xauth-pam and standard android ipsec client
Connecting with Android's (4.4.2) built in IPSec client fails when rightauth2 is xauth-pam. It works perfectly fine with the OS X built in IPSec client. The Android client works just fine when rightauth2 = xauth-generic.
config setup conn psk-pam keyexchange=ikev1 left=%defaultroute leftauth=psk leftsubnet=0.0.0.0/0 leftfirewall=yes right=%any rightauth=psk rightauth2=xauth-pam rightsubnet=10.7.0.0/24 rightsourceip=10.7.0.0/24 rightdns=22.214.171.124,126.96.36.199 auto=add
#1 Updated by Tobias Brunner about 6 years ago
- File xauth-pam-null-password.patch xauth-pam-null-password.patch added
- Category set to android
- Status changed from New to Feedback
- Assignee set to Tobias Brunner
It's probably due to the Android client sending the passwords null-terminated. We have a workaround for this in the xauth-generic plugin, but there is none yet in the xauth-pam plugin.
Could you please try if the attached patch fixes the issue?