summaryrefslogtreecommitdiffstats
AgeCommit message (Collapse)AuthorFilesLines
2013-09-22idevicebackup2: fix possible crash due to use-after-freeGravatar Nikias Bassen1-0/+1
2013-09-21lockdown: Only sent EscrowBag if we are running in a secure sessionGravatar Martin Szulecki1-2/+6
2013-09-21idevicebackup2: Add experimental support for using backups in the cloudGravatar Martin Szulecki2-6/+31
2013-09-21idevicebackup2: Add argument to enforce a full backup from deviceGravatar Martin Szulecki1-2/+14
2013-09-21lockdown: Send EscrowBag when starting service for automatic unlockingGravatar Martin Szulecki1-0/+3
2013-09-21userpref: Use /var/lib/lockdown as the system-wide pair record path on LinuxGravatar Martin Szulecki1-4/+1
2013-09-19lockdown: Remove pairing code which is obsoleted by usbmuxd's preflight handlerGravatar Martin Szulecki1-53/+0
2013-09-19userpref: Use system wide pair record path and add config directory getterGravatar Martin Szulecki2-73/+4
2013-09-19lockdown: Don't shutdown SSL during StopSession already or device complainsGravatar Martin Szulecki1-7/+6
2013-09-19userpref: fix leak and possible endless recursion in mkdir_with_parentsGravatar Nikias Bassen1-7/+4
2013-09-19utils: make buffer_write_to_filename overwrite instead of append to existing ↵Gravatar Nikias Bassen1-3/+1
files
2013-09-19notification_proxy: handle error conditions in notification polling threadGravatar Nikias Bassen1-4/+14
2013-09-19property_list_service: handle timeout condition on receiveGravatar Nikias Bassen2-1/+5
this adds the new error code PROPERTY_LIST_SERVICE_E_TIMEOUT that occurs if the given timeout is reached when trying to receive data.
2013-09-17lockdownd: remove unused udid variable in reconnect functionGravatar Nikias Bassen1-4/+0
2013-09-17userpref: Add missing argument docs for device_record_get_certs_as_pem()Gravatar Martin Szulecki1-0/+1
2013-09-17lockdown: Refactor pair record generation/loading logic a bit for efficiencyGravatar Martin Szulecki1-42/+47
The current code always requests the public key and set's the SystemBUID, even if a pair record already exists which has these values ready. The change moves logic to only do that during generation of new certificates.
2013-09-17lockdown: Fix debug message during reconnect to show correct udidGravatar Martin Szulecki1-1/+1
2013-09-17lockdown: Fix generation of x509 subject key identifier extension for GnuTLSGravatar Martin Szulecki1-7/+12
2013-09-17Make sure to re-use the DeviceCertificate instead of generating a new one ↵Gravatar Nikias Bassen3-10/+30
every time This prevented iTunes from using a pairing made by libimobiledevice giving an error that the device sent invalid data.
2013-09-17lockdown: Add missing x509 extensions to match other platforms using GnuTLSGravatar Martin Szulecki1-0/+8
2013-09-17Fix broken build of GnuTLS and silence two compiler warningsGravatar Martin Szulecki3-5/+5
2013-09-17lockdown: Add missing x509 extensions to match other platforms using OpenSSLGravatar Martin Szulecki1-2/+18
2013-09-17userpref: Add copyright referenceGravatar Martin Szulecki2-0/+2
2013-09-17idevicepair: Port to use the new userpref API and add systembuid commandGravatar Martin Szulecki1-17/+32
2013-09-17lockdown: Allow starting services without the need for a running SSL sessionGravatar Martin Szulecki1-2/+2
2013-09-17Refactor userpref logic to use plist format and implement trust dialog handlingGravatar Martin Szulecki6-409/+579
iOS 7 introduced a new pairing workflow which increases security by showing a trust dialog to the user before pairing with the host is allowed. The userpref system was refactored to use the native plist format, too. Configuration files of the native implementations are used on each platform. Former configuration files are no longer in use and can be deleted.
2013-09-17idevice: Add udid attribute to idevice_connection_t for referencing devicesGravatar Martin Szulecki2-0/+7
2013-09-17common: Add helpers to read and write plist filesGravatar Martin Szulecki2-0/+106
2013-09-16afc: fix some return types (afc_error_t vs. idevice_error_t)Gravatar Nikias Bassen1-4/+4
2013-09-13tools: fix GnuTLS build by adding missing libgcrypt build flagsGravatar Nikias Bassen1-2/+2
2013-09-11filerelaytest: Variable can not be declared inside for loop on non C99 modeGravatar Martin Szulecki1-6/+6
2013-09-11Added the option to filerelaytest to pass sources on the command line.Gravatar Aaron Burghardt1-2/+16
2013-09-07make variables for package dependencies, synchronize these with .pc fileGravatar Elan Ruusamäe2-4/+12
2013-08-19webinspector: Implement support for partial messages when sending or receivingGravatar Martin Szulecki2-42/+125
The protocol appears to split plist payload on 8096 bytes boundries into multiple WIRPartialMessage messages. Now partial messages are correctly decoded during receiving and split automatically when sending large messages by the implementation.
2013-08-08idevicebackup2: Implement support for encrypted backups in Unback commandGravatar Aaron Burghardt2-1/+15
Allows to specify a password for the Unback request. It is also sent in the main message, not in an options dictionary.
2013-08-07idevice: Export SSL control functions for idevice_connection_tGravatar Martin Szulecki2-3/+2
2013-08-05service: Make generic service public to enable external service implementationsGravatar Martin Szulecki3-31/+70
2013-08-05Implement *_start_service() helper to simplify creation of service clientsGravatar Martin Szulecki26-0/+280
2013-08-05Add public *_SERVICE_NAME defines for each serviceGravatar Martin Szulecki13-0/+26
2013-07-19Update README with latest code, ticket tracker and IRC URLsGravatar Martin Szulecki1-2/+9
2013-07-19syslog_relay: Add doc comments for syslog_relay(_start|_stop)_capture()Gravatar Martin Szulecki1-0/+26
2013-07-18Update NEWS with latest changesGravatar Martin Szulecki1-0/+20
2013-07-18installation_proxy: Fix another two memory leaksGravatar Martin Szulecki1-0/+4
2013-07-16Fix memory leaks in instproxy_client_get_path_for_bundle_identifier()Gravatar Martin Szulecki1-0/+10
2013-07-15userpref: correctly NULL-terminate arguments in string_concat callsGravatar Nikias Bassen1-2/+2
2013-07-13common: Fix malformed binary debug message dumpingGravatar Martin Szulecki1-1/+1
2013-07-13common: Fix WIN32 portability for recent userpref security fixGravatar Martin Szulecki1-1/+6
2013-07-13common: Implement stpcpy() replacement for systems lacking itGravatar Martin Szulecki2-0/+26
2013-07-13configure.ac: Simply check for asprintf and vasprintfGravatar Martin Szulecki1-10/+1
2013-07-02Bug #331 - Don't create a /tmp/root directory insecurelyGravatar Federico Mena Quintero1-29/+76
When finding the user's home directory to generate a subdirectory in $HOME/.config, we would fall back to /tmp if there were no environment variables for HOME or XDG_CONFIG_HOME. Since libimobiledevice gets used by upower, and since upowerd runs as root, this would cause a /tmp/root directory to be created insecurely, leaving upowerd vulnerable to a symlink attack. Now we fall back to getpwuid_r() to find the user's home directory if it is not provided in environment variables - this is the case when upowerd gets run via systemd, for example. The result is that we'll end up creating /root/.config, a safe directory, since regular users cannot create symlinks in /root. In the future we'll need a way for libimobiledevice to find where to store its pairing data on behalf of the console user, rather than writing it to /root. http://libiphone.lighthouseapp.com/projects/27916-libiphone/tickets/331-insecure-tmp-directory-use
© 2009-2020 sukimashita.com - Generated by cgit - Icons from Tango - Uses Google Analytics