving functions are lower down in the file, and
 …
  * You don't know the half of it.
+ *
+ * XXX - Test for memory leaks
+ * XXX - Better parsing of rights, and use the rights info to limit adds
+ * XXX - Preserve unknown data in TLV lists
+ *
  */
 …
 /**
+ * Locally rebuild the 0x00c8 TLV in the additional data of the given group.
+ *
+ * @param list A pointer to a pointer to the current list of items.
+ * @param name A null terminated string containing the group name, or NULL
+ *        if you want to modify the master group.
+ * @return Return a pointer to the modified item.
+ */
+static struct aim_ssi_item *aim_ssi_itemlist_rebuildgroup(struct aim_ssi_item *list, const char *name)
+{
+        int newlen;
+        struct aim_ssi_item *cur, *group;
+        if (!list)
+                return NULL;
+        /* Find the group */
+        if (!(group = aim_ssi_itemlist_finditem(list, name, NULL, AIM_SSI_TYPE_GROUP)))
+                return NULL;
+        /* Free the old data */
+        aim_freetlvchain(&group->data);
+        group->data = NULL;
+        /* Find the length for the new additional data */
+        newlen = 0;
+        if (group->gid == 0x0000) {
+                for (cur=list; cur; cur=cur->next)
+                        if ((cur->type == AIM_SSI_TYPE_GROUP) && (cur->gid != 0x0000))
+                                newlen += 2;
+        } else {
+                for (cur=list; cur; cur=cur->next)
+                        if ((cur->gid == group->gid) && (cur->type == AIM_SSI_TYPE_BUDDY))
+                                newlen += 2;
+        }
+        /* Build the new TLV list */
+        if (newlen > 0) {
+                fu8_t *newdata;
+                if (!(newdata = (fu8_t *)malloc((newlen)*sizeof(fu8_t))))
+                        return NULL;
+                newlen = 0;
+                if (group->gid == 0x0000) {
+                        for (cur=list; cur; cur=cur->next)
+                                if ((cur->type == AIM_SSI_TYPE_GROUP) && (cur->gid != 0x0000))
+                                                newlen += aimutil_put16(newdata+newlen, cur->gid);
+                } else {
+                        for (cur=list; cur; cur=cur->next)
+                                if ((cur->gid == group->gid) && (cur->type == AIM_SSI_TYPE_BUDDY))
+                                                newlen += aimutil_put16(newdata+newlen, cur->bid);
+                }
+                aim_addtlvtochain_raw(&group->data, 0x00c8, newlen, newdata);
+                free(newdata);
+        }
+        return group;
+}
+/**
  * Locally add a new item to the given item list.
+ *
  * @param list A pointer to a pointer to the current list of items.
- * @param parent A pointer to the parent group, or NULL if the item should have no
- *        parent group (ie. the group ID# should be 0).
  * @param name A null terminated string of the name of the new item, or NULL if the
  *        item should have no name.
+ * @param type The type of the item, 0x0001 for a contact, 0x0002 for a group, etc.
+ * @return The newly created item.
+ */
+static struct aim_ssi_item *aim_ssi_itemlist_add(struct aim_ssi_item **list, struct aim_ssi_item *parent, const char *name, fu16_t type)
+ * @param gid The group ID# you want the new item to have, or 0xFFFF if we should pick something.
+ * @param bid The buddy ID# you want the new item to have, or 0xFFFF if we should pick something.
+ * @param type The type of the item, 0x0000 for a contact, 0x0001 for a group, etc.
+ * @param data The additional data for the new item.
+ * @return A pointer to the newly created item.
+ */
+static struct aim_ssi_item *aim_ssi_itemlist_add(struct aim_ssi_item **list, const char *name, fu16_t gid, fu16_t bid, fu16_t type, aim_tlvlist_t *data)
+{
         int i;
+        struct aim_ssi_item *cur, *newitem;
+        if (!(newitem = (struct aim_ssi_item *)malloc(sizeof(struct aim_ssi_item))))
+        struct aim_ssi_item *cur, *new;
+        if (!list)
+                return NULL;
+        if (!(new = (struct aim_ssi_item *)malloc(sizeof(struct aim_ssi_item))))
                 return NULL;
         /* Set the name */
         if (name) {
+                if (!(newitem->name = (char *)malloc((strlen(name)+1)*sizeof(char)))) {
+                        free(newitem);
+                        return NULL;
+                }
+                strcpy(newitem->name, name);
+                new->name = (char *)malloc((strlen(name)+1)*sizeof(char));
+                strcpy(new->name, name);
         } else
                 newitem->name = NULL;
         /* Set the group ID# and the buddy ID# */
         newitem->gid = 0x0000;
         newitem->bid = 0x0000;
+                new->name = NULL;
+        /* Set the group ID# and buddy ID# */
+        new->gid = gid;
+        new->bid = bid;
         if (type == AIM_SSI_TYPE_GROUP) {
                 if (name)
+                if ((new->gid == 0xFFFF) && name) {
                         do {
                                 newitem->gid += 0x0001;
+                                new->gid += 0x0001;
                                 for (cur=*list, i=0; ((cur) && (!i)); cur=cur->next)
                                         if ((cur->gid == newitem->gid) && (cur->gid == newitem->gid))
+                                        if ((cur->type == AIM_SSI_TYPE_GROUP) && (cur->gid == new->gid))
                                                 i=1;
                         } while (i);
+                }
         } else {
+                if (parent)
+                        newitem->gid = parent->gid;
+                do {
+                        newitem->bid += 0x0001;
+                        for (cur=*list, i=0; ((cur) && (!i)); cur=cur->next)
+                                if ((cur->bid == newitem->bid) && (cur->gid == newitem->gid))
+                                        i=1;
+                } while (i);
+        }
+        /* Set the rest */
+        newitem->type = type;
+        newitem->data = NULL;
+        newitem->next = *list;
+        *list = newitem;
+        return newitem;
+}
+/**
+ * Locally rebuild the 0x00c8 TLV in the additional data of the given group.
+                if (new->bid == 0xFFFF) {
+                        do {
+                                new->bid += 0x0001;
+                                for (cur=*list, i=0; ((cur) && (!i)); cur=cur->next)
+                                        if ((cur->bid == new->bid) && (cur->gid == new->gid))
+                                                i=1;
+                        } while (i);
+                }
+        }
+        /* Set the type */
+        new->type = type;
+        /* Set the TLV list */
+        new->data = aim_tlvlist_copy(data);
+        /* Add the item to the list in the correct numerical position.  Fancy, eh? */
+        if (*list) {
+                if ((new->gid < (*list)->gid) || ((new->gid == (*list)->gid) && (new->bid < (*list)->bid))) {
+                        new->next = *list;
+                        *list = new;
+                } else {
+                        struct aim_ssi_item *prev;
+                        for ((prev=*list, cur=(*list)->next); (cur && ((new->gid > cur->gid) || ((new->gid == cur->gid) && (new->bid > cur->bid)))); prev=cur, cur=cur->next);
+                        new->next = prev->next;
+                        prev->next = new;
+                }
+        } else {
+                new->next = *list;
+                *list = new;
+        }
+        return new;
+}
+/**
+ * Locally delete an item from the given item list.
+ *
  * @param list A pointer to a pointer to the current list of items.
  * @param parentgroup A pointer to the group who's additional data you want to rebuild.
+ * @param del A pointer to the item you want to remove from the list.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+static int aim_ssi_itemlist_rebuildgroup(struct aim_ssi_item **list, struct aim_ssi_item *parentgroup)
+{
+        int newlen;
+static int aim_ssi_itemlist_del(struct aim_ssi_item **list, struct aim_ssi_item *del)
+{
+        if (!list || !(*list) || !del)
+                return -EINVAL;
+        /* Remove the item from the list */
+        if (*list == del) {
+                *list = (*list)->next;
+        } else {
+                struct aim_ssi_item *cur;
+                for (cur=*list; (cur->next && (cur->next!=del)); cur=cur->next);
+                if (cur->next)
+                        cur->next = cur->next->next;
+        }
+        /* Free the deleted item */
+        free(del->name);
+        aim_freetlvchain(&del->data);
+        free(del);
+        return 0;
+}
+/**
+ * Compare two items to see if they have the same data.
+ *
+ * @param cur1 A pointer to a pointer to the first item.
+ * @param cur2 A pointer to a pointer to the second item.
+ * @return Return 0 if no differences, or a number if there are differences.
+ */
+static int aim_ssi_itemlist_cmp(struct aim_ssi_item *cur1, struct aim_ssi_item *cur2)
+{
+        if (!cur1 || !cur2)
+                return 1;
+        if (cur1->data && !cur2->data)
+                return 2;
+        if (!cur1->data && cur2->data)
+                return 3;
+        if ((cur1->data && cur2->data) && (aim_tlvlist_cmp(cur1->data, cur2->data)))
+                        return 4;
+        if (cur1->name && !cur2->name)
+                return 5;
+        if (!cur1->name && cur2->name)
+                return 6;
+        if (cur1->name && cur2->name && aim_sncmp(cur1->name, cur2->name))
+                return 7;
+        if (cur1->gid != cur2->gid)
+                return 8;
+        if (cur1->bid != cur2->bid)
+                return 9;
+        if (cur1->type != cur2->type)
+                return 10;
+        return 0;
+}
+faim_export int aim_ssi_itemlist_valid(struct aim_ssi_item *list, struct aim_ssi_item *item)
+{
         struct aim_ssi_item *cur;
+        /* Free the old additional data */
+        if (parentgroup->data) {
+                aim_freetlvchain((aim_tlvlist_t **)&parentgroup->data);
+                parentgroup->data = NULL;
+        }
+        /* Find the length for the new additional data */
+        newlen = 0;
+        if (parentgroup->gid == 0x0000) {
+                for (cur=*list; cur; cur=cur->next)
+                        if ((cur->gid != 0x0000) && (cur->type == AIM_SSI_TYPE_GROUP))
+                                newlen += 2;
+        } else {
+                for (cur=*list; cur; cur=cur->next)
+                        if ((cur->gid == parentgroup->gid) && (cur->type == AIM_SSI_TYPE_BUDDY))
+                                newlen += 2;
+        }
+        /* Rebuild the additional data */
+        if (newlen>0) {
+                fu8_t *newdata;
+                if (!(newdata = (fu8_t *)malloc((newlen)*sizeof(fu8_t))))
+                        return -ENOMEM;
+                newlen = 0;
+                if (parentgroup->gid == 0x0000) {
+                        for (cur=*list; cur; cur=cur->next)
+                                if ((cur->gid != 0x0000) && (cur->type == AIM_SSI_TYPE_GROUP))
+                                                newlen += aimutil_put16(newdata+newlen, cur->gid);
+                } else {
+                        for (cur=*list; cur; cur=cur->next)
+                                if ((cur->gid == parentgroup->gid) && (cur->type == AIM_SSI_TYPE_BUDDY))
+                                                newlen += aimutil_put16(newdata+newlen, cur->bid);
+                }
+                aim_addtlvtochain_raw((aim_tlvlist_t **)&(parentgroup->data), 0x00c8, newlen, newdata);
+                free(newdata);
+        }
+        return 0;
+}
+/**
+ * Locally free all of the stored buddy list information.
+ *
+ * @param sess The oscar session.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+static int aim_ssi_freelist(aim_session_t *sess)
+{
+        struct aim_ssi_item *cur, *delitem;
+        cur = sess->ssi.items;
+        while (cur) {
+                if (cur->name)  free(cur->name);
+                if (cur->data)  aim_freetlvchain((aim_tlvlist_t **)&cur->data);
+                delitem = cur;
+                cur = cur->next;
+                free(delitem);
+        }
+        sess->ssi.items = NULL;
+        sess->ssi.revision = 0;
+        sess->ssi.timestamp = (time_t)0;
+        for (cur=list; cur; cur=cur->next)
+                if (cur == item)
+                        return 1;
         return 0;
+}
 …
+                        }
         } else if (sn) { /* For finding groups, permits, denies, and ignores */
                 for (cur=list; cur; cur=cur->next)
                         if ((cur->type == type) && (cur->name) && !(aim_sncmp(cur->name, sn)))
+        } else if (gn) { /* For finding groups */
+                for (cur=list; cur; cur=cur->next) {
+                        if ((cur->type == type) && (cur->bid == 0x0000) && (cur->name) && !(aim_sncmp(cur->name, gn))) {
                                 return cur;
+                        }
+                }
+        } else if (sn) { /* For finding permits, denies, and ignores */
+                for (cur=list; cur; cur=cur->next) {
+                        if ((cur->type == type) && (cur->name) && !(aim_sncmp(cur->name, sn))) {
+                                return cur;
+                        }
+                }
         /* For stuff without names--permit deny setting, visibility mask, etc. */
         } else for (cur=list; cur; cur=cur->next) {
                 if (cur->type == type)
+                if ((cur->type == type) && (!cur->name))
                         return cur;
+        }
+        return NULL;
+}
+/**
+ * Check if the given buddy exists in any group in the buddy list.
+ *
+ * @param list A pointer to the current list of items.
+ * @param sn The group name of the desired item.
+ * @return Return a pointer to the name of the item if found, else return NULL;
+ */
+faim_export struct aim_ssi_item *aim_ssi_itemlist_exists(struct aim_ssi_item *list, const char *sn)
+{
+        struct aim_ssi_item *cur;
+        if (!list || !sn)
+                return NULL;
+        for (cur=list; cur; cur=cur->next)
+                if ((cur->type == AIM_SSI_TYPE_BUDDY) && (cur->name) && (!aim_sncmp(cur->name, sn)))
+                        return cur;
         return NULL;
+}
 …
  * @param list A pointer to the current list of items.
  * @param bn The buddy name of the desired item.
  * @return Return a pointer to the item if found, else return NULL;
  */
 faim_export struct aim_ssi_item *aim_ssi_itemlist_findparent(struct aim_ssi_item *list, char *sn)
+ * @return Return a pointer to the name of the item if found, else return NULL;
+ */
+faim_export char *aim_ssi_itemlist_findparentname(struct aim_ssi_item *list, const char *sn)
+{
         struct aim_ssi_item *cur, *curg;
         if (!list || !sn)
                 return NULL;
         if (!(cur = aim_ssi_itemlist_finditem(list, NULL, sn, AIM_SSI_TYPE_BUDDY)))
+        if (!(cur = aim_ssi_itemlist_exists(list, sn)))
                 return NULL;
+        for (curg=list; curg; curg=curg->next)
+                if ((curg->type == AIM_SSI_TYPE_GROUP) && (curg->gid == cur->gid))
+                        return curg;
+        return NULL;
+        if (!(curg = aim_ssi_itemlist_find(list, cur->gid, 0x0000)))
+                return NULL;
+        return curg->name;
+}
 …
 /**
+ * Add the given packet to the holding queue.  We totally need to send SSI SNACs one at
+ * a time, so we have a local queue where packets get put before they are sent, and
+ * then we send stuff one at a time, nice and orderly-like.
+ * Locally find the alias of the given buddy.
+ *
+ * @param list A pointer to the current list of items.
+ * @param gn The group of the buddy.
+ * @param sn The name of the buddy.
+ * @return A pointer to a NULL terminated string that is the buddies
+ *         alias, or NULL if the buddy has no alias.  You should free
+ *         this returned value!
+ */
+faim_export char *aim_ssi_getalias(struct aim_ssi_item *list, const char *gn, const char *sn)
+{
+        struct aim_ssi_item *cur = aim_ssi_itemlist_finditem(list, gn, sn, AIM_SSI_TYPE_BUDDY);
+        if (cur) {
+                aim_tlvlist_t *tlvlist = cur->data;
+                if (tlvlist) {
+                        aim_tlv_t *tlv = aim_gettlv(tlvlist, 0x0131, 1);
+                        if (tlv && tlv->length) {
+                                char *alias = (char *)malloc((tlv->length+1)*sizeof(char));
+                                strncpy(alias, tlv->value, tlv->length);
+                                alias[tlv->length] = 0;
+                                return alias;
+                        }
+                }
+        }
+        return NULL;
+}
+/**
+ * Locally find if you are waiting for authorization for a buddy.
+ *
+ * @param list A pointer to the current list of items.
+ * @param gn The group of the buddy.
+ * @param sn The name of the buddy.
+ * @return A pointer to a NULL terminated string that is the buddies
+ *         alias, or NULL if the buddy has no alias.  You should free
+ *         this returned value!
+ */
+faim_export int aim_ssi_waitingforauth(struct aim_ssi_item *list, const char *gn, const char *sn)
+{
+        struct aim_ssi_item *cur = aim_ssi_itemlist_finditem(list, gn, sn, AIM_SSI_TYPE_BUDDY);
+        if (cur) {
+                aim_tlvlist_t *tlvlist = cur->data;
+                if (tlvlist)
+                        if (aim_gettlv(tlvlist, 0x0066, 1))
+                                return 1;
+        }
+        return 0;
+}
+/**
+ * If there are changes, then create temporary items and
+ * call addmoddel.
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
- * @param fr The newly created SNAC that you want to send.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+static int aim_ssi_enqueue(aim_session_t *sess, aim_conn_t *conn, aim_frame_t *fr)
+{
+        aim_frame_t *cur;
+        if (!sess || !conn || !fr)
+                return -EINVAL;
+        fr->next = NULL;
+        if (sess->ssi.holding_queue == NULL) {
+                sess->ssi.holding_queue = fr;
+                if (!sess->ssi.waiting_for_ack)
+                        aim_ssi_modbegin(sess, conn);
+        } else {
+                for (cur = sess->ssi.holding_queue; cur->next; cur = cur->next) ;
+                cur->next = fr;
+        }
+        return 0;
+}
+/**
+ * Send the next SNAC from the holding queue.  This is called
+ * automatically when an ack from an add, mod, or del is received.
+ * If the queue is empty, it sends the modend SNAC.
+static int aim_ssi_sync(aim_session_t *sess)
+{
+        struct aim_ssi_item *cur1, *cur2;
+        struct aim_ssi_tmp *cur, *new;
+        if (!sess)
+                return -EINVAL;
+        /* If we're waiting for an ack, we shouldn't do anything else */
+        if (sess->ssi.waiting_for_ack)
+                return 0;
+        /*
+         * Compare the 2 lists and create an aim_ssi_tmp for each difference.
+         * We should only send either additions, modifications, or deletions
+         * before waiting for an acknowledgement.  So first do deletions, then
+         * additions, then modifications.  Also, both the official and the local
+         * list should be in ascending numerical order for the group ID#s and the
+         * buddy ID#s, which makes things more efficient.  I think.
+         */
+        /* Additions */
+        if (!sess->ssi.pending) {
+                for (cur1=sess->ssi.local; cur1; cur1=cur1->next) {
+                        if (!aim_ssi_itemlist_find(sess->ssi.official, cur1->gid, cur1->bid)) {
+                                new = (struct aim_ssi_tmp *)malloc(sizeof(struct aim_ssi_tmp));
+                                new->action = AIM_CB_SSI_ADD;
+                                new->ack = 0xffff;
+                                new->name = NULL;
+                                new->item = cur1;
+                                new->next = NULL;
+                                if (sess->ssi.pending) {
+                                        for (cur=sess->ssi.pending; cur->next; cur=cur->next);
+                                        cur->next = new;
+                                } else
+                                        sess->ssi.pending = new;
+                        }
+                }
+        }
+        /* Deletions */
+        if (!sess->ssi.pending) {
+                for (cur1=sess->ssi.official; cur1; cur1=cur1->next) {
+                        if (!aim_ssi_itemlist_find(sess->ssi.local, cur1->gid, cur1->bid)) {
+                                new = (struct aim_ssi_tmp *)malloc(sizeof(struct aim_ssi_tmp));
+                                new->action = AIM_CB_SSI_DEL;
+                                new->ack = 0xffff;
+                                new->name = NULL;
+                                new->item = cur1;
+                                new->next = NULL;
+                                if (sess->ssi.pending) {
+                                        for (cur=sess->ssi.pending; cur->next; cur=cur->next);
+                                        cur->next = new;
+                                } else
+                                        sess->ssi.pending = new;
+                        }
+                }
+        }
+        /* Modifications */
+        if (!sess->ssi.pending) {
+                for (cur1=sess->ssi.local; cur1; cur1=cur1->next) {
+                        cur2 = aim_ssi_itemlist_find(sess->ssi.official, cur1->gid, cur1->bid);
+                        if (cur2 && (aim_ssi_itemlist_cmp(cur1, cur2))) {
+                                new = (struct aim_ssi_tmp *)malloc(sizeof(struct aim_ssi_tmp));
+                                new->action = AIM_CB_SSI_MOD;
+                                new->ack = 0xffff;
+                                new->name = NULL;
+                                new->item = cur1;
+                                new->next = NULL;
+                                if (sess->ssi.pending) {
+                                        for (cur=sess->ssi.pending; cur->next; cur=cur->next);
+                                        cur->next = new;
+                                } else
+                                        sess->ssi.pending = new;
+                        }
+                }
+        }
+        /* We're out of stuff to do, so tell the AIM servers we're done and exit */
+        if (!sess->ssi.pending) {
+                aim_ssi_modend(sess);
+                return 0;
+        }
+        /* Make sure we don't send anything else between now
+         * and when we receive the ack for the following operation */
+        sess->ssi.waiting_for_ack = 1;
+        /* Now go mail off our data and wait 4 to 6 weeks */
+        aim_ssi_addmoddel(sess);
+        return 0;
+}
+/**
+ * Free all SSI data.
+ *
+ * This doesn't remove it from the server, that's different.
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+static int aim_ssi_dispatch(aim_session_t *sess, aim_conn_t *conn)
+{
+        aim_frame_t *cur;
+        if (!sess || !conn)
+                return -EINVAL;
+        if (!sess->ssi.waiting_for_ack) {
+                if (sess->ssi.holding_queue) {
+                        sess->ssi.waiting_for_ack = 1;
+                        cur = sess->ssi.holding_queue->next;
+                        sess->ssi.holding_queue->next = NULL;
+                        aim_tx_enqueue(sess, sess->ssi.holding_queue);
+                        sess->ssi.holding_queue = cur;
+                } else
+                        aim_ssi_modend(sess, conn);
+        }
+        return 0;
+}
+/**
+ * Send SNACs necessary to remove all SSI data from the server list,
+ * and then free the local copy as well.
+static int aim_ssi_freelist(aim_session_t *sess)
+{
+        struct aim_ssi_item *cur, *del;
+        struct aim_ssi_tmp *curtmp, *deltmp;
+        cur = sess->ssi.official;
+        while (cur) {
+                del = cur;
+                cur = cur->next;
+                free(del->name);
+                aim_freetlvchain(&del->data);
+                free(del);
+        }
+        cur = sess->ssi.local;
+        while (cur) {
+                del = cur;
+                cur = cur->next;
+                free(del->name);
+                aim_freetlvchain(&del->data);
+                free(del);
+        }
+        curtmp = sess->ssi.pending;
+        while (curtmp) {
+                deltmp = curtmp;
+                curtmp = curtmp->next;
+                free(deltmp);
+        }
+        sess->ssi.numitems = 0;
+        sess->ssi.official = NULL;
+        sess->ssi.local = NULL;
+        sess->ssi.pending = NULL;
+        sess->ssi.timestamp = (time_t)0;
+        return 0;
+}
+/**
+ * Delete all SSI data.
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_deletelist(aim_session_t *sess, aim_conn_t *conn)
+{
+        int num;
+        struct aim_ssi_item *cur, **items;
+        for (cur=sess->ssi.items, num=0; cur; cur=cur->next)
+                num++;
+        if (!(items = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *))))
+                return -ENOMEM;
+        memset(items, 0, num*sizeof(struct aim_ssi_item *));
+        for (cur=sess->ssi.items, num=0; cur; cur=cur->next) {
+                items[num] = cur;
+                num++;
+        }
+        aim_ssi_addmoddel(sess, conn, items, num, AIM_CB_SSI_DEL);
+        free(items);
+        aim_ssi_dispatch(sess, conn);
+        aim_ssi_freelist(sess);
+        return 0;
+}
+/**
+ * This "cleans" the ssi list.  It does a few things, with the intent of making
+ * sure there ain't nothin' wrong with your SSI.
+ *   -Make sure all buddies are in a group, and all groups have the correct
+ *     additional data.
+ *   -Make sure there are no empty groups in the list.  While there is nothing
+ *     wrong empty groups in the SSI, it's wiser to not have them.
+faim_export int aim_ssi_deletelist(aim_session_t *sess)
+{
+        struct aim_ssi_item *cur, *del;
+        if (!sess)
+                return -EINVAL;
+        /* Free the local list */
+        cur = sess->ssi.local;
+        while (cur) {
+                del = cur;
+                cur = cur->next;
+                free(del->name);
+                aim_freetlvchain(&del->data);
+                free(del);
+        }
+        sess->ssi.local = NULL;
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * This "cleans" the ssi list.  It does the following:
+ * 1) Makes sure all buddies, permits, and denies have names.
+ * 2) Makes sure that all buddies are in a group that exist.
+ * 3) Deletes any empty groups
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_cleanlist(aim_session_t *sess, aim_conn_t *conn)
+{
+        unsigned int i;
+        struct aim_ssi_item *cur, *parentgroup;
+        /* Make sure we actually need to clean out the list */
+        for (cur=sess->ssi.items, i=0; cur && !i; cur=cur->next)
+                /* Any buddies directly in the master group */
+                if ((cur->type == AIM_SSI_TYPE_BUDDY) && (cur->gid == 0x0000))
+                        i++;
+        if (!i)
+                return 0;
+        /* Remove all the additional data from all groups */
+        for (cur=sess->ssi.items; cur; cur=cur->next)
+                if ((cur->data) && (cur->type == AIM_SSI_TYPE_GROUP)) {
+                        aim_freetlvchain((aim_tlvlist_t **)&cur->data);
+                        cur->data = NULL;
+faim_export int aim_ssi_cleanlist(aim_session_t *sess)
+{
+        struct aim_ssi_item *cur, *next;
+        if (!sess)
+                return -EINVAL;
+        /* Delete any buddies, permits, or denies with empty names. */
+        /* If there are any buddies directly in the master group, add them to a real group. */
+        /* DESTROY any buddies that are directly in the master group. */
+        /* Do the same for buddies that are in a non-existant group. */
+        /* This will kind of mess up if you hit the item limit, but this function isn't too critical */
+        cur = sess->ssi.local;
+        while (cur) {
+                next = cur->next;
+                if (!cur->name) {
+                        if (cur->type == AIM_SSI_TYPE_BUDDY)
+                                aim_ssi_delbuddy(sess, NULL, NULL);
+                        else if (cur->type == AIM_SSI_TYPE_PERMIT)
+                                aim_ssi_delpermit(sess, NULL);
+                        else if (cur->type == AIM_SSI_TYPE_DENY)
+                                aim_ssi_deldeny(sess, NULL);
+                } else if ((cur->type == AIM_SSI_TYPE_BUDDY) && ((cur->gid == 0x0000) || (!aim_ssi_itemlist_find(sess->ssi.local, cur->gid, 0x0000)))) {
+                        aim_ssi_addbuddy(sess, cur->name, "orphans", NULL, NULL, NULL, 0);
+                        aim_ssi_delbuddy(sess, cur->name, NULL);
+                }
         /* If there are buddies directly in the master group, make sure  */
+        /* there is a group to put them in.  Any group, any group at all. */
         for (cur=sess->ssi.items; ((cur) && ((cur->type != AIM_SSI_TYPE_BUDDY) || (cur->gid != 0x0000))); cur=cur->next);
         if (!cur) {
                 for (parentgroup=sess->ssi.items; ((parentgroup) && (parentgroup->type!=AIM_SSI_TYPE_GROUP) && (parentgroup->gid==0x0000)); parentgroup=parentgroup->next);
                 if (!parentgroup) {
                         char *newgroup;
                         newgroup = (char*)malloc(strlen("Unknown")*sizeof(char));
                         strcpy(newgroup, "Unknown");
                         aim_ssi_addgroups(sess, conn, (const char**)&newgroup, 1);
+                cur = next;
+        }
+        /* Check if there are empty groups and delete them */
+        cur = sess->ssi.local;
+        while (cur) {
+                next = cur->next;
+                if (cur->type == AIM_SSI_TYPE_GROUP) {
+                        aim_tlv_t *tlv = aim_gettlv(cur->data, 0x00c8, 1);
+                        if (!tlv || !tlv->length)
+                                aim_ssi_itemlist_del(&sess->ssi.local, cur);
+                }
+        }
+        /* Set parentgroup equal to any arbitray group */
+        for (parentgroup=sess->ssi.items; parentgroup->gid==0x0000 || parentgroup->type!=AIM_SSI_TYPE_GROUP; parentgroup=parentgroup->next);
+        /* If there are any buddies directly in the master group, put them in a real group */
+        for (cur=sess->ssi.items; cur; cur=cur->next)
+                if ((cur->type == AIM_SSI_TYPE_BUDDY) && (cur->gid == 0x0000)) {
+                        aim_ssi_addmoddel(sess, conn, &cur, 1, AIM_CB_SSI_DEL);
+                        cur->gid = parentgroup->gid;
+                        aim_ssi_addmoddel(sess, conn, &cur, 1, AIM_CB_SSI_ADD);
+                cur = next;
+        }
+        /* Check if the master group is empty */
+        if ((cur = aim_ssi_itemlist_find(sess->ssi.local, 0x0000, 0x0000)) && (!cur->data))
+                aim_ssi_itemlist_del(&sess->ssi.local, cur);
+        return 0;
+}
+/**
+ * Add a buddy to the list.
+ *
+ * @param sess The oscar session.
+ * @param name The name of the item.
+ * @param group The group of the item.
+ * @param alias The alias/nickname of the item, or NULL.
+ * @param comment The buddy comment for the item, or NULL.
+ * @param smsnum The locally assigned SMS number, or NULL.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_addbuddy(aim_session_t *sess, const char *name, const char *group, const char *alias, const char *comment, const char *smsnum, int needauth)
+{
+        struct aim_ssi_item *parent;
+        aim_tlvlist_t *data = NULL;
+        if (!sess || !name || !group)
+                return -EINVAL;
+        /* Find the parent */
+        if (!(parent = aim_ssi_itemlist_finditem(sess->ssi.local, group, NULL, AIM_SSI_TYPE_GROUP))) {
+                /* Find the parent's parent (the master group) */
+                if (!(parent = aim_ssi_itemlist_find(sess->ssi.local, 0x0000, 0x0000)))
+                        if (!(parent = aim_ssi_itemlist_add(&sess->ssi.local, NULL, 0x0000, 0x0000, AIM_SSI_TYPE_GROUP, NULL)))
+                                return -ENOMEM;
+                /* Add the parent */
+                if (!(parent = aim_ssi_itemlist_add(&sess->ssi.local, group, 0xFFFF, 0x0000, AIM_SSI_TYPE_GROUP, NULL)))
+                        return -ENOMEM;
+                /* Modify the parent's parent (the master group) */
+                aim_ssi_itemlist_rebuildgroup(sess->ssi.local, NULL);
+        }
+        /* Create a TLV list for the new buddy */
+        if (needauth)
+                aim_addtlvtochain_noval(&data, 0x0066);
+        if (alias)
+                aim_addtlvtochain_raw(&data, 0x0131, strlen(alias), alias);
+        if (smsnum)
+                aim_addtlvtochain_raw(&data, 0x013a, strlen(smsnum), smsnum);
+        if (comment)
+                aim_addtlvtochain_raw(&data, 0x013c, strlen(comment), comment);
+        /* Add that bad boy */
+        aim_ssi_itemlist_add(&sess->ssi.local, name, parent->gid, 0xFFFF, AIM_SSI_TYPE_BUDDY, data);
+        aim_freetlvchain(&data);
+        /* Modify the parent group */
+        aim_ssi_itemlist_rebuildgroup(sess->ssi.local, group);
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Add a permit buddy to the list.
+ *
+ * @param sess The oscar session.
+ * @param name The name of the item..
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_addpermit(aim_session_t *sess, const char *name)
+{
+        if (!sess || !name)
+                return -EINVAL;
+        /* Add that bad boy */
+        aim_ssi_itemlist_add(&sess->ssi.local, name, 0x0000, 0xFFFF, AIM_SSI_TYPE_PERMIT, NULL);
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Add a deny buddy to the list.
+ *
+ * @param sess The oscar session.
+ * @param name The name of the item..
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_adddeny(aim_session_t *sess, const char *name)
+{
+        if (!sess || !name)
+                return -EINVAL;
+        /* Add that bad boy */
+        aim_ssi_itemlist_add(&sess->ssi.local, name, 0x0000, 0xFFFF, AIM_SSI_TYPE_DENY, NULL);
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Deletes a buddy from the list.
+ *
+ * @param sess The oscar session.
+ * @param name The name of the item, or NULL.
+ * @param group The group of the item, or NULL.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_delbuddy(aim_session_t *sess, const char *name, const char *group)
+{
+        struct aim_ssi_item *del;
+        if (!sess)
+                return -EINVAL;
+        /* Find the buddy */
+        if (!(del = aim_ssi_itemlist_finditem(sess->ssi.local, group, name, AIM_SSI_TYPE_BUDDY)))
+                return -EINVAL;
+        /* Remove the item from the list */
+        aim_ssi_itemlist_del(&sess->ssi.local, del);
+        /* Modify the parent group */
+        aim_ssi_itemlist_rebuildgroup(sess->ssi.local, group);
+        /* Check if we should delete the parent group */
+        if ((del = aim_ssi_itemlist_finditem(sess->ssi.local, group, NULL, AIM_SSI_TYPE_GROUP)) && (!del->data)) {
+                aim_ssi_itemlist_del(&sess->ssi.local, del);
+                /* Modify the parent group */
+                aim_ssi_itemlist_rebuildgroup(sess->ssi.local, NULL);
+                /* Check if we should delete the parent's parent (the master group) */
+                if ((del = aim_ssi_itemlist_find(sess->ssi.local, 0x0000, 0x0000)) && (!del->data)) {
+                        aim_ssi_itemlist_del(&sess->ssi.local, del);
+                }
+        /* Rebuild additional data for all groups */
+        for (parentgroup=sess->ssi.items; parentgroup; parentgroup=parentgroup->next)
+                if (parentgroup->type == AIM_SSI_TYPE_GROUP)
+                        aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, parentgroup);
+        /* Send a mod snac for all groups */
+        i = 0;
+        for (cur=sess->ssi.items; cur; cur=cur->next)
+                if (cur->type == AIM_SSI_TYPE_GROUP)
+                        i++;
+        if (i > 0) {
+                /* Allocate an array of pointers to each of the groups */
+                struct aim_ssi_item **groups;
+                if (!(groups = (struct aim_ssi_item **)malloc(i*sizeof(struct aim_ssi_item *))))
+                        return -ENOMEM;
+                for (cur=sess->ssi.items, i=0; cur; cur=cur->next)
+                        if (cur->type == AIM_SSI_TYPE_GROUP)
+                                groups[i] = cur;
+                aim_ssi_addmoddel(sess, conn, groups, i, AIM_CB_SSI_MOD);
+                free(groups);
+        }
+        /* Send a del snac for any empty groups */
+        i = 0;
+        for (cur=sess->ssi.items; cur; cur=cur->next)
+                if ((cur->type == AIM_SSI_TYPE_GROUP) && !(cur->data))
+                        i++;
+        if (i > 0) {
+                /* Allocate an array of pointers to each of the groups */
+                struct aim_ssi_item **groups;
+                if (!(groups = (struct aim_ssi_item **)malloc(i*sizeof(struct aim_ssi_item *))))
+                        return -ENOMEM;
+                for (cur=sess->ssi.items, i=0; cur; cur=cur->next)
+                        if ((cur->type == AIM_SSI_TYPE_GROUP) && !(cur->data))
+                                groups[i] = cur;
+                aim_ssi_addmoddel(sess, conn, groups, i, AIM_CB_SSI_DEL);
+                free(groups);
+        }
+        /* Begin sending SSI SNACs */
+        aim_ssi_dispatch(sess, conn);
+        return 0;
+}
+/**
+ * Add an array of screen names to the given group.
+        }
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Deletes a permit buddy from the list.
+ *
  * @param sess The oscar session.
+ * @param conn The bos connection for this session.
+ * @param gn The name of the group to which you want to add these names.
+ * @param sn An array of null terminated strings of the names you want to add.
+ * @param num The number of screen names you are adding (size of the sn array).
+ * @param name The name of the item, or NULL.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_addbuddies(aim_session_t *sess, aim_conn_t *conn, const char *gn, const char **sn, unsigned int num)
+{
+        struct aim_ssi_item *parentgroup, **newitems;
+        fu16_t i;
+        if (!sess || !conn || !gn || !sn || !num)
+                return -EINVAL;
+        /* Look up the parent group */
+        if (!(parentgroup = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, gn, AIM_SSI_TYPE_GROUP))) {
+                aim_ssi_addgroups(sess, conn, (const char **)&gn, 1);
+                if (!(parentgroup = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, gn, AIM_SSI_TYPE_GROUP)))
+                        return -ENOMEM;
+        }
+        /* Allocate an array of pointers to each of the new items */
+        if (!(newitems = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *))))
+                return -ENOMEM;
+        /* Add items to the local list, and index them in the array */
+        for (i=0; i<num; i++)
+                if (!(newitems[i] = aim_ssi_itemlist_add(&sess->ssi.items, parentgroup, sn[i], AIM_SSI_TYPE_BUDDY))) {
+                        free(newitems);
+                        return -ENOMEM;
+                }
+        /* Send the add item SNAC */
+        if ((i = aim_ssi_addmoddel(sess, conn, newitems, num, AIM_CB_SSI_ADD))) {
+                free(newitems);
+                return -i;
+        }
+        /* Free the array of pointers to each of the new items */
+        free(newitems);
+        /* Rebuild the additional data in the parent group */
+        if ((i = aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, parentgroup)))
+                return i;
+        /* Send the mod item SNAC */
+        if ((i = aim_ssi_addmoddel(sess, conn, &parentgroup, 1, AIM_CB_SSI_MOD)))
+                return i;
+        /* Begin sending SSI SNACs */
+        if (!(i = aim_ssi_dispatch(sess, conn)))
+                return i;
+        return 0;
+}
+/**
+ * Add the master group (the group containing all groups).  This is called by
+ * aim_ssi_addgroups, if necessary.
+faim_export int aim_ssi_delpermit(aim_session_t *sess, const char *name)
+{
+        struct aim_ssi_item *del;
+        if (!sess)
+                return -EINVAL;
+        /* Find the item */
+        if (!(del = aim_ssi_itemlist_finditem(sess->ssi.local, NULL, name, AIM_SSI_TYPE_PERMIT)))
+                return -EINVAL;
+        /* Remove the item from the list */
+        aim_ssi_itemlist_del(&sess->ssi.local, del);
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Deletes a deny buddy from the list.
+ *
  * @param sess The oscar session.
  * @param conn The bos connection for this session.
+ * @param name The name of the item, or NULL.
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_addmastergroup(aim_session_t *sess, aim_conn_t *conn)
+{
+        struct aim_ssi_item *newitem;
+        if (!sess || !conn)
+                return -EINVAL;
+        /* Add the item to the local list, and keep a pointer to it */
+        if (!(newitem = aim_ssi_itemlist_add(&sess->ssi.items, NULL, NULL, AIM_SSI_TYPE_GROUP)))
+                return -ENOMEM;
+        /* If there are any existing groups (technically there shouldn't be, but */
+        /* just in case) then add their group ID#'s to the additional data */
+        aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, newitem);
+        /* Send the add item SNAC */
+        aim_ssi_addmoddel(sess, conn, &newitem, 1, AIM_CB_SSI_ADD);
+        /* Begin sending SSI SNACs */
+        aim_ssi_dispatch(sess, conn);
+        return 0;
+}
+/**
+ * Add an array of groups to the list.
+ *
+ * @param sess The oscar session.
+ * @param conn The bos connection for this session.
+ * @param gn An array of null terminated strings of the names you want to add.
+ * @param num The number of groups names you are adding (size of the sn array).
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_addgroups(aim_session_t *sess, aim_conn_t *conn, const char **gn, unsigned int num)
+{
+        struct aim_ssi_item *parentgroup, **newitems;
+        fu16_t i;
+        if (!sess || !conn || !gn || !num)
+                return -EINVAL;
+        /* Look up the parent group */
+        if (!(parentgroup = aim_ssi_itemlist_find(sess->ssi.items, 0, 0))) {
+                aim_ssi_addmastergroup(sess, conn);
+                if (!(parentgroup = aim_ssi_itemlist_find(sess->ssi.items, 0, 0)))
+                        return -ENOMEM;
+        }
+        /* Allocate an array of pointers to each of the new items */
+        if (!(newitems = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *))))
+                return -ENOMEM;
+        /* Add items to the local list, and index them in the array */
+        for (i=0; i<num; i++)
+                if (!(newitems[i] = aim_ssi_itemlist_add(&sess->ssi.items, parentgroup, gn[i], AIM_SSI_TYPE_GROUP))) {
+                        free(newitems);
+                        return -ENOMEM;
+                }
+        /* Send the add item SNAC */
+        if ((i = aim_ssi_addmoddel(sess, conn, newitems, num, AIM_CB_SSI_ADD))) {
+                free(newitems);
+                return -i;
+        }
+        /* Free the array of pointers to each of the new items */
+        free(newitems);
+        /* Rebuild the additional data in the parent group */
+        if ((i = aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, parentgroup)))
+                return i;
+        /* Send the mod item SNAC */
+        if ((i = aim_ssi_addmoddel(sess, conn, &parentgroup, 1, AIM_CB_SSI_MOD)))
+                return i;
+        /* Begin sending SSI SNACs */
+        if (!(i = aim_ssi_dispatch(sess, conn)))
+                return i;
+        return 0;
+}
+/**
+ * Add an array of a certain type of item to the list.  This can be used for
+ * permit buddies, deny buddies, ICQ's ignore buddies, and probably other
+ * types, also.
+ *
+ * @param sess The oscar session.
+ * @param conn The bos connection for this session.
+ * @param sn An array of null terminated strings of the names you want to add.
+ * @param num The number of groups names you are adding (size of the sn array).
+ * @param type The type of item you want to add.  See the AIM_SSI_TYPE_BLEH
+ *        #defines in aim.h.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_addpord(aim_session_t *sess, aim_conn_t *conn, const char **sn, unsigned int num, fu16_t type)
+{
+        struct aim_ssi_item **newitems;
+        fu16_t i;
+        if (!sess || !conn || !sn || !num)
+                return -EINVAL;
+        /* Allocate an array of pointers to each of the new items */
+        if (!(newitems = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *))))
+                return -ENOMEM;
+        /* Add items to the local list, and index them in the array */
+        for (i=0; i<num; i++)
+                if (!(newitems[i] = aim_ssi_itemlist_add(&sess->ssi.items, NULL, sn[i], type))) {
+                        free(newitems);
+                        return -ENOMEM;
+                }
+        /* Send the add item SNAC */
+        if ((i = aim_ssi_addmoddel(sess, conn, newitems, num, AIM_CB_SSI_ADD))) {
+                free(newitems);
+                return -i;
+        }
+        /* Free the array of pointers to each of the new items */
+        free(newitems);
+        /* Begin sending SSI SNACs */
+        if (!(i = aim_ssi_dispatch(sess, conn)))
+                return i;
+faim_export int aim_ssi_deldeny(aim_session_t *sess, const char *name)
+{
+        struct aim_ssi_item *del;
+        if (!sess)
+                return -EINVAL;
+        /* Find the item */
+        if (!(del = aim_ssi_itemlist_finditem(sess->ssi.local, NULL, name, AIM_SSI_TYPE_DENY)))
+                return -EINVAL;
+        /* Remove the item from the list */
+        aim_ssi_itemlist_del(&sess->ssi.local, del);
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
         return 0;
 …
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
  * @param oldgn The group that the buddy is currently in.
  * @param newgn The group that the buddy should be moved in to.
 …
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_movebuddy(aim_session_t *sess, aim_conn_t *conn, const char *oldgn, const char *newgn, const char *sn)
+{
+        struct aim_ssi_item **groups, *buddy, *cur;
+        fu16_t i;
+        if (!sess || !conn || !oldgn || !newgn || !sn)
+                return -EINVAL;
+        /* Look up the buddy */
+        if (!(buddy = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, sn, AIM_SSI_TYPE_BUDDY)))
+                return -ENOMEM;
+        /* Allocate an array of pointers to the two groups */
+        if (!(groups = (struct aim_ssi_item **)malloc(2*sizeof(struct aim_ssi_item *))))
+                return -ENOMEM;
+        /* Look up the old parent group */
+        if (!(groups[0] = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, oldgn, AIM_SSI_TYPE_GROUP))) {
+                free(groups);
+                return -ENOMEM;
+        }
+        /* Look up the new parent group */
+        if (!(groups[1] = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, newgn, AIM_SSI_TYPE_GROUP))) {
+                aim_ssi_addgroups(sess, conn, (const char**)&newgn, 1);
+                if (!(groups[1] = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, newgn, AIM_SSI_TYPE_GROUP))) {
+                        free(groups);
+                        return -ENOMEM;
+                }
+        }
+        /* Send the delete item SNAC */
+        aim_ssi_addmoddel(sess, conn, &buddy, 1, AIM_CB_SSI_DEL);
+        /* Put the buddy in the new group */
+        buddy->gid = groups[1]->gid;
+        /* Assign a new buddy ID#, because the new group might already have a buddy with this ID# */
+        buddy->bid = 0;
+        do {
+                buddy->bid += 0x0001;
+                for (cur=sess->ssi.items, i=0; ((cur) && (!i)); cur=cur->next)
+                        if ((cur->bid == buddy->bid) && (cur->gid == buddy->gid) && (cur->type == AIM_SSI_TYPE_BUDDY) && (cur->name) && aim_sncmp(cur->name, buddy->name))
+                                i=1;
+        } while (i);
+        /* Rebuild the additional data in the two parent groups */
+        aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, groups[0]);
+        aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, groups[1]);
+        /* Send the add item SNAC */
+        aim_ssi_addmoddel(sess, conn, &buddy, 1, AIM_CB_SSI_ADD);
+        /* Send the mod item SNAC */
+        aim_ssi_addmoddel(sess, conn, groups, 2, AIM_CB_SSI_MOD);
+        /* Free the temporary array */
+        free(groups);
+        /* Begin sending SSI SNACs */
+        aim_ssi_dispatch(sess, conn);
+        return 0;
+}
+/**
+ * Rename a group.  I really like how this is done.  It turns me on.
+ *
+ * Did I say that out loud?...
+faim_export int aim_ssi_movebuddy(aim_session_t *sess, const char *oldgn, const char *newgn, const char *sn)
+{
+        aim_ssi_addbuddy(sess, sn, newgn, aim_ssi_getalias(sess->ssi.local, oldgn, sn), NULL, NULL, aim_ssi_waitingforauth(sess->ssi.local, oldgn, sn));
+        aim_ssi_delbuddy(sess, sn, oldgn);
+        return 0;
+}
+/**
+ * Change the alias stored on the server for a given buddy.
+ *
  * @param sess The oscar session.
+ * @param conn The bos connection for this session.
+ * @param gn The group that the buddy is currently in.
+ * @param sn The screen name of the buddy.
+ * @param alias The new alias for the buddy.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_aliasbuddy(aim_session_t *sess, const char *gn, const char *sn, const char *alias)
+{
+        struct aim_ssi_item *tmp;
+        aim_tlvlist_t *data = NULL;
+        if (!sess || !gn || !sn)
+                return -EINVAL;
+        if (!(tmp = aim_ssi_itemlist_finditem(sess->ssi.local, gn, sn, AIM_SSI_TYPE_BUDDY)))
+                return -EINVAL;
+        if (alias && !strlen(alias))
+                alias = NULL;
+        /* Need to add the x0131 TLV to the TLV chain */
+        if (alias)
+                aim_addtlvtochain_raw(&data, 0x0131, strlen(alias), alias);
+        aim_freetlvchain(&tmp->data);
+        tmp->data = data;
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Rename a group.
+ *
+ * @param sess The oscar session.
  * @param oldgn The old group name.
  * @param newgn The new group name.
  * @return Return 0 if no errors, otherwise return the error number.
  */
 faim_export int aim_ssi_rename_group(aim_session_t *sess, aim_conn_t *conn, const char *oldgn, const char *newgn)
+faim_export int aim_ssi_rename_group(aim_session_t *sess, const char *oldgn, const char *newgn)
+{
         struct aim_ssi_item *group;
+        if (!sess || !conn || !oldgn || !newgn)
+                return -EINVAL;
+        /* Look up the group */
+        if (!(group = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, oldgn, AIM_SSI_TYPE_GROUP)))
+                return -ENOMEM;
+        /* Free the old group name and copy the new one in its place. */
+        if (group->name)
+                free(group->name);
+        if (!(group->name = (char *)malloc((strlen(newgn)+1)*sizeof(char)))) {
+                group->name = NULL;
+                return -ENOMEM;
+        }
+        if (!sess || !oldgn || !newgn)
+                return -EINVAL;
+        if (!(group = aim_ssi_itemlist_finditem(sess->ssi.local, oldgn, NULL, AIM_SSI_TYPE_GROUP)))
+                return -EINVAL;
+        free(group->name);
+        group->name = (char *)malloc((strlen(newgn)+1)*sizeof(char));
         strcpy(group->name, newgn);
+        /* Send the mod item SNAC */
+        aim_ssi_addmoddel(sess, conn, &group, 1, AIM_CB_SSI_MOD);
+        /* Begin sending SSI SNACs */
+        aim_ssi_dispatch(sess, conn);
+        return 0;
+}
+/**
+ * Delete an array of screen names from the given group.
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Stores your permit/deny setting on the server, and starts using it.
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
- * @param gn The name of the group from which you want to delete these names.
- * @param sn An array of null terminated strings of the names you want to delete.
- * @param num The number of screen names you are deleting (size of the sn array).
- * @return Return 0 if no errors, otherwise return the error number.
- */
-faim_export int aim_ssi_delbuddies(aim_session_t *sess, aim_conn_t *conn, const char *gn, char **sn, unsigned int num)
+{
-        struct aim_ssi_item *cur, *parentgroup, **delitems;
-        int i;
-        if (!sess || !conn || !gn || !sn || !num)
-                return -EINVAL;
-        /* Look up the parent group */
-        if (!(parentgroup = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, gn, AIM_SSI_TYPE_GROUP)))
-                return -EINVAL;
-        /* Allocate an array of pointers to each of the items to be deleted */
-        delitems = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *));
-        memset(delitems, 0, num*sizeof(struct aim_ssi_item *));
-        /* Make the delitems array a pointer to the aim_ssi_item structs to be deleted */
-        for (i=0; i<num; i++) {
-                if (!(delitems[i] = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, sn[i], AIM_SSI_TYPE_BUDDY))) {
-                        free(delitems);
-                        return -EINVAL;
+                }
-                /* Remove the delitems from the item list */
-                if (sess->ssi.items == delitems[i]) {
-                        sess->ssi.items = sess->ssi.items->next;
-                } else {
-                        for (cur=sess->ssi.items; (cur->next && (cur->next!=delitems[i])); cur=cur->next);
-                        if (cur->next)
-                                cur->next = cur->next->next;
+                }
+        }
-        /* Send the del item SNAC */
-        aim_ssi_addmoddel(sess, conn, delitems, num, AIM_CB_SSI_DEL);
-        /* Free the items */
-        for (i=0; i<num; i++) {
-                if (delitems[i]->name)
-                        free(delitems[i]->name);
-                if (delitems[i]->data)
-                        aim_freetlvchain((aim_tlvlist_t **)&delitems[i]->data);
-                free(delitems[i]);
+        }
-        free(delitems);
-        /* Rebuild the additional data in the parent group */
-        aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, parentgroup);
-        /* Send the mod item SNAC */
-        aim_ssi_addmoddel(sess, conn, &parentgroup, 1, AIM_CB_SSI_MOD);
-        /* Delete the group, but only if it's empty */
-        if (!parentgroup->data)
-                aim_ssi_delgroups(sess, conn, &parentgroup->name, 1);
-        /* Begin sending SSI SNACs */
-        aim_ssi_dispatch(sess, conn);
-        return 0;
+}
-/**
- * Delete the master group from the item list.  There can be only one.
- * Er, so just find the one master group and delete it.
+ *
- * @param sess The oscar session.
- * @param conn The bos connection for this session.
- * @return Return 0 if no errors, otherwise return the error number.
- */
-faim_export int aim_ssi_delmastergroup(aim_session_t *sess, aim_conn_t *conn)
+{
-        struct aim_ssi_item *cur, *delitem;
-        if (!sess || !conn)
-                return -EINVAL;
-        /* Make delitem a pointer to the aim_ssi_item to be deleted */
-        if (!(delitem = aim_ssi_itemlist_find(sess->ssi.items, 0, 0)))
-                return -EINVAL;
-        /* Remove delitem from the item list */
-        if (sess->ssi.items == delitem) {
-                sess->ssi.items = sess->ssi.items->next;
-        } else {
-                for (cur=sess->ssi.items; (cur->next && (cur->next!=delitem)); cur=cur->next);
-                if (cur->next)
-                        cur->next = cur->next->next;
+        }
-        /* Send the del item SNAC */
-        aim_ssi_addmoddel(sess, conn, &delitem, 1, AIM_CB_SSI_DEL);
-        /* Free the item */
-        if (delitem->name)
-                free(delitem->name);
-        if (delitem->data)
-                aim_freetlvchain((aim_tlvlist_t **)&delitem->data);
-        free(delitem);
-        /* Begin sending SSI SNACs */
-        aim_ssi_dispatch(sess, conn);
-        return 0;
+}
-/**
- * Delete an array of groups.
+ *
- * @param sess The oscar session.
- * @param conn The bos connection for this session.
- * @param gn An array of null terminated strings of the groups you want to delete.
- * @param num The number of groups you are deleting (size of the gn array).
- * @return Return 0 if no errors, otherwise return the error number.
- */
-faim_export int aim_ssi_delgroups(aim_session_t *sess, aim_conn_t *conn, char **gn, unsigned int num) {
-        struct aim_ssi_item *cur, *parentgroup, **delitems;
-        int i;
-        if (!sess || !conn || !gn || !num)
-                return -EINVAL;
-        /* Look up the parent group */
-        if (!(parentgroup = aim_ssi_itemlist_find(sess->ssi.items, 0, 0)))
-                return -EINVAL;
-        /* Allocate an array of pointers to each of the items to be deleted */
-        delitems = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *));
-        memset(delitems, 0, num*sizeof(struct aim_ssi_item *));
-        /* Make the delitems array a pointer to the aim_ssi_item structs to be deleted */
-        for (i=0; i<num; i++) {
-                if (!(delitems[i] = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, gn[i], AIM_SSI_TYPE_GROUP))) {
-                        free(delitems);
-                        return -EINVAL;
+                }
-                /* Remove the delitems from the item list */
-                if (sess->ssi.items == delitems[i]) {
-                        sess->ssi.items = sess->ssi.items->next;
-                } else {
-                        for (cur=sess->ssi.items; (cur->next && (cur->next!=delitems[i])); cur=cur->next);
-                        if (cur->next)
-                                cur->next = cur->next->next;
+                }
+        }
-        /* Send the del item SNAC */
-        aim_ssi_addmoddel(sess, conn, delitems, num, AIM_CB_SSI_DEL);
-        /* Free the items */
-        for (i=0; i<num; i++) {
-                if (delitems[i]->name)
-                        free(delitems[i]->name);
-                if (delitems[i]->data)
-                        aim_freetlvchain((aim_tlvlist_t **)&delitems[i]->data);
-                free(delitems[i]);
+        }
-        free(delitems);
-        /* Rebuild the additional data in the parent group */
-        aim_ssi_itemlist_rebuildgroup(&sess->ssi.items, parentgroup);
-        /* Send the mod item SNAC */
-        aim_ssi_addmoddel(sess, conn, &parentgroup, 1, AIM_CB_SSI_MOD);
-        /* Delete the group, but only if it's empty */
-        if (!parentgroup->data)
-                aim_ssi_delmastergroup(sess, conn);
-        /* Begin sending SSI SNACs */
-        aim_ssi_dispatch(sess, conn);
-        return 0;
+}
-/**
- * Delete an array of a certain type of item from the list.  This can be
- * used for permit buddies, deny buddies, ICQ's ignore buddies, and
- * probably other types, also.
+ *
- * @param sess The oscar session.
- * @param conn The bos connection for this session.
- * @param sn An array of null terminated strings of the items you want to delete.
- * @param num The number of items you are deleting (size of the sn array).
- * @return Return 0 if no errors, otherwise return the error number.
- */
-faim_export int aim_ssi_delpord(aim_session_t *sess, aim_conn_t *conn, const char **sn, unsigned int num, fu16_t type) {
-        struct aim_ssi_item *cur, **delitems;
-        int i;
-        if (!sess || !conn || !sn || !num || (type!=AIM_SSI_TYPE_PERMIT && type!=AIM_SSI_TYPE_DENY))
-                return -EINVAL;
-        /* Allocate an array of pointers to each of the items to be deleted */
-        delitems = (struct aim_ssi_item **)malloc(num*sizeof(struct aim_ssi_item *));
-        memset(delitems, 0, num*sizeof(struct aim_ssi_item *));
-        /* Make the delitems array a pointer to the aim_ssi_item structs to be deleted */
-        for (i=0; i<num; i++) {
-                if (!(delitems[i] = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, sn[i], type))) {
-                        free(delitems);
-                        return -EINVAL;
+                }
-                /* Remove the delitems from the item list */
-                if (sess->ssi.items == delitems[i]) {
-                        sess->ssi.items = sess->ssi.items->next;
-                } else {
-                        for (cur=sess->ssi.items; (cur->next && (cur->next!=delitems[i])); cur=cur->next);
-                        if (cur->next)
-                                cur->next = cur->next->next;
+                }
+        }
-        /* Send the del item SNAC */
-        aim_ssi_addmoddel(sess, conn, delitems, num, AIM_CB_SSI_DEL);
-        /* Free the items */
-        for (i=0; i<num; i++) {
-                if (delitems[i]->name)
-                        free(delitems[i]->name);
-                if (delitems[i]->data)
-                        aim_freetlvchain((aim_tlvlist_t **)&delitems[i]->data);
-                free(delitems[i]);
+        }
-        free(delitems);
-        /* Begin sending SSI SNACs */
-        aim_ssi_dispatch(sess, conn);
-        return 0;
+}
-/**
- * Stores your permit/deny setting on the server, and starts using it.
+ *
- * @param sess The oscar session.
- * @param conn The bos connection for this session.
  * @param permdeny Your permit/deny setting.  Can be one of the following:
  *        1 - Allow all users
 …
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_setpermdeny(aim_session_t *sess, aim_conn_t *conn, fu8_t permdeny, fu32_t vismask) {
+        struct aim_ssi_item *cur;
+        aim_tlv_t *tlv;
+        if (!sess || !conn)
+                return -EINVAL;
+        /* Look up the permit/deny settings item */
+        cur = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, NULL, AIM_SSI_TYPE_PDINFO);
+        if (cur) {
+                /* The permit/deny item exists */
+                if (cur->data && (tlv = aim_gettlv(cur->data, 0x00ca, 1))) {
+                        /* Just change the value of the x00ca TLV */
+                        if (tlv->length != 1) {
+                                tlv->length = 1;
+                                free(tlv->value);
+                                tlv->value = (fu8_t *)malloc(sizeof(fu8_t));
+                        }
+                        tlv->value[0] = permdeny;
+                } else {
+                        /* Need to add the x00ca TLV to the TLV chain */
+                        aim_addtlvtochain8((aim_tlvlist_t**)&cur->data, 0x00ca, permdeny);
+faim_export int aim_ssi_setpermdeny(aim_session_t *sess, fu8_t permdeny, fu32_t vismask)
+{
+        struct aim_ssi_item *tmp;
+        aim_tlvlist_t *data = NULL;
+        if (!sess)
+                return -EINVAL;
+        /* Need to add the x00ca TLV to the TLV chain */
+        aim_addtlvtochain8(&data, 0x00ca, permdeny);
+        /* Need to add the x00cb TLV to the TLV chain */
+        aim_addtlvtochain32(&data, 0x00cb, vismask);
+        if ((tmp = aim_ssi_itemlist_finditem(sess->ssi.local, NULL, NULL, AIM_SSI_TYPE_PDINFO))) {
+                aim_freetlvchain(&tmp->data);
+                tmp->data = data;
+        } else {
+                tmp = aim_ssi_itemlist_add(&sess->ssi.local, NULL, 0x0000, 0xFFFF, AIM_SSI_TYPE_PDINFO, data);
+                aim_freetlvchain(&data);
+        }
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/**
+ * Set buddy icon information
+ *
+ * @param sess The oscar session.
+ * @param iconcsum The MD5 checksum of the icon you are using.
+ * @param iconcsumlen Length of the MD5 checksum given above.  Should be 0x10 bytes.
+ * @return Return 0 if no errors, otherwise return the error number.
+ */
+faim_export int aim_ssi_seticon(aim_session_t *sess, fu8_t *iconsum, fu16_t iconsumlen)
+{
+        struct aim_ssi_item *tmp;
+        aim_tlvlist_t *data = NULL;
+        fu8_t *csumdata;
+        if (!sess || !iconsum || !iconsumlen)
+                return -EINVAL;
+        if (!(csumdata = (fu8_t *)malloc((iconsumlen+2)*sizeof(fu8_t))))
+                return -ENOMEM;
+        csumdata[0] = 0x00;
+        csumdata[1] = 0x10;
+        memcpy(&csumdata[2], iconsum, iconsumlen);
+        /* Need to add the x00d5 TLV to the TLV chain */
+        aim_addtlvtochain_raw(&data, 0x00d5, (iconsumlen+2) * sizeof(fu8_t), csumdata);
+        /* This TLV is added to cache the icon. */
+        aim_addtlvtochain_noval(&data, 0x0131);
+        if ((tmp = aim_ssi_itemlist_finditem(sess->ssi.local, NULL, "1", AIM_SSI_TYPE_ICONINFO))) {
+                /* If the new tlvchain and oldtlvchain are the same, then do nothing */
+                if (!aim_tlvlist_cmp(tmp->data, data)) {
+                        /* The new tlvlist is the identical to the old one */
+                        aim_freetlvchain(&data);
+                        free(csumdata);
+                        return 0;
+                }
+                if (cur->data && (tlv = aim_gettlv(cur->data, 0x00cb, 1))) {
+                        /* Just change the value of the x00cb TLV */
+                        if (tlv->length != 4) {
+                                tlv->length = 4;
+                                free(tlv->value);
+                                tlv->value = (fu8_t *)malloc(4*sizeof(fu8_t));
+                        }
+                        aimutil_put32(tlv->value, vismask);
+                } else {
+                        /* Need to add the x00cb TLV to the TLV chain */
+                        aim_addtlvtochain32((aim_tlvlist_t**)&cur->data, 0x00cb, vismask);
+                }
+                /* Send the mod item SNAC */
+                aim_ssi_addmoddel(sess, conn, &cur, 1, AIM_CB_SSI_MOD);
+                aim_freetlvchain(&tmp->data);
+                tmp->data = data;
         } else {
+                /* Need to add the permit/deny item */
+                if (!(cur = aim_ssi_itemlist_add(&sess->ssi.items, NULL, NULL, AIM_SSI_TYPE_PDINFO)))
+                        return -ENOMEM;
+                aim_addtlvtochain8((aim_tlvlist_t**)&cur->data, 0x00ca, permdeny);
+                aim_addtlvtochain32((aim_tlvlist_t**)&cur->data, 0x00cb, vismask);
+                aim_ssi_addmoddel(sess, conn, &cur, 1, AIM_CB_SSI_ADD);
+        }
+        /* Begin sending SSI SNACs */
+        aim_ssi_dispatch(sess, conn);
+                tmp = aim_ssi_itemlist_add(&sess->ssi.local, "1", 0x0000, 0x51F4, AIM_SSI_TYPE_ICONINFO, data);
+                aim_freetlvchain(&data);
+        }
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        free(csumdata);
         return 0;
+}
 …
+ *
  * @param sess The oscar session.
- * @param conn The bos connection for this session.
  * @param presence I think it's a bitmask, but I only know what one of the bits is:
  *        0x00000400 - Allow others to see your idle time
  * @return Return 0 if no errors, otherwise return the error number.
  */
+faim_export int aim_ssi_setpresence(aim_session_t *sess, aim_conn_t *conn, fu32_t presence) {
+        struct aim_ssi_item *cur;
+faim_export int aim_ssi_setpresence(aim_session_t *sess, fu32_t presence) {
+        struct aim_ssi_item *tmp;
+        aim_tlvlist_t *data = NULL;
+        if (!sess)
+                return -EINVAL;
+        /* Need to add the x00c9 TLV to the TLV chain */
+        aim_addtlvtochain32(&data, 0x00c9, presence);
+        if ((tmp = aim_ssi_itemlist_finditem(sess->ssi.local, NULL, NULL, AIM_SSI_TYPE_PRESENCEPREFS))) {
+                aim_freetlvchain(&tmp->data);
+                tmp->data = data;
+        } else {
+                tmp = aim_ssi_itemlist_add(&sess->ssi.local, NULL, 0x0000, 0xFFFF, AIM_SSI_TYPE_PRESENCEPREFS, data);
+                aim_freetlvchain(&data);
+        }
+        /* Sync our local list with the server list */
+        aim_ssi_sync(sess);
+        return 0;
+}
+/*
+ * Subtype 0x0002 - Request SSI Rights.
+ */
+faim_export int aim_ssi_reqrights(aim_session_t *sess)
+{
+        aim_conn_t *conn;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)))
+                return -EINVAL;
+        return aim_genericreq_n(sess, conn, AIM_CB_FAM_SSI, AIM_CB_SSI_REQRIGHTS);
+}
+/*
+ * Subtype 0x0003 - SSI Rights Information.
+ */
+static int parserights(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0, i;
+        aim_rxcallback_t userfunc;
+        aim_tlvlist_t *tlvlist;
         aim_tlv_t *tlv;
+        if (!sess || !conn)
+                return -EINVAL;
+        /* Look up the item */
+        cur = aim_ssi_itemlist_finditem(sess->ssi.items, NULL, NULL, AIM_SSI_TYPE_PRESENCEPREFS);
+        if (cur) {
+                /* The item exists */
+                if (cur->data && (tlv = aim_gettlv(cur->data, 0x00c9, 1))) {
+                        /* Just change the value of the x00c9 TLV */
+                        if (tlv->length != 4) {
+                                tlv->length = 4;
+                                free(tlv->value);
+                                tlv->value = (fu8_t *)malloc(4*sizeof(fu8_t));
+                        }
+                        aimutil_put32(tlv->value, presence);
+                } else {
+                        /* Need to add the x00c9 TLV to the TLV chain */
+                        aim_addtlvtochain32((aim_tlvlist_t**)&cur->data, 0x00c9, presence);
+                }
+                /* Send the mod item SNAC */
+                aim_ssi_addmoddel(sess, conn, &cur, 1, AIM_CB_SSI_MOD);
+        } else {
+                /* Need to add the item */
+                if (!(cur = aim_ssi_itemlist_add(&sess->ssi.items, NULL, NULL, AIM_SSI_TYPE_PRESENCEPREFS)))
+                        return -ENOMEM;
+                aim_addtlvtochain32((aim_tlvlist_t**)&cur->data, 0x00c9, presence);
+                aim_ssi_addmoddel(sess, conn, &cur, 1, AIM_CB_SSI_ADD);
+        }
+        /* Begin sending SSI SNACs */
+        aim_ssi_dispatch(sess, conn);
+        return 0;
+}
+/*
+ * Request SSI Rights.
+ */
+faim_export int aim_ssi_reqrights(aim_session_t *sess, aim_conn_t *conn)
+{
+        return aim_genericreq_n(sess, conn, AIM_CB_FAM_SSI, AIM_CB_SSI_REQRIGHTS);
+}
+/*
+ * SSI Rights Information.
+ */
+static int parserights(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        aim_bstream_t bstream;
+        fu16_t *maxitems;
+        /* This SNAC is made up of a bunch of TLVs */
+        tlvlist = aim_readtlvchain(bs);
+        /* TLV 0x0004 contains the maximum number of each item */
+        if (!(tlv = aim_gettlv(tlvlist, 0x0004, 1))) {
+                aim_freetlvchain(&tlvlist);
+                return 0;
+        }
+        aim_bstream_init(&bstream, tlv->value, tlv->length);
+        if (!(maxitems = (fu16_t *)malloc((tlv->length/2)*sizeof(fu16_t)))) {
+                aim_freetlvchain(&tlvlist);
+                return 0;
+        }
+        for (i=0; i<(tlv->length/2); i++)
+                maxitems[i] = aimbs_get16(&bstream);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx);
+                ret = userfunc(sess, rx, tlv->length/2, maxitems);
+        aim_freetlvchain(&tlvlist);
+        free(maxitems);
         return ret;
 …
 /*
+ * Request SSI Data.
+ * Subtype 0x0004 - Request SSI Data when you don't have a timestamp and
+ * revision number.
+ *
+ */
+faim_export int aim_ssi_reqdata(aim_session_t *sess)
+{
+        aim_conn_t *conn;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)))
+                return -EINVAL;
+        /* Free any current data, just in case */
+        aim_ssi_freelist(sess);
+        return aim_genericreq_n_snacid(sess, conn, AIM_CB_FAM_SSI, AIM_CB_SSI_REQDATA);
+}
+/*
+ * Subtype 0x0005 - Request SSI Data when you have a timestamp and revision
+ * number.
+ *
  * The data will only be sent if it is newer than the posted local
 …
+ *
  */
+faim_export int aim_ssi_reqdata(aim_session_t *sess, aim_conn_t *conn, time_t localstamp, fu16_t localrev)
+{
+faim_export int aim_ssi_reqifchanged(aim_session_t *sess, time_t timestamp, fu16_t numitems)
+{
+        aim_conn_t *conn;
         aim_frame_t *fr;
         aim_snacid_t snacid;
         if (!sess || !conn)
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)))
                 return -EINVAL;
 …
                 return -ENOMEM;
         snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, AIM_CB_SSI_REQLIST, 0x0000, NULL, 0);
         aim_putsnac(&fr->data, AIM_CB_FAM_SSI, AIM_CB_SSI_REQLIST, 0x0000, snacid);
         aimbs_put32(&fr->data, localstamp);
         aimbs_put16(&fr->data, localrev);
+        snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, AIM_CB_SSI_REQIFCHANGED, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, AIM_CB_FAM_SSI, AIM_CB_SSI_REQIFCHANGED, 0x0000, snacid);
+        aimbs_put32(&fr->data, timestamp);
+        aimbs_put16(&fr->data, numitems);
         aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * SSI Data.
+        /* Free any current data, just in case */
+        aim_ssi_freelist(sess);
+        return 0;
+}
+/*
+ * Subtype 0x0006 - SSI Data.
  */
 static int parsedata(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
 …
         int ret = 0;
         aim_rxcallback_t userfunc;
-        struct aim_ssi_item *cur = NULL;
         fu8_t fmtver; /* guess */
+        fu16_t revision;
+        fu32_t timestamp;
+        /* When you set the version for the SSI family to 2-4, the beginning of this changes.
+         * Instead of the version and then the revision, there is "0x0006" and then a type
+         * 0x0001 TLV containing the 2 byte SSI family version that you sent earlier.  Also,
+         * the SNAC flags go from 0x0000 to 0x8000.  I guess the 0x0006 is the length of the
+         * TLV(s) that follow.  The rights SNAC does the same thing, with the differing flag
+         * and everything.
+         */
+        fu16_t namelen, gid, bid, type;
+        char *name;
+        aim_tlvlist_t *data;
         fmtver = aimbs_get8(bs); /* Version of ssi data.  Should be 0x00 */
+        revision = aimbs_get16(bs); /* # of times ssi data has been modified */
+        if (revision != 0)
+                sess->ssi.revision = revision;
+        for (cur = sess->ssi.items; cur && cur->next; cur=cur->next) ;
+        while (aim_bstream_empty(bs) > 4) { /* last four bytes are stamp */
+                fu16_t namelen, tbslen;
+                if (!sess->ssi.items) {
+                        if (!(sess->ssi.items = malloc(sizeof(struct aim_ssi_item))))
+                                return -ENOMEM;
+                        cur = sess->ssi.items;
+                } else {
+                        if (!(cur->next = malloc(sizeof(struct aim_ssi_item))))
+                                return -ENOMEM;
+                        cur = cur->next;
+                }
+                memset(cur, 0, sizeof(struct aim_ssi_item));
+        sess->ssi.numitems += aimbs_get16(bs); /* # of items in this SSI SNAC */
+        /* Read in the list */
+        while (aim_bstream_empty(bs) > 4) { /* last four bytes are timestamp */
                 if ((namelen = aimbs_get16(bs)))
+                        cur->name = aimbs_getstr(bs, namelen);
+                cur->gid = aimbs_get16(bs);
+                cur->bid = aimbs_get16(bs);
+                cur->type = aimbs_get16(bs);
+                if ((tbslen = aimbs_get16(bs))) {
+                        aim_bstream_t tbs;
+                        aim_bstream_init(&tbs, bs->data + bs->offset /* XXX */, tbslen);
+                        cur->data = (void *)aim_readtlvchain(&tbs);
+                        aim_bstream_advance(bs, tbslen);
+                }
+        }
+        timestamp = aimbs_get32(bs);
+        if (timestamp != 0)
+                sess->ssi.timestamp = timestamp;
+        sess->ssi.received_data = 1;
+        if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx, fmtver, sess->ssi.revision, sess->ssi.timestamp, sess->ssi.items);
+                        name = aimbs_getstr(bs, namelen);
+                else
+                        name = NULL;
+                gid = aimbs_get16(bs);
+                bid = aimbs_get16(bs);
+                type = aimbs_get16(bs);
+                data = aim_readtlvchain_len(bs, aimbs_get16(bs));
+                aim_ssi_itemlist_add(&sess->ssi.official, name, gid, bid, type, data);
+                free(name);
+                aim_freetlvchain(&data);
+        }
+        /* Read in the timestamp */
+        sess->ssi.timestamp = aimbs_get32(bs);
+        if (!(snac->flags & 0x0001)) {
+                /* Make a copy of the list */
+                struct aim_ssi_item *cur;
+                for (cur=sess->ssi.official; cur; cur=cur->next)
+                        aim_ssi_itemlist_add(&sess->ssi.local, cur->name, cur->gid, cur->bid, cur->type, cur->data);
+                sess->ssi.received_data = 1;
+                if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                        ret = userfunc(sess, rx, fmtver, sess->ssi.numitems, sess->ssi.official, sess->ssi.timestamp);
+        }
         return ret;
 …
 /*
  * SSI Data Enable Presence.
+ * Subtype 0x0007 - SSI Activate Data.
+ *
  * Should be sent after receiving 13/6 or 13/f to tell the server you
 …
+ *
  */
+faim_export int aim_ssi_enable(aim_session_t *sess, aim_conn_t *conn)
+{
+faim_export int aim_ssi_enable(aim_session_t *sess)
+{
+        aim_conn_t *conn;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)))
+                return -EINVAL;
         return aim_genericreq_n(sess, conn, AIM_CB_FAM_SSI, 0x0007);
+}
 /*
  * SSI Add/Mod/Del Item(s).
+ * Subtype 0x0008/0x0009/0x000a - SSI Add/Mod/Del Item(s).
+ *
  * Sends the SNAC to add, modify, or delete an item from the server-stored
 …
+ *
  */
+faim_export int aim_ssi_addmoddel(aim_session_t *sess, aim_conn_t *conn, struct aim_ssi_item **items, unsigned int num, fu16_t subtype)
+{
+faim_export int aim_ssi_addmoddel(aim_session_t *sess)
+{
+        aim_conn_t *conn;
         aim_frame_t *fr;
         aim_snacid_t snacid;
+        int i, snaclen;
+        if (!sess || !conn || !items || !num)
+                return -EINVAL;
+        int snaclen;
+        struct aim_ssi_tmp *cur;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)) || !sess->ssi.pending || !sess->ssi.pending->item)
+                return -EINVAL;
+        /* Calculate total SNAC size */
         snaclen = 10; /* For family, subtype, flags, and SNAC ID */
         for (i=0; i<num; i++) {
+        for (cur=sess->ssi.pending; cur; cur=cur->next) {
                 snaclen += 10; /* For length, GID, BID, type, and length */
                 if (items[i]->name)
                         snaclen += strlen(items[i]->name);
                 if (items[i]->data)
                         snaclen += aim_sizetlvchain((aim_tlvlist_t **)&items[i]->data);
+                if (cur->item->name)
+                        snaclen += strlen(cur->item->name);
+                if (cur->item->data)
+                        snaclen += aim_sizetlvchain(&cur->item->data);
+        }
 …
                 return -ENOMEM;
+        snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, subtype, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, AIM_CB_FAM_SSI, subtype, 0x0000, snacid);
+        for (i=0; i<num; i++) {
+                aimbs_put16(&fr->data, items[i]->name ? strlen(items[i]->name) : 0);
+                if (items[i]->name)
+                        aimbs_putraw(&fr->data, items[i]->name, strlen(items[i]->name));
+                aimbs_put16(&fr->data, items[i]->gid);
+                aimbs_put16(&fr->data, items[i]->bid);
+                aimbs_put16(&fr->data, items[i]->type);
+                aimbs_put16(&fr->data, items[i]->data ? aim_sizetlvchain((aim_tlvlist_t **)&items[i]->data) : 0);
+                if (items[i]->data)
+                        aim_writetlvchain(&fr->data, (aim_tlvlist_t **)&items[i]->data);
+        }
+        aim_ssi_enqueue(sess, conn, fr);
+        return 0;
+}
+/*
+ * SSI Add/Mod/Del Ack.
+ *
+ * Response to add, modify, or delete SNAC (sent with aim_ssi_addmoddel).
+ *
+ */
+static int parseack(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+        snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, sess->ssi.pending->action, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, AIM_CB_FAM_SSI, sess->ssi.pending->action, 0x0000, snacid);
+        for (cur=sess->ssi.pending; cur; cur=cur->next) {
+                aimbs_put16(&fr->data, cur->item->name ? strlen(cur->item->name) : 0);
+                if (cur->item->name)
+                        aimbs_putraw(&fr->data, cur->item->name, strlen(cur->item->name));
+                aimbs_put16(&fr->data, cur->item->gid);
+                aimbs_put16(&fr->data, cur->item->bid);
+                aimbs_put16(&fr->data, cur->item->type);
+                aimbs_put16(&fr->data, cur->item->data ? aim_sizetlvchain(&cur->item->data) : 0);
+                if (cur->item->data)
+                        aim_writetlvchain(&fr->data, &cur->item->data);
+        }
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * Subtype 0x0008 - Incoming SSI add.
+ *
+ * XXX - It would probably be good for the client to actually do something when it gets this.
+ */
+static int parseadd(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
         int ret = 0;
         aim_rxcallback_t userfunc;
+        sess->ssi.waiting_for_ack = 0;
+        aim_ssi_dispatch(sess, rx->conn);
+        char *name;
+        fu16_t len, gid, bid, type;
+        aim_tlvlist_t *data;
+        while (aim_bstream_empty(bs)) {
+                if ((len = aimbs_get16(bs)))
+                        name = aimbs_getstr(bs, len);
+                else
+                        name = NULL;
+                gid = aimbs_get16(bs);
+                bid = aimbs_get16(bs);
+                type = aimbs_get16(bs);
+                if ((len = aimbs_get16(bs)))
+                        data = aim_readtlvchain_len(bs, len);
+                else
+                        data = NULL;
+                aim_ssi_itemlist_add(&sess->ssi.local, name, gid, bid, type, data);
+                aim_ssi_itemlist_add(&sess->ssi.official, name, gid, bid, type, data);
+                free(name);
+                aim_freetlvchain(&data);
+                if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                        ret = userfunc(sess, rx);
+                free(name);
+        }
+        return ret;
+}
+/*
+ * Subtype 0x0009 - Incoming SSI mod.
+ *
+ * XXX - It would probably be good for the client to actually do something when it gets this.
+ */
+static int parsemod(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        char *name;
+        fu16_t len, gid, bid, type;
+        aim_tlvlist_t *data;
+        struct aim_ssi_item *item;
+        while (aim_bstream_empty(bs)) {
+                if ((len = aimbs_get16(bs)))
+                        name = aimbs_getstr(bs, len);
+                else
+                        name = NULL;
+                gid = aimbs_get16(bs);
+                bid = aimbs_get16(bs);
+                type = aimbs_get16(bs);
+                if ((len = aimbs_get16(bs)))
+                        data = aim_readtlvchain_len(bs, len);
+                else
+                        data = NULL;
+                /* Replace the 2 local items with the given one */
+                if ((item = aim_ssi_itemlist_find(sess->ssi.local, gid, bid))) {
+                        item->type = type;
+                        free(item->name);
+                        if (name) {
+                                item->name = (char *)malloc((strlen(name)+1)*sizeof(char));
+                                strcpy(item->name, name);
+                        } else
+                                item->name = NULL;
+                        aim_freetlvchain(&item->data);
+                        item->data = aim_tlvlist_copy(data);
+                }
+                if ((item = aim_ssi_itemlist_find(sess->ssi.official, gid, bid))) {
+                        item->type = type;
+                        free(item->name);
+                        if (name) {
+                                item->name = (char *)malloc((strlen(name)+1)*sizeof(char));
+                                strcpy(item->name, name);
+                        } else
+                                item->name = NULL;
+                        aim_freetlvchain(&item->data);
+                        item->data = aim_tlvlist_copy(data);
+                }
+                if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                        ret = userfunc(sess, rx);
+                free(name);
+                aim_freetlvchain(&data);
+        }
+        return ret;
+}
+/*
+ * Subtype 0x000a - Incoming SSI del.
+ *
+ * XXX - It would probably be good for the client to actually do something when it gets this.
+ */
+static int parsedel(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        fu16_t gid, bid;
+        struct aim_ssi_item *del;
+        while (aim_bstream_empty(bs)) {
+                aim_bstream_advance(bs, aimbs_get16(bs));
+                gid = aimbs_get16(bs);
+                bid = aimbs_get16(bs);
+                aimbs_get16(bs);
+                aim_bstream_advance(bs, aimbs_get16(bs));
+                if ((del = aim_ssi_itemlist_find(sess->ssi.local, gid, bid)))
+                        aim_ssi_itemlist_del(&sess->ssi.local, del);
+                if ((del = aim_ssi_itemlist_find(sess->ssi.official, gid, bid)))
+                        aim_ssi_itemlist_del(&sess->ssi.official, del);
+                if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                        ret = userfunc(sess, rx);
+        }
+        return ret;
+}
+/*
+ * Subtype 0x000e - SSI Add/Mod/Del Ack.
+ *
+ * Response to add, modify, or delete SNAC (sent with aim_ssi_addmoddel).
+ *
+ */
+static int parseack(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        struct aim_ssi_tmp *cur, *del;
+        /* Read in the success/failure flags from the ack SNAC */
+        cur = sess->ssi.pending;
+        while (cur && (aim_bstream_empty(bs)>0)) {
+                cur->ack = aimbs_get16(bs);
+                cur = cur->next;
+        }
+        /*
+         * If outcome is 0, then add the item to the item list, or replace the other item,
+         * or remove the old item.  If outcome is non-zero, then remove the item from the
+         * local list, or unmodify it, or add it.
+         */
+        for (cur=sess->ssi.pending; (cur && (cur->ack != 0xffff)); cur=cur->next) {
+        if (cur->item) {
+                if (cur->ack) {
+                        /* Our action was unsuccessful, so change the local list back to how it was */
+                        if (cur->action == AIM_CB_SSI_ADD) {
+                                /* Remove the item from the local list */
+                                /* Make sure cur->item is still valid memory */
+                                if (aim_ssi_itemlist_valid(sess->ssi.local, cur->item)) {
+                                        if (cur->item->name) {
+                                                cur->name = (char *)malloc((strlen(cur->item->name)+1)*sizeof(char));
+                                                strcpy(cur->name, cur->item->name);
+                                        }
+                                        aim_ssi_itemlist_del(&sess->ssi.local, cur->item);
+                                }
+                                cur->item = NULL;
+                        } else if (cur->action == AIM_CB_SSI_MOD) {
+                                /* Replace the local item with the item from the official list */
+                                if (aim_ssi_itemlist_valid(sess->ssi.local, cur->item)) {
+                                        struct aim_ssi_item *cur1;
+                                        if ((cur1 = aim_ssi_itemlist_find(sess->ssi.official, cur->item->gid, cur->item->bid))) {
+                                                free(cur->item->name);
+                                                if (cur1->name) {
+                                                        cur->item->name = (char *)malloc((strlen(cur1->name)+1)*sizeof(char));
+                                                        strcpy(cur->item->name, cur1->name);
+                                                } else
+                                                        cur->item->name = NULL;
+                                                aim_freetlvchain(&cur->item->data);
+                                                cur->item->data = aim_tlvlist_copy(cur1->data);
+                                        }
+                                } else
+                                        cur->item = NULL;
+                        } else if (cur->action == AIM_CB_SSI_DEL) {
+                                /* Add the item back into the local list */
+                                if (aim_ssi_itemlist_valid(sess->ssi.official, cur->item)) {
+                                        aim_ssi_itemlist_add(&sess->ssi.local, cur->item->name, cur->item->gid, cur->item->bid, cur->item->type, cur->item->data);
+                                } else
+                                        cur->item = NULL;
+                        }
+                } else {
+                        /* Do the exact opposite */
+                        if (cur->action == AIM_CB_SSI_ADD) {
+                        /* Add the local item to the official list */
+                                if (aim_ssi_itemlist_valid(sess->ssi.local, cur->item)) {
+                                        aim_ssi_itemlist_add(&sess->ssi.official, cur->item->name, cur->item->gid, cur->item->bid, cur->item->type, cur->item->data);
+                                } else
+                                        cur->item = NULL;
+                        } else if (cur->action == AIM_CB_SSI_MOD) {
+                                /* Replace the official item with the item from the local list */
+                                if (aim_ssi_itemlist_valid(sess->ssi.local, cur->item)) {
+                                        struct aim_ssi_item *cur1;
+                                        if ((cur1 = aim_ssi_itemlist_find(sess->ssi.official, cur->item->gid, cur->item->bid))) {
+                                                free(cur1->name);
+                                                if (cur->item->name) {
+                                                        cur1->name = (char *)malloc((strlen(cur->item->name)+1)*sizeof(char));
+                                                        strcpy(cur1->name, cur->item->name);
+                                                } else
+                                                        cur1->name = NULL;
+                                                aim_freetlvchain(&cur1->data);
+                                                cur1->data = aim_tlvlist_copy(cur->item->data);
+                                        }
+                                } else
+                                        cur->item = NULL;
+                        } else if (cur->action == AIM_CB_SSI_DEL) {
+                                /* Remove the item from the official list */
+                                if (aim_ssi_itemlist_valid(sess->ssi.official, cur->item))
+                                        aim_ssi_itemlist_del(&sess->ssi.official, cur->item);
+                                cur->item = NULL;
+                        }
+                }
+        } /* End if (cur->item) */
+        } /* End for loop */
+        if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx, sess->ssi.pending);
+        /* Free all aim_ssi_tmp's with an outcome */
+        cur = sess->ssi.pending;
+        while (cur && (cur->ack != 0xffff)) {
+                del = cur;
+                cur = cur->next;
+                free(del->name);
+                free(del);
+        }
+        sess->ssi.pending = cur;
+        /* If we're not waiting for any more acks, then send more SNACs */
+        if (!sess->ssi.pending) {
+                sess->ssi.pending = NULL;
+                sess->ssi.waiting_for_ack = 0;
+                aim_ssi_sync(sess);
+        }
+        return ret;
+}
+/*
+ * Subtype 0x000f - SSI Data Unchanged.
+ *
+ * Response to aim_ssi_reqifchanged() if the server-side data is not newer than
+ * posted local stamp/revision.
+ *
+ */
+static int parsedataunchanged(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        sess->ssi.received_data = 1;
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
 …
 /*
  * SSI Begin Data Modification.
+ * Subtype 0x0011 - SSI Begin Data Modification.
+ *
  * Tells the server you're going to start modifying data.
+ *
  */
+faim_export int aim_ssi_modbegin(aim_session_t *sess, aim_conn_t *conn)
+{
+faim_export int aim_ssi_modbegin(aim_session_t *sess)
+{
+        aim_conn_t *conn;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)))
+                return -EINVAL;
         return aim_genericreq_n(sess, conn, AIM_CB_FAM_SSI, AIM_CB_SSI_EDITSTART);
+}
 /*
+ * SSI End Data Modification.
+ *
+ * Tells the server you're done modifying data.
+ *
+ */
+faim_export int aim_ssi_modend(aim_session_t *sess, aim_conn_t *conn)
+{
+ * Subtype 0x0012 - SSI End Data Modification.
+ *
+ * Tells the server you're finished modifying data.
+ *
+ */
+faim_export int aim_ssi_modend(aim_session_t *sess)
+{
+        aim_conn_t *conn;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)))
+                return -EINVAL;
         return aim_genericreq_n(sess, conn, AIM_CB_FAM_SSI, AIM_CB_SSI_EDITSTOP);
+}
 /*
+ * SSI Data Unchanged.
+ *
+ * Response to aim_ssi_reqdata() if the server-side data is not newer than
+ * posted local stamp/revision.
+ *
+ */
+static int parsedataunchanged(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+ * Subtype 0x0014 - Grant authorization
+ *
+ * Authorizes a contact so they can add you to their contact list.
+ *
+ */
+faim_export int aim_ssi_sendauth(aim_session_t *sess, char *sn, char *msg)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)) || !sn)
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10+1+strlen(sn)+2+(msg ? strlen(msg)+1 : 0)+2)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, AIM_CB_SSI_SENDAUTH, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, AIM_CB_FAM_SSI, AIM_CB_SSI_SENDAUTH, 0x0000, snacid);
+        /* Screen name */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /* Message (null terminated) */
+        aimbs_put16(&fr->data, msg ? strlen(msg) : 0);
+        if (msg) {
+                aimbs_putraw(&fr->data, msg, strlen(msg));
+                aimbs_put8(&fr->data, 0x00);
+        }
+        /* Unknown */
+        aimbs_put16(&fr->data, 0x0000);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * Subtype 0x0015 - Receive an authorization grant
+ */
+static int receiveauthgrant(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
         int ret = 0;
         aim_rxcallback_t userfunc;
+        sess->ssi.received_data = 1;
+        fu16_t tmp;
+        char *sn, *msg;
+        /* Read screen name */
+        if ((tmp = aimbs_get8(bs)))
+                sn = aimbs_getstr(bs, tmp);
+        else
+                sn = NULL;
+        /* Read message (null terminated) */
+        if ((tmp = aimbs_get16(bs)))
+                msg = aimbs_getstr(bs, tmp);
+        else
+                msg = NULL;
+        /* Unknown */
+        tmp = aimbs_get16(bs);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx);
+                ret = userfunc(sess, rx, sn, msg);
+        free(sn);
+        free(msg);
+        return ret;
+}
+/*
+ * Subtype 0x0018 - Send authorization request
+ *
+ * Sends a request for authorization to the given contact.  The request will either be
+ * granted, denied, or dropped.
+ *
+ */
+faim_export int aim_ssi_sendauthrequest(aim_session_t *sess, char *sn, char *msg)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)) || !sn)
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10+1+strlen(sn)+2+(msg ? strlen(msg)+1 : 0)+2)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, AIM_CB_SSI_SENDAUTHREQ, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, AIM_CB_FAM_SSI, AIM_CB_SSI_SENDAUTHREQ, 0x0000, snacid);
+        /* Screen name */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /* Message (null terminated) */
+        aimbs_put16(&fr->data, msg ? strlen(msg) : 0);
+        if (msg) {
+                aimbs_putraw(&fr->data, msg, strlen(msg));
+                aimbs_put8(&fr->data, 0x00);
+        }
+        /* Unknown */
+        aimbs_put16(&fr->data, 0x0000);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * Subtype 0x0019 - Receive an authorization request
+ */
+static int receiveauthrequest(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        fu16_t tmp;
+        char *sn, *msg;
+        /* Read screen name */
+        if ((tmp = aimbs_get8(bs)))
+                sn = aimbs_getstr(bs, tmp);
+        else
+                sn = NULL;
+        /* Read message (null terminated) */
+        if ((tmp = aimbs_get16(bs)))
+                msg = aimbs_getstr(bs, tmp);
+        else
+                msg = NULL;
+        /* Unknown */
+        tmp = aimbs_get16(bs);
+        if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx, sn, msg);
+        free(sn);
+        free(msg);
+        return ret;
+}
+/*
+ * Subtype 0x001a - Send authorization reply
+ *
+ * Sends a reply to a request for authorization.  The reply can either
+ * grant authorization or deny authorization.
+ *
+ * if reply=0x00 then deny
+ * if reply=0x01 then grant
+ *
+ */
+faim_export int aim_ssi_sendauthreply(aim_session_t *sess, char *sn, fu8_t reply, char *msg)
+{
+        aim_conn_t *conn;
+        aim_frame_t *fr;
+        aim_snacid_t snacid;
+        if (!sess || !(conn = aim_conn_findbygroup(sess, AIM_CB_FAM_SSI)) || !sn)
+                return -EINVAL;
+        if (!(fr = aim_tx_new(sess, conn, AIM_FRAMETYPE_FLAP, 0x02, 10 + 1+strlen(sn) + 1 + 2+(msg ? strlen(msg)+1 : 0) + 2)))
+                return -ENOMEM;
+        snacid = aim_cachesnac(sess, AIM_CB_FAM_SSI, AIM_CB_SSI_SENDAUTHREP, 0x0000, NULL, 0);
+        aim_putsnac(&fr->data, AIM_CB_FAM_SSI, AIM_CB_SSI_SENDAUTHREP, 0x0000, snacid);
+        /* Screen name */
+        aimbs_put8(&fr->data, strlen(sn));
+        aimbs_putraw(&fr->data, sn, strlen(sn));
+        /* Grant or deny */
+        aimbs_put8(&fr->data, reply);
+        /* Message (null terminated) */
+        aimbs_put16(&fr->data, msg ? (strlen(msg)+1) : 0);
+        if (msg) {
+                aimbs_putraw(&fr->data, msg, strlen(msg));
+                aimbs_put8(&fr->data, 0x00);
+        }
+        /* Unknown */
+        aimbs_put16(&fr->data, 0x0000);
+        aim_tx_enqueue(sess, fr);
+        return 0;
+}
+/*
+ * Subtype 0x001b - Receive an authorization reply
+ * You get this bad boy when other people respond to the authorization
+ * request that you have previously sent them.
+ */
+static int receiveauthreply(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        fu16_t tmp;
+        fu8_t reply;
+        char *sn, *msg;
+        /* Read screen name */
+        if ((tmp = aimbs_get8(bs)))
+                sn = aimbs_getstr(bs, tmp);
+        else
+                sn = NULL;
+        /* Read reply */
+        reply = aimbs_get8(bs);
+        /* Read message (null terminated) */
+        if ((tmp = aimbs_get16(bs)))
+                msg = aimbs_getstr(bs, tmp);
+        else
+                msg = NULL;
+        /* Unknown */
+        tmp = aimbs_get16(bs);
+        if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx, sn, reply, msg);
+        free(sn);
+        free(msg);
+        return ret;
+}
+/*
+ * Subtype 0x001c - Receive a message telling you someone added you to their list.
+ */
+static int receiveadded(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
+        fu16_t tmp;
+        char *sn;
+        /* Read screen name */
+        if ((tmp = aimbs_get8(bs)))
+                sn = aimbs_getstr(bs, tmp);
+        else
+                sn = NULL;
+        if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
+                ret = userfunc(sess, rx, sn);
+        free(sn);
         return ret;
 …
         else if (snac->subtype == AIM_CB_SSI_LIST)
                 return parsedata(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_ADD)
+                return parseadd(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_MOD)
+                return parsemod(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_DEL)
+                return parsedel(sess, mod, rx, snac, bs);
         else if (snac->subtype == AIM_CB_SSI_SRVACK)
                 return parseack(sess, mod, rx, snac, bs);
         else if (snac->subtype == AIM_CB_SSI_NOLIST)
                 return parsedataunchanged(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_RECVAUTH)
+                return receiveauthgrant(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_RECVAUTHREQ)
+                return receiveauthrequest(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_RECVAUTHREP)
+                return receiveauthreply(sess, mod, rx, snac, bs);
+        else if (snac->subtype == AIM_CB_SSI_ADDED)
+                return receiveadded(sess, mod, rx, snac, bs);
         return 0;
 …
         mod->family = AIM_CB_FAM_SSI;
         mod->version = 0x0001;
+        mod->version = 0x0004;
         mod->toolid = 0x0110;
         mod->toolversion = 0x047b;
+        mod->toolversion = 0x0629;
         mod->flags = 0;
         strncpy(mod->name, "ssi", sizeof(mod->name));

libfaim/stats.c

-                      r862371b
+                      re374dee
 static int reportinterval(aim_session_t *sess, aim_module_t *mod, aim_frame_t *rx, aim_modsnac_t *snac, aim_bstream_t *bs)
+{
+        int ret = 0;
+        aim_rxcallback_t userfunc;
         fu16_t interval;
-        aim_rxcallback_t userfunc;
         interval = aimbs_get16(bs);
         if ((userfunc = aim_callhandler(sess, rx->conn, snac->family, snac->subtype)))
                 return userfunc(sess, rx, interval);
+                ret = userfunc(sess, rx, interval);
         return 0;
+        return ret;
+}

libfaim/tlv.c

-                      r862371b
+                      re374dee
  *        There are a number of places where you want to read in a tlvchain,
  *        but the chain is not at the end of the SNAC, and the chain is
  *        preceeded by the number of TLVs.  So you can limit that.
+ *        preceeded by the number of TLVs.  So you can limit that with this.
+ *
  * Reads and parses a series of TLV patterns from a data buffer; the
 …
+{
         aim_tlvlist_t *list = NULL, *cur;
         while ((aim_bstream_empty(bs) > 0) && (num != 0)) {
                 fu16_t type, length;
 …
                 cur->tlv->type = type;
                 if ((cur->tlv->length = length)) {
                        cur->tlv->value = aimbs_getraw(bs, length);
+                       cur->tlv->value = aimbs_getraw(bs, length);
                        if (!cur->tlv->value) {
                                freetlv(&cur->tlv);
 …
 /**
+ * aim_readtlvchain_len - Read a TLV chain from a buffer.
+ * @param bs Input bstream
+ * @param len The max length in bytes that will be read.
+ *        There are a number of places where you want to read in a tlvchain,
+ *        but the chain is not at the end of the SNAC, and the chain is
+ *        preceeded by the length of the TLVs.  So you can limit that with this.
+ *
+ * Reads and parses a series of TLV patterns from a data buffer; the
+ * returned structure is manipulatable with the rest of the TLV
+ * routines.  When done with a TLV chain, aim_freetlvchain() should
+ * be called to free the dynamic substructures.
+ *
+ * XXX There should be a flag setable here to have the tlvlist contain
+ * bstream references, so that at least the ->value portion of each
+ * element doesn't need to be malloc/memcpy'd.  This could prove to be
+ * just as effecient as the in-place TLV parsing used in a couple places
+ * in libfaim.
+ *
+ */
+faim_internal aim_tlvlist_t *aim_readtlvchain_len(aim_bstream_t *bs, fu16_t len)
+{
+        aim_tlvlist_t *list = NULL, *cur;
+        while ((aim_bstream_empty(bs) > 0) && (len > 0)) {
+                fu16_t type, length;
+                type = aimbs_get16(bs);
+                length = aimbs_get16(bs);
+                if (length > aim_bstream_empty(bs)) {
+                        aim_freetlvchain(&list);
+                        return NULL;
+                }
+                cur = (aim_tlvlist_t *)malloc(sizeof(aim_tlvlist_t));
+                if (!cur) {
+                        aim_freetlvchain(&list);
+                        return NULL;
+                }
+                memset(cur, 0, sizeof(aim_tlvlist_t));
+                cur->tlv = createtlv();
+                if (!cur->tlv) {
+                        free(cur);
+                        aim_freetlvchain(&list);
+                        return NULL;
+                }
+                cur->tlv->type = type;
+                if ((cur->tlv->length = length)) {
+                       cur->tlv->value = aimbs_getraw(bs, length);
+                       if (!cur->tlv->value) {
+                               freetlv(&cur->tlv);
+                               free(cur);
+                               aim_freetlvchain(&list);
+                               return NULL;
+                       }
+                }
+                len -= aim_sizetlvchain(&cur);
+                cur->next = list;
+                list = cur;
+        }
+        return list;
+}
+/**
+ * aim_tlvlist_copy - Duplicate a TLV chain.
+ * @param orig
+ *
+ * This is pretty pelf exslanatory.
+ *
+ */
+faim_internal aim_tlvlist_t *aim_tlvlist_copy(aim_tlvlist_t *orig)
+{
+        aim_tlvlist_t *new = NULL;
+        while (orig) {
+                aim_addtlvtochain_raw(&new, orig->tlv->type, orig->tlv->length, orig->tlv->value);
+                orig = orig->next;
+        }
+        return new;
+}
+/*
+ * Compare two TLV lists for equality.  This probably is not the most
+ * efficient way to do this.
+ *
+ * @param one One of the TLV chains to compare.
+ * @param two The other TLV chain to compare.
+ * @preturn Retrun 0 if the lists are the same, return 1 if they are different.
+ */
+faim_internal int aim_tlvlist_cmp(aim_tlvlist_t *one, aim_tlvlist_t *two)
+{
+        aim_bstream_t bs1, bs2;
+        if (aim_sizetlvchain(&one) != aim_sizetlvchain(&two))
+                return 1;
+        aim_bstream_init(&bs1, ((fu8_t *)malloc(aim_sizetlvchain(&one)*sizeof(fu8_t))), aim_sizetlvchain(&one));
+        aim_bstream_init(&bs2, ((fu8_t *)malloc(aim_sizetlvchain(&two)*sizeof(fu8_t))), aim_sizetlvchain(&two));
+        aim_writetlvchain(&bs1, &one);
+        aim_writetlvchain(&bs2, &two);
+        if (memcmp(bs1.data, bs2.data, bs1.len)) {
+                free(bs1.data);
+                free(bs2.data);
+                return 1;
+        }
+        free(bs1.data);
+        free(bs2.data);
+        return 0;
+}
+/**
  * aim_freetlvchain - Free a TLV chain structure
  * @list: Chain to be freed
 …
         /* do an initial run to test total length */
+        for (cur = *list, goodbuflen = 0; cur; cur = cur->next) {
+                goodbuflen += 2 + 2; /* type + len */
+                goodbuflen += cur->tlv->length;
+        }
+        goodbuflen = aim_sizetlvchain(list);
         if (goodbuflen > aim_bstream_empty(bs))

libfaim/txqueue.c

-                      r862371b
+                      re374dee
 faim_internal aim_frame_t *aim_tx_new(aim_session_t *sess, aim_conn_t *conn, fu8_t framing, fu16_t chan, int datalen)
+{
+        aim_frame_t *fr;
+        if (!conn) {
+                faimdprintf(sess, 0, "aim_tx_new: ERROR: no connection specified\n");
+                return NULL;
+        }
+        /* For sanity... */
+        if ((conn->type == AIM_CONN_TYPE_RENDEZVOUS) ||
+                        (conn->type == AIM_CONN_TYPE_RENDEZVOUS_OUT)) {
+                if (framing != AIM_FRAMETYPE_OFT) {
+                        faimdprintf(sess, 0, "aim_tx_new: attempted to allocate inappropriate frame type for rendezvous connection\n");
+                        return NULL;
+                }
+        } else {
+                if (framing != AIM_FRAMETYPE_FLAP) {
+                        faimdprintf(sess, 0, "aim_tx_new: attempted to allocate inappropriate frame type for FLAP connection\n");
+                        return NULL;
+                }
+        }
+        if (!(fr = (aim_frame_t *)malloc(sizeof(aim_frame_t))))
+                return NULL;
+        memset(fr, 0, sizeof(aim_frame_t));
+        fr->conn = conn;
+        fr->hdrtype = framing;
+        if (fr->hdrtype == AIM_FRAMETYPE_FLAP) {
+                fr->hdr.flap.type = chan;
+        } else if (fr->hdrtype == AIM_FRAMETYPE_OFT) {
+                fr->hdr.rend.type = chan;
+        } else
+                faimdprintf(sess, 0, "tx_new: unknown framing\n");
+        if (datalen > 0) {
+                fu8_t *data;
+                if (!(data = (unsigned char *)malloc(datalen))) {
+                        aim_frame_destroy(fr);
+                        return NULL;
+                }
+                aim_bstream_init(&fr->data, data, datalen);
+        }
+        return fr;
+  aim_frame_t *fr;
+  if (!conn) {
+    faimdprintf(sess, 0, "aim_tx_new: ERROR: no connection specified\n");
+    return NULL;
+  }
+  /* For sanity... */
+  if ((conn->type == AIM_CONN_TYPE_RENDEZVOUS) || (conn->type == AIM_CONN_TYPE_LISTENER)) {
+    if (framing != AIM_FRAMETYPE_OFT) {
+      faimdprintf(sess, 0, "aim_tx_new: attempted to allocate inappropriate frame type for rendezvous connection\n");
+      return NULL;
+    }
+  } else {
+    if (framing != AIM_FRAMETYPE_FLAP) {
+      faimdprintf(sess, 0, "aim_tx_new: attempted to allocate inappropriate frame type for FLAP connection\n");
+      return NULL;
+    }
+  }
+  if (!(fr = (aim_frame_t *)malloc(sizeof(aim_frame_t)))) return NULL;
+  memset(fr, 0, sizeof(aim_frame_t));
+  fr->conn = conn;
+  fr->hdrtype = framing;
+  if (fr->hdrtype == AIM_FRAMETYPE_FLAP) {
+    fr->hdr.flap.type = chan;
+  } else if (fr->hdrtype == AIM_FRAMETYPE_OFT) {
+    fr->hdr.rend.type = chan;
+  } else {
+    faimdprintf(sess, 0, "tx_new: unknown framing\n");
+  }
+  if (datalen > 0) {
+    fu8_t *data;
+    if (!(data = (unsigned char *)malloc(datalen))) {
+      aim_frame_destroy(fr);
+      return NULL;
+    }
+    aim_bstream_init(&fr->data, data, datalen);
+  }
+  return fr;
+}
 …
 static int aim_tx_enqueue__queuebased(aim_session_t *sess, aim_frame_t *fr)
+{
         if (!fr->conn) {
                 faimdprintf(sess, 1, "aim_tx_enqueue: WARNING: enqueueing packet with no connecetion\n");
                 fr->conn = aim_getconn_type(sess, AIM_CONN_TYPE_BOS);
+        }
         if (fr->hdrtype == AIM_FRAMETYPE_FLAP) {
                 /* assign seqnum -- XXX should really not assign until hardxmit */
                 fr->hdr.flap.seqnum = aim_get_next_txseqnum(fr->conn);
+        }
         fr->handled = 0; /* not sent yet */
         /* see overhead note in aim_rxqueue counterpart */
         if (!sess->queue_outgoing)
                 sess->queue_outgoing = fr;
         else {
                 aim_frame_t *cur;
                 for (cur = sess->queue_outgoing; cur->next; cur = cur->next)
+                        ;
                 cur->next = fr;
+        }
         return 0;
+  if (!fr->conn) {
+    faimdprintf(sess, 1, "aim_tx_enqueue: WARNING: enqueueing packet with no connecetion\n");
+    fr->conn = aim_getconn_type(sess, AIM_CONN_TYPE_BOS);
+  }
+  if (fr->hdrtype == AIM_FRAMETYPE_FLAP) {
+    /* assign seqnum -- XXX should really not assign until hardxmit */
+    fr->hdr.flap.seqnum = aim_get_next_txseqnum(fr->conn);
+  }
+  fr->handled = 0; /* not sent yet */
+  /* see overhead note in aim_rxqueue counterpart */
+  if (!sess->queue_outgoing)
+    sess->queue_outgoing = fr;
+  else {
+    aim_frame_t *cur;
+    for (cur = sess->queue_outgoing; cur->next; cur = cur->next)
+      ;
+    cur->next = fr;
+  }
+  return 0;
+}
 …
+{
+        if (!fr->conn) {
+                faimdprintf(sess, 1, "aim_tx_enqueue: ERROR: packet has no connection\n");
+                aim_frame_destroy(fr);
+                return 0;
+        }
+        if (fr->hdrtype == AIM_FRAMETYPE_FLAP)
+                fr->hdr.flap.seqnum = aim_get_next_txseqnum(fr->conn);
+        fr->handled = 0; /* not sent yet */
+        aim_tx_sendframe(sess, fr);
+        aim_frame_destroy(fr);
+        return 0;
+  if (!fr->conn) {
+    faimdprintf(sess, 1, "aim_tx_enqueue: ERROR: packet has no connection\n");
+    aim_frame_destroy(fr);
+    return 0;
+  }
+  if (fr->hdrtype == AIM_FRAMETYPE_FLAP) fr->hdr.flap.seqnum = aim_get_next_txseqnum(fr->conn);
+  fr->handled = 0; /* not sent yet */
+  aim_tx_sendframe(sess, fr);
+  aim_frame_destroy(fr);
+  return 0;
+}
 faim_export int aim_tx_setenqueue(aim_session_t *sess, int what, int (*func)(aim_session_t *, aim_frame_t *))
+{
+        if (what == AIM_TX_QUEUED)
+                sess->tx_enqueue = &aim_tx_enqueue__queuebased;
+        else if (what == AIM_TX_IMMEDIATE)
+                sess->tx_enqueue = &aim_tx_enqueue__immediate;
+        else if (what == AIM_TX_USER) {
+                if (!func)
+                        return -EINVAL;
+                sess->tx_enqueue = func;
+        } else
+                return -EINVAL; /* unknown action */
+        return 0;
+  if (what == AIM_TX_QUEUED) {
+    sess->tx_enqueue = &aim_tx_enqueue__queuebased;
+  } else if (what == AIM_TX_IMMEDIATE) {
+    sess->tx_enqueue = &aim_tx_enqueue__immediate;
+  } else if (what == AIM_TX_USER) {
+    if (!func) return -EINVAL;
+    sess->tx_enqueue = func;
+  } else {
+    return -EINVAL; /* unknown action */
+  }
+  return 0;
+}
 faim_internal int aim_tx_enqueue(aim_session_t *sess, aim_frame_t *fr)
+{
         /*
          * If we want to send a connection thats inprogress, we have to force
          * them to use the queue based version. Otherwise, use whatever they
          * want.
          */
         if (fr && fr->conn &&
                         (fr->conn->status & AIM_CONN_STATUS_INPROGRESS)) {
                 return aim_tx_enqueue__queuebased(sess, fr);
+        }
         return (*sess->tx_enqueue)(sess, fr);
+  /*
+   * If we want to send a connection thats inprogress, we have to force
+   * them to use the queue based version. Otherwise, use whatever they
+   * want.
+   */
+  if (fr && fr->conn &&
+      (fr->conn->status & AIM_CONN_STATUS_INPROGRESS)) {
+    return aim_tx_enqueue__queuebased(sess, fr);
+  }
+  return (*sess->tx_enqueue)(sess, fr);
+}
 …
 faim_internal flap_seqnum_t aim_get_next_txseqnum(aim_conn_t *conn)
+{
+        flap_seqnum_t ret;
+        ret = ++conn->seqnum;
+        return ret;
+  flap_seqnum_t ret;
+  ret = ++conn->seqnum;
+  return ret;
+}
 static int aim_send(int fd, const void *buf, size_t count)
+{
+        int left, cur;
+        for (cur = 0, left = count; left; ) {
+                int ret;
+                ret = send(fd, ((unsigned char *)buf)+cur, left, 0);
+                if (ret == -1)
+                        return -1;
+                else if (ret == 0)
+                        return cur;
+                cur += ret;
+                left -= ret;
+        }
+        return cur;
+  int left, cur;
+  for (cur = 0, left = count; left; ) {
+    int ret;
+    ret = send(fd, ((unsigned char *)buf)+cur, left, 0);
+    if (ret == -1) {
+      return -1;
+    } else if (ret == 0) {
+      return cur;
+    }
+    cur += ret;
+    left -= ret;
+  }
+  return cur;
+}
 static int aim_bstream_send(aim_bstream_t *bs, aim_conn_t *conn, size_t count)
+{
+        int wrote = 0;
+        if (!bs || !conn || (count < 0))
+                return -EINVAL;
+        if (count > aim_bstream_empty(bs))
+                count = aim_bstream_empty(bs); /* truncate to remaining space */
+        if (count) {
+                if ((conn->type == AIM_CONN_TYPE_RENDEZVOUS) &&
+                    (conn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM)) {
+                        /* I strongly suspect that this is a horrible thing to do
+                         * and I feel really guilty doing it. */
+                        const char *sn = aim_directim_getsn(conn);
+                        aim_rxcallback_t userfunc;
+                        while (count - wrote > 1024) {
+                                wrote = wrote + aim_send(conn->fd, bs->data + bs->offset + wrote, 1024);
+                                if ((userfunc=aim_callhandler(conn->sessv, conn,
+                                                              AIM_CB_FAM_SPECIAL,
+                                                              AIM_CB_SPECIAL_IMAGETRANSFER)))
+                                  userfunc(conn->sessv, NULL, sn,
+                                           count-wrote>1024 ? ((double)wrote / count) : 1);
+                        }
+                }
+                if (count - wrote) {
+                        wrote = wrote + aim_send(conn->fd, bs->data + bs->offset + wrote, count - wrote);
+                }
+        }
+        if (((aim_session_t *)conn->sessv)->debug >= 2) {
+                int i;
+                aim_session_t *sess = (aim_session_t *)conn->sessv;
+                faimdprintf(sess, 2, "\nOutgoing data: (%d bytes)", wrote);
+                for (i = 0; i < wrote; i++) {
+                        if (!(i % 8))
+                                faimdprintf(sess, 2, "\n\t");
+                        faimdprintf(sess, 2, "0x%02x ", *(bs->data + bs->offset + i));
+                }
+                faimdprintf(sess, 2, "\n");
+        }
+        bs->offset += wrote;
+        return wrote;
+  int wrote = 0;
+  if (!bs || !conn || (count < 0))
+    return -EINVAL;
+  if (count > aim_bstream_empty(bs))
+    count = aim_bstream_empty(bs); /* truncate to remaining space */
+  if (count) {
+    if ((conn->type == AIM_CONN_TYPE_RENDEZVOUS) &&
+        (conn->subtype == AIM_CONN_SUBTYPE_OFT_DIRECTIM)) {
+      /* I strongly suspect that this is a horrible thing to do
+       * and I feel really guilty doing it. */
+      const char *sn = aim_odc_getsn(conn);
+      aim_rxcallback_t userfunc;
+      while (count - wrote > 1024) {
+        wrote = wrote + aim_send(conn->fd, bs->data + bs->offset + wrote, 1024);
+        if ((userfunc=aim_callhandler(conn->sessv, conn,
+                                      AIM_CB_FAM_SPECIAL,
+                                      AIM_CB_SPECIAL_IMAGETRANSFER)))
+          userfunc(conn->sessv, NULL, sn,
+                   count-wrote>1024 ? ((double)wrote / count) : 1);
+      }
+    }
+    if (count - wrote) {
+      wrote = wrote + aim_send(conn->fd, bs->data + bs->offset + wrote, count - wrote);
+    }
+  }
+  if (((aim_session_t *)conn->sessv)->debug >= 2) {
+    int i;
+    aim_session_t *sess = (aim_session_t *)conn->sessv;
+    faimdprintf(sess, 2, "\nOutgoing data: (%d bytes)", wrote);
+    for (i = 0; i < wrote; i++) {
+      if (!(i % 8))
+        faimdprintf(sess, 2, "\n\t");
+      faimdprintf(sess, 2, "0x%02x ", *(bs->data + bs->offset + i));
+    }
+    faimdprintf(sess, 2, "\n");
+  }
+  bs->offset += wrote;
+  return wrote;
+}
 static int sendframe_flap(aim_session_t *sess, aim_frame_t *fr)
+{
         aim_bstream_t obs;
         fu8_t *obs_raw;
         int payloadlen, err = 0, obslen;
         payloadlen = aim_bstream_curpos(&fr->data);
         if (!(obs_raw = malloc(6 + payloadlen)))
                 return -ENOMEM;
         aim_bstream_init(&obs, obs_raw, 6 + payloadlen);
         /* FLAP header */
         aimbs_put8(&obs, 0x2a);
         aimbs_put8(&obs, fr->hdr.flap.type);
         aimbs_put16(&obs, fr->hdr.flap.seqnum);
         aimbs_put16(&obs, payloadlen);
         /* payload */
         aim_bstream_rewind(&fr->data);
         aimbs_putbs(&obs, &fr->data, payloadlen);
         obslen = aim_bstream_curpos(&obs);
         aim_bstream_rewind(&obs);
         if (aim_bstream_send(&obs, fr->conn, obslen) != obslen)
                 err = -errno;
         free(obs_raw); /* XXX aim_bstream_free */
         fr->handled = 1;
         fr->conn->lastactivity = time(NULL);
         return err;
+  aim_bstream_t obs;
+  fu8_t *obs_raw;
+  int payloadlen, err = 0, obslen;
+  payloadlen = aim_bstream_curpos(&fr->data);
+  if (!(obs_raw = malloc(6 + payloadlen)))
+    return -ENOMEM;
+  aim_bstream_init(&obs, obs_raw, 6 + payloadlen);
+  /* FLAP header */
+  aimbs_put8(&obs, 0x2a);
+  aimbs_put8(&obs, fr->hdr.flap.type);
+  aimbs_put16(&obs, fr->hdr.flap.seqnum);
+  aimbs_put16(&obs, payloadlen);
+  /* payload */
+  aim_bstream_rewind(&fr->data);
+  aimbs_putbs(&obs, &fr->data, payloadlen);
+  obslen = aim_bstream_curpos(&obs);
+  aim_bstream_rewind(&obs);
+  if (aim_bstream_send(&obs, fr->conn, obslen) != obslen)
+    err = -errno;
+  free(obs_raw); /* XXX aim_bstream_free */
+  fr->handled = 1;
+  fr->conn->lastactivity = time(NULL);
+  return err;
+}

libfaim/util.c

-                      r862371b
+                      re374dee
 /*
+ *
+ *
+ *
+ * A little bit of this
+ * A little bit of that
+ * It started with a kiss
+ * Now we're up to bat
  */
 …
 #include <ctype.h>
+faim_export faim_shortfunc int aimutil_putstr(u_char *dest, const char *src, int len)
+#ifdef _WIN32
+#include "win32dep.h"
+#endif
+faim_internal void faimdprintf(aim_session_t *sess, int dlevel, const char *format, ...)
+{
+        if (!sess) {
+                fprintf(stderr, "faimdprintf: no session! boo! (%d, %s)\n", dlevel, format);
+                return;
+        }
+        if ((dlevel <= sess->debug) && sess->debugcb) {
+                va_list ap;
+                va_start(ap, format);
+                sess->debugcb(sess, dlevel, format, ap);
+                va_end(ap);
+        }
+        return;
+}
+faim_export int aimutil_putstr(char *dest, const char *src, int len)
+{
         memcpy(dest, src, len);
 …
+ *
  */
 faim_export int aimutil_tokslen(char *toSearch, int index, char dl)
+faim_export int aimutil_tokslen(char *toSearch, int theindex, char dl)
+{
         int curCount = 1;
 …
         next = strchr(toSearch, dl);
         while(curCount < index && next != NULL) {
+        while(curCount < theindex && next != NULL) {
                 curCount++;
                 last = next + 1;
 …
+        }
         if ((curCount < index) || (next == NULL))
+        if ((curCount < theindex) || (next == NULL))
                 toReturn = strlen(toSearch) - (curCount - 1);
         else
 …
+}
 faim_export char *aimutil_itemidx(char *toSearch, int index, char dl)
+faim_export char *aimutil_itemindex(char *toSearch, int theindex, char dl)
+{
         int curCount;
 …
         next = strchr(toSearch, dl);
         while (curCount < index && next != NULL) {
+        while (curCount < theindex && next != NULL) {
                 curCount++;
                 last = next + 1;
 …
+        }
         if (curCount < index) {
+        if (curCount < theindex) {
                 toReturn = malloc(sizeof(char));
                 *toReturn = '\0';
 …
         next = strchr(last, dl);
         if (curCount < index) {
+        if (curCount < theindex) {
                 toReturn = malloc(sizeof(char));
                 *toReturn = '\0';
 …
+}
+/**
+ * Calculate the checksum of a given icon.
+ *
+ */
+faim_export fu16_t aimutil_iconsum(const fu8_t *buf, int buflen)
+{
+        fu32_t sum;
+        int i;
+        for (i=0, sum=0; i+1<buflen; i+=2)
+                sum += (buf[i+1] << 8) + buf[i];
+        if (i < buflen)
+                sum += buf[i];
+        sum = ((sum & 0xffff0000) >> 16) + (sum & 0x0000ffff);
+        return sum;
+}
+faim_export int aim_util_getlocalip(fu8_t *ip)
+{
+        struct hostent *hptr;
+        char localhost[129];
+        /* XXX if available, use getaddrinfo() */
+        /* XXX allow client to specify which IP to use for multihomed boxes */
+        if (gethostname(localhost, 128) < 0)
+                return -1;
+        if (!(hptr = gethostbyname(localhost)))
+                return -1;
+        memcpy(ip, hptr->h_addr_list[0], 4);
+        return 0;
+}
 /*
 * int snlen(const char *)
 …
+{
         int i = 0;
-        const char *curPtr = NULL;
         if (!sn)
                 return 0;
+        curPtr = sn;
+        while ( (*curPtr) != (char) NULL) {
+                if ((*curPtr) != ' ')
+                i++;
+                curPtr++;
+        while (*sn != '\0') {
+                if (*sn != ' ')
+                        i++;
+                sn++;
+        }
 …
 * on screen names for AIM/AOL.  Mainly, this means case and space
 * insensitivity (all case differences and spacing differences are
+* ignored).
+* ignored, with the exception that screen names can not start with
+* a space).
+*
 * Return: 0 if equal
 …
 faim_export int aim_sncmp(const char *sn1, const char *sn2)
+{
+        const char *curPtr1 = NULL, *curPtr2 = NULL;
+        if (aim_snlen(sn1) != aim_snlen(sn2))
+                return 1;
+        curPtr1 = sn1;
+        curPtr2 = sn2;
+        while ( (*curPtr1 != (char) NULL) && (*curPtr2 != (char) NULL) ) {
+                if ( (*curPtr1 == ' ') || (*curPtr2 == ' ') ) {
+                        if (*curPtr1 == ' ')
+                                curPtr1++;
+                        if (*curPtr2 == ' ')
+                                curPtr2++;
+                } else {
+                        if ( toupper(*curPtr1) != toupper(*curPtr2))
+                                return 1;
+                        curPtr1++;
+                        curPtr2++;
+                }
+        }
+        /* Should both be NULL */
+        if (*curPtr1 != *curPtr2)
+                return 1;
+        do {
+                while (*sn2 == ' ')
+                        sn2++;
+                while (*sn1 == ' ')
+                        sn1++;
+                if (toupper(*sn1) != toupper(*sn2))
+                        return 1;
+        } while ((*sn1 != '\0') && sn1++ && sn2++);
         return 0;
+}
-/* strsep Copyright (C) 1992, 1993 Free Software Foundation, Inc.
-strsep is part of the GNU C Library.
-The GNU C Library is free software; you can redistribute it and/or
-modify it under the terms of the GNU Library General Public License as
-published by the Free Software Foundation; either version 2 of the
-License, or (at your option) any later version.
-The GNU C Library is distributed in the hope that it will be useful,
-but WITHOUT ANY WARRANTY; without even the implied warranty of
-MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
-Library General Public License for more details.
-You should have received a copy of the GNU Library General Public
-License along with the GNU C Library; see the file COPYING.LIB.  If
-not, write to the Free Software Foundation, Inc., 675 Mass Ave,
-Cambridge, MA 02139, USA.  */
-/* Minor changes by and1000 on 15/1/97 to make it go under Nemesis */
-faim_export char *aim_strsep(char **pp, const char *delim)
+{
-        char *p, *q;
-        if (!(p = *pp))
-                return 0;
-        if ((q = strpbrk (p, delim))) {
-                *pp = q + 1;
-                *q = '\0';
-        } else
-                *pp = 0;
-        return p;
+}

Context Navigation

Legend:

libfaim/admin.c

libfaim/aim.h

libfaim/aim_cbtypes.h

libfaim/aim_internal.h

libfaim/auth.c

libfaim/bos.c

libfaim/bstream.c

libfaim/buddylist.c

libfaim/chat.c

libfaim/chatnav.c

libfaim/configure

libfaim/configure.in

libfaim/conn.c

libfaim/email.c

libfaim/ft.c

libfaim/icq.c

libfaim/im.c

libfaim/info.c

libfaim/invite.c

libfaim/meta.c

libfaim/msgcookie.c

libfaim/newsearch.c

libfaim/rxhandlers.c

libfaim/rxqueue.c

libfaim/search.c

libfaim/service.c

libfaim/snac.c

libfaim/ssi.c

libfaim/stats.c

libfaim/tlv.c

libfaim/txqueue.c

libfaim/util.c

Download in other formats: