Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2014-03-20 | Bump dependency to libplist 1.11 and remove use of "plist_dict_insert_item()" | Martin Szulecki | 1 | -39/+39 | |
2014-03-18 | lockdown: make sure type is always free'd in lockdownd_client_new_with_handshake | Nikias Bassen | 1 | -2/+2 | |
2014-03-10 | lockdown: disable SSL in lockdownd_stop_session() | Nikias Bassen | 1 | -0/+5 | |
2014-03-10 | lockdown: removed outdated call to lockdownd_goodbye() in lockdown_client_free() | Nikias Bassen | 1 | -4/+0 | |
2014-01-25 | Revert "lockdown: do not send Goodbye when SSL session was active" | Nikias Bassen | 1 | -2/+2 | |
This reverts commit 56392428a49543bab4b12431451ec04bb799c411. Actually I committed this because of usbmuxd complaining about a TCP RST. But lockdownd is now complaining since it waits for the Goodbye packet (which I apparently didn't see during testing). | |||||
2014-01-15 | lockdown: do not send Goodbye when SSL session was active | Nikias Bassen | 1 | -2/+2 | |
2013-11-30 | lockdown: Make sure to free client->session_id for sure | Martin Szulecki | 1 | -0/+4 | |
2013-11-30 | Fix possible memory corruption by ensuring client pointers NULL'd after free | Martin Szulecki | 1 | -0/+1 | |
2013-11-30 | lockdown: Do not free session_id again after stop_session already did | Martin Szulecki | 1 | -1/+0 | |
2013-11-08 | lockdown: fix possible invalid free in GnuTLS cert generation code | Nikias Bassen | 1 | -3/+3 | |
2013-11-04 | Convert stray spaces to corresponding tabs | Martin Szulecki | 1 | -0/+1 | |
2013-10-09 | Remove duplicate newline from debug messages as one is added automatically | Martin Szulecki | 1 | -1/+1 | |
2013-10-09 | lockdown: Plug few possible memory leaks in generate_pair_record_plist() | Martin Szulecki | 1 | -16/+6 | |
2013-09-24 | lockdown: improve lockdownd_query_type result checking | Nikias Bassen | 1 | -4/+11 | |
2013-09-23 | lockdown: Remove EscrowBag feature for now as it caused services to not start | Martin Szulecki | 1 | -7/+0 | |
2013-09-21 | lockdown: Only sent EscrowBag if we are running in a secure session | Martin Szulecki | 1 | -2/+6 | |
2013-09-21 | lockdown: Send EscrowBag when starting service for automatic unlocking | Martin Szulecki | 1 | -0/+3 | |
2013-09-19 | lockdown: Remove pairing code which is obsoleted by usbmuxd's preflight handler | Martin Szulecki | 1 | -53/+0 | |
2013-09-19 | lockdown: Don't shutdown SSL during StopSession already or device complains | Martin Szulecki | 1 | -7/+6 | |
2013-09-17 | lockdownd: remove unused udid variable in reconnect function | Nikias Bassen | 1 | -4/+0 | |
2013-09-17 | lockdown: Refactor pair record generation/loading logic a bit for efficiency | Martin Szulecki | 1 | -42/+47 | |
The current code always requests the public key and set's the SystemBUID, even if a pair record already exists which has these values ready. The change moves logic to only do that during generation of new certificates. | |||||
2013-09-17 | lockdown: Fix debug message during reconnect to show correct udid | Martin Szulecki | 1 | -1/+1 | |
2013-09-17 | lockdown: Fix generation of x509 subject key identifier extension for GnuTLS | Martin Szulecki | 1 | -7/+12 | |
2013-09-17 | Make sure to re-use the DeviceCertificate instead of generating a new one ↵ | Nikias Bassen | 1 | -8/+15 | |
every time This prevented iTunes from using a pairing made by libimobiledevice giving an error that the device sent invalid data. | |||||
2013-09-17 | lockdown: Add missing x509 extensions to match other platforms using GnuTLS | Martin Szulecki | 1 | -0/+8 | |
2013-09-17 | Fix broken build of GnuTLS and silence two compiler warnings | Martin Szulecki | 1 | -2/+2 | |
2013-09-17 | lockdown: Add missing x509 extensions to match other platforms using OpenSSL | Martin Szulecki | 1 | -2/+18 | |
2013-09-17 | lockdown: Allow starting services without the need for a running SSL session | Martin Szulecki | 1 | -2/+2 | |
2013-09-17 | Refactor userpref logic to use plist format and implement trust dialog handling | Martin Szulecki | 1 | -47/+210 | |
iOS 7 introduced a new pairing workflow which increases security by showing a trust dialog to the user before pairing with the host is allowed. The userpref system was refactored to use the native plist format, too. Configuration files of the native implementations are used on each platform. Former configuration files are no longer in use and can be deleted. | |||||
2013-06-30 | Fixed memory leak in lockdownd_gen_pair_cert() by freeing X509_EXTENSION ↵ | Aaron Burghardt | 1 | -0/+1 | |
object when using OpenSSL. | |||||
2013-06-30 | Fixed memory leak in lockdownd_gen_pair_cert() when getting cert data using ↵ | Aaron Burghardt | 1 | -2/+5 | |
OpenSSL. | |||||
2013-04-25 | common: Move debug and userpref code into libinternalcommon | Martin Szulecki | 1 | -2/+2 | |
2013-03-14 | lockdown: only return service descriptor if StartService succeeds | Nikias Bassen | 1 | -5/+11 | |
2013-02-26 | Refactor port number use into service descriptor to enable SSL for services | Martin Szulecki | 1 | -12/+46 | |
This is a major change which breaks API but is required in order to support SSL communication for services as used by network connections. | |||||
2012-04-01 | lockdown: Correct a few wrong comments showing NP_E_* error messages | Martin Szulecki | 1 | -7/+9 | |
2012-03-22 | Mass replace UUID by UDID, which is the correct term for it | Martin Szulecki | 1 | -12/+12 | |
2012-03-19 | Fix broken debug_info usage | Nikias Bassen | 1 | -2/+2 | |
2012-03-19 | free bio after using it | Nikias Bassen | 1 | -1/+3 | |
2012-03-19 | Add OpenSSL support | Nikias Bassen | 1 | -10/+154 | |
2012-03-19 | Refined asprintf/vasprintf detection and inclusion | Nikias Bassen | 1 | -2/+0 | |
2012-03-19 | Fix building on OSX | Martin Szulecki | 1 | -0/+2 | |
2012-03-19 | Add asprintf replacement for systems lacking it | Nikias Bassen | 1 | -0/+1 | |
2012-03-18 | Completely remove glib dependency. | Nikias Bassen | 1 | -3/+2 | |
2011-11-21 | lockdown: iOS 5: handle 'Error' key in lockdown_check_result | Nikias Bassen | 1 | -1/+15 | |
2011-06-09 | lockdown: move writing of device uuid to client struct inside ↵ | Nikias Bassen | 1 | -7/+6 | |
lockdownd_client_new() ... instead of in lockdownd_client_new_with_handshake(). This way the device UUID is also available when only using a non-paired connection (e.g. when using the idevicepair tool). | |||||
2011-06-07 | lockdown: fix support for iOS 5 | Nikias Bassen | 1 | -1/+3 | |
2011-03-31 | debug: Use explicit size for string when debugging non-null terminated | Martin Szulecki | 1 | -1/+1 | |
The debug code to output the device public key was not taking into account that the key data is not null terminated. | |||||
2010-11-27 | Add a safety check in lockdownd_client_new_with_handshake() to fix a ↵ | Martin Szulecki | 1 | -1/+4 | |
possible crash | |||||
2010-06-04 | lockdown: correctly handle activation_record parameter in lockdownd_activate | Nikias Bassen | 1 | -1/+1 | |
The activation_record was inserted into the request plist and freed at the end. If the user app then uses plist_free to free the activation record, it gets an invalid free. By using plist_copy the activation_record is not touched. | |||||
2010-05-28 | Add special handling for unpair request; probably a bug in the iPhone OS | Martin Szulecki | 1 | -4/+13 | |