openconnect-7.06/0000775000076400007640000000000012502026432010770 500000000000000openconnect-7.06/dtls.c0000664000076400007640000007130112474046503012035 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" #ifdef HAVE_DTLS #if 0 /* * Useful for catching test cases, where we want everything to be * reproducible. *NEVER* do this in the wild. */ time_t time(time_t *t) { time_t x = 0x3ab2d948; if (t) *t = x; return x; } int RAND_pseudo_bytes(char *buf, int len) { memset(buf, 0x5a, len); printf("FAKE PSEUDO RANDOM!\n"); return 1; } int RAND_bytes(char *buf, int len) { static int foo = 0x5b; printf("FAKE RANDOM!\n"); memset(buf, foo, len); return 1; } #endif /* * The master-secret is generated randomly by the client. The server * responds with a DTLS Session-ID. These, done over the HTTPS * connection, are enough to 'resume' a DTLS session, bypassing all * the normal setup of a normal DTLS connection. * * Cisco use a version of the protocol which predates RFC4347, but * isn't quite the same as the pre-RFC version of the protocol which * was in OpenSSL 0.9.8e -- it includes backports of some later * OpenSSL patches. * * The openssl/ directory of this source tree should contain both a * small patch against OpenSSL 0.9.8e to make it support Cisco's * snapshot of the protocol, and a larger patch against newer OpenSSL * which gives us an option to use the old protocol again. * * Cisco's server also seems to respond to the official version of the * protocol, with a change in the ChangeCipherSpec packet which implies * that it does know the difference and isn't just repeating the version * number seen in the ClientHello. But although I can make the handshake * complete by hacking tls1_mac() to use the _old_ protocol version * number when calculating the MAC, the server still seems to be ignoring * my subsequent data packets. So we use the old protocol, which is what * their clients use anyway. */ #if defined(DTLS_OPENSSL) #define DTLS_SEND SSL_write #define DTLS_RECV SSL_read #define DTLS_FREE SSL_free /* In the very early days there were cases where this wasn't found in * the header files but it did still work somehow. I forget the details * now but I was definitely avoiding using the macro. Let's just define * it for ourselves instead.*/ #ifndef DTLS1_BAD_VER #define DTLS1_BAD_VER 0x100 #endif #ifdef HAVE_DTLS1_STOP_TIMER /* OpenSSL doesn't deliberately export this, but we need it to workaround a DTLS bug in versions < 1.0.0e */ extern void dtls1_stop_timer(SSL *); #endif #if OPENSSL_VERSION_NUMBER >= 0x10100000L /* Since OpenSSL 1.1, the SSL_SESSION structure is opaque and we can't * just fill it in directly. So we have to generate the OpenSSL ASN.1 * representation of the SSL_SESSION, and use d2i_SSL_SESSION() to * create the SSL_SESSION from that. */ static void buf_append_INTEGER(struct oc_text_buf *buf, uint32_t datum) { int l; /* We only handle positive integers up to INT_MAX */ if (datum < 0x80) l = 1; else if (datum < 0x8000) l = 2; else if (datum < 0x800000) l = 3; else l = 4; if (buf_ensure_space(buf, 2 + l)) return; buf->data[buf->pos++] = 0x02; buf->data[buf->pos++] = l; while (l--) buf->data[buf->pos++] = datum >> (l * 8); } static void buf_append_OCTET_STRING(struct oc_text_buf *buf, void *data, int len) { /* We only (need to) cope with length < 0x80 for now */ if (len >= 0x80) { buf->error = -EINVAL; return; } if (buf_ensure_space(buf, 2 + len)) return; buf->data[buf->pos++] = 0x04; buf->data[buf->pos++] = len; memcpy(buf->data + buf->pos, data, len); buf->pos += len; } static SSL_SESSION *generate_dtls_session(struct openconnect_info *vpninfo, int dtlsver, SSL_CIPHER *cipher) { struct oc_text_buf *buf = buf_alloc(); SSL_SESSION *dtls_session; const unsigned char *asn; uint16_t cid; buf_append_bytes(buf, "\x30\x80", 2); // SEQUENCE, indeterminate length buf_append_INTEGER(buf, 1 /* SSL_SESSION_ASN1_VERSION */); buf_append_INTEGER(buf, dtlsver); store_be16(&cid, SSL_CIPHER_get_id(cipher) & 0xffff); buf_append_OCTET_STRING(buf, &cid, 2); buf_append_OCTET_STRING(buf, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id)); buf_append_OCTET_STRING(buf, vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret)); /* If the length actually fits in one byte (which it should), do * it that way. Else, leave it indeterminate and add two * end-of-contents octets to mark the end of the SEQUENCE. */ if (!buf_error(buf) && buf->pos <= 0x80) buf->data[1] = buf->pos - 2; else buf_append_bytes(buf, "\0\0", 2); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n"), strerror(buf_error(buf))); buf_free(buf); return NULL; } asn = (void *)buf->data; dtls_session = d2i_SSL_SESSION(NULL, &asn, buf->pos); buf_free(buf); if (!dtls_session) { vpn_progress(vpninfo, PRG_ERR, _("OpenSSL failed to parse SSL_SESSION ASN.1\n")); openconnect_report_ssl_errors(vpninfo); return NULL; } return dtls_session; } #else /* OpenSSL before 1.1 */ static SSL_SESSION *generate_dtls_session(struct openconnect_info *vpninfo, int dtlsver, SSL_CIPHER *cipher) { SSL_SESSION *dtls_session = SSL_SESSION_new(); if (!dtls_session) { vpn_progress(vpninfo, PRG_ERR, _("Initialise DTLSv1 session failed\n")); return NULL; } dtls_session->ssl_version = dtlsver; dtls_session->master_key_length = sizeof(vpninfo->dtls_secret); memcpy(dtls_session->master_key, vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret)); dtls_session->session_id_length = sizeof(vpninfo->dtls_session_id); memcpy(dtls_session->session_id, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id)); dtls_session->cipher = cipher; dtls_session->cipher_id = cipher->id; return dtls_session; } #endif static int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd) { STACK_OF(SSL_CIPHER) *ciphers; method_const SSL_METHOD *dtls_method; SSL_SESSION *dtls_session; SSL *dtls_ssl; BIO *dtls_bio; int dtlsver = DTLS1_BAD_VER; const char *cipher = vpninfo->dtls_cipher; #ifdef HAVE_DTLS12 if (!strcmp(cipher, "OC-DTLS1_2-AES128-GCM")) { dtlsver = DTLS1_2_VERSION; cipher = "AES128-GCM-SHA256"; } else if (!strcmp(cipher, "OC-DTLS1_2-AES256-GCM")) { dtlsver = DTLS1_2_VERSION; cipher = "AES256-GCM-SHA384"; } #endif if (!vpninfo->dtls_ctx) { #ifdef HAVE_DTLS12 if (dtlsver == DTLS1_2_VERSION) dtls_method = DTLSv1_2_client_method(); else #endif dtls_method = DTLSv1_client_method(); vpninfo->dtls_ctx = SSL_CTX_new(dtls_method); if (!vpninfo->dtls_ctx) { vpn_progress(vpninfo, PRG_ERR, _("Initialise DTLSv1 CTX failed\n")); openconnect_report_ssl_errors(vpninfo); vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* If we don't readahead, then we do short reads and throw away the tail of data packets. */ SSL_CTX_set_read_ahead(vpninfo->dtls_ctx, 1); if (!SSL_CTX_set_cipher_list(vpninfo->dtls_ctx, cipher)) { vpn_progress(vpninfo, PRG_ERR, _("Set DTLS cipher list failed\n")); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } } dtls_ssl = SSL_new(vpninfo->dtls_ctx); SSL_set_connect_state(dtls_ssl); ciphers = SSL_get_ciphers(dtls_ssl); if (sk_SSL_CIPHER_num(ciphers) != 1) { vpn_progress(vpninfo, PRG_ERR, _("Not precisely one DTLS cipher\n")); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* We're going to "resume" a session which never existed. Fake it... */ dtls_session = generate_dtls_session(vpninfo, dtlsver, sk_SSL_CIPHER_value(ciphers, 0)); if (!dtls_session) { SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* Add the generated session to the SSL */ if (!SSL_set_session(dtls_ssl, dtls_session)) { vpn_progress(vpninfo, PRG_ERR, _("SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n"), DTLS1_BAD_VER); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; SSL_SESSION_free(dtls_session); return -EINVAL; } /* We don't need our own refcount on it any more */ SSL_SESSION_free(dtls_session); dtls_bio = BIO_new_socket(dtls_fd, BIO_NOCLOSE); /* Set non-blocking */ BIO_set_nbio(dtls_bio, 1); SSL_set_bio(dtls_ssl, dtls_bio, dtls_bio); if (dtlsver == DTLS1_BAD_VER) SSL_set_options(dtls_ssl, SSL_OP_CISCO_ANYCONNECT); vpninfo->dtls_ssl = dtls_ssl; return 0; } static int dtls_try_handshake(struct openconnect_info *vpninfo) { int ret = SSL_do_handshake(vpninfo->dtls_ssl); if (ret == 1) { vpninfo->dtls_state = DTLS_CONNECTED; vpn_progress(vpninfo, PRG_INFO, _("Established DTLS connection (using OpenSSL). Ciphersuite %s.\n"), vpninfo->dtls_cipher); vpninfo->dtls_times.last_rekey = vpninfo->dtls_times.last_rx = vpninfo->dtls_times.last_tx = time(NULL); /* From about 8.4.1(11) onwards, the ASA seems to get very unhappy if we resend ChangeCipherSpec messages after the initial setup. This was "fixed" in OpenSSL 1.0.0e for RT#2505, but it's not clear if that was the right fix. What happens if the original packet *does* get lost? Surely we *wanted* the retransmits, because without them the server will never be able to decrypt anything we send? Oh well, our retransmitted packets upset the server because we don't get the Cisco-compatibility right (this is one of the areas in which Cisco's DTLS differs from the RFC4347 spec), and DPD should help us notice if *nothing* is getting through. */ #if OPENSSL_VERSION_NUMBER >= 0x1000005fL /* OpenSSL 1.0.0e or above doesn't resend anyway; do nothing. However, if we were *built* against 1.0.0e or newer, but at runtime we find that we are being run against an older version, warn about it. */ if (SSLeay() < 0x1000005fL) { vpn_progress(vpninfo, PRG_ERR, _("Your OpenSSL is older than the one you built against, so DTLS may fail!")); } #elif defined(HAVE_DTLS1_STOP_TIMER) /* * This works for any normal OpenSSL that supports * Cisco DTLS compatibility (0.9.8m to 1.0.0d inclusive, * and even later versions although it isn't needed there. */ dtls1_stop_timer(vpninfo->dtls_ssl); #elif defined(BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT) /* * Debian restricts visibility of dtls1_stop_timer() * so do it manually. This version also works on all * sane versions of OpenSSL: */ memset(&(vpninfo->dtls_ssl->d1->next_timeout), 0, sizeof((vpninfo->dtls_ssl->d1->next_timeout))); vpninfo->dtls_ssl->d1->timeout_duration = 1; BIO_ctrl(SSL_get_rbio(vpninfo->dtls_ssl), BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT, 0, &(vpninfo->dtls_ssl->d1->next_timeout)); #elif defined(BIO_CTRL_DGRAM_SET_TIMEOUT) /* * OK, here it gets more fun... this shoul handle the case * of older OpenSSL which has the Cisco DTLS compatibility * backported, but *not* the fix for RT#1922. */ BIO_ctrl(SSL_get_rbio(vpninfo->dtls_ssl), BIO_CTRL_DGRAM_SET_TIMEOUT, 0, NULL); #else /* * And if they don't have any of the above, they probably * don't have RT#1829 fixed either, but that's OK because * that's the "fix" that *introduces* the timeout we're * trying to disable. So do nothing... */ #endif return 0; } ret = SSL_get_error(vpninfo->dtls_ssl, ret); if (ret == SSL_ERROR_WANT_WRITE || ret == SSL_ERROR_WANT_READ) { static int badossl_bitched = 0; if (time(NULL) < vpninfo->new_dtls_started + 12) return 0; if (((OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L) || \ OPENSSL_VERSION_NUMBER == 0x10002000L) && !badossl_bitched) { badossl_bitched = 1; vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake timed out\n")); vpn_progress(vpninfo, PRG_ERR, _("This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n")); } else { vpn_progress(vpninfo, PRG_DEBUG, _("DTLS handshake timed out\n")); } } vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake failed: %d\n"), ret); openconnect_report_ssl_errors(vpninfo); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; time(&vpninfo->new_dtls_started); return -EINVAL; } void dtls_shutdown(struct openconnect_info *vpninfo) { dtls_close(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); } #elif defined(DTLS_GNUTLS) #include #include "gnutls.h" struct { const char *name; gnutls_protocol_t version; gnutls_cipher_algorithm_t cipher; gnutls_mac_algorithm_t mac; const char *prio; } gnutls_dtls_ciphers[] = { { "AES128-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-128-CBC:+SHA1:+RSA:%COMPAT" }, { "AES256-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-256-CBC:+SHA1:+RSA:%COMPAT" }, { "DES-CBC3-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_3DES_CBC, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+3DES-CBC:+SHA1:+RSA:%COMPAT" }, #if GNUTLS_VERSION_NUMBER >= 0x030207 /* if DTLS 1.2 is supported (and a bug in gnutls is solved) */ { "OC-DTLS1_2-AES128-GCM", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+RSA:%COMPAT:+SIGN-ALL" }, { "OC-DTLS1_2-AES256-GCM", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+RSA:%COMPAT:+SIGN-ALL" }, #endif }; #define DTLS_SEND gnutls_record_send #define DTLS_RECV gnutls_record_recv #define DTLS_FREE gnutls_deinit static int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd) { gnutls_session_t dtls_ssl; gnutls_datum_t master_secret, session_id; int err; int cipher; for (cipher = 0; cipher < sizeof(gnutls_dtls_ciphers)/sizeof(gnutls_dtls_ciphers[0]); cipher++) { if (!strcmp(vpninfo->dtls_cipher, gnutls_dtls_ciphers[cipher].name)) goto found_cipher; } vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS parameters for requested CipherSuite '%s'\n"), vpninfo->dtls_cipher); vpninfo->dtls_attempt_period = 0; return -EINVAL; found_cipher: gnutls_init(&dtls_ssl, GNUTLS_CLIENT|GNUTLS_DATAGRAM|GNUTLS_NONBLOCK); err = gnutls_priority_set_direct(dtls_ssl, gnutls_dtls_ciphers[cipher].prio, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS priority: %s\n"), gnutls_strerror(err)); gnutls_deinit(dtls_ssl); vpninfo->dtls_attempt_period = 0; return -EINVAL; } gnutls_transport_set_ptr(dtls_ssl, (gnutls_transport_ptr_t)(intptr_t)dtls_fd); gnutls_record_disable_padding(dtls_ssl); master_secret.data = vpninfo->dtls_secret; master_secret.size = sizeof(vpninfo->dtls_secret); session_id.data = vpninfo->dtls_session_id; session_id.size = sizeof(vpninfo->dtls_session_id); err = gnutls_session_set_premaster(dtls_ssl, GNUTLS_CLIENT, gnutls_dtls_ciphers[cipher].version, GNUTLS_KX_RSA, gnutls_dtls_ciphers[cipher].cipher, gnutls_dtls_ciphers[cipher].mac, GNUTLS_COMP_NULL, &master_secret, &session_id); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS session parameters: %s\n"), gnutls_strerror(err)); gnutls_deinit(dtls_ssl); vpninfo->dtls_attempt_period = 0; return -EINVAL; } vpninfo->dtls_ssl = dtls_ssl; return 0; } static int dtls_try_handshake(struct openconnect_info *vpninfo) { int err = gnutls_handshake(vpninfo->dtls_ssl); char *str; if (!err) { #ifdef HAVE_GNUTLS_DTLS_SET_DATA_MTU /* Make sure GnuTLS's idea of the MTU is sufficient to take a full VPN MTU (with 1-byte header) in a data record. */ err = gnutls_dtls_set_data_mtu(vpninfo->dtls_ssl, vpninfo->ip_info.mtu + 1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS MTU: %s\n"), gnutls_strerror(err)); goto error; } #else /* If we don't have gnutls_dtls_set_data_mtu() then make sure we leave enough headroom by adding the worst-case overhead. We only support AES128-CBC and DES-CBC3-SHA anyway, so working out the worst case isn't hard. */ gnutls_dtls_set_mtu(vpninfo->dtls_ssl, vpninfo->ip_info.mtu + 1 /* packet + header */ + 13 /* DTLS header */ + 20 /* biggest supported MAC (SHA1) */ + 16 /* biggest supported IV (AES-128) */ + 16 /* max padding */); #endif vpninfo->dtls_state = DTLS_CONNECTED; str = get_gnutls_cipher(vpninfo->dtls_ssl); if (str) { vpn_progress(vpninfo, PRG_INFO, _("Established DTLS connection (using GnuTLS). Ciphersuite %s.\n"), str); gnutls_free(str); } vpninfo->dtls_times.last_rekey = vpninfo->dtls_times.last_rx = vpninfo->dtls_times.last_tx = time(NULL); /* XXX: For OpenSSL we explicitly prevent retransmits here. */ return 0; } if (err == GNUTLS_E_AGAIN) { if (time(NULL) < vpninfo->new_dtls_started + 12) return 0; vpn_progress(vpninfo, PRG_DEBUG, _("DTLS handshake timed out\n")); } vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake failed: %s\n"), gnutls_strerror(err)); if (err == GNUTLS_E_PUSH_ERROR) vpn_progress(vpninfo, PRG_ERR, _("(Is a firewall preventing you from sending UDP packets?)\n")); error: dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; time(&vpninfo->new_dtls_started); return -EINVAL; } void dtls_shutdown(struct openconnect_info *vpninfo) { dtls_close(vpninfo); } #endif static int connect_dtls_socket(struct openconnect_info *vpninfo) { int dtls_fd, ret; /* Sanity check for the removal of new_dtls_{fd,ssl} */ if (vpninfo->dtls_fd != -1) { vpn_progress(vpninfo, PRG_ERR, _("DTLS connection attempted with an existing fd\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!vpninfo->dtls_addr) { vpn_progress(vpninfo, PRG_ERR, _("No DTLS address\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!vpninfo->dtls_cipher) { /* We probably didn't offer it any ciphers it liked */ vpn_progress(vpninfo, PRG_ERR, _("Server offered no DTLS cipher option\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->proxy) { /* XXX: Theoretically, SOCKS5 proxies can do UDP too */ vpn_progress(vpninfo, PRG_ERR, _("No DTLS when connected via proxy\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } dtls_fd = udp_connect(vpninfo); if (dtls_fd < 0) return -EINVAL; ret = start_dtls_handshake(vpninfo, dtls_fd); if (ret) { closesocket(dtls_fd); return ret; } vpninfo->dtls_state = DTLS_CONNECTING; vpninfo->dtls_fd = dtls_fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); time(&vpninfo->new_dtls_started); return dtls_try_handshake(vpninfo); } void dtls_close(struct openconnect_info *vpninfo) { if (vpninfo->dtls_ssl) { DTLS_FREE(vpninfo->dtls_ssl); closesocket(vpninfo->dtls_fd); unmonitor_read_fd(vpninfo, dtls); unmonitor_write_fd(vpninfo, dtls); unmonitor_except_fd(vpninfo, dtls); vpninfo->dtls_ssl = NULL; vpninfo->dtls_fd = -1; } } static int dtls_reconnect(struct openconnect_info *vpninfo) { dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; return connect_dtls_socket(vpninfo); } int dtls_setup(struct openconnect_info *vpninfo, int dtls_attempt_period) { struct oc_vpn_option *dtls_opt = vpninfo->dtls_options; int dtls_port = 0; if (vpninfo->dtls_state == DTLS_DISABLED) return -EINVAL; vpninfo->dtls_attempt_period = dtls_attempt_period; if (!dtls_attempt_period) return 0; #if defined(OPENCONNECT_GNUTLS) && defined(DTLS_OPENSSL) /* If we're using GnuTLS for authentication but OpenSSL for DTLS, we'll need to initialise OpenSSL now... */ SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); #endif while (dtls_opt) { vpn_progress(vpninfo, PRG_DEBUG, _("DTLS option %s : %s\n"), dtls_opt->option, dtls_opt->value); if (!strcmp(dtls_opt->option + 7, "Port")) { dtls_port = atol(dtls_opt->value); } else if (!strcmp(dtls_opt->option + 7, "Keepalive")) { vpninfo->dtls_times.keepalive = atol(dtls_opt->value); } else if (!strcmp(dtls_opt->option + 7, "DPD")) { int j = atol(dtls_opt->value); if (j && (!vpninfo->dtls_times.dpd || j < vpninfo->dtls_times.dpd)) vpninfo->dtls_times.dpd = j; } else if (!strcmp(dtls_opt->option + 7, "Rekey-Method")) { if (!strcmp(dtls_opt->value, "new-tunnel")) vpninfo->dtls_times.rekey_method = REKEY_TUNNEL; else if (!strcmp(dtls_opt->value, "ssl")) vpninfo->dtls_times.rekey_method = REKEY_SSL; else vpninfo->dtls_times.rekey_method = REKEY_NONE; } else if (!strcmp(dtls_opt->option + 7, "Rekey-Time")) { vpninfo->dtls_times.rekey = atol(dtls_opt->value); } else if (!strcmp(dtls_opt->option + 7, "CipherSuite")) { vpninfo->dtls_cipher = strdup(dtls_opt->value); } dtls_opt = dtls_opt->next; } if (!dtls_port) { vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->dtls_times.rekey <= 0) vpninfo->dtls_times.rekey_method = REKEY_NONE; if (udp_sockaddr(vpninfo, dtls_port)) { vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (connect_dtls_socket(vpninfo)) return -EINVAL; vpn_progress(vpninfo, PRG_DEBUG, _("DTLS initialised. DPD %d, Keepalive %d\n"), vpninfo->dtls_times.dpd, vpninfo->dtls_times.keepalive); return 0; } int dtls_mainloop(struct openconnect_info *vpninfo, int *timeout) { int work_done = 0; char magic_pkt; if (vpninfo->dtls_need_reconnect) { vpninfo->dtls_need_reconnect = 0; dtls_reconnect(vpninfo); return 1; } if (vpninfo->dtls_state == DTLS_CONNECTING) { dtls_try_handshake(vpninfo); return 0; } if (vpninfo->dtls_state == DTLS_SLEEPING) { int when = vpninfo->new_dtls_started + vpninfo->dtls_attempt_period - time(NULL); if (when <= 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Attempt new DTLS connection\n")); connect_dtls_socket(vpninfo); } else if ((when * 1000) < *timeout) { *timeout = when * 1000; } return 0; } while (1) { int len = vpninfo->ip_info.mtu; unsigned char *buf; if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } buf = vpninfo->dtls_pkt->data - 1; len = DTLS_RECV(vpninfo->dtls_ssl, buf, len + 1); if (len <= 0) break; vpn_progress(vpninfo, PRG_TRACE, _("Received DTLS packet 0x%02x of %d bytes\n"), buf[0], len); vpninfo->dtls_times.last_rx = time(NULL); switch (buf[0]) { case AC_PKT_DATA: vpninfo->dtls_pkt->len = len - 1; queue_packet(&vpninfo->incoming_queue, vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; work_done = 1; break; case AC_PKT_DPD_OUT: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS DPD request\n")); /* FIXME: What if the packet doesn't get through? */ magic_pkt = AC_PKT_DPD_RESP; if (DTLS_SEND(vpninfo->dtls_ssl, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD response. Expect disconnect\n")); continue; case AC_PKT_DPD_RESP: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS DPD response\n")); break; case AC_PKT_KEEPALIVE: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS Keepalive\n")); break; case AC_PKT_COMPRESSED: if (!vpninfo->dtls_compr) { vpn_progress(vpninfo, PRG_ERR, _("Compressed DTLS packet received when compression not enabled\n")); goto unknown_pkt; } decompress_and_queue_packet(vpninfo, vpninfo->dtls_compr, vpninfo->dtls_pkt->data, len - 1); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS packet type %02x, len %d\n"), buf[0], len); if (1) { /* Some versions of OpenSSL have bugs with receiving out-of-order * packets. Not only do they wrongly decide to drop packets if * two packets get swapped in transit, but they also _fail_ to * drop the packet in non-blocking mode; instead they return * the appropriate length of garbage. So don't abort... for now. */ break; } else { unknown_pkt: vpninfo->quit_reason = "Unknown packet received"; return 1; } } } switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: { int ret; vpn_progress(vpninfo, PRG_INFO, _("DTLS rekey due\n")); if (vpninfo->dtls_times.rekey_method == REKEY_SSL) { time(&vpninfo->new_dtls_started); vpninfo->dtls_state = DTLS_CONNECTING; ret = dtls_try_handshake(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("DTLS Rehandshake failed; reconnecting.\n")); return connect_dtls_socket(vpninfo); } } return 1; } case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("DTLS Dead Peer Detection detected dead peer!\n")); /* Fall back to SSL, and start a new DTLS connection */ dtls_reconnect(vpninfo); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS DPD\n")); magic_pkt = AC_PKT_DPD_OUT; if (DTLS_SEND(vpninfo->dtls_ssl, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD request. Expect disconnect\n")); /* last_dpd will just have been set */ vpninfo->dtls_times.last_tx = vpninfo->dtls_times.last_dpd; work_done = 1; break; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS Keepalive\n")); magic_pkt = AC_PKT_KEEPALIVE; if (DTLS_SEND(vpninfo->dtls_ssl, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send keepalive request. Expect disconnect\n")); time(&vpninfo->dtls_times.last_tx); work_done = 1; break; case KA_NONE: ; } /* Service outgoing packet queue */ unmonitor_write_fd(vpninfo, dtls); while (vpninfo->outgoing_queue.head) { struct pkt *this = dequeue_packet(&vpninfo->outgoing_queue); struct pkt *send_pkt = this; int ret; /* One byte of header */ this->cstp.hdr[7] = AC_PKT_DATA; /* We can compress into vpninfo->deflate_pkt unless CSTP * currently has a compressed packet pending — which it * shouldn't if DTLS is active. */ if (vpninfo->dtls_compr && vpninfo->current_ssl_pkt != vpninfo->deflate_pkt && !compress_packet(vpninfo, vpninfo->dtls_compr, this)) { send_pkt = vpninfo->deflate_pkt; send_pkt->cstp.hdr[7] = AC_PKT_COMPRESSED; } #if defined(DTLS_OPENSSL) ret = SSL_write(vpninfo->dtls_ssl, &send_pkt->cstp.hdr[7], send_pkt->len + 1); if (ret <= 0) { ret = SSL_get_error(vpninfo->dtls_ssl, ret); if (ret == SSL_ERROR_WANT_WRITE) { monitor_write_fd(vpninfo, dtls); requeue_packet(&vpninfo->outgoing_queue, this); } else if (ret != SSL_ERROR_WANT_READ) { /* If it's a real error, kill the DTLS connection and requeue the packet to be sent over SSL */ vpn_progress(vpninfo, PRG_ERR, _("DTLS got write error %d. Falling back to SSL\n"), ret); openconnect_report_ssl_errors(vpninfo); dtls_reconnect(vpninfo); requeue_packet(&vpninfo->outgoing_queue, this); work_done = 1; } return work_done; } #elif defined(DTLS_GNUTLS) ret = gnutls_record_send(vpninfo->dtls_ssl, &send_pkt->cstp.hdr[7], send_pkt->len + 1); if (ret <= 0) { if (ret != GNUTLS_E_AGAIN) { vpn_progress(vpninfo, PRG_ERR, _("DTLS got write error: %s. Falling back to SSL\n"), gnutls_strerror(ret)); dtls_reconnect(vpninfo); work_done = 1; } else { /* Wake me up when it becomes writeable */ monitor_write_fd(vpninfo, dtls); } requeue_packet(&vpninfo->outgoing_queue, this); return work_done; } #endif time(&vpninfo->dtls_times.last_tx); vpn_progress(vpninfo, PRG_TRACE, _("Sent DTLS packet of %d bytes; DTLS send returned %d\n"), this->len, ret); free(this); } return work_done; } #else /* !HAVE_DTLS */ #warning Your SSL library does not seem to support Cisco DTLS compatibility #endif openconnect-7.06/openssl-esp.c0000664000076400007640000001417612474046503013346 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #include #include void destroy_esp_ciphers(struct esp *esp) { EVP_CIPHER_CTX_cleanup(&esp->cipher); HMAC_CTX_cleanup(&esp->hmac); } static int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *esp, const EVP_MD *macalg, const EVP_CIPHER *encalg, int decrypt) { int ret; destroy_esp_ciphers(esp); EVP_CIPHER_CTX_init(&esp->cipher); if (decrypt) ret = EVP_DecryptInit_ex(&esp->cipher, encalg, NULL, esp->secrets, NULL); else ret = EVP_EncryptInit_ex(&esp->cipher, encalg, NULL, esp->secrets, NULL); if (!ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise ESP cipher:\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } EVP_CIPHER_CTX_set_padding(&esp->cipher, 0); HMAC_CTX_init(&esp->hmac); if (!HMAC_Init_ex(&esp->hmac, esp->secrets + EVP_CIPHER_key_length(encalg), EVP_MD_size(macalg), macalg, NULL)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize ESP HMAC\n")); openconnect_report_ssl_errors(vpninfo); destroy_esp_ciphers(esp); } esp->seq = 0; esp->seq_backlog = 0; return 0; } int setup_esp_keys(struct openconnect_info *vpninfo) { struct esp *esp_in; const EVP_CIPHER *encalg; const EVP_MD *macalg; int ret; if (vpninfo->dtls_state == DTLS_DISABLED) return -EOPNOTSUPP; if (!vpninfo->dtls_addr) return -EINVAL; switch (vpninfo->esp_enc) { case 0x02: encalg = EVP_aes_128_cbc(); break; case 0x05: encalg = EVP_aes_256_cbc(); break; default: return -EINVAL; } switch (vpninfo->esp_hmac) { case 0x01: macalg = EVP_md5(); break; case 0x02: macalg = EVP_sha1(); break; default: return -EINVAL; } vpninfo->old_esp_maxseq = vpninfo->esp_in[vpninfo->current_esp_in].seq + 32; vpninfo->current_esp_in ^= 1; esp_in = &vpninfo->esp_in[vpninfo->current_esp_in]; if (!RAND_pseudo_bytes((void *)&esp_in->spi, sizeof(esp_in->spi)) || !RAND_bytes((void *)&esp_in->secrets, sizeof(esp_in->secrets))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random keys for ESP:\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } ret = init_esp_ciphers(vpninfo, &vpninfo->esp_out, macalg, encalg, 0); if (ret) return ret; ret = init_esp_ciphers(vpninfo, esp_in, macalg, encalg, 1); if (ret) { destroy_esp_ciphers(&vpninfo->esp_out); return ret; } if (vpninfo->dtls_state == DTLS_NOSECRET) vpninfo->dtls_state = DTLS_SECRET; vpninfo->pkt_trailer = 16 + 20; /* 16 for pad, 20 for HMAC (of which we use 16) */ return 0; } /* pkt->len shall be the *payload* length. Omitting the header and the 12-byte HMAC */ int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt) { unsigned char hmac_buf[20]; unsigned int hmac_len = sizeof(hmac_buf); int crypt_len = pkt->len; HMAC_CTX hmac_ctx; HMAC_CTX_copy(&hmac_ctx, &esp->hmac); HMAC_Update(&hmac_ctx, (void *)&pkt->esp, sizeof(pkt->esp) + pkt->len); HMAC_Final(&hmac_ctx, hmac_buf, &hmac_len); HMAC_CTX_cleanup(&hmac_ctx); if (memcmp(hmac_buf, pkt->data + pkt->len, 12)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid HMAC\n")); return -EINVAL; } /* Why in $DEITY's name would you ever *not* set this? Perhaps we * should do th check anyway, but only warn instead of discarding * the packet? */ if (vpninfo->esp_replay_protect && verify_packet_seqno(vpninfo, esp, ntohl(pkt->esp.seq))) return -EINVAL; if (!EVP_DecryptInit_ex(&esp->cipher, NULL, NULL, NULL, pkt->esp.iv)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set up decryption context for ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!EVP_DecryptUpdate(&esp->cipher, pkt->data, &crypt_len, pkt->data, pkt->len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } return 0; } int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt) { int i, padlen; const int blksize = 16; unsigned int hmac_len = 20; int crypt_len; HMAC_CTX hmac_ctx; /* This gets much more fun if the IV is variable-length */ pkt->esp.spi = vpninfo->esp_out.spi; pkt->esp.seq = htonl(vpninfo->esp_out.seq++); if (!RAND_pseudo_bytes((void *)&pkt->esp.iv, sizeof(pkt->esp.iv))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random IV for ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } padlen = blksize - 1 - ((pkt->len + 1) % blksize); for (i=0; idata[pkt->len + i] = i + 1; pkt->data[pkt->len + padlen] = padlen; pkt->data[pkt->len + padlen + 1] = 0x04; /* Legacy IP */ if (!EVP_EncryptInit_ex(&vpninfo->esp_out.cipher, NULL, NULL, NULL, pkt->esp.iv)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set up encryption context for ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } crypt_len = pkt->len + padlen + 2; if (!EVP_EncryptUpdate(&vpninfo->esp_out.cipher, pkt->data, &crypt_len, pkt->data, crypt_len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to encrypt ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } HMAC_CTX_copy(&hmac_ctx, &vpninfo->esp_out.hmac); HMAC_Update(&hmac_ctx, (void *)&pkt->esp, sizeof(pkt->esp) + crypt_len); HMAC_Final(&hmac_ctx, pkt->data + crypt_len, &hmac_len); HMAC_CTX_cleanup(&hmac_ctx); return sizeof(pkt->esp) + crypt_len + 12; } openconnect-7.06/iconv.c0000664000076400007640000000402512461546130012201 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" static char *convert_str(struct openconnect_info *vpninfo, iconv_t ic, char *instr) { ICONV_CONST char *ic_in; char *ic_out, *outstr; size_t insize, outsize; int addq = 0; if (ic == (iconv_t)-1) return instr; iconv(ic, NULL, NULL, NULL, NULL); insize = strlen(instr) + 1; ic_in = instr; outsize = insize; ic_out = outstr = malloc(outsize); if (!outstr) return instr; while (insize) { if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == EILSEQ) { do { ic_in++; insize--; } while (insize && (ic_in[0] & 0xc0) == 0x80); addq = 1; } if (!outsize || errno == E2BIG) { int outlen = ic_out - outstr; realloc_inplace(outstr, outlen + 10); if (!outstr) return instr; ic_out = outstr + outlen; outsize = 10; } else if (errno != EILSEQ) { /* Should never happen */ free(outstr); return instr; } if (addq) { addq = 0; *(ic_out++) = '?'; outsize--; } } } return outstr; } char *openconnect_legacy_to_utf8(struct openconnect_info *vpninfo, const char *legacy) { return convert_str(vpninfo, vpninfo->ic_legacy_to_utf8, (char *)legacy); } char *openconnect_utf8_to_legacy(struct openconnect_info *vpninfo, const char *utf8) { return convert_str(vpninfo, vpninfo->ic_utf8_to_legacy, (char *)utf8); } openconnect-7.06/lzs.c0000664000076400007640000002260512474364513011706 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" #define GET_BITS(bits) \ do { \ /* Strictly speaking, this check ought to be on \ * (srclen < 1 + (bits_left < bits)). However, when bits == 9 \ * the (bits_left < bits) comparison is always true so it \ * always comes out as (srclen < 2). \ * And bits is only anything *other* than 9 when we're reading \ * reading part of a match encoding. And in that case, there \ * damn well ought to be an end marker (7 more bits) after \ * what we're reading now, so it's perfectly OK to use \ * (srclen < 2) in that case too. And a *lot* cheaper. */ \ if (srclen < 2) \ return -EINVAL; \ /* Explicit comparison with 8 to optimise it into a tautology \ * in the the bits == 9 case, because the compiler doesn't \ * know that bits_left can never be larger than 8. */ \ if (bits >= 8 || bits >= bits_left) { \ /* We need *all* the bits that are left in the current \ * byte. Take them and bump the input pointer. */ \ data = (src[0] << (bits - bits_left)) & ((1 << bits) - 1); \ src++; \ srclen--; \ bits_left += 8 - bits; \ if (bits > 8 || bits_left < 8) { \ /* We need bits from the next byte too... */ \ data |= src[0] >> bits_left; \ /* ...if we used *all* of them then (which can \ * only happen if bits > 8), then bump the \ * input pointer again so we never leave \ * bits_left == 0. */ \ if (bits > 8 && !bits_left) { \ bits_left = 8; \ src++; \ srclen--; \ } \ } \ } else { \ /* We need fewer bits than are left in the current byte */ \ data = (src[0] >> (bits_left - bits)) & ((1ULL << bits) - 1); \ bits_left -= bits; \ } \ } while (0) int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen) { int outlen = 0; int bits_left = 8; /* Bits left in the current byte at *src */ uint32_t data; uint16_t offset, length; while (1) { /* Get 9 bits, which is the minimum and a common case */ GET_BITS(9); /* 0bbbbbbbb is a literal byte. The loop gives a hint to * the compiler that we expect to see a few of these. */ while (data < 0x100) { if (outlen == dstlen) return -EFBIG; dst[outlen++] = data; GET_BITS(9); } /* 110000000 is the end marker */ if (data == 0x180) return outlen; /* 11bbbbbbb is a 7-bit offset */ offset = data & 0x7f; /* 10bbbbbbbbbbb is an 11-bit offset, so get the next 4 bits */ if (data < 0x180) { GET_BITS(4); offset <<= 4; offset |= data; } /* This is a compressed sequence; now get the length */ GET_BITS(2); if (data != 3) { /* 00, 01, 10 ==> 2, 3, 4 */ length = data + 2; } else { GET_BITS(2); if (data != 3) { /* 1100, 1101, 1110 => 5, 6, 7 */ length = data + 5; } else { /* For each 1111 prefix add 15 to the length. Then add the value of final nybble. */ length = 8; while (1) { GET_BITS(4); if (data != 15) { length += data; break; } length += 15; } } } if (offset > outlen) return -EINVAL; if (length + outlen > dstlen) return -EFBIG; while (length) { dst[outlen] = dst[outlen - offset]; outlen++; length--; } } return -EINVAL; } #define PUT_BITS(nr, bits) \ do { \ outbits <<= (nr); \ outbits |= (bits); \ nr_outbits += (nr); \ if ((nr) > 8) { \ nr_outbits -= 8; \ if (outpos == dstlen) \ return -EFBIG; \ dst[outpos++] = outbits >> nr_outbits; \ } \ if (nr_outbits >= 8) { \ nr_outbits -= 8; \ if (outpos == dstlen) \ return -EFBIG; \ dst[outpos++] = outbits >> nr_outbits; \ } \ } while (0) /* * Much of the compression algorithm used here is based very loosely on ideas * from isdn_lzscomp.c by Andre Beck: http://micky.ibh.de/~beck/stuff/lzs4i4l/ */ int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen) { int length, offset; int inpos = 0, outpos = 0; uint16_t longest_match_len; uint16_t hofs, longest_match_ofs; uint16_t hash; uint32_t outbits = 0; int nr_outbits = 0; /* * This is theoretically a hash. But RAM is cheap and just loading the * 16-bit value and using it as a hash is *much* faster. */ #define HASH_BITS 16 #define HASH_TABLE_SIZE (1ULL << HASH_BITS) #define HASH(p) (((struct oc_packed_uint16_t *)(p))->d) /* * There are two data structures for tracking the history. The first * is the true hash table, an array indexed by the hash value described * above. It yields the offset in the input buffer at which the given * hash was most recently seen. We use INVALID_OFS (0xffff) for none * since we know IP packets are limited to 64KiB and we can never be * *starting* a match at the penultimate byte of the packet. */ #define INVALID_OFS 0xffff uint16_t hash_table[HASH_TABLE_SIZE]; /* Buffer offset for first match */ /* * The second data structure allows us to find the previous occurrences * of the same hash value. It is a ring buffer containing links only for * the latest MAX_HISTORY bytes of the input. The lookup for a given * offset will yield the previous offset at which the same data hash * value was found. */ #define MAX_HISTORY (1<<11) /* Highest offset LZS can represent is 11 bits */ uint16_t hash_chain[MAX_HISTORY]; /* Just in case anyone tries to use this in a more general-purpose * scenario... */ if (srclen > INVALID_OFS + 1) return -EFBIG; /* No need to initialise hash_chain since we can only ever follow * links to it that have already been initialised. */ memset(hash_table, 0xff, sizeof(hash_table)); while (inpos < srclen - 2) { hash = HASH(src + inpos); hofs = hash_table[hash]; hash_chain[inpos & (MAX_HISTORY - 1)] = hofs; hash_table[hash] = inpos; if (hofs == INVALID_OFS || hofs + MAX_HISTORY <= inpos) { PUT_BITS(9, src[inpos]); inpos++; continue; } /* Since the hash is 16-bits, we *know* the first two bytes match */ longest_match_len = 2; longest_match_ofs = hofs; for (; hofs != INVALID_OFS && hofs + MAX_HISTORY > inpos; hofs = hash_chain[hofs & (MAX_HISTORY - 1)]) { /* We only get here if longest_match_len is >= 2. We need to find a match of longest_match_len + 1 for it to be interesting. */ if (!memcmp(src + hofs + 2, src + inpos + 2, longest_match_len - 1)) { longest_match_ofs = hofs; do { longest_match_len++; /* If we cannot *have* a longer match because we're at the * end of the input, stop looking */ if (longest_match_len + inpos == srclen) goto got_match; } while (src[longest_match_len + inpos] == src[longest_match_len + hofs]); } /* Typical compressor tuning would have a break out of the loop here depending on the number of potential match locations we've tried, or a value of longest_match_len that's considered "good enough" so we stop looking for something better. We could also do a hybrid where we count the total bytes compared, so 5 attempts to find a match better than 10 bytes is worth the same as 10 attempts to find a match better than 5 bytes. Or something. Anyway, we currently don't give up until we run out of reachable history — maximal compression. */ } got_match: /* Output offset, as 7-bit or 11-bit as appropriate */ offset = inpos - longest_match_ofs; length = longest_match_len; if (offset < 0x80) PUT_BITS(9, 0x180 | offset); else PUT_BITS(13, 0x1000 | offset); /* Output length */ if (length < 5) PUT_BITS(2, length - 2); else if (length < 8) PUT_BITS(4, length + 7); else { length += 7; while (length >= 30) { PUT_BITS(8, 0xff); length -= 30; } if (length >= 15) PUT_BITS(8, 0xf0 + length - 15); else PUT_BITS(4, length); } /* If we're already done, don't bother updating the hash tables. */ if (inpos + longest_match_len >= srclen - 2) { inpos += longest_match_len; break; } /* We already added the first byte to the hash tables. Add the rest. */ inpos++; while (--longest_match_len) { hash = HASH(src + inpos); hash_chain[inpos & (MAX_HISTORY - 1)] = hash_table[hash]; hash_table[hash] = inpos++; } } /* Special cases at the end */ if (inpos == srclen - 2) { hash = HASH(src + inpos); hofs = hash_table[hash]; if (hofs != INVALID_OFS && hofs + MAX_HISTORY > inpos) { offset = inpos - hofs; if (offset < 0x80) PUT_BITS(9, 0x180 | offset); else PUT_BITS(13, 0x1000 | offset); /* The length is 2 bytes */ PUT_BITS(2, 0); } else { PUT_BITS(9, src[inpos]); PUT_BITS(9, src[inpos + 1]); } } else if (inpos == srclen - 1) { PUT_BITS(9, src[inpos]); } /* End marker, with 7 trailing zero bits to ensure that it's flushed. */ PUT_BITS(16, 0xc000); return outpos; } openconnect-7.06/ssl.c0000664000076400007640000005732012502026115011662 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #if defined(__linux__) || defined(__ANDROID__) #include #elif defined(__FreeBSD__) || defined(__FreeBSD_kernel__) || defined(__OpenBSD__) || defined(__APPLE__) #include #include #elif defined(__sun__) || defined(__NetBSD__) || defined(__DragonFly__) #include #elif defined(__GNU__) #include #endif #include "openconnect-internal.h" #ifdef ANDROID_KEYSTORE #include #endif /* OSX < 1.6 doesn't have AI_NUMERICSERV */ #ifndef AI_NUMERICSERV #define AI_NUMERICSERV 0 #endif static inline int connect_pending() { #ifdef _WIN32 return WSAGetLastError() == WSAEWOULDBLOCK; #else return errno == EINPROGRESS; #endif } static int cancellable_connect(struct openconnect_info *vpninfo, int sockfd, const struct sockaddr *addr, socklen_t addrlen) { struct sockaddr_storage peer; socklen_t peerlen = sizeof(peer); fd_set wr_set, rd_set; int maxfd = sockfd; set_sock_nonblock(sockfd); if (vpninfo->protect_socket) vpninfo->protect_socket(vpninfo->cbdata, sockfd); if (connect(sockfd, addr, addrlen) < 0 && !connect_pending()) return -1; do { FD_ZERO(&wr_set); FD_ZERO(&rd_set); FD_SET(sockfd, &wr_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("Socket connect cancelled\n")); errno = EINTR; return -1; } } while (!FD_ISSET(sockfd, &wr_set) && !vpninfo->got_pause_cmd); /* Check whether connect() succeeded or failed by using getpeername(). See http://cr.yp.to/docs/connect.html */ return getpeername(sockfd, (void *)&peer, &peerlen); } /* checks whether the provided string is an IP or a hostname. */ unsigned string_is_hostname(const char *str) { struct in_addr buf; /* We don't use inet_pton() because an IPv6 literal is likely to be encased in []. So just check for a colon, which shouldn't occur in hostnames anyway. */ if (!str || inet_aton(str, &buf) || strchr(str, ':')) return 0; return 1; } static int match_sockaddr(struct sockaddr *a, struct sockaddr *b) { if (a->sa_family == AF_INET) { struct sockaddr_in *a4 = (void *)a; struct sockaddr_in *b4 = (void *)b; return (a4->sin_addr.s_addr == b4->sin_addr.s_addr) && (a4->sin_port == b4->sin_port); } else if (a->sa_family == AF_INET6) { struct sockaddr_in6 *a6 = (void *)a; struct sockaddr_in6 *b6 = (void *)b; return !memcmp(&a6->sin6_addr, &b6->sin6_addr, sizeof(a6->sin6_addr)) && a6->sin6_port == b6->sin6_port; } else return 0; } int connect_https_socket(struct openconnect_info *vpninfo) { int ssl_sock = -1; int err; if (!vpninfo->port) vpninfo->port = 443; /* If we're talking to a server which told us it has dynamic DNS, don't just re-use its previous IP address. If we're talking to a proxy, we can use *its* previous IP address. We expect it'll re-do the DNS lookup for the server anyway. */ if (vpninfo->peer_addr && (!vpninfo->is_dyndns || vpninfo->proxy)) { reconnect: #ifdef SOCK_CLOEXEC ssl_sock = socket(vpninfo->peer_addr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, IPPROTO_IP); if (ssl_sock < 0) #endif { ssl_sock = socket(vpninfo->peer_addr->sa_family, SOCK_STREAM, IPPROTO_IP); if (ssl_sock < 0) goto reconn_err; set_fd_cloexec(ssl_sock); } if (cancellable_connect(vpninfo, ssl_sock, vpninfo->peer_addr, vpninfo->peer_addrlen)) { reconn_err: if (vpninfo->proxy) { vpn_progress(vpninfo, PRG_ERR, _("Failed to reconnect to proxy %s\n"), vpninfo->proxy); } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to reconnect to host %s\n"), vpninfo->hostname); } if (ssl_sock >= 0) closesocket(ssl_sock); ssl_sock = -EINVAL; goto out; } } else { struct addrinfo hints, *result, *rp; char *hostname; char port[6]; memset(&hints, 0, sizeof(struct addrinfo)); hints.ai_family = AF_UNSPEC; hints.ai_socktype = SOCK_STREAM; hints.ai_flags = AI_PASSIVE | AI_NUMERICSERV; hints.ai_protocol = 0; hints.ai_canonname = NULL; hints.ai_addr = NULL; hints.ai_next = NULL; /* The 'port' variable is a string because it's easier this way than if we pass NULL to getaddrinfo() and then try to fill in the numeric value into different types of returned sockaddr_in{6,}. */ #ifdef LIBPROXY_HDR if (vpninfo->proxy_factory) { char *url; char **proxies; int i = 0; free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; if (vpninfo->port == 443) i = asprintf(&url, "https://%s/%s", vpninfo->hostname, vpninfo->urlpath?:""); else i = asprintf(&url, "https://%s:%d/%s", vpninfo->hostname, vpninfo->port, vpninfo->urlpath?:""); if (i == -1) { ssl_sock = -ENOMEM; goto out; } proxies = px_proxy_factory_get_proxies(vpninfo->proxy_factory, url); i = 0; while (proxies && proxies[i]) { if (!vpninfo->proxy && (!strncmp(proxies[i], "http://", 7) || !strncmp(proxies[i], "socks://", 8) || !strncmp(proxies[i], "socks5://", 9))) internal_parse_url(proxies[i], &vpninfo->proxy_type, &vpninfo->proxy, &vpninfo->proxy_port, NULL, 0); i++; } free(url); free(proxies); if (vpninfo->proxy) vpn_progress(vpninfo, PRG_DEBUG, _("Proxy from libproxy: %s://%s:%d/\n"), vpninfo->proxy_type, vpninfo->proxy, vpninfo->port); } #endif if (vpninfo->proxy) { hostname = vpninfo->proxy; snprintf(port, 6, "%d", vpninfo->proxy_port); } else { hostname = vpninfo->hostname; snprintf(port, 6, "%d", vpninfo->port); } if (hostname[0] == '[' && hostname[strlen(hostname)-1] == ']') { hostname = strndup(hostname + 1, strlen(hostname) - 2); if (!hostname) { ssl_sock = -ENOMEM; goto out; } hints.ai_flags |= AI_NUMERICHOST; } err = getaddrinfo(hostname, port, &hints, &result); if (err) { vpn_progress(vpninfo, PRG_ERR, _("getaddrinfo failed for host '%s': %s\n"), hostname, gai_strerror(err)); if (hints.ai_flags & AI_NUMERICHOST) free(hostname); ssl_sock = -EINVAL; /* If we were just retrying for dynamic DNS, reconnct using the previously-known IP address */ if (vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Reconnecting to DynDNS server using previously cached IP address\n")); goto reconnect; } goto out; } if (hints.ai_flags & AI_NUMERICHOST) free(hostname); for (rp = result; rp ; rp = rp->ai_next) { char host[80]; host[0] = 0; if (!getnameinfo(rp->ai_addr, rp->ai_addrlen, host, sizeof(host), NULL, 0, NI_NUMERICHOST)) vpn_progress(vpninfo, PRG_INFO, vpninfo->proxy_type ? _("Attempting to connect to proxy %s%s%s:%s\n") : _("Attempting to connect to server %s%s%s:%s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port); ssl_sock = socket(rp->ai_family, rp->ai_socktype, rp->ai_protocol); if (ssl_sock < 0) continue; set_fd_cloexec(ssl_sock); if (cancellable_connect(vpninfo, ssl_sock, rp->ai_addr, rp->ai_addrlen) >= 0) { /* Store the peer address we actually used, so that DTLS can use it again later */ free(vpninfo->peer_addr); vpninfo->peer_addrlen = 0; vpninfo->peer_addr = malloc(rp->ai_addrlen); if (!vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate sockaddr storage\n")); closesocket(ssl_sock); ssl_sock = -ENOMEM; goto out; } vpninfo->peer_addrlen = rp->ai_addrlen; memcpy(vpninfo->peer_addr, rp->ai_addr, rp->ai_addrlen); /* If no proxy, ensure that we output *this* IP address in * authentication results because we're going to need to * reconnect to the *same* server from the rotation. And with * some trick DNS setups, it might possibly be a "rotation" * even if we only got one result from getaddrinfo() this * time. * * If there's a proxy, we're kind of screwed; we can't know * which IP address we connected to. Perhaps we ought to do * the DNS lookup locally and connect to a specific IP? */ if (!vpninfo->proxy && host[0]) { char *p = malloc(strlen(host) + 3); if (p) { free(vpninfo->unique_hostname); vpninfo->unique_hostname = p; if (rp->ai_family == AF_INET6) *p++ = '['; memcpy(p, host, strlen(host)); p += strlen(host); if (rp->ai_family == AF_INET6) *p++ = ']'; *p = 0; } } break; } closesocket(ssl_sock); ssl_sock = -1; /* If we're in DynDNS mode but this *was* the cached IP address, * don't bother falling back to it if it didn't work. */ if (vpninfo->peer_addr && vpninfo->peer_addrlen == rp->ai_addrlen && match_sockaddr(vpninfo->peer_addr, rp->ai_addr)) { vpn_progress(vpninfo, PRG_TRACE, _("Forgetting non-functional previous peer address\n")); free(vpninfo->peer_addr); vpninfo->peer_addr = 0; vpninfo->peer_addrlen = 0; } } freeaddrinfo(result); if (ssl_sock < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect to host %s\n"), vpninfo->proxy?:vpninfo->hostname); ssl_sock = -EINVAL; if (vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Reconnecting to DynDNS server using previously cached IP address\n")); goto reconnect; } goto out; } } if (vpninfo->proxy) { err = process_proxy(vpninfo, ssl_sock); if (err) { closesocket(ssl_sock); if (err == -EAGAIN) { /* Proxy authentication failed and we need to retry */ vpn_progress(vpninfo, PRG_DEBUG, _("Reconnecting to proxy %s\n"), vpninfo->proxy); goto reconnect; } ssl_sock = err; } } out: /* If proxy processing returned -EAGAIN to reconnect before attempting further auth, and we failed to reconnect, we have to clean up here. */ clear_auth_states(vpninfo, vpninfo->proxy_auth, 1); return ssl_sock; } int __attribute__ ((format (printf, 2, 3))) openconnect_SSL_printf(struct openconnect_info *vpninfo, const char *fmt, ...) { char buf[1024]; va_list args; buf[1023] = 0; va_start(args, fmt); vsnprintf(buf, 1023, fmt, args); va_end(args); return vpninfo->ssl_write(vpninfo, buf, strlen(buf)); } int __attribute__ ((format(printf, 4, 5))) request_passphrase(struct openconnect_info *vpninfo, const char *label, char **response, const char *fmt, ...) { struct oc_auth_form f; struct oc_form_opt o; char buf[1024]; va_list args; int ret; buf[1023] = 0; memset(&f, 0, sizeof(f)); va_start(args, fmt); vsnprintf(buf, 1023, fmt, args); va_end(args); f.auth_id = (char *)label; f.opts = &o; o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)label; o.label = buf; o._value = NULL; ret = process_auth_form(vpninfo, &f); if (!ret) { *response = o._value; return 0; } return -EIO; } #if defined(__sun__) || defined(__NetBSD__) || defined(__DragonFly__) int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { struct statvfs buf; char *sslkey = openconnect_utf8_to_legacy(vpninfo, vpninfo->sslkey); int err = 0; if (statvfs(sslkey, &buf)) { err = -errno; vpn_progress(vpninfo, PRG_ERR, _("statvfs: %s\n"), strerror(errno)); } else if (asprintf(&vpninfo->cert_password, "%lx", buf.f_fsid) == -1) err = -ENOMEM; if (sslkey != vpninfo->sslkey) free(sslkey); return err; } #elif defined(_WIN32) #include typedef BOOL WINAPI (*GVIBH)(HANDLE, LPWSTR, DWORD, LPDWORD, LPDWORD, LPDWORD, LPWSTR, DWORD); int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { HANDLE h; DWORD serial; HINSTANCE kernlib; GVIBH func = NULL; int success; int fd; /* Some versions of Windows don't have this so don't use standard load-time linking or it'll cause failures. */ kernlib = LoadLibraryA("Kernel32.dll"); if (!kernlib) { notsupp: vpn_progress(vpninfo, PRG_ERR, _("Could not obtain file system ID for passphrase\n")); return -EOPNOTSUPP; } func = (GVIBH)GetProcAddress(kernlib, "GetVolumeInformationByHandleW"); FreeLibrary(kernlib); if (!func) goto notsupp; fd = openconnect_open_utf8(vpninfo, vpninfo->sslkey, O_RDONLY); if (fd == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open private key file '%s': %s\n"), vpninfo->sslkey, strerror(errno)); return -ENOENT; } h = (HANDLE)_get_osfhandle(fd); success = func(h, NULL, 0, &serial, NULL, NULL, NULL, 0); close(fd); if (!success) return -EIO; if (asprintf(&vpninfo->cert_password, "%lx", serial) == -1) return -ENOMEM; return 0; } #else int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { char *sslkey = openconnect_utf8_to_legacy(vpninfo, vpninfo->sslkey); struct statfs buf; unsigned *fsid = (unsigned *)&buf.f_fsid; unsigned long long fsid64; int err = 0; if (statfs(sslkey, &buf)) { err = -errno; vpn_progress(vpninfo, PRG_ERR, _("statfs: %s\n"), strerror(errno)); return -err; } else { fsid64 = ((unsigned long long)fsid[0] << 32) | fsid[1]; if (asprintf(&vpninfo->cert_password, "%llx", fsid64) == -1) err = -ENOMEM; } if (sslkey != vpninfo->sslkey) free(sslkey); return err; } #endif #if defined(OPENCONNECT_OPENSSL) || defined(DTLS_OPENSSL) /* We put this here rather than in openssl.c because it might be needed for OpenSSL DTLS support even when GnuTLS is being used for HTTPS */ int openconnect_print_err_cb(const char *str, size_t len, void *ptr) { struct openconnect_info *vpninfo = ptr; vpn_progress(vpninfo, PRG_ERR, "%s", str); return 0; } #endif #ifdef FAKE_ANDROID_KEYSTORE char *keystore_strerror(int err) { return (char *)strerror(-err); } int keystore_fetch(const char *key, unsigned char **result) { unsigned char *data; struct stat st; int fd; int ret; fd = open(key, O_RDONLY); if (fd < 0) return -errno; if (fstat(fd, &st)) { ret = -errno; goto out_fd; } data = malloc(st.st_size + 1); if (!data) { ret = -ENOMEM; goto out_fd; } if (read(fd, data, st.st_size) != st.st_size) { ret = -EIO; free(data); goto out_fd; } data[st.st_size] = 0; *result = data; ret = st.st_size; out_fd: close(fd); return ret; } #elif defined(ANDROID_KEYSTORE) /* keystore.h isn't in the NDK so we need to define these */ #define NO_ERROR 1 #define LOCKED 2 #define UNINITIALIZED 3 #define SYSTEM_ERROR 4 #define PROTOCOL_ERROR 5 #define PERMISSION_DENIED 6 #define KEY_NOT_FOUND 7 #define VALUE_CORRUPTED 8 #define UNDEFINED_ACTION 9 #define WRONG_PASSWORD 10 const char *keystore_strerror(int err) { switch (-err) { case NO_ERROR: return _("No error"); case LOCKED: return _("Keystore locked"); case UNINITIALIZED: return _("Keystore uninitialized"); case SYSTEM_ERROR: return _("System error"); case PROTOCOL_ERROR: return _("Protocol error"); case PERMISSION_DENIED: return _("Permission denied"); case KEY_NOT_FOUND: return _("Key not found"); case VALUE_CORRUPTED: return _("Value corrupted"); case UNDEFINED_ACTION: return _("Undefined action"); case WRONG_PASSWORD: case WRONG_PASSWORD+1: case WRONG_PASSWORD+2: case WRONG_PASSWORD+3: return _("Wrong password"); default: return _("Unknown error"); } } /* Returns length, or a negative errno in its own namespace (handled by its own strerror function above). The numbers are from Android's keystore.h */ int keystore_fetch(const char *key, unsigned char **result) { struct sockaddr_un sa = { AF_UNIX, "/dev/socket/keystore" }; socklen_t sl = offsetof(struct sockaddr_un, sun_path) + strlen(sa.sun_path) + 1; unsigned char *data, *p; unsigned char buf[3]; int len, fd; int ret = -SYSTEM_ERROR; fd = socket(AF_UNIX, SOCK_STREAM, 0); if (fd < 0) return -SYSTEM_ERROR; if (connect(fd, (void *)&sa, sl)) { close(fd); return -SYSTEM_ERROR; } len = strlen(key); buf[0] = 'g'; store_be16(buf + 1, len); if (send(fd, buf, 3, 0) != 3 || send(fd, key, len, 0) != len || shutdown(fd, SHUT_WR) || recv(fd, buf, 1, 0) != 1) goto out; if (buf[0] != NO_ERROR) { /* Should never be zero */ ret = buf[0] ? -buf[0] : -PROTOCOL_ERROR; goto out; } if (recv(fd, buf, 2, 0) != 2) goto out; len = load_be16(buf); data = malloc(len); if (!data) goto out; p = data; ret = len; while (len) { int got = recv(fd, p, len, 0); if (got <= 0) { free(data); ret = -PROTOCOL_ERROR; goto out; } len -= got; p += got; } *result = data; out: close(fd); return ret; } #endif void cmd_fd_set(struct openconnect_info *vpninfo, fd_set *fds, int *maxfd) { if (vpninfo->cmd_fd != -1) { FD_SET(vpninfo->cmd_fd, fds); if (vpninfo->cmd_fd > *maxfd) *maxfd = vpninfo->cmd_fd; } } void check_cmd_fd(struct openconnect_info *vpninfo, fd_set *fds) { char cmd; if (vpninfo->cmd_fd == -1 || !FD_ISSET(vpninfo->cmd_fd, fds)) return; if (vpninfo->cmd_fd_write == -1) { /* legacy openconnect_set_cancel_fd() users */ vpninfo->got_cancel_cmd = 1; return; } #ifdef _WIN32 if (recv(vpninfo->cmd_fd, &cmd, 1, 0) != 1) return; #else if (read(vpninfo->cmd_fd, &cmd, 1) != 1) return; #endif switch (cmd) { case OC_CMD_CANCEL: case OC_CMD_DETACH: vpninfo->got_cancel_cmd = 1; vpninfo->cancel_type = cmd; break; case OC_CMD_PAUSE: vpninfo->got_pause_cmd = 1; break; case OC_CMD_STATS: if (vpninfo->stats_handler) vpninfo->stats_handler(vpninfo->cbdata, &vpninfo->stats); } } int is_cancel_pending(struct openconnect_info *vpninfo, fd_set *fds) { check_cmd_fd(vpninfo, fds); return vpninfo->got_cancel_cmd; } void poll_cmd_fd(struct openconnect_info *vpninfo, int timeout) { fd_set rd_set; int maxfd = 0; time_t expiration = time(NULL) + timeout, now = 0; while (now < expiration && !vpninfo->got_cancel_cmd && !vpninfo->got_pause_cmd) { struct timeval tv; now = time(NULL); tv.tv_sec = now >= expiration ? 0 : expiration - now; tv.tv_usec = 0; FD_ZERO(&rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, NULL, NULL, &tv); check_cmd_fd(vpninfo, &rd_set); } } #ifdef _WIN32 #include #include int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode) { wchar_t *fname_w; int nr_chars = MultiByteToWideChar(CP_UTF8, 0, fname, -1, NULL, 0); int fd; if (!nr_chars) { errno = EINVAL; return -1; } fname_w = malloc(nr_chars * sizeof(wchar_t)); if (!fname_w) { errno = ENOMEM; return -1; } MultiByteToWideChar(CP_UTF8, 0, fname, -1, fname_w, nr_chars); fd = _wopen(fname_w, mode, _S_IREAD | _S_IWRITE); free(fname_w); return fd; } #else int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode) { char *legacy_fname = openconnect_utf8_to_legacy(vpninfo, fname); int fd; fd = open(legacy_fname, mode, 0644); if (legacy_fname != fname) free(legacy_fname); return fd; } #endif FILE *openconnect_fopen_utf8(struct openconnect_info *vpninfo, const char *fname, const char *mode) { int fd; int flags; if (!strcmp(mode, "r")) flags = O_RDONLY|O_CLOEXEC; else if (!strcmp(mode, "rb")) flags = O_RDONLY|O_CLOEXEC|O_BINARY; else if (!strcmp(mode, "w")) flags = O_WRONLY|O_CLOEXEC|O_CREAT|O_TRUNC; else if (!strcmp(mode, "wb")) flags = O_WRONLY|O_CLOEXEC|O_CREAT|O_TRUNC|O_BINARY; else { /* This should never happen, but if we forget and start using other modes without implementing proper mode->flags conversion, complain! */ vpn_progress(vpninfo, PRG_ERR, _("openconnect_fopen_utf8() used with unsupported mode '%s'\n"), mode); return NULL; } fd = openconnect_open_utf8(vpninfo, fname, flags); if (fd == -1) return NULL; return fdopen(fd, mode); } int udp_sockaddr(struct openconnect_info *vpninfo, int port) { free(vpninfo->dtls_addr); vpninfo->dtls_addr = malloc(vpninfo->peer_addrlen); if (!vpninfo->dtls_addr) return -ENOMEM; memcpy(vpninfo->dtls_addr, vpninfo->peer_addr, vpninfo->peer_addrlen); if (vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in *sin = (void *)vpninfo->dtls_addr; sin->sin_port = htons(port); } else if (vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 *sin = (void *)vpninfo->dtls_addr; sin->sin6_port = htons(port); } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown protocol family %d. Cannot create UDP server address\n"), vpninfo->peer_addr->sa_family); return -EINVAL; } return 0; } int udp_connect(struct openconnect_info *vpninfo) { int fd, sndbuf; fd = socket(vpninfo->peer_addr->sa_family, SOCK_DGRAM, IPPROTO_UDP); if (fd < 0) { vpn_perror(vpninfo, _("Open UDP socket")); return -EINVAL; } if (vpninfo->protect_socket) vpninfo->protect_socket(vpninfo->cbdata, fd); sndbuf = vpninfo->ip_info.mtu * 2; setsockopt(fd, SOL_SOCKET, SO_SNDBUF, (void *)&sndbuf, sizeof(sndbuf)); if (vpninfo->dtls_local_port) { union { struct sockaddr_in in; struct sockaddr_in6 in6; } dtls_bind_addr; int dtls_bind_addrlen; memset(&dtls_bind_addr, 0, sizeof(dtls_bind_addr)); if (vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in *addr = &dtls_bind_addr.in; dtls_bind_addrlen = sizeof(*addr); addr->sin_family = AF_INET; addr->sin_addr.s_addr = INADDR_ANY; addr->sin_port = htons(vpninfo->dtls_local_port); } else if (vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 *addr = &dtls_bind_addr.in6; dtls_bind_addrlen = sizeof(*addr); addr->sin6_family = AF_INET6; addr->sin6_addr = in6addr_any; addr->sin6_port = htons(vpninfo->dtls_local_port); } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown protocol family %d. Cannot use UDP transport\n"), vpninfo->peer_addr->sa_family); vpninfo->dtls_attempt_period = 0; closesocket(fd); return -EINVAL; } if (bind(fd, (struct sockaddr *)&dtls_bind_addr, dtls_bind_addrlen)) { vpn_perror(vpninfo, _("Bind UDP socket")); closesocket(fd); return -EINVAL; } } if (connect(fd, vpninfo->dtls_addr, vpninfo->peer_addrlen)) { vpn_perror(vpninfo, _("Connect UDP socket\n")); closesocket(fd); return -EINVAL; } set_fd_cloexec(fd); set_sock_nonblock(fd); return fd; } int ssl_reconnect(struct openconnect_info *vpninfo) { int ret; int timeout; int interval; openconnect_close_https(vpninfo, 0); timeout = vpninfo->reconnect_timeout; interval = vpninfo->reconnect_interval; free(vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; free(vpninfo->tun_pkt); vpninfo->tun_pkt = NULL; while ((ret = vpninfo->proto.tcp_connect(vpninfo))) { if (timeout <= 0) return ret; if (ret == -EPERM) { vpn_progress(vpninfo, PRG_ERR, _("Cookie is no longer valid, ending session\n")); return ret; } vpn_progress(vpninfo, PRG_INFO, _("sleep %ds, remaining timeout %ds\n"), interval, timeout); poll_cmd_fd(vpninfo, interval); if (vpninfo->got_cancel_cmd) return -EINTR; if (vpninfo->got_pause_cmd) return 0; timeout -= interval; interval += vpninfo->reconnect_interval; if (interval > RECONNECT_INTERVAL_MAX) interval = RECONNECT_INTERVAL_MAX; } script_config_tun(vpninfo, "reconnect"); return 0; } openconnect-7.06/openssl.c0000664000076400007640000012642312474046503012560 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include #include int openconnect_sha1(unsigned char *result, void *data, int len) { EVP_MD_CTX c; EVP_MD_CTX_init(&c); EVP_Digest(data, len, result, NULL, EVP_sha1(), NULL); EVP_MD_CTX_cleanup(&c); return 0; } int openconnect_md5(unsigned char *result, void *data, int len) { EVP_MD_CTX c; EVP_MD_CTX_init(&c); EVP_Digest(data, len, result, NULL, EVP_md5(), NULL); EVP_MD_CTX_cleanup(&c); return 0; } int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *certinfo; size_t l; if (!i2d_X509_bio(bp, vpninfo->peer_cert)) { BIO_free(bp); return -EIO; } BIO_get_mem_ptr(bp, &certinfo); l = certinfo->length; *buf = malloc(l); if (!*buf) { BIO_free(bp); return -ENOMEM; } memcpy(*buf, certinfo->data, l); BIO_free(bp); return l; } int openconnect_random(void *bytes, int len) { if (RAND_bytes(bytes, len) != 1) return -EIO; return 0; } /* Helper functions for reading/writing lines over SSL. We could use cURL for the HTTP stuff, but it's overkill */ static int openconnect_openssl_write(struct openconnect_info *vpninfo, char *buf, size_t len) { size_t orig_len = len; while (len) { int done = SSL_write(vpninfo->https_ssl, buf, len); if (done > 0) len -= done; else { int err = SSL_get_error(vpninfo->https_ssl, done); fd_set wr_set, rd_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (err == SSL_ERROR_WANT_READ) FD_SET(vpninfo->ssl_fd, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(vpninfo->ssl_fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to write to SSL socket\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL write cancelled\n")); return -EINTR; } } } return orig_len; } static int openconnect_openssl_read(struct openconnect_info *vpninfo, char *buf, size_t len) { int done; while ((done = SSL_read(vpninfo->https_ssl, buf, len)) == -1) { int err = SSL_get_error(vpninfo->https_ssl, done); fd_set wr_set, rd_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (err == SSL_ERROR_WANT_READ) FD_SET(vpninfo->ssl_fd, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(vpninfo->ssl_fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); return -EINTR; } } return done; } static int openconnect_openssl_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while (1) { ret = SSL_read(vpninfo->https_ssl, buf + i, 1); if (ret == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } else { fd_set rd_set, wr_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&rd_set); FD_ZERO(&wr_set); ret = SSL_get_error(vpninfo->https_ssl, ret); if (ret == SSL_ERROR_WANT_READ) FD_SET(vpninfo->ssl_fd, &rd_set); else if (ret == SSL_ERROR_WANT_WRITE) FD_SET(vpninfo->ssl_fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; break; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); ret = -EINTR; break; } } } buf[i] = 0; return i ?: ret; } int ssl_nonblock_read(struct openconnect_info *vpninfo, void *buf, int maxlen) { int len, ret; len = SSL_read(vpninfo->https_ssl, buf, maxlen); if (len > 0) return len; ret = SSL_get_error(vpninfo->https_ssl, len); if (ret == SSL_ERROR_SYSCALL || ret == SSL_ERROR_ZERO_RETURN) { vpn_progress(vpninfo, PRG_ERR, _("SSL read error %d (server probably closed connection); reconnecting.\n"), ret); return -EIO; } return 0; } int ssl_nonblock_write(struct openconnect_info *vpninfo, void *buf, int buflen) { int ret; ret = SSL_write(vpninfo->https_ssl, buf, buflen); if (ret > 0) return ret; ret = SSL_get_error(vpninfo->https_ssl, ret); switch (ret) { case SSL_ERROR_WANT_WRITE: /* Waiting for the socket to become writable -- it's probably stalled, and/or the buffers are full */ monitor_write_fd(vpninfo, ssl); case SSL_ERROR_WANT_READ: return 0; default: vpn_progress(vpninfo, PRG_ERR, _("SSL_write failed: %d\n"), ret); openconnect_report_ssl_errors(vpninfo); return -1; } } /* UI handling. All this just to handle the PIN callback from the TPM ENGINE, and turn it into a call to our ->process_auth_form function */ struct ui_data { struct openconnect_info *vpninfo; struct oc_form_opt **last_opt; struct oc_auth_form form; }; struct ui_form_opt { struct oc_form_opt opt; UI_STRING *uis; }; /* Ick. But there is no way to pass this sanely through OpenSSL */ static struct openconnect_info *ui_vpninfo; static int ui_open(UI *ui) { struct openconnect_info *vpninfo = ui_vpninfo; /* Ick */ struct ui_data *ui_data; if (!vpninfo || !vpninfo->process_auth_form) return 0; ui_data = malloc(sizeof(*ui_data)); if (!ui_data) return 0; memset(ui_data, 0, sizeof(*ui_data)); ui_data->last_opt = &ui_data->form.opts; ui_data->vpninfo = vpninfo; ui_data->form.auth_id = (char *)"openssl_ui"; UI_add_user_data(ui, ui_data); return 1; } static int ui_write(UI *ui, UI_STRING *uis) { struct ui_data *ui_data = UI_get0_user_data(ui); struct ui_form_opt *opt; switch (UI_get_string_type(uis)) { case UIT_ERROR: ui_data->form.error = (char *)UI_get0_output_string(uis); break; case UIT_INFO: ui_data->form.message = (char *)UI_get0_output_string(uis); break; case UIT_PROMPT: opt = malloc(sizeof(*opt)); if (!opt) return 1; memset(opt, 0, sizeof(*opt)); opt->uis = uis; opt->opt.label = opt->opt.name = (char *)UI_get0_output_string(uis); if (UI_get_input_flags(uis) & UI_INPUT_FLAG_ECHO) opt->opt.type = OC_FORM_OPT_TEXT; else opt->opt.type = OC_FORM_OPT_PASSWORD; *(ui_data->last_opt) = &opt->opt; ui_data->last_opt = &opt->opt.next; break; default: vpn_progress(ui_data->vpninfo, PRG_ERR, _("Unhandled SSL UI request type %d\n"), UI_get_string_type(uis)); return 0; } return 1; } static int ui_flush(UI *ui) { struct ui_data *ui_data = UI_get0_user_data(ui); struct openconnect_info *vpninfo = ui_data->vpninfo; struct ui_form_opt *opt; int ret; ret = process_auth_form(vpninfo, &ui_data->form); if (ret) return 0; for (opt = (struct ui_form_opt *)ui_data->form.opts; opt; opt = (struct ui_form_opt *)opt->opt.next) { if (opt->opt._value && opt->uis) UI_set_result(ui, opt->uis, opt->opt._value); } return 1; } static int ui_close(UI *ui) { struct ui_data *ui_data = UI_get0_user_data(ui); struct ui_form_opt *opt, *next_opt; opt = (struct ui_form_opt *)ui_data->form.opts; while (opt) { next_opt = (struct ui_form_opt *)opt->opt.next; if (opt->opt._value) free(opt->opt._value); free(opt); opt = next_opt; } free(ui_data); UI_add_user_data(ui, NULL); return 1; } static UI_METHOD *create_openssl_ui(struct openconnect_info *vpninfo) { UI_METHOD *ui_method = UI_create_method((char *)"AnyConnect VPN UI"); /* There is a race condition here because of the use of the static ui_vpninfo pointer. This sucks, but it's OpenSSL's fault and in practice it's *never* going to hurt us. This UI is only used for loading certificates from a TPM; for PKCS#12 and PEM files we hook the passphrase request differently. The ui_vpninfo variable is set here, and is used from ui_open() when the TPM ENGINE decides it needs to ask the user for a PIN. The race condition exists because theoretically, there could be more than one thread using libopenconnect and trying to authenticate to a VPN server, within the *same* process. And if *both* are using certificates from the TPM, and *both* manage to be within that short window of time between setting ui_vpninfo and invoking ui_open() to fetch the PIN, then one connection's ->process_auth_form() could get a PIN request for the *other* connection. However, the only thing that ever does run libopenconnect more than once from the same process is KDE's NetworkManager support, and NetworkManager doesn't *support* having more than one VPN connected anyway, so first that would have to be fixed and then you'd have to connect to two VPNs simultaneously by clicking 'connect' on both at *exactly* the same time and then getting *really* unlucky. Oh, and the KDE support won't be using OpenSSL anyway because of licensing conflicts... so although this sucks, I'm not going to lose sleep over it. */ ui_vpninfo = vpninfo; /* Set up a UI method of our own for password/passphrase requests */ UI_method_set_opener(ui_method, ui_open); UI_method_set_writer(ui_method, ui_write); UI_method_set_flusher(ui_method, ui_flush); UI_method_set_closer(ui_method, ui_close); return ui_method; } static int pem_pw_cb(char *buf, int len, int w, void *v) { struct openconnect_info *vpninfo = v; char *pass = NULL; int plen; if (vpninfo->cert_password) { pass = vpninfo->cert_password; vpninfo->cert_password = NULL; } else if (request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:"))) return -1; plen = strlen(pass); if (len <= plen) { vpn_progress(vpninfo, PRG_ERR, _("PEM password too long (%d >= %d)\n"), plen, len); free(pass); return -1; } memcpy(buf, pass, plen+1); free(pass); return plen; } static int install_extra_certs(struct openconnect_info *vpninfo, const char *source, STACK_OF(X509) *ca) { X509 *cert = vpninfo->cert_x509; int i; next: for (i = 0; i < sk_X509_num(ca); i++) { X509 *cert2 = sk_X509_value(ca, i); if (X509_check_issued(cert2, cert) == X509_V_OK) { char buf[200]; if (cert2 == cert) break; if (X509_check_issued(cert2, cert2) == X509_V_OK) break; X509_NAME_oneline(X509_get_subject_name(cert2), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_DEBUG, _("Extra cert from %s: '%s'\n"), source, buf); CRYPTO_add(&cert2->references, 1, CRYPTO_LOCK_X509); SSL_CTX_add_extra_chain_cert(vpninfo->https_ctx, cert2); cert = cert2; goto next; } } sk_X509_pop_free(ca, X509_free); return 0; } static int load_pkcs12_certificate(struct openconnect_info *vpninfo, PKCS12 *p12) { EVP_PKEY *pkey = NULL; X509 *cert = NULL; STACK_OF(X509) *ca; int ret = 0; char *pass; pass = vpninfo->cert_password; vpninfo->cert_password = NULL; retrypass: /* We do this every time round the loop, to work around a bug in OpenSSL < 1.0.0-beta2 -- where the stack at *ca will be freed when PKCS12_parse() returns an error, but *ca is left pointing to the freed memory. */ ca = NULL; if (!PKCS12_parse(p12, pass, &pkey, &cert, &ca)) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_PKCS12 && ERR_GET_FUNC(err) == PKCS12_F_PKCS12_PARSE && ERR_GET_REASON(err) == PKCS12_R_MAC_VERIFY_FAILURE) { if (pass) vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#12 certificate file\n")); free(pass); if (request_passphrase(vpninfo, "openconnect_pkcs12", &pass, _("Enter PKCS#12 pass phrase:")) < 0) { PKCS12_free(p12); return -EINVAL; } goto retrypass; } openconnect_report_ssl_errors(vpninfo); vpn_progress(vpninfo, PRG_ERR, _("Parse PKCS#12 failed (see above errors)\n")); PKCS12_free(p12); free(pass); return -EINVAL; } free(pass); if (cert) { char buf[200]; vpninfo->cert_x509 = cert; SSL_CTX_use_certificate(vpninfo->https_ctx, cert); X509_NAME_oneline(X509_get_subject_name(cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_INFO, _("Using client certificate '%s'\n"), buf); } else { vpn_progress(vpninfo, PRG_ERR, _("PKCS#12 contained no certificate!")); ret = -EINVAL; } if (pkey) { SSL_CTX_use_PrivateKey(vpninfo->https_ctx, pkey); EVP_PKEY_free(pkey); } else { vpn_progress(vpninfo, PRG_ERR, _("PKCS#12 contained no private key!")); ret = -EINVAL; } if (ca) install_extra_certs(vpninfo, _("PKCS#12"), ca); PKCS12_free(p12); return ret; } #ifdef HAVE_ENGINE static int load_tpm_certificate(struct openconnect_info *vpninfo) { ENGINE *e; EVP_PKEY *key; UI_METHOD *meth = NULL; int ret = 0; ENGINE_load_builtin_engines(); e = ENGINE_by_id("tpm"); if (!e) { vpn_progress(vpninfo, PRG_ERR, _("Can't load TPM engine.\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!ENGINE_init(e) || !ENGINE_set_default_RSA(e) || !ENGINE_set_default_RAND(e)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to init TPM engine\n")); openconnect_report_ssl_errors(vpninfo); ENGINE_free(e); return -EINVAL; } if (vpninfo->cert_password) { if (!ENGINE_ctrl_cmd(e, "PIN", strlen(vpninfo->cert_password), vpninfo->cert_password, NULL, 0)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TPM SRK password\n")); openconnect_report_ssl_errors(vpninfo); } vpninfo->cert_password = NULL; free(vpninfo->cert_password); } else { /* Provide our own UI method to handle the PIN callback. */ meth = create_openssl_ui(vpninfo); } key = ENGINE_load_private_key(e, vpninfo->sslkey, meth, NULL); if (meth) UI_destroy_method(meth); if (!key) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM private key\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; goto out; } if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Add key from TPM failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; } EVP_PKEY_free(key); out: ENGINE_finish(e); ENGINE_free(e); return ret; } #else static int load_tpm_certificate(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM support\n")); return -EINVAL; } #endif /* This is a reimplementation of SSL_CTX_use_certificate_chain_file(). * We do this for three reasons: * * - Firstly, we have no way to obtain the primary X509 certificate * after SSL_CTX_use_certificate_chain_file() has loaded it, and we * need to inspect it to check for expiry and report its name etc. * So in the past we've opened the cert file again and read the cert * again in a reload_pem_cert() function which was a partial * reimplementation anyway. * * - Secondly, on Windows, OpenSSL only partially handles UTF-8 filenames. * Specifically, BIO_new_file() will convert UTF-8 to UTF-16 and attempt * to use _wfopen() to open the file, but BIO_read_filename() will not. * It is BIO_read_filename() which the SSL_CTX_*_file functions use, and * thus they don't work with UTF-8 file names. This is filed as RT#3479: * http://rt.openssl.org/Ticket/Display.html?id=3479 * * - Finally, and least importantly, it does actually matter which supporting * certs we offer on the wire because of RT#1942. Doing this for ourselves * allows us to explicitly print the supporting certs that we're using, * which may assist in diagnosing problems. */ static int load_cert_chain_file(struct openconnect_info *vpninfo) { BIO *b; FILE *f = openconnect_fopen_utf8(vpninfo, vpninfo->cert, "rb"); STACK_OF(X509) *extra_certs = NULL; char buf[200]; if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open certificate file %s: %s\n"), vpninfo->cert, strerror(errno)); return -ENOENT; } b = BIO_new_fp(f, 1); if (!b) { fclose(f); err: vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } vpninfo->cert_x509 = PEM_read_bio_X509_AUX(b, NULL, NULL, NULL); if (!vpninfo->cert_x509) { BIO_free(b); goto err; } X509_NAME_oneline(X509_get_subject_name(vpninfo->cert_x509), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_INFO, _("Using client certificate '%s'\n"), buf); if (!SSL_CTX_use_certificate(vpninfo->https_ctx, vpninfo->cert_x509)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to install certificate in OpenSSL context\n")); openconnect_report_ssl_errors(vpninfo); BIO_free(b); return -EIO; } while (1) { X509 *x = PEM_read_bio_X509(b, NULL, NULL, NULL); if (!x) { unsigned long err = ERR_peek_last_error(); if (ERR_GET_LIB(err) == ERR_LIB_PEM && ERR_GET_REASON(err) == PEM_R_NO_START_LINE) ERR_clear_error(); else goto err_extra; break; } if (!extra_certs) extra_certs = sk_X509_new_null(); if (!extra_certs) { err_extra: vpn_progress(vpninfo, PRG_ERR, _("Failed to process all supporting certs. Trying anyway...\n")); openconnect_report_ssl_errors(vpninfo); X509_free(x); /* It might work without... */ break; } if (!sk_X509_push(extra_certs, x)) goto err_extra; } BIO_free(b); if (extra_certs) install_extra_certs(vpninfo, _("PEM file"), extra_certs); return 0; } #ifdef ANDROID_KEYSTORE static BIO *BIO_from_keystore(struct openconnect_info *vpninfo, const char *item) { unsigned char *content; BIO *b; int len; const char *p = item + 9; /* Skip first two slashes if the user has given it as keystore://foo ... */ if (*p == '/') p++; if (*p == '/') p++; len = keystore_fetch(p, &content); if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load item '%s' from keystore: %s\n"), p, keystore_strerror(len)); return NULL; } if (!(b = BIO_new(BIO_s_mem())) || BIO_write(b, content, len) != len) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create BIO for keystore item '%s'\n"), p); free(content); BIO_free(b); return NULL; } free(content); return b; } #endif static int is_pem_password_error(struct openconnect_info *vpninfo) { unsigned long err = ERR_peek_error(); openconnect_report_ssl_errors(vpninfo); #ifndef EVP_F_EVP_DECRYPTFINAL_EX #define EVP_F_EVP_DECRYPTFINAL_EX EVP_F_EVP_DECRYPTFINAL #endif /* If the user fat-fingered the passphrase, try again */ if (ERR_GET_LIB(err) == ERR_LIB_EVP && ERR_GET_FUNC(err) == EVP_F_EVP_DECRYPTFINAL_EX && ERR_GET_REASON(err) == EVP_R_BAD_DECRYPT) { vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed (wrong passphrase?)\n")); ERR_clear_error(); return 1; } vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed (see above errors)\n")); return 0; } static int load_certificate(struct openconnect_info *vpninfo) { FILE *f; char buf[256]; if (!strncmp(vpninfo->cert, "pkcs11:", 7)) { int ret = load_pkcs11_certificate(vpninfo); if (ret) return ret; goto got_cert; } vpn_progress(vpninfo, PRG_DEBUG, _("Using certificate file %s\n"), vpninfo->cert); if (strncmp(vpninfo->cert, "keystore:", 9)) { PKCS12 *p12; f = openconnect_fopen_utf8(vpninfo, vpninfo->cert, "rb"); if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open certificate file %s: %s\n"), vpninfo->cert, strerror(errno)); return -ENOENT; } p12 = d2i_PKCS12_fp(f, NULL); fclose(f); if (p12) return load_pkcs12_certificate(vpninfo, p12); /* Not PKCS#12. Clear error and fall through to see if it's a PEM file... */ ERR_clear_error(); } /* It's PEM or TPM now, and either way we need to load the plain cert: */ #ifdef ANDROID_KEYSTORE if (!strncmp(vpninfo->cert, "keystore:", 9)) { BIO *b = BIO_from_keystore(vpninfo, vpninfo->cert); if (!b) return -EINVAL; vpninfo->cert_x509 = PEM_read_bio_X509_AUX(b, NULL, pem_pw_cb, vpninfo); BIO_free(b); if (!vpninfo->cert_x509) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load X509 certificate from keystore\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!SSL_CTX_use_certificate(vpninfo->https_ctx, vpninfo->cert_x509)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to use X509 certificate from keystore\n")); openconnect_report_ssl_errors(vpninfo); X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; return -EINVAL; } } else #endif /* ANDROID_KEYSTORE */ { int ret = load_cert_chain_file(vpninfo); if (ret) return ret; } got_cert: #ifdef ANDROID_KEYSTORE if (!strncmp(vpninfo->sslkey, "keystore:", 9)) { EVP_PKEY *key; BIO *b; again_android: b = BIO_from_keystore(vpninfo, vpninfo->sslkey); if (!b) return -EINVAL; key = PEM_read_bio_PrivateKey(b, NULL, pem_pw_cb, vpninfo); BIO_free(b); if (!key) { if (is_pem_password_error(vpninfo)) goto again_android; return -EINVAL; } if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to use private key from keystore\n")); EVP_PKEY_free(key); X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; return -EINVAL; } return 0; } #endif /* ANDROID_KEYSTORE */ if (!strncmp(vpninfo->sslkey, "pkcs11:", 7)) return load_pkcs11_key(vpninfo); f = openconnect_fopen_utf8(vpninfo, vpninfo->sslkey, "rb"); if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open private key file %s: %s\n"), vpninfo->cert, strerror(errno)); return -ENOENT; } buf[255] = 0; while (fgets(buf, 255, f)) { if (!strcmp(buf, "-----BEGIN TSS KEY BLOB-----\n")) { fclose(f); return load_tpm_certificate(vpninfo); } else if (!strcmp(buf, "-----BEGIN RSA PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN DSA PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN ENCRYPTED PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN PRIVATE KEY-----\n")) { RSA *key; BIO *b = BIO_new_fp(f, BIO_CLOSE); if (!b) { fclose(f); vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed\n")); openconnect_report_ssl_errors(vpninfo); } again: fseek(f, 0, SEEK_SET); key = PEM_read_bio_RSAPrivateKey(b, NULL, pem_pw_cb, vpninfo); if (!key) { if (is_pem_password_error(vpninfo)) goto again; BIO_free(b); return -EINVAL; } SSL_CTX_use_RSAPrivateKey(vpninfo->https_ctx, key); RSA_free(key); BIO_free(b); return 0; } } fclose(f); vpn_progress(vpninfo, PRG_ERR, _("Failed to identify private key type in '%s'\n"), vpninfo->sslkey); return -EINVAL; } static int get_cert_fingerprint(struct openconnect_info *vpninfo, X509 *cert, const EVP_MD *type, char *buf) { unsigned char md[EVP_MAX_MD_SIZE]; unsigned int i, n; if (!X509_digest(cert, type, md, &n)) return -ENOMEM; for (i = 0; i < n; i++) sprintf(&buf[i*2], "%02X", md[i]); return 0; } int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf) { return get_cert_fingerprint(vpninfo, cert, EVP_md5(), buf); } static int set_peer_cert_hash(struct openconnect_info *vpninfo) { unsigned char sha1[SHA1_SIZE]; EVP_PKEY *pkey; BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *keyinfo; int i; /* We can't use X509_pubkey_digest() because it only hashes the subjectPublicKey BIT STRING, and not the whole of the SubjectPublicKeyInfo SEQUENCE. */ pkey = X509_get_pubkey(vpninfo->peer_cert); if (!i2d_PUBKEY_bio(bp, pkey)) { EVP_PKEY_free(pkey); BIO_free(bp); return -ENOMEM; } EVP_PKEY_free(pkey); BIO_get_mem_ptr(bp, &keyinfo); openconnect_sha1(sha1, keyinfo->data, keyinfo->length); BIO_free(bp); vpninfo->peer_cert_hash = malloc(SHA1_SIZE * 2 + 6); if (vpninfo->peer_cert_hash) { snprintf(vpninfo->peer_cert_hash, 6, "sha1:"); for (i = 0; i < sizeof(sha1); i++) sprintf(&vpninfo->peer_cert_hash[i*2 + 5], "%02x", sha1[i]); } return 0; } static int match_hostname_elem(const char *hostname, int helem_len, const char *match, int melem_len) { if (!helem_len && !melem_len) return 0; if (!helem_len || !melem_len) return -1; if (match[0] == '*') { int i; for (i = 1 ; i <= helem_len; i++) { if (!match_hostname_elem(hostname + i, helem_len - i, match + 1, melem_len - 1)) return 0; } return -1; } /* From the NetBSD (5.1) man page for ctype(3): Values of type char or signed char must first be cast to unsigned char, to ensure that the values are within the correct range. The result should then be cast to int to avoid warnings from some compilers. We do indeed get warning "array subscript has type 'char'" without the casts. Ick. */ if (toupper((int)(unsigned char)hostname[0]) == toupper((int)(unsigned char)match[0])) return match_hostname_elem(hostname + 1, helem_len - 1, match + 1, melem_len - 1); return -1; } static int match_hostname(const char *hostname, const char *match) { while (*match) { const char *h_dot, *m_dot; int helem_len, melem_len; h_dot = strchr(hostname, '.'); m_dot = strchr(match, '.'); if (h_dot && m_dot) { helem_len = h_dot - hostname + 1; melem_len = m_dot - match + 1; } else if (!h_dot && !m_dot) { helem_len = strlen(hostname); melem_len = strlen(match); } else return -1; if (match_hostname_elem(hostname, helem_len, match, melem_len)) return -1; hostname += helem_len; match += melem_len; } if (*hostname) return -1; return 0; } /* cf. RFC2818 and RFC2459 */ static int match_cert_hostname(struct openconnect_info *vpninfo, X509 *peer_cert) { STACK_OF(GENERAL_NAME) *altnames; X509_NAME *subjname; ASN1_STRING *subjasn1; char *subjstr = NULL; int addrlen = 0; int i, altdns = 0; char addrbuf[sizeof(struct in6_addr)]; int ret; /* Allow GEN_IP in the certificate only if we actually connected by IP address rather than by name. */ if (inet_pton(AF_INET, vpninfo->hostname, addrbuf) > 0) addrlen = 4; else if (inet_pton(AF_INET6, vpninfo->hostname, addrbuf) > 0) addrlen = 16; else if (vpninfo->hostname[0] == '[' && vpninfo->hostname[strlen(vpninfo->hostname)-1] == ']') { char *p = &vpninfo->hostname[strlen(vpninfo->hostname)-1]; *p = 0; if (inet_pton(AF_INET6, vpninfo->hostname + 1, addrbuf) > 0) addrlen = 16; *p = ']'; } altnames = X509_get_ext_d2i(peer_cert, NID_subject_alt_name, NULL, NULL); for (i = 0; i < sk_GENERAL_NAME_num(altnames); i++) { const GENERAL_NAME *this = sk_GENERAL_NAME_value(altnames, i); if (this->type == GEN_DNS) { char *str; int len = ASN1_STRING_to_UTF8((void *)&str, this->d.ia5); if (len < 0) continue; altdns = 1; /* We don't like names with embedded NUL */ if (strlen(str) != len) continue; if (!match_hostname(vpninfo->hostname, str)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched DNS altname '%s'\n"), str); GENERAL_NAMES_free(altnames); OPENSSL_free(str); return 0; } else { vpn_progress(vpninfo, PRG_DEBUG, _("No match for altname '%s'\n"), str); } OPENSSL_free(str); } else if (this->type == GEN_IPADD && addrlen) { char host[80]; int family; if (this->d.ip->length == 4) { family = AF_INET; } else if (this->d.ip->length == 16) { family = AF_INET6; } else { vpn_progress(vpninfo, PRG_ERR, _("Certificate has GEN_IPADD altname with bogus length %d\n"), this->d.ip->length); continue; } /* We only do this for the debug messages */ inet_ntop(family, this->d.ip->data, host, sizeof(host)); if (this->d.ip->length == addrlen && !memcmp(addrbuf, this->d.ip->data, addrlen)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); GENERAL_NAMES_free(altnames); return 0; } else { vpn_progress(vpninfo, PRG_DEBUG, _("No match for %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); } } else if (this->type == GEN_URI) { char *str; char *url_proto, *url_host, *url_path, *url_host2; int url_port; int len = ASN1_STRING_to_UTF8((void *)&str, this->d.ia5); if (len < 0) continue; /* We don't like names with embedded NUL */ if (strlen(str) != len) continue; if (internal_parse_url(str, &url_proto, &url_host, &url_port, &url_path, 0)) { OPENSSL_free(str); continue; } if (!url_proto || strcasecmp(url_proto, "https")) goto no_uri_match; if (url_port != vpninfo->port) goto no_uri_match; /* Leave url_host as it was so that it can be freed */ url_host2 = url_host; if (addrlen == 16 && vpninfo->hostname[0] != '[' && url_host[0] == '[' && url_host[strlen(url_host)-1] == ']') { /* Cope with https://[IPv6]/ when the hostname is bare IPv6 */ url_host[strlen(url_host)-1] = 0; url_host2++; } if (strcasecmp(vpninfo->hostname, url_host2)) goto no_uri_match; if (url_path) { vpn_progress(vpninfo, PRG_DEBUG, _("URI '%s' has non-empty path; ignoring\n"), str); goto no_uri_match_silent; } vpn_progress(vpninfo, PRG_DEBUG, _("Matched URI '%s'\n"), str); free(url_proto); free(url_host); free(url_path); OPENSSL_free(str); GENERAL_NAMES_free(altnames); return 0; no_uri_match: vpn_progress(vpninfo, PRG_DEBUG, _("No match for URI '%s'\n"), str); no_uri_match_silent: free(url_proto); free(url_host); free(url_path); OPENSSL_free(str); } } GENERAL_NAMES_free(altnames); /* According to RFC2818, we don't use the legacy subject name if there was an altname with DNS type. */ if (altdns) { vpn_progress(vpninfo, PRG_ERR, _("No altname in peer cert matched '%s'\n"), vpninfo->hostname); return -EINVAL; } subjname = X509_get_subject_name(peer_cert); if (!subjname) { vpn_progress(vpninfo, PRG_ERR, _("No subject name in peer cert!\n")); return -EINVAL; } /* Find the _last_ (most specific) commonName */ i = -1; while (1) { int j = X509_NAME_get_index_by_NID(subjname, NID_commonName, i); if (j >= 0) i = j; else break; } subjasn1 = X509_NAME_ENTRY_get_data(X509_NAME_get_entry(subjname, i)); i = ASN1_STRING_to_UTF8((void *)&subjstr, subjasn1); if (!subjstr || strlen(subjstr) != i) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse subject name in peer cert\n")); return -EINVAL; } ret = 0; if (match_hostname(vpninfo->hostname, subjstr)) { vpn_progress(vpninfo, PRG_ERR, _("Peer cert subject mismatch ('%s' != '%s')\n"), subjstr, vpninfo->hostname); ret = -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Matched peer certificate subject name '%s'\n"), subjstr); } OPENSSL_free(subjstr); return ret; } static int verify_peer(struct openconnect_info *vpninfo, SSL *https_ssl) { int ret; int vfy = SSL_get_verify_result(https_ssl); const char *err_string = NULL; if (vfy != X509_V_OK) err_string = X509_verify_cert_error_string(vfy); else if (match_cert_hostname(vpninfo, vpninfo->peer_cert)) err_string = _("certificate does not match hostname"); if (err_string) { vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), err_string); if (vpninfo->validate_peer_cert) ret = vpninfo->validate_peer_cert(vpninfo->cbdata, err_string); else ret = -EINVAL; } else { ret = 0; } return ret; } /* Before OpenSSL 1.1 we could do this directly. And needed to. */ #ifndef SSL_CTX_get_extra_chain_certs_only #define SSL_CTX_get_extra_chain_certs_only(ctx, st) \ do { *(st) = (ctx)->extra_certs; } while(0) #endif static void workaround_openssl_certchain_bug(struct openconnect_info *vpninfo, SSL *ssl) { /* OpenSSL has problems with certificate chains -- if there are multiple certs with the same name, it doesn't necessarily choose the _right_ one. (RT#1942) Pick the right ones for ourselves and add them manually. */ X509 *cert = SSL_get_certificate(ssl); X509 *cert2; X509_STORE *store = SSL_CTX_get_cert_store(vpninfo->https_ctx); X509_STORE_CTX ctx; void *extra_certs; if (!cert || !store) return; /* If we already have 'supporting' certs, don't add them again */ SSL_CTX_get_extra_chain_certs_only(vpninfo->https_ctx, &extra_certs); if (extra_certs) return; if (!X509_STORE_CTX_init(&ctx, store, NULL, NULL)) return; while (ctx.get_issuer(&cert2, &ctx, cert) == 1) { char buf[200]; if (cert2 == cert) break; if (X509_check_issued(cert2, cert2) == X509_V_OK) break; cert = cert2; X509_NAME_oneline(X509_get_subject_name(cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_DEBUG, _("Extra cert from cafile: '%s'\n"), buf); SSL_CTX_add_extra_chain_cert(vpninfo->https_ctx, cert); } X509_STORE_CTX_cleanup(&ctx); } #if OPENSSL_VERSION_NUMBER >= 0x00908000 static int ssl_app_verify_callback(X509_STORE_CTX *ctx, void *arg) { /* We've seen certificates in the wild which don't have the purpose fields filled in correctly */ X509_VERIFY_PARAM_set_purpose(ctx->param, X509_PURPOSE_ANY); return X509_verify_cert(ctx); } #endif static int check_certificate_expiry(struct openconnect_info *vpninfo) { ASN1_TIME *notAfter; const char *reason = NULL; time_t t; int i; if (!vpninfo->cert_x509) return 0; t = time(NULL); notAfter = X509_get_notAfter(vpninfo->cert_x509); i = X509_cmp_time(notAfter, &t); if (!i) { vpn_progress(vpninfo, PRG_ERR, _("Error in client cert notAfter field\n")); return -EINVAL; } else if (i < 0) { reason = _("Client certificate has expired at"); } else { t += vpninfo->cert_expire_warning; i = X509_cmp_time(notAfter, &t); if (i < 0) reason = _("Client certificate expires soon at"); } if (reason) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *bm; const char *expiry = _(""); char zero = 0; if (bp) { ASN1_TIME_print(bp, notAfter); BIO_write(bp, &zero, 1); BIO_get_mem_ptr(bp, &bm); expiry = bm->data; } vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", reason, expiry); if (bp) BIO_free(bp); } return 0; } int openconnect_open_https(struct openconnect_info *vpninfo) { method_const SSL_METHOD *ssl3_method; SSL *https_ssl; BIO *https_bio; int ssl_sock; int err; if (vpninfo->https_ssl) return 0; if (vpninfo->peer_cert) { X509_free(vpninfo->peer_cert); vpninfo->peer_cert = NULL; } free (vpninfo->peer_cert_hash); vpninfo->peer_cert_hash = NULL; vpninfo->cstp_cipher = NULL; ssl_sock = connect_https_socket(vpninfo); if (ssl_sock < 0) return ssl_sock; ssl3_method = TLSv1_client_method(); if (!vpninfo->https_ctx) { vpninfo->https_ctx = SSL_CTX_new(ssl3_method); /* Some servers (or their firewalls) really don't like seeing extensions. */ #ifdef SSL_OP_NO_TICKET SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_NO_TICKET); #endif if (vpninfo->cert) { err = load_certificate(vpninfo); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed. Aborting.\n")); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return err; } check_certificate_expiry(vpninfo); } /* We just want to do: SSL_CTX_set_purpose(vpninfo->https_ctx, X509_PURPOSE_ANY); ... but it doesn't work with OpenSSL < 0.9.8k because of problems with inheritance (fixed in v1.1.4.6 of crypto/x509/x509_vpm.c) so we have to play silly buggers instead. This trick doesn't work _either_ in < 0.9.7 but I don't know of _any_ workaround which will, and can't be bothered to find out either. */ #if OPENSSL_VERSION_NUMBER >= 0x00908000 SSL_CTX_set_cert_verify_callback(vpninfo->https_ctx, ssl_app_verify_callback, NULL); #endif if (!vpninfo->no_system_trust) SSL_CTX_set_default_verify_paths(vpninfo->https_ctx); if (vpninfo->pfs) SSL_CTX_set_cipher_list(vpninfo->https_ctx, "HIGH:!aNULL:!eNULL:-RSA"); #ifdef ANDROID_KEYSTORE if (vpninfo->cafile && !strncmp(vpninfo->cafile, "keystore:", 9)) { STACK_OF(X509_INFO) *stack; X509_STORE *store; X509_INFO *info; BIO *b = BIO_from_keystore(vpninfo, vpninfo->cafile); if (!b) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -EINVAL; } stack = PEM_X509_INFO_read_bio(b, NULL, NULL, NULL); BIO_free(b); if (!stack) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read certs from CA file '%s'\n"), vpninfo->cafile); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -ENOENT; } store = SSL_CTX_get_cert_store(vpninfo->https_ctx); while ((info = sk_X509_INFO_pop(stack))) { if (info->x509) X509_STORE_add_cert(store, info->x509); if (info->crl) X509_STORE_add_crl(store, info->crl); X509_INFO_free(info); } sk_X509_INFO_free(stack); } else #endif if (vpninfo->cafile) { /* OpenSSL does actually manage to cope with UTF-8 for this one, under Windows. So only convert for legacy UNIX. */ char *cafile = openconnect_utf8_to_legacy(vpninfo, vpninfo->cafile); err = SSL_CTX_load_verify_locations(vpninfo->https_ctx, cafile, NULL); if (cafile != vpninfo->cafile) free(cafile); if (!err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open CA file '%s'\n"), vpninfo->cafile); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -EINVAL; } } } https_ssl = SSL_new(vpninfo->https_ctx); workaround_openssl_certchain_bug(vpninfo, https_ssl); https_bio = BIO_new_socket(ssl_sock, BIO_NOCLOSE); BIO_set_nbio(https_bio, 1); SSL_set_bio(https_ssl, https_bio, https_bio); #if 0 /* Should be enabled on openssl versions that support SSL_set_tlsext_host_name() after the F5 firewall workaround is enabled */ if (string_is_hostname(vpninfo->hostname)) SSL_set_tlsext_host_name(https_ssl, vpninfo->hostname); #endif vpn_progress(vpninfo, PRG_INFO, _("SSL negotiation with %s\n"), vpninfo->hostname); while ((err = SSL_connect(https_ssl)) <= 0) { fd_set wr_set, rd_set; int maxfd = ssl_sock; FD_ZERO(&wr_set); FD_ZERO(&rd_set); err = SSL_get_error(https_ssl, err); if (err == SSL_ERROR_WANT_READ) FD_SET(ssl_sock, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(ssl_sock, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("SSL connection failure\n")); openconnect_report_ssl_errors(vpninfo); SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection cancelled\n")); SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } } vpninfo->cstp_cipher = (char *)SSL_get_cipher_name(https_ssl); vpninfo->peer_cert = SSL_get_peer_certificate(https_ssl); set_peer_cert_hash(vpninfo); if (verify_peer(vpninfo, https_ssl)) { SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } vpninfo->ssl_fd = ssl_sock; vpninfo->https_ssl = https_ssl; vpninfo->ssl_read = openconnect_openssl_read; vpninfo->ssl_write = openconnect_openssl_write; vpninfo->ssl_gets = openconnect_openssl_gets; vpn_progress(vpninfo, PRG_INFO, _("Connected to HTTPS on %s\n"), vpninfo->hostname); return 0; } int cstp_handshake(struct openconnect_info *vpninfo, unsigned init) { return -EOPNOTSUPP; } void openconnect_close_https(struct openconnect_info *vpninfo, int final) { if (vpninfo->https_ssl) { SSL_free(vpninfo->https_ssl); vpninfo->https_ssl = NULL; } if (vpninfo->ssl_fd != -1) { closesocket(vpninfo->ssl_fd); unmonitor_read_fd(vpninfo, ssl); unmonitor_write_fd(vpninfo, ssl); unmonitor_except_fd(vpninfo, ssl); vpninfo->ssl_fd = -1; } if (final) { if (vpninfo->https_ctx) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; } if (vpninfo->cert_x509) { X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; } } } int openconnect_init_ssl(void) { #ifdef _WIN32 int ret = openconnect__win32_sock_init(); if (ret) return ret; #endif SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); return 0; } char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *certinfo; char zero = 0; char *ret; X509_print_ex(bp, vpninfo->peer_cert, 0, 0); BIO_write(bp, &zero, 1); BIO_get_mem_ptr(bp, &certinfo); ret = strdup(certinfo->data); BIO_free(bp); return ret; } void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf) { free(buf); } int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf) { buf[0] = 0; if (!vpninfo->cert_x509) return -EIO; if (get_cert_md5_fingerprint(vpninfo, vpninfo->cert_x509, buf)) return -EIO; return 0; } #ifdef HAVE_LIBPCSCLITE int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len) { if (!PKCS5_PBKDF2_HMAC_SHA1(password, pwlen, ident, id_len, 1000, 16, vpninfo->yubikey_pwhash)) return -EIO; return 0; } int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result) { unsigned int mdlen = SHA1_SIZE; if (!HMAC(EVP_sha1(), vpninfo->yubikey_pwhash, 16, challenge, chall_len, result, &mdlen)) return -EIO; return 0; } #endif int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge) { unsigned char hash[64]; /* Enough for a SHA256 */ unsigned int hashlen = sizeof(hash); const EVP_MD *alg; switch(vpninfo->oath_hmac_alg) { case OATH_ALG_HMAC_SHA1: alg = EVP_sha1(); break; case OATH_ALG_HMAC_SHA256: alg = EVP_sha256(); break; case OATH_ALG_HMAC_SHA512: alg = EVP_sha512(); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unsupported OATH HMAC algorithm\n")); return -EINVAL; } if (!HMAC(alg, vpninfo->oath_secret, vpninfo->oath_secret_len, challenge, 8, hash, &hashlen)) { vpninfo->progress(vpninfo, PRG_ERR, _("Failed to calculate OATH HMAC\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } hashlen = hash[hashlen - 1] & 15; return load_be32(&hash[hashlen]) & 0x7fffffff; } openconnect-7.06/version.c0000664000076400007640000000005712502026432012543 00000000000000const char *openconnect_version_str = "v7.06"; openconnect-7.06/tun-win32.c0000664000076400007640000002244512461546130012637 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #define WIN32_LEAN_AND_MEAN #include #include #include #include #include /* * TAP-Windows support inspired by http://i3.cs.berkeley.edu/ with * permission. */ #define _TAP_IOCTL(nr) CTL_CODE(FILE_DEVICE_UNKNOWN, nr, METHOD_BUFFERED, \ FILE_ANY_ACCESS) #define TAP_IOCTL_GET_MAC _TAP_IOCTL(1) #define TAP_IOCTL_GET_VERSION _TAP_IOCTL(2) #define TAP_IOCTL_GET_MTU _TAP_IOCTL(3) #define TAP_IOCTL_GET_INFO _TAP_IOCTL(4) #define TAP_IOCTL_CONFIG_POINT_TO_POINT _TAP_IOCTL(5) #define TAP_IOCTL_SET_MEDIA_STATUS _TAP_IOCTL(6) #define TAP_IOCTL_CONFIG_DHCP_MASQ _TAP_IOCTL(7) #define TAP_IOCTL_GET_LOG_LINE _TAP_IOCTL(8) #define TAP_IOCTL_CONFIG_DHCP_SET_OPT _TAP_IOCTL(9) #define TAP_IOCTL_CONFIG_TUN _TAP_IOCTL(10) #define TAP_COMPONENT_ID "tap0901" #define DEVTEMPLATE "\\\\.\\Global\\%s.tap" #define NETDEV_GUID "{4D36E972-E325-11CE-BFC1-08002BE10318}" #define CONTROL_KEY "SYSTEM\\CurrentControlSet\\Control\\" #define ADAPTERS_KEY CONTROL_KEY "Class\\" NETDEV_GUID #define CONNECTIONS_KEY CONTROL_KEY "Network\\" NETDEV_GUID typedef intptr_t (tap_callback)(struct openconnect_info *vpninfo, char *idx, char *name); static intptr_t search_taps(struct openconnect_info *vpninfo, tap_callback *cb, int all) { LONG status; HKEY adapters_key, hkey; DWORD len, type; char buf[40]; wchar_t name[40]; char keyname[strlen(CONNECTIONS_KEY) + sizeof(buf) + 1 + strlen("\\Connection")]; int i = 0, found = 0; intptr_t ret = -1; struct oc_text_buf *namebuf = buf_alloc(); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, ADAPTERS_KEY, 0, KEY_READ, &adapters_key); if (status) { vpn_progress(vpninfo, PRG_ERR, _("Error accessing registry key for network adapters\n")); return -EIO; } while (1) { len = sizeof(buf); status = RegEnumKeyExA(adapters_key, i++, buf, &len, NULL, NULL, NULL, NULL); if (status) { if (status != ERROR_NO_MORE_ITEMS) ret = -1; break; } snprintf(keyname, sizeof(keyname), "%s\\%s", ADAPTERS_KEY, buf); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keyname, 0, KEY_QUERY_VALUE, &hkey); if (status) continue; len = sizeof(buf); status = RegQueryValueExA(hkey, "ComponentId", NULL, &type, (unsigned char *)buf, &len); if (status || type != REG_SZ || strcmp(buf, TAP_COMPONENT_ID)) { RegCloseKey(hkey); continue; } len = sizeof(buf); status = RegQueryValueExA(hkey, "NetCfgInstanceId", NULL, &type, (unsigned char *)buf, &len); RegCloseKey(hkey); if (status || type != REG_SZ) continue; snprintf(keyname, sizeof(keyname), "%s\\%s\\Connection", CONNECTIONS_KEY, buf); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keyname, 0, KEY_QUERY_VALUE, &hkey); if (status) continue; len = sizeof(name); status = RegQueryValueExW(hkey, L"Name", NULL, &type, (unsigned char *)name, &len); RegCloseKey(hkey); if (status || type != REG_SZ) continue; buf_truncate(namebuf); buf_append_from_utf16le(namebuf, name); if (buf_error(namebuf)) { ret = buf_free(namebuf); namebuf = NULL; break; } found++; if (vpninfo->ifname && strcmp(namebuf->data, vpninfo->ifname)) { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring non-matching TAP interface \"%s\"\n"), namebuf->data); continue; } ret = cb(vpninfo, buf, namebuf->data); if (!all) break; } RegCloseKey(adapters_key); buf_free(namebuf); if (!found) vpn_progress(vpninfo, PRG_ERR, _("No Windows-TAP adapters found. Is the driver installed?\n")); return ret; } static intptr_t open_tun(struct openconnect_info *vpninfo, char *guid, char *name) { char devname[80]; HANDLE tun_fh; ULONG data[3]; DWORD len; snprintf(devname, sizeof(devname), DEVTEMPLATE, guid); tun_fh = CreateFileA(devname, GENERIC_WRITE|GENERIC_READ, 0, 0, OPEN_EXISTING, FILE_ATTRIBUTE_SYSTEM | FILE_FLAG_OVERLAPPED, 0); if (tun_fh == INVALID_HANDLE_VALUE) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open %s\n"), devname); return -1; } vpn_progress(vpninfo, PRG_DEBUG, _("Opened tun device %s\n"), name); if (!DeviceIoControl(tun_fh, TAP_IOCTL_GET_VERSION, data, sizeof(&data), data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain TAP driver version: %s\n"), errstr); free(errstr); return -1; } if (data[0] < 9 || (data[0] == 9 && data[1] < 9)) { vpn_progress(vpninfo, PRG_ERR, _("Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n"), data[0], data[1]); return -1; } vpn_progress(vpninfo, PRG_DEBUG, "TAP-Windows driver v%ld.%ld (%ld)\n", data[0], data[1], data[2]); data[0] = inet_addr(vpninfo->ip_info.addr); data[2] = inet_addr(vpninfo->ip_info.netmask); data[1] = data[0] & data[2]; if (!DeviceIoControl(tun_fh, TAP_IOCTL_CONFIG_TUN, data, sizeof(data), data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP IP addresses: %s\n"), errstr); free(errstr); return -1; } data[0] = 1; if (!DeviceIoControl(tun_fh, TAP_IOCTL_SET_MEDIA_STATUS, data, sizeof(data[0]), data, sizeof(data[0]), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP media status: %s\n"), errstr); free(errstr); return -1; } if (!vpninfo->ifname) vpninfo->ifname = strdup(name); return (intptr_t)tun_fh; } intptr_t os_setup_tun(struct openconnect_info *vpninfo) { return search_taps(vpninfo, open_tun, 0); } int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD pkt_size; reread: if (!vpninfo->tun_rd_pending && !ReadFile(vpninfo->tun_fh, pkt->data, pkt->len, &pkt_size, &vpninfo->tun_rd_overlap)) { DWORD err = GetLastError(); if (err == ERROR_IO_PENDING) vpninfo->tun_rd_pending = 1; else if (err == ERROR_OPERATION_ABORTED) { vpninfo->quit_reason = "TAP device aborted"; vpn_progress(vpninfo, PRG_ERR, _("TAP device aborted connectivity. Disconnecting.\n")); return -1; } else { char *errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TAP device: %s\n"), errstr); free(errstr); } return -1; } else if (!GetOverlappedResult(vpninfo->tun_fh, &vpninfo->tun_rd_overlap, &pkt_size, FALSE)) { DWORD err = GetLastError(); if (err != ERROR_IO_INCOMPLETE) { char *errstr = openconnect__win32_strerror(err); vpninfo->tun_rd_pending = 0; vpn_progress(vpninfo, PRG_ERR, _("Failed to complete read from TAP device: %s\n"), errstr); free(errstr); goto reread; } return -1; } /* Either a straight ReadFile() or a subsequent GetOverlappedResult() succeeded... */ vpninfo->tun_rd_pending = 0; pkt->len = pkt_size; return 0; } int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD pkt_size = 0; DWORD err; char *errstr; if (WriteFile(vpninfo->tun_fh, pkt->data, pkt->len, &pkt_size, &vpninfo->tun_wr_overlap)) { vpn_progress(vpninfo, PRG_TRACE, _("Wrote %ld bytes to tun\n"), pkt_size); return 0; } err = GetLastError(); if (err == ERROR_IO_PENDING) { /* Theoretically we should let the mainloop handle this blocking, but that's non-trivial and it doesn't ever seem to happen in practice anyway. */ vpn_progress(vpninfo, PRG_TRACE, _("Waiting for tun write...\n")); if (GetOverlappedResult(vpninfo->tun_fh, &vpninfo->tun_wr_overlap, &pkt_size, TRUE)) { vpn_progress(vpninfo, PRG_TRACE, _("Wrote %ld bytes to tun after waiting\n"), pkt_size); return 0; } err = GetLastError(); } errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Failed to write to TAP device: %s\n"), errstr); free(errstr); return -1; } void os_shutdown_tun(struct openconnect_info *vpninfo) { script_config_tun(vpninfo, "disconnect"); CloseHandle(vpninfo->tun_fh); vpninfo->tun_fh = NULL; CloseHandle(vpninfo->tun_rd_overlap.hEvent); vpninfo->tun_rd_overlap.hEvent = NULL; } int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd) { vpninfo->tun_fh = (HANDLE)tun_fd; vpninfo->tun_rd_overlap.hEvent = CreateEvent(NULL, FALSE, FALSE, NULL); monitor_read_fd(vpninfo, tun); return 0; } int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script) { vpn_progress(vpninfo, PRG_ERR, _("Spawning tunnel scripts is not yet supported on Windows\n")); return -1; } openconnect-7.06/TODO0000664000076400007640000000027512152073324011407 00000000000000 openconnect: Port to/test on Windows, Symbian, etc. nm-auth-dialog: Store cookie in GNOME keyring and reuse it instead of logging in again (which means you keep your IP address) openconnect-7.06/http-auth.c0000664000076400007640000002430712502026115012776 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" /* Ick. Yet another wheel to reinvent. But although we could pull it in from OpenSSL, we can't from GnuTLS */ static inline int b64_char(char c) { if (c >= 'A' && c <= 'Z') return c - 'A'; if (c >= 'a' && c <= 'z') return c - 'a' + 26; if (c >= '0' && c <= '9') return c - '0' + 52; if (c == '+') return 62; if (c == '/') return 63; return -1; } void *openconnect_base64_decode(int *ret_len, const char *in) { unsigned char *buf; int b[4]; int len = strlen(in); if (len & 3) { *ret_len = -EINVAL; return NULL; } len = (len * 3) / 4; buf = malloc(len); if (!buf) { *ret_len = -ENOMEM; return NULL; } len = 0; while (*in) { if (!in[1] || !in[2] || !in[3]) goto err; b[0] = b64_char(in[0]); b[1] = b64_char(in[1]); if (b[0] < 0 || b[1] < 0) goto err; buf[len++] = (b[0] << 2) | (b[1] >> 4); if (in[2] == '=') { if (in[3] != '=' || in[4] != 0) goto err; break; } b[2] = b64_char(in[2]); if (b[2] < 0) goto err; buf[len++] = (b[1] << 4) | (b[2] >> 2); if (in[3] == '=') { if (in[4] != 0) goto err; break; } b[3] = b64_char(in[3]); if (b[3] < 0) goto err; buf[len++] = (b[2] << 6) | b[3]; in += 4; } *ret_len = len; return buf; err: free(buf); *ret_len = EINVAL; return NULL; } static const char b64_table[] = { 'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z', 'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', '+', '/' }; void buf_append_base64(struct oc_text_buf *buf, const void *bytes, int len) { const unsigned char *in = bytes; int hibits; if (!buf || buf->error) return; if (buf_ensure_space(buf, (4 * (len + 2) / 3) + 1)) return; while (len > 0) { buf->data[buf->pos++] = b64_table[in[0] >> 2]; hibits = (in[0] << 4) & 0x30; if (len == 1) { buf->data[buf->pos++] = b64_table[hibits]; buf->data[buf->pos++] = '='; buf->data[buf->pos++] = '='; break; } buf->data[buf->pos++] = b64_table[hibits | (in[1] >> 4)]; hibits = (in[1] << 2) & 0x3c; if (len == 2) { buf->data[buf->pos++] = b64_table[hibits]; buf->data[buf->pos++] = '='; break; } buf->data[buf->pos++] = b64_table[hibits | (in[2] >> 6)]; buf->data[buf->pos++] = b64_table[in[2] & 0x3f]; in += 3; len -= 3; } buf->data[buf->pos] = 0; } static int basic_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { struct oc_text_buf *text; const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { /* Need to parse this out of the URL */ return -EINVAL; } if (!user || !pass) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } text = buf_alloc(); buf_append(text, "%s:%s", user, pass); if (buf_error(text)) return buf_free(text); buf_append(hdrbuf, "%sAuthorization: Basic ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, text->data, text->pos); buf_append(hdrbuf, "\r\n"); memset(text->data, 0, text->pos); buf_free(text); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Basic authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Basic authentication to server '%s'\n"), vpninfo->hostname); auth_state->state = AUTH_IN_PROGRESS; return 0; } #if !defined(HAVE_GSSAPI) && !defined(_WIN32) static int no_gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { /* This comes last so just complain. We're about to bail. */ vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without GSSAPI support\n")); auth_state->state = AUTH_FAILED; return -ENOENT; } #endif struct auth_method { int state_index; const char *name; int (*authorization)(struct openconnect_info *, int, struct http_auth_state *, struct oc_text_buf *); void (*cleanup)(struct openconnect_info *, struct http_auth_state *); } auth_methods[] = { #if defined(HAVE_GSSAPI) || defined(_WIN32) { AUTH_TYPE_GSSAPI, "Negotiate", gssapi_authorization, cleanup_gssapi_auth }, #endif { AUTH_TYPE_NTLM, "NTLM", ntlm_authorization, cleanup_ntlm_auth }, { AUTH_TYPE_DIGEST, "Digest", digest_authorization, NULL }, { AUTH_TYPE_BASIC, "Basic", basic_authorization, NULL }, #if !defined(HAVE_GSSAPI) && !defined(_WIN32) { AUTH_TYPE_GSSAPI, "Negotiate", no_gssapi_authorization, NULL } #endif }; /* Generate Proxy-Authorization: header for request if appropriate */ int gen_authorization_hdr(struct openconnect_info *vpninfo, int proxy, struct oc_text_buf *buf) { int ret; int i; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { struct http_auth_state *auth_state; if (proxy) auth_state = &vpninfo->proxy_auth[auth_methods[i].state_index]; else auth_state = &vpninfo->http_auth[auth_methods[i].state_index]; if (auth_state->state == AUTH_DEFAULT_DISABLED) { if (proxy) vpn_progress(vpninfo, PRG_ERR, _("Proxy requested Basic authentication which is disabled by default\n")); else vpn_progress(vpninfo, PRG_ERR, _("Server '%s' requested Basic authentication which is disabled by default\n"), vpninfo->hostname); auth_state->state = AUTH_FAILED; return -EINVAL; } if (auth_state->state > AUTH_UNSEEN) { ret = auth_methods[i].authorization(vpninfo, proxy, auth_state, buf); if (ret == -EAGAIN || !ret) return ret; } } vpn_progress(vpninfo, PRG_INFO, _("No more authentication methods to try\n")); if (vpninfo->retry_on_auth_fail) { /* Try again without the X-Support-HTTP-Auth: header */ vpninfo->try_http_auth = 0; return 0; } return -ENOENT; } /* Returns non-zero if it matched */ static int handle_auth_proto(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, struct auth_method *method, char *hdr) { struct http_auth_state *auth = &auth_states[method->state_index]; int l = strlen(method->name); if (auth->state <= AUTH_FAILED) return 0; if (strncmp(method->name, hdr, l)) return 0; if (hdr[l] != ' ' && hdr[l] != 0) return 0; if (auth->state == AUTH_UNSEEN) auth->state = AUTH_AVAILABLE; free(auth->challenge); if (hdr[l]) auth->challenge = strdup(hdr + l + 1); else auth->challenge = NULL; return 1; } int proxy_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val) { int i; if (!strcasecmp(hdr, "Proxy-Connection") || !strcasecmp(hdr, "Connection")) { if (!strcasecmp(val, "close")) vpninfo->proxy_close_during_auth = 1; return 0; } if (strcasecmp(hdr, "Proxy-Authenticate")) return 0; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { /* Return once we've found a match */ if (handle_auth_proto(vpninfo, vpninfo->proxy_auth, &auth_methods[i], val)) return 0; } return 0; } int http_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val) { int i; if (!strcasecmp(hdr, "X-HTTP-Auth-Support") && !strcasecmp(val, "fallback")) { vpninfo->retry_on_auth_fail = 1; return 0; } if (strcasecmp(hdr, "WWW-Authenticate")) return 0; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { /* Return once we've found a match */ if (handle_auth_proto(vpninfo, vpninfo->http_auth, &auth_methods[i], val)) return 0; } return 0; } void clear_auth_states(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, int reset) { int i; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { struct http_auth_state *auth = &auth_states[auth_methods[i].state_index]; /* The 'reset' argument is set when we're connected successfully, to fully reset the state to allow another connection to start again. Otherwise, we need to remember which auth methods have been tried and should not be attempted again. */ if (reset && auth_methods[i].cleanup) auth_methods[i].cleanup(vpninfo, auth); free(auth->challenge); auth->challenge = NULL; /* If it *failed* don't try it again even next time */ if (auth->state <= AUTH_FAILED) continue; if (reset || auth->state == AUTH_AVAILABLE) auth->state = AUTH_UNSEEN; } } static int set_authmethods(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, const char *methods) { int i, len; const char *p; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) auth_states[auth_methods[i].state_index].state = AUTH_DISABLED; while (methods) { p = strchr(methods, ','); if (p) { len = p - methods; p++; } else len = strlen(methods); for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { if (strprefix_match(methods, len, auth_methods[i].name) || (auth_methods[i].state_index == AUTH_TYPE_GSSAPI && strprefix_match(methods, len, "gssapi"))) { auth_states[auth_methods[i].state_index].state = AUTH_UNSEEN; break; } } methods = p; } return 0; } int openconnect_set_http_auth(struct openconnect_info *vpninfo, const char *methods) { return set_authmethods(vpninfo, vpninfo->http_auth, methods); } int openconnect_set_proxy_auth(struct openconnect_info *vpninfo, const char *methods) { return set_authmethods(vpninfo, vpninfo->proxy_auth, methods); } openconnect-7.06/config.sub0000755000076400007640000010576212404036304012704 00000000000000#! /bin/sh # Configuration validation subroutine script. # Copyright 1992-2014 Free Software Foundation, Inc. timestamp='2014-07-28' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # Please send patches with a ChangeLog entry to config-patches@gnu.org. # # Configuration subroutine to validate and canonicalize a configuration type. # Supply the specified configuration type as an argument. # If it is invalid, we print an error message on stderr and exit with code 1. # Otherwise, we print the canonical config type on stdout and succeed. # You can get the latest version of this script from: # http://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.sub;hb=HEAD # This file is supposed to be the same for all GNU packages # and recognize all the CPU types, system types and aliases # that are meaningful with *any* GNU software. # Each package is responsible for reporting which valid configurations # it does not support. The user should be able to distinguish # a failure to support a valid configuration from a meaningless # configuration. # The goal of this file is to map all the various variations of a given # machine specification into a single specification in the form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or in some cases, the newer four-part form: # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # It is wrong to echo any other type of specification. me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] CPU-MFR-OPSYS $0 [OPTION] ALIAS Canonicalize a configuration name. Operation modes: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.sub ($timestamp) Copyright 1992-2014 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" exit 1 ;; *local*) # First pass through any local machine types. echo $1 exit ;; * ) break ;; esac done case $# in 0) echo "$me: missing argument$help" >&2 exit 1;; 1) ;; *) echo "$me: too many arguments$help" >&2 exit 1;; esac # Separate what the user gave into CPU-COMPANY and OS or KERNEL-OS (if any). # Here we must recognize all the valid KERNEL-OS combinations. maybe_os=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\2/'` case $maybe_os in nto-qnx* | linux-gnu* | linux-android* | linux-dietlibc | linux-newlib* | \ linux-musl* | linux-uclibc* | uclinux-uclibc* | uclinux-gnu* | kfreebsd*-gnu* | \ knetbsd*-gnu* | netbsd*-gnu* | \ kopensolaris*-gnu* | \ storm-chaos* | os2-emx* | rtmk-nova*) os=-$maybe_os basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'` ;; android-linux) os=-linux-android basic_machine=`echo $1 | sed 's/^\(.*\)-\([^-]*-[^-]*\)$/\1/'`-unknown ;; *) basic_machine=`echo $1 | sed 's/-[^-]*$//'` if [ $basic_machine != $1 ] then os=`echo $1 | sed 's/.*-/-/'` else os=; fi ;; esac ### Let's recognize common machines as not being operating systems so ### that things like config.sub decstation-3100 work. We also ### recognize some manufacturers as not being operating systems, so we ### can provide default operating systems below. case $os in -sun*os*) # Prevent following clause from handling this invalid input. ;; -dec* | -mips* | -sequent* | -encore* | -pc532* | -sgi* | -sony* | \ -att* | -7300* | -3300* | -delta* | -motorola* | -sun[234]* | \ -unicom* | -ibm* | -next | -hp | -isi* | -apollo | -altos* | \ -convergent* | -ncr* | -news | -32* | -3600* | -3100* | -hitachi* |\ -c[123]* | -convex* | -sun | -crds | -omron* | -dg | -ultra | -tti* | \ -harris | -dolphin | -highlevel | -gould | -cbm | -ns | -masscomp | \ -apple | -axis | -knuth | -cray | -microblaze*) os= basic_machine=$1 ;; -bluegene*) os=-cnk ;; -sim | -cisco | -oki | -wec | -winbond) os= basic_machine=$1 ;; -scout) ;; -wrs) os=-vxworks basic_machine=$1 ;; -chorusos*) os=-chorusos basic_machine=$1 ;; -chorusrdb) os=-chorusrdb basic_machine=$1 ;; -hiux*) os=-hiuxwe2 ;; -sco6) os=-sco5v6 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco5) os=-sco3.2v5 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco4) os=-sco3.2v4 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco3.2.[4-9]*) os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco3.2v[4-9]*) # Don't forget version if it is 3.2v4 or newer. basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco5v6*) # Don't forget version if it is 3.2v4 or newer. basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -sco*) os=-sco3.2v2 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -udk*) basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -isc) os=-isc2.2 basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -clix*) basic_machine=clipper-intergraph ;; -isc*) basic_machine=`echo $1 | sed -e 's/86-.*/86-pc/'` ;; -lynx*178) os=-lynxos178 ;; -lynx*5) os=-lynxos5 ;; -lynx*) os=-lynxos ;; -ptx*) basic_machine=`echo $1 | sed -e 's/86-.*/86-sequent/'` ;; -windowsnt*) os=`echo $os | sed -e 's/windowsnt/winnt/'` ;; -psos*) os=-psos ;; -mint | -mint[0-9]*) basic_machine=m68k-atari os=-mint ;; esac # Decode aliases for certain CPU-COMPANY combinations. case $basic_machine in # Recognize the basic CPU types without company name. # Some are omitted here because they have special meanings below. 1750a | 580 \ | a29k \ | aarch64 | aarch64_be \ | alpha | alphaev[4-8] | alphaev56 | alphaev6[78] | alphapca5[67] \ | alpha64 | alpha64ev[4-8] | alpha64ev56 | alpha64ev6[78] | alpha64pca5[67] \ | am33_2.0 \ | arc | arceb \ | arm | arm[bl]e | arme[lb] | armv[2-8] | armv[3-8][lb] | armv7[arm] \ | avr | avr32 \ | be32 | be64 \ | bfin \ | c4x | c8051 | clipper \ | d10v | d30v | dlx | dsp16xx \ | epiphany \ | fido | fr30 | frv \ | h8300 | h8500 | hppa | hppa1.[01] | hppa2.0 | hppa2.0[nw] | hppa64 \ | hexagon \ | i370 | i860 | i960 | ia64 \ | ip2k | iq2000 \ | k1om \ | le32 | le64 \ | lm32 \ | m32c | m32r | m32rle | m68000 | m68k | m88k \ | maxq | mb | microblaze | microblazeel | mcore | mep | metag \ | mips | mipsbe | mipseb | mipsel | mipsle \ | mips16 \ | mips64 | mips64el \ | mips64octeon | mips64octeonel \ | mips64orion | mips64orionel \ | mips64r5900 | mips64r5900el \ | mips64vr | mips64vrel \ | mips64vr4100 | mips64vr4100el \ | mips64vr4300 | mips64vr4300el \ | mips64vr5000 | mips64vr5000el \ | mips64vr5900 | mips64vr5900el \ | mipsisa32 | mipsisa32el \ | mipsisa32r2 | mipsisa32r2el \ | mipsisa32r6 | mipsisa32r6el \ | mipsisa64 | mipsisa64el \ | mipsisa64r2 | mipsisa64r2el \ | mipsisa64r6 | mipsisa64r6el \ | mipsisa64sb1 | mipsisa64sb1el \ | mipsisa64sr71k | mipsisa64sr71kel \ | mipsr5900 | mipsr5900el \ | mipstx39 | mipstx39el \ | mn10200 | mn10300 \ | moxie \ | mt \ | msp430 \ | nds32 | nds32le | nds32be \ | nios | nios2 | nios2eb | nios2el \ | ns16k | ns32k \ | open8 | or1k | or1knd | or32 \ | pdp10 | pdp11 | pj | pjl \ | powerpc | powerpc64 | powerpc64le | powerpcle \ | pyramid \ | rl78 | rx \ | score \ | sh | sh[1234] | sh[24]a | sh[24]aeb | sh[23]e | sh[34]eb | sheb | shbe | shle | sh[1234]le | sh3ele \ | sh64 | sh64le \ | sparc | sparc64 | sparc64b | sparc64v | sparc86x | sparclet | sparclite \ | sparcv8 | sparcv9 | sparcv9b | sparcv9v \ | spu \ | tahoe | tic4x | tic54x | tic55x | tic6x | tic80 | tron \ | ubicom32 \ | v850 | v850e | v850e1 | v850e2 | v850es | v850e2v3 \ | we32k \ | x86 | xc16x | xstormy16 | xtensa \ | z8k | z80) basic_machine=$basic_machine-unknown ;; c54x) basic_machine=tic54x-unknown ;; c55x) basic_machine=tic55x-unknown ;; c6x) basic_machine=tic6x-unknown ;; m6811 | m68hc11 | m6812 | m68hc12 | m68hcs12x | nvptx | picochip) basic_machine=$basic_machine-unknown os=-none ;; m88110 | m680[12346]0 | m683?2 | m68360 | m5200 | v70 | w65 | z8k) ;; ms1) basic_machine=mt-unknown ;; strongarm | thumb | xscale) basic_machine=arm-unknown ;; xgate) basic_machine=$basic_machine-unknown os=-none ;; xscaleeb) basic_machine=armeb-unknown ;; xscaleel) basic_machine=armel-unknown ;; # We use `pc' rather than `unknown' # because (1) that's what they normally are, and # (2) the word "unknown" tends to confuse beginning users. i*86 | x86_64) basic_machine=$basic_machine-pc ;; # Object if more than one company name word. *-*-*) echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 exit 1 ;; # Recognize the basic CPU types with company name. 580-* \ | a29k-* \ | aarch64-* | aarch64_be-* \ | alpha-* | alphaev[4-8]-* | alphaev56-* | alphaev6[78]-* \ | alpha64-* | alpha64ev[4-8]-* | alpha64ev56-* | alpha64ev6[78]-* \ | alphapca5[67]-* | alpha64pca5[67]-* | arc-* | arceb-* \ | arm-* | armbe-* | armle-* | armeb-* | armv*-* \ | avr-* | avr32-* \ | be32-* | be64-* \ | bfin-* | bs2000-* \ | c[123]* | c30-* | [cjt]90-* | c4x-* \ | c8051-* | clipper-* | craynv-* | cydra-* \ | d10v-* | d30v-* | dlx-* \ | elxsi-* \ | f30[01]-* | f700-* | fido-* | fr30-* | frv-* | fx80-* \ | h8300-* | h8500-* \ | hppa-* | hppa1.[01]-* | hppa2.0-* | hppa2.0[nw]-* | hppa64-* \ | hexagon-* \ | i*86-* | i860-* | i960-* | ia64-* \ | ip2k-* | iq2000-* \ | k1om-* \ | le32-* | le64-* \ | lm32-* \ | m32c-* | m32r-* | m32rle-* \ | m68000-* | m680[012346]0-* | m68360-* | m683?2-* | m68k-* \ | m88110-* | m88k-* | maxq-* | mcore-* | metag-* \ | microblaze-* | microblazeel-* \ | mips-* | mipsbe-* | mipseb-* | mipsel-* | mipsle-* \ | mips16-* \ | mips64-* | mips64el-* \ | mips64octeon-* | mips64octeonel-* \ | mips64orion-* | mips64orionel-* \ | mips64r5900-* | mips64r5900el-* \ | mips64vr-* | mips64vrel-* \ | mips64vr4100-* | mips64vr4100el-* \ | mips64vr4300-* | mips64vr4300el-* \ | mips64vr5000-* | mips64vr5000el-* \ | mips64vr5900-* | mips64vr5900el-* \ | mipsisa32-* | mipsisa32el-* \ | mipsisa32r2-* | mipsisa32r2el-* \ | mipsisa32r6-* | mipsisa32r6el-* \ | mipsisa64-* | mipsisa64el-* \ | mipsisa64r2-* | mipsisa64r2el-* \ | mipsisa64r6-* | mipsisa64r6el-* \ | mipsisa64sb1-* | mipsisa64sb1el-* \ | mipsisa64sr71k-* | mipsisa64sr71kel-* \ | mipsr5900-* | mipsr5900el-* \ | mipstx39-* | mipstx39el-* \ | mmix-* \ | mt-* \ | msp430-* \ | nds32-* | nds32le-* | nds32be-* \ | nios-* | nios2-* | nios2eb-* | nios2el-* \ | none-* | np1-* | ns16k-* | ns32k-* \ | open8-* \ | or1k*-* \ | orion-* \ | pdp10-* | pdp11-* | pj-* | pjl-* | pn-* | power-* \ | powerpc-* | powerpc64-* | powerpc64le-* | powerpcle-* \ | pyramid-* \ | rl78-* | romp-* | rs6000-* | rx-* \ | sh-* | sh[1234]-* | sh[24]a-* | sh[24]aeb-* | sh[23]e-* | sh[34]eb-* | sheb-* | shbe-* \ | shle-* | sh[1234]le-* | sh3ele-* | sh64-* | sh64le-* \ | sparc-* | sparc64-* | sparc64b-* | sparc64v-* | sparc86x-* | sparclet-* \ | sparclite-* \ | sparcv8-* | sparcv9-* | sparcv9b-* | sparcv9v-* | sv1-* | sx?-* \ | tahoe-* \ | tic30-* | tic4x-* | tic54x-* | tic55x-* | tic6x-* | tic80-* \ | tile*-* \ | tron-* \ | ubicom32-* \ | v850-* | v850e-* | v850e1-* | v850es-* | v850e2-* | v850e2v3-* \ | vax-* \ | we32k-* \ | x86-* | x86_64-* | xc16x-* | xps100-* \ | xstormy16-* | xtensa*-* \ | ymp-* \ | z8k-* | z80-*) ;; # Recognize the basic CPU types without company name, with glob match. xtensa*) basic_machine=$basic_machine-unknown ;; # Recognize the various machine names and aliases which stand # for a CPU type and a company and sometimes even an OS. 386bsd) basic_machine=i386-unknown os=-bsd ;; 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) basic_machine=m68000-att ;; 3b*) basic_machine=we32k-att ;; a29khif) basic_machine=a29k-amd os=-udi ;; abacus) basic_machine=abacus-unknown ;; adobe68k) basic_machine=m68010-adobe os=-scout ;; alliant | fx80) basic_machine=fx80-alliant ;; altos | altos3068) basic_machine=m68k-altos ;; am29k) basic_machine=a29k-none os=-bsd ;; amd64) basic_machine=x86_64-pc ;; amd64-*) basic_machine=x86_64-`echo $basic_machine | sed 's/^[^-]*-//'` ;; amdahl) basic_machine=580-amdahl os=-sysv ;; amiga | amiga-*) basic_machine=m68k-unknown ;; amigaos | amigados) basic_machine=m68k-unknown os=-amigaos ;; amigaunix | amix) basic_machine=m68k-unknown os=-sysv4 ;; apollo68) basic_machine=m68k-apollo os=-sysv ;; apollo68bsd) basic_machine=m68k-apollo os=-bsd ;; aros) basic_machine=i386-pc os=-aros ;; aux) basic_machine=m68k-apple os=-aux ;; balance) basic_machine=ns32k-sequent os=-dynix ;; blackfin) basic_machine=bfin-unknown os=-linux ;; blackfin-*) basic_machine=bfin-`echo $basic_machine | sed 's/^[^-]*-//'` os=-linux ;; bluegene*) basic_machine=powerpc-ibm os=-cnk ;; c54x-*) basic_machine=tic54x-`echo $basic_machine | sed 's/^[^-]*-//'` ;; c55x-*) basic_machine=tic55x-`echo $basic_machine | sed 's/^[^-]*-//'` ;; c6x-*) basic_machine=tic6x-`echo $basic_machine | sed 's/^[^-]*-//'` ;; c90) basic_machine=c90-cray os=-unicos ;; cegcc) basic_machine=arm-unknown os=-cegcc ;; convex-c1) basic_machine=c1-convex os=-bsd ;; convex-c2) basic_machine=c2-convex os=-bsd ;; convex-c32) basic_machine=c32-convex os=-bsd ;; convex-c34) basic_machine=c34-convex os=-bsd ;; convex-c38) basic_machine=c38-convex os=-bsd ;; cray | j90) basic_machine=j90-cray os=-unicos ;; craynv) basic_machine=craynv-cray os=-unicosmp ;; cr16 | cr16-*) basic_machine=cr16-unknown os=-elf ;; crds | unos) basic_machine=m68k-crds ;; crisv32 | crisv32-* | etraxfs*) basic_machine=crisv32-axis ;; cris | cris-* | etrax*) basic_machine=cris-axis ;; crx) basic_machine=crx-unknown os=-elf ;; da30 | da30-*) basic_machine=m68k-da30 ;; decstation | decstation-3100 | pmax | pmax-* | pmin | dec3100 | decstatn) basic_machine=mips-dec ;; decsystem10* | dec10*) basic_machine=pdp10-dec os=-tops10 ;; decsystem20* | dec20*) basic_machine=pdp10-dec os=-tops20 ;; delta | 3300 | motorola-3300 | motorola-delta \ | 3300-motorola | delta-motorola) basic_machine=m68k-motorola ;; delta88) basic_machine=m88k-motorola os=-sysv3 ;; dicos) basic_machine=i686-pc os=-dicos ;; djgpp) basic_machine=i586-pc os=-msdosdjgpp ;; dpx20 | dpx20-*) basic_machine=rs6000-bull os=-bosx ;; dpx2* | dpx2*-bull) basic_machine=m68k-bull os=-sysv3 ;; ebmon29k) basic_machine=a29k-amd os=-ebmon ;; elxsi) basic_machine=elxsi-elxsi os=-bsd ;; encore | umax | mmax) basic_machine=ns32k-encore ;; es1800 | OSE68k | ose68k | ose | OSE) basic_machine=m68k-ericsson os=-ose ;; fx2800) basic_machine=i860-alliant ;; genix) basic_machine=ns32k-ns ;; gmicro) basic_machine=tron-gmicro os=-sysv ;; go32) basic_machine=i386-pc os=-go32 ;; h3050r* | hiux*) basic_machine=hppa1.1-hitachi os=-hiuxwe2 ;; h8300hms) basic_machine=h8300-hitachi os=-hms ;; h8300xray) basic_machine=h8300-hitachi os=-xray ;; h8500hms) basic_machine=h8500-hitachi os=-hms ;; harris) basic_machine=m88k-harris os=-sysv3 ;; hp300-*) basic_machine=m68k-hp ;; hp300bsd) basic_machine=m68k-hp os=-bsd ;; hp300hpux) basic_machine=m68k-hp os=-hpux ;; hp3k9[0-9][0-9] | hp9[0-9][0-9]) basic_machine=hppa1.0-hp ;; hp9k2[0-9][0-9] | hp9k31[0-9]) basic_machine=m68000-hp ;; hp9k3[2-9][0-9]) basic_machine=m68k-hp ;; hp9k6[0-9][0-9] | hp6[0-9][0-9]) basic_machine=hppa1.0-hp ;; hp9k7[0-79][0-9] | hp7[0-79][0-9]) basic_machine=hppa1.1-hp ;; hp9k78[0-9] | hp78[0-9]) # FIXME: really hppa2.0-hp basic_machine=hppa1.1-hp ;; hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) # FIXME: really hppa2.0-hp basic_machine=hppa1.1-hp ;; hp9k8[0-9][13679] | hp8[0-9][13679]) basic_machine=hppa1.1-hp ;; hp9k8[0-9][0-9] | hp8[0-9][0-9]) basic_machine=hppa1.0-hp ;; hppa-next) os=-nextstep3 ;; hppaosf) basic_machine=hppa1.1-hp os=-osf ;; hppro) basic_machine=hppa1.1-hp os=-proelf ;; i370-ibm* | ibm*) basic_machine=i370-ibm ;; i*86v32) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-sysv32 ;; i*86v4*) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-sysv4 ;; i*86v) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-sysv ;; i*86sol2) basic_machine=`echo $1 | sed -e 's/86.*/86-pc/'` os=-solaris2 ;; i386mach) basic_machine=i386-mach os=-mach ;; i386-vsta | vsta) basic_machine=i386-unknown os=-vsta ;; iris | iris4d) basic_machine=mips-sgi case $os in -irix*) ;; *) os=-irix4 ;; esac ;; isi68 | isi) basic_machine=m68k-isi os=-sysv ;; m68knommu) basic_machine=m68k-unknown os=-linux ;; m68knommu-*) basic_machine=m68k-`echo $basic_machine | sed 's/^[^-]*-//'` os=-linux ;; m88k-omron*) basic_machine=m88k-omron ;; magnum | m3230) basic_machine=mips-mips os=-sysv ;; merlin) basic_machine=ns32k-utek os=-sysv ;; microblaze*) basic_machine=microblaze-xilinx ;; mingw64) basic_machine=x86_64-pc os=-mingw64 ;; mingw32) basic_machine=i686-pc os=-mingw32 ;; mingw32ce) basic_machine=arm-unknown os=-mingw32ce ;; miniframe) basic_machine=m68000-convergent ;; *mint | -mint[0-9]* | *MiNT | *MiNT[0-9]*) basic_machine=m68k-atari os=-mint ;; mips3*-*) basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'` ;; mips3*) basic_machine=`echo $basic_machine | sed -e 's/mips3/mips64/'`-unknown ;; monitor) basic_machine=m68k-rom68k os=-coff ;; morphos) basic_machine=powerpc-unknown os=-morphos ;; moxiebox) basic_machine=moxie-unknown os=-moxiebox ;; msdos) basic_machine=i386-pc os=-msdos ;; ms1-*) basic_machine=`echo $basic_machine | sed -e 's/ms1-/mt-/'` ;; msys) basic_machine=i686-pc os=-msys ;; mvs) basic_machine=i370-ibm os=-mvs ;; nacl) basic_machine=le32-unknown os=-nacl ;; ncr3000) basic_machine=i486-ncr os=-sysv4 ;; netbsd386) basic_machine=i386-unknown os=-netbsd ;; netwinder) basic_machine=armv4l-rebel os=-linux ;; news | news700 | news800 | news900) basic_machine=m68k-sony os=-newsos ;; news1000) basic_machine=m68030-sony os=-newsos ;; news-3600 | risc-news) basic_machine=mips-sony os=-newsos ;; necv70) basic_machine=v70-nec os=-sysv ;; next | m*-next ) basic_machine=m68k-next case $os in -nextstep* ) ;; -ns2*) os=-nextstep2 ;; *) os=-nextstep3 ;; esac ;; nh3000) basic_machine=m68k-harris os=-cxux ;; nh[45]000) basic_machine=m88k-harris os=-cxux ;; nindy960) basic_machine=i960-intel os=-nindy ;; mon960) basic_machine=i960-intel os=-mon960 ;; nonstopux) basic_machine=mips-compaq os=-nonstopux ;; np1) basic_machine=np1-gould ;; neo-tandem) basic_machine=neo-tandem ;; nse-tandem) basic_machine=nse-tandem ;; nsr-tandem) basic_machine=nsr-tandem ;; op50n-* | op60c-*) basic_machine=hppa1.1-oki os=-proelf ;; openrisc | openrisc-*) basic_machine=or32-unknown ;; os400) basic_machine=powerpc-ibm os=-os400 ;; OSE68000 | ose68000) basic_machine=m68000-ericsson os=-ose ;; os68k) basic_machine=m68k-none os=-os68k ;; pa-hitachi) basic_machine=hppa1.1-hitachi os=-hiuxwe2 ;; paragon) basic_machine=i860-intel os=-osf ;; parisc) basic_machine=hppa-unknown os=-linux ;; parisc-*) basic_machine=hppa-`echo $basic_machine | sed 's/^[^-]*-//'` os=-linux ;; pbd) basic_machine=sparc-tti ;; pbb) basic_machine=m68k-tti ;; pc532 | pc532-*) basic_machine=ns32k-pc532 ;; pc98) basic_machine=i386-pc ;; pc98-*) basic_machine=i386-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentium | p5 | k5 | k6 | nexgen | viac3) basic_machine=i586-pc ;; pentiumpro | p6 | 6x86 | athlon | athlon_*) basic_machine=i686-pc ;; pentiumii | pentium2 | pentiumiii | pentium3) basic_machine=i686-pc ;; pentium4) basic_machine=i786-pc ;; pentium-* | p5-* | k5-* | k6-* | nexgen-* | viac3-*) basic_machine=i586-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentiumpro-* | p6-* | 6x86-* | athlon-*) basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentiumii-* | pentium2-* | pentiumiii-* | pentium3-*) basic_machine=i686-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pentium4-*) basic_machine=i786-`echo $basic_machine | sed 's/^[^-]*-//'` ;; pn) basic_machine=pn-gould ;; power) basic_machine=power-ibm ;; ppc | ppcbe) basic_machine=powerpc-unknown ;; ppc-* | ppcbe-*) basic_machine=powerpc-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ppcle | powerpclittle | ppc-le | powerpc-little) basic_machine=powerpcle-unknown ;; ppcle-* | powerpclittle-*) basic_machine=powerpcle-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ppc64) basic_machine=powerpc64-unknown ;; ppc64-* | ppc64p7-*) basic_machine=powerpc64-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ppc64le | powerpc64little | ppc64-le | powerpc64-little) basic_machine=powerpc64le-unknown ;; ppc64le-* | powerpc64little-*) basic_machine=powerpc64le-`echo $basic_machine | sed 's/^[^-]*-//'` ;; ps2) basic_machine=i386-ibm ;; pw32) basic_machine=i586-unknown os=-pw32 ;; rdos | rdos64) basic_machine=x86_64-pc os=-rdos ;; rdos32) basic_machine=i386-pc os=-rdos ;; rom68k) basic_machine=m68k-rom68k os=-coff ;; rm[46]00) basic_machine=mips-siemens ;; rtpc | rtpc-*) basic_machine=romp-ibm ;; s390 | s390-*) basic_machine=s390-ibm ;; s390x | s390x-*) basic_machine=s390x-ibm ;; sa29200) basic_machine=a29k-amd os=-udi ;; sb1) basic_machine=mipsisa64sb1-unknown ;; sb1el) basic_machine=mipsisa64sb1el-unknown ;; sde) basic_machine=mipsisa32-sde os=-elf ;; sei) basic_machine=mips-sei os=-seiux ;; sequent) basic_machine=i386-sequent ;; sh) basic_machine=sh-hitachi os=-hms ;; sh5el) basic_machine=sh5le-unknown ;; sh64) basic_machine=sh64-unknown ;; sparclite-wrs | simso-wrs) basic_machine=sparclite-wrs os=-vxworks ;; sps7) basic_machine=m68k-bull os=-sysv2 ;; spur) basic_machine=spur-unknown ;; st2000) basic_machine=m68k-tandem ;; stratus) basic_machine=i860-stratus os=-sysv4 ;; strongarm-* | thumb-*) basic_machine=arm-`echo $basic_machine | sed 's/^[^-]*-//'` ;; sun2) basic_machine=m68000-sun ;; sun2os3) basic_machine=m68000-sun os=-sunos3 ;; sun2os4) basic_machine=m68000-sun os=-sunos4 ;; sun3os3) basic_machine=m68k-sun os=-sunos3 ;; sun3os4) basic_machine=m68k-sun os=-sunos4 ;; sun4os3) basic_machine=sparc-sun os=-sunos3 ;; sun4os4) basic_machine=sparc-sun os=-sunos4 ;; sun4sol2) basic_machine=sparc-sun os=-solaris2 ;; sun3 | sun3-*) basic_machine=m68k-sun ;; sun4) basic_machine=sparc-sun ;; sun386 | sun386i | roadrunner) basic_machine=i386-sun ;; sv1) basic_machine=sv1-cray os=-unicos ;; symmetry) basic_machine=i386-sequent os=-dynix ;; t3e) basic_machine=alphaev5-cray os=-unicos ;; t90) basic_machine=t90-cray os=-unicos ;; tile*) basic_machine=$basic_machine-unknown os=-linux-gnu ;; tx39) basic_machine=mipstx39-unknown ;; tx39el) basic_machine=mipstx39el-unknown ;; toad1) basic_machine=pdp10-xkl os=-tops20 ;; tower | tower-32) basic_machine=m68k-ncr ;; tpf) basic_machine=s390x-ibm os=-tpf ;; udi29k) basic_machine=a29k-amd os=-udi ;; ultra3) basic_machine=a29k-nyu os=-sym1 ;; v810 | necv810) basic_machine=v810-nec os=-none ;; vaxv) basic_machine=vax-dec os=-sysv ;; vms) basic_machine=vax-dec os=-vms ;; vpp*|vx|vx-*) basic_machine=f301-fujitsu ;; vxworks960) basic_machine=i960-wrs os=-vxworks ;; vxworks68) basic_machine=m68k-wrs os=-vxworks ;; vxworks29k) basic_machine=a29k-wrs os=-vxworks ;; w65*) basic_machine=w65-wdc os=-none ;; w89k-*) basic_machine=hppa1.1-winbond os=-proelf ;; xbox) basic_machine=i686-pc os=-mingw32 ;; xps | xps100) basic_machine=xps100-honeywell ;; xscale-* | xscalee[bl]-*) basic_machine=`echo $basic_machine | sed 's/^xscale/arm/'` ;; ymp) basic_machine=ymp-cray os=-unicos ;; z8k-*-coff) basic_machine=z8k-unknown os=-sim ;; z80-*-coff) basic_machine=z80-unknown os=-sim ;; none) basic_machine=none-none os=-none ;; # Here we handle the default manufacturer of certain CPU types. It is in # some cases the only manufacturer, in others, it is the most popular. w89k) basic_machine=hppa1.1-winbond ;; op50n) basic_machine=hppa1.1-oki ;; op60c) basic_machine=hppa1.1-oki ;; romp) basic_machine=romp-ibm ;; mmix) basic_machine=mmix-knuth ;; rs6000) basic_machine=rs6000-ibm ;; vax) basic_machine=vax-dec ;; pdp10) # there are many clones, so DEC is not a safe bet basic_machine=pdp10-unknown ;; pdp11) basic_machine=pdp11-dec ;; we32k) basic_machine=we32k-att ;; sh[1234] | sh[24]a | sh[24]aeb | sh[34]eb | sh[1234]le | sh[23]ele) basic_machine=sh-unknown ;; sparc | sparcv8 | sparcv9 | sparcv9b | sparcv9v) basic_machine=sparc-sun ;; cydra) basic_machine=cydra-cydrome ;; orion) basic_machine=orion-highlevel ;; orion105) basic_machine=clipper-highlevel ;; mac | mpw | mac-mpw) basic_machine=m68k-apple ;; pmac | pmac-mpw) basic_machine=powerpc-apple ;; *-unknown) # Make sure to match an already-canonicalized machine name. ;; *) echo Invalid configuration \`$1\': machine \`$basic_machine\' not recognized 1>&2 exit 1 ;; esac # Here we canonicalize certain aliases for manufacturers. case $basic_machine in *-digital*) basic_machine=`echo $basic_machine | sed 's/digital.*/dec/'` ;; *-commodore*) basic_machine=`echo $basic_machine | sed 's/commodore.*/cbm/'` ;; *) ;; esac # Decode manufacturer-specific aliases for certain operating systems. if [ x"$os" != x"" ] then case $os in # First match some system type aliases # that might get confused with valid system types. # -solaris* is a basic system type, with this one exception. -auroraux) os=-auroraux ;; -solaris1 | -solaris1.*) os=`echo $os | sed -e 's|solaris1|sunos4|'` ;; -solaris) os=-solaris2 ;; -svr4*) os=-sysv4 ;; -unixware*) os=-sysv4.2uw ;; -gnu/linux*) os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` ;; # First accept the basic system types. # The portable systems comes first. # Each alternative MUST END IN A *, to match a version number. # -sysv* is not here because it comes later, after sysvr4. -gnu* | -bsd* | -mach* | -minix* | -genix* | -ultrix* | -irix* \ | -*vms* | -sco* | -esix* | -isc* | -aix* | -cnk* | -sunos | -sunos[34]*\ | -hpux* | -unos* | -osf* | -luna* | -dgux* | -auroraux* | -solaris* \ | -sym* | -kopensolaris* | -plan9* \ | -amigaos* | -amigados* | -msdos* | -newsos* | -unicos* | -aof* \ | -aos* | -aros* \ | -nindy* | -vxsim* | -vxworks* | -ebmon* | -hms* | -mvs* \ | -clix* | -riscos* | -uniplus* | -iris* | -rtu* | -xenix* \ | -hiux* | -386bsd* | -knetbsd* | -mirbsd* | -netbsd* \ | -bitrig* | -openbsd* | -solidbsd* \ | -ekkobsd* | -kfreebsd* | -freebsd* | -riscix* | -lynxos* \ | -bosx* | -nextstep* | -cxux* | -aout* | -elf* | -oabi* \ | -ptx* | -coff* | -ecoff* | -winnt* | -domain* | -vsta* \ | -udi* | -eabi* | -lites* | -ieee* | -go32* | -aux* \ | -chorusos* | -chorusrdb* | -cegcc* \ | -cygwin* | -msys* | -pe* | -psos* | -moss* | -proelf* | -rtems* \ | -mingw32* | -mingw64* | -linux-gnu* | -linux-android* \ | -linux-newlib* | -linux-musl* | -linux-uclibc* \ | -uxpv* | -beos* | -mpeix* | -udk* | -moxiebox* \ | -interix* | -uwin* | -mks* | -rhapsody* | -darwin* | -opened* \ | -openstep* | -oskit* | -conix* | -pw32* | -nonstopux* \ | -storm-chaos* | -tops10* | -tenex* | -tops20* | -its* \ | -os2* | -vos* | -palmos* | -uclinux* | -nucleus* \ | -morphos* | -superux* | -rtmk* | -rtmk-nova* | -windiss* \ | -powermax* | -dnix* | -nx6 | -nx7 | -sei* | -dragonfly* \ | -skyos* | -haiku* | -rdos* | -toppers* | -drops* | -es* | -tirtos*) # Remember, each alternative MUST END IN *, to match a version number. ;; -qnx*) case $basic_machine in x86-* | i*86-*) ;; *) os=-nto$os ;; esac ;; -nto-qnx*) ;; -nto*) os=`echo $os | sed -e 's|nto|nto-qnx|'` ;; -sim | -es1800* | -hms* | -xray | -os68k* | -none* | -v88r* \ | -windows* | -osx | -abug | -netware* | -os9* | -beos* | -haiku* \ | -macos* | -mpw* | -magic* | -mmixware* | -mon960* | -lnews*) ;; -mac*) os=`echo $os | sed -e 's|mac|macos|'` ;; -linux-dietlibc) os=-linux-dietlibc ;; -linux*) os=`echo $os | sed -e 's|linux|linux-gnu|'` ;; -sunos5*) os=`echo $os | sed -e 's|sunos5|solaris2|'` ;; -sunos6*) os=`echo $os | sed -e 's|sunos6|solaris3|'` ;; -opened*) os=-openedition ;; -os400*) os=-os400 ;; -wince*) os=-wince ;; -osfrose*) os=-osfrose ;; -osf*) os=-osf ;; -utek*) os=-bsd ;; -dynix*) os=-bsd ;; -acis*) os=-aos ;; -atheos*) os=-atheos ;; -syllable*) os=-syllable ;; -386bsd) os=-bsd ;; -ctix* | -uts*) os=-sysv ;; -nova*) os=-rtmk-nova ;; -ns2 ) os=-nextstep2 ;; -nsk*) os=-nsk ;; # Preserve the version number of sinix5. -sinix5.*) os=`echo $os | sed -e 's|sinix|sysv|'` ;; -sinix*) os=-sysv4 ;; -tpf*) os=-tpf ;; -triton*) os=-sysv3 ;; -oss*) os=-sysv3 ;; -svr4) os=-sysv4 ;; -svr3) os=-sysv3 ;; -sysvr4) os=-sysv4 ;; # This must come after -sysvr4. -sysv*) ;; -ose*) os=-ose ;; -es1800*) os=-ose ;; -xenix) os=-xenix ;; -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) os=-mint ;; -aros*) os=-aros ;; -zvmoe) os=-zvmoe ;; -dicos*) os=-dicos ;; -nacl*) ;; -none) ;; *) # Get rid of the `-' at the beginning of $os. os=`echo $os | sed 's/[^-]*-//'` echo Invalid configuration \`$1\': system \`$os\' not recognized 1>&2 exit 1 ;; esac else # Here we handle the default operating systems that come with various machines. # The value should be what the vendor currently ships out the door with their # machine or put another way, the most popular os provided with the machine. # Note that if you're going to try to match "-MANUFACTURER" here (say, # "-sun"), then you have to tell the case statement up towards the top # that MANUFACTURER isn't an operating system. Otherwise, code above # will signal an error saying that MANUFACTURER isn't an operating # system, and we'll never get to this point. case $basic_machine in score-*) os=-elf ;; spu-*) os=-elf ;; *-acorn) os=-riscix1.2 ;; arm*-rebel) os=-linux ;; arm*-semi) os=-aout ;; c4x-* | tic4x-*) os=-coff ;; c8051-*) os=-elf ;; hexagon-*) os=-elf ;; tic54x-*) os=-coff ;; tic55x-*) os=-coff ;; tic6x-*) os=-coff ;; # This must come before the *-dec entry. pdp10-*) os=-tops20 ;; pdp11-*) os=-none ;; *-dec | vax-*) os=-ultrix4.2 ;; m68*-apollo) os=-domain ;; i386-sun) os=-sunos4.0.2 ;; m68000-sun) os=-sunos3 ;; m68*-cisco) os=-aout ;; mep-*) os=-elf ;; mips*-cisco) os=-elf ;; mips*-*) os=-elf ;; or32-*) os=-coff ;; *-tti) # must be before sparc entry or we get the wrong os. os=-sysv3 ;; sparc-* | *-sun) os=-sunos4.1.1 ;; *-be) os=-beos ;; *-haiku) os=-haiku ;; *-ibm) os=-aix ;; *-knuth) os=-mmixware ;; *-wec) os=-proelf ;; *-winbond) os=-proelf ;; *-oki) os=-proelf ;; *-hp) os=-hpux ;; *-hitachi) os=-hiux ;; i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) os=-sysv ;; *-cbm) os=-amigaos ;; *-dg) os=-dgux ;; *-dolphin) os=-sysv3 ;; m68k-ccur) os=-rtu ;; m88k-omron*) os=-luna ;; *-next ) os=-nextstep ;; *-sequent) os=-ptx ;; *-crds) os=-unos ;; *-ns) os=-genix ;; i370-*) os=-mvs ;; *-next) os=-nextstep3 ;; *-gould) os=-sysv ;; *-highlevel) os=-bsd ;; *-encore) os=-bsd ;; *-sgi) os=-irix ;; *-siemens) os=-sysv4 ;; *-masscomp) os=-rtu ;; f30[01]-fujitsu | f700-fujitsu) os=-uxpv ;; *-rom68k) os=-coff ;; *-*bug) os=-coff ;; *-apple) os=-macos ;; *-atari*) os=-mint ;; *) os=-none ;; esac fi # Here we handle the case where we know the os, and the CPU type, but not the # manufacturer. We pick the logical manufacturer. vendor=unknown case $basic_machine in *-unknown) case $os in -riscix*) vendor=acorn ;; -sunos*) vendor=sun ;; -cnk*|-aix*) vendor=ibm ;; -beos*) vendor=be ;; -hpux*) vendor=hp ;; -mpeix*) vendor=hp ;; -hiux*) vendor=hitachi ;; -unos*) vendor=crds ;; -dgux*) vendor=dg ;; -luna*) vendor=omron ;; -genix*) vendor=ns ;; -mvs* | -opened*) vendor=ibm ;; -os400*) vendor=ibm ;; -ptx*) vendor=sequent ;; -tpf*) vendor=ibm ;; -vxsim* | -vxworks* | -windiss*) vendor=wrs ;; -aux*) vendor=apple ;; -hms*) vendor=hitachi ;; -mpw* | -macos*) vendor=apple ;; -*mint | -mint[0-9]* | -*MiNT | -MiNT[0-9]*) vendor=atari ;; -vos*) vendor=stratus ;; esac basic_machine=`echo $basic_machine | sed "s/unknown/$vendor/"` ;; esac echo $basic_machine$os exit # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: openconnect-7.06/AUTHORS0000664000076400007640000000060611415625247011775 00000000000000David Woodhouse Nick Andrew Antonio Borneo Ross Burton Dirk Hohndel Marcel Holtmann Jussi Kukkonen Adam Piątyszek Thomas Wood Fengguang Wu openconnect-7.06/acinclude.m40000664000076400007640000001267712337053523013125 00000000000000dnl as-compiler-flag.m4 0.1.0 dnl autostars m4 macro for detection of compiler flags dnl David Schleef dnl $Id: as-compiler-flag.m4,v 1.1 2005/12/15 23:35:19 ds Exp $ dnl AS_COMPILER_FLAG(CFLAGS, ACTION-IF-ACCEPTED, [ACTION-IF-NOT-ACCEPTED]) dnl Tries to compile with the given CFLAGS. dnl Runs ACTION-IF-ACCEPTED if the compiler can compile with the flags, dnl and ACTION-IF-NOT-ACCEPTED otherwise. AC_DEFUN([AS_COMPILER_FLAG], [ AC_MSG_CHECKING([to see if compiler understands $1]) save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $1" AC_TRY_COMPILE([ ], [], [flag_ok=yes], [flag_ok=no]) CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then m4_ifvaln([$2],[$2]) true else m4_ifvaln([$3],[$3]) true fi AC_MSG_RESULT([$flag_ok]) ]) dnl AS_COMPILER_FLAGS(VAR, FLAGS) dnl Tries to compile with the given CFLAGS. AC_DEFUN([AS_COMPILER_FLAGS], [ list=$2 flags_supported="" flags_unsupported="" AC_MSG_CHECKING([for supported compiler flags]) for each in $list do save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $each" AC_TRY_COMPILE([ ], [], [flag_ok=yes], [flag_ok=no]) CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then flags_supported="$flags_supported $each" else flags_unsupported="$flags_unsupported $each" fi done AC_MSG_RESULT([$flags_supported]) if test "X$flags_unsupported" != X ; then AC_MSG_WARN([unsupported compiler flags: $flags_unsupported]) fi $1="$$1 $flags_supported" ]) # =========================================================================== # http://www.gnu.org/software/autoconf-archive/ax_jni_include_dir.html # =========================================================================== # # SYNOPSIS # # AX_JNI_INCLUDE_DIR # # DESCRIPTION # # AX_JNI_INCLUDE_DIR finds include directories needed for compiling # programs using the JNI interface. # # JNI include directories are usually in the Java distribution. This is # deduced from the value of $JAVA_HOME, $JAVAC, or the path to "javac", # in that order. When this macro completes, a list of directories is left # in the variable JNI_INCLUDE_DIRS. # # Example usage follows: # # AX_JNI_INCLUDE_DIR # # for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS # do # CPPFLAGS="$CPPFLAGS -I$JNI_INCLUDE_DIR" # done # # If you want to force a specific compiler: # # - at the configure.in level, set JAVAC=yourcompiler before calling # AX_JNI_INCLUDE_DIR # # - at the configure level, setenv JAVAC # # Note: This macro can work with the autoconf M4 macros for Java programs. # This particular macro is not part of the original set of macros. # # LICENSE # # Copyright (c) 2008 Don Anderson # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. AU_ALIAS([AC_JNI_INCLUDE_DIR], [AX_JNI_INCLUDE_DIR]) AC_DEFUN([AX_JNI_INCLUDE_DIR],[ JNI_INCLUDE_DIRS="" if test "x$JAVA_HOME" != x; then _JTOPDIR="$JAVA_HOME" else if test "x$JAVAC" = x; then JAVAC=javac fi AC_PATH_PROG([_ACJNI_JAVAC], [$JAVAC], [no]) if test "x$_ACJNI_JAVAC" = xno; then AC_MSG_ERROR([cannot find JDK; try setting \$JAVAC or \$JAVA_HOME]) fi _ACJNI_FOLLOW_SYMLINKS("$_ACJNI_JAVAC") _JTOPDIR=`echo "$_ACJNI_FOLLOWED" | sed -e 's://*:/:g' -e 's:/[[^/]]*$::'` fi case "$host_os" in darwin*) _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[[^/]]*$::'` _JINC="$_JTOPDIR/Headers";; *) _JINC="$_JTOPDIR/include";; esac _AS_ECHO_LOG([_JTOPDIR=$_JTOPDIR]) _AS_ECHO_LOG([_JINC=$_JINC]) # On Mac OS X 10.6.4, jni.h is a symlink: # /System/Library/Frameworks/JavaVM.framework/Versions/Current/Headers/jni.h # -> ../../CurrentJDK/Headers/jni.h. AC_CHECK_FILE([$_JINC/jni.h], [JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JINC"], [_JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[[^/]]*$::'` AC_CHECK_FILE([$_JTOPDIR/include/jni.h], [JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include"], AC_MSG_ERROR([cannot find JDK header files])) ]) # get the likely subdirectories for system specific java includes case "$host_os" in bsdi*) _JNI_INC_SUBDIRS="bsdos";; freebsd*) _JNI_INC_SUBDIRS="freebsd";; linux*) _JNI_INC_SUBDIRS="linux genunix";; osf*) _JNI_INC_SUBDIRS="alpha";; solaris*) _JNI_INC_SUBDIRS="solaris";; mingw*) _JNI_INC_SUBDIRS="win32";; cygwin*) _JNI_INC_SUBDIRS="win32";; *) _JNI_INC_SUBDIRS="genunix";; esac # add any subdirectories that are present for JINCSUBDIR in $_JNI_INC_SUBDIRS do if test -d "$_JTOPDIR/include/$JINCSUBDIR"; then JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include/$JINCSUBDIR" fi done ]) # _ACJNI_FOLLOW_SYMLINKS # Follows symbolic links on , # finally setting variable _ACJNI_FOLLOWED # ---------------------------------------- AC_DEFUN([_ACJNI_FOLLOW_SYMLINKS],[ # find the include directory relative to the javac executable _cur="$1" while ls -ld "$_cur" 2>/dev/null | grep " -> " >/dev/null; do AC_MSG_CHECKING([symlink for $_cur]) _slink=`ls -ld "$_cur" | sed 's/.* -> //'` case "$_slink" in /*) _cur="$_slink";; # 'X' avoids triggering unwanted echo options. *) _cur=`echo "X$_cur" | sed -e 's/^X//' -e 's:[[^/]]*$::'`"$_slink";; esac AC_MSG_RESULT([$_cur]) done _ACJNI_FOLLOWED="$_cur" ])# _ACJNI openconnect-7.06/digest.c0000664000076400007640000001401712474364513012353 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" #define ALGO_MD5 0 #define ALGO_MD5_SESS 1 static struct oc_text_buf *get_qs(char **str) { struct oc_text_buf *res; int escaped = 0; char *p = *str; if (*p != '\"') return NULL; res = buf_alloc(); while (*++p) { if (!escaped && *p == '\"') { *str = p+1; if (buf_error(res)) break; return res; } if (escaped) escaped = 0; else if (*p == '\\') escaped = 1; buf_append_bytes(res, p, 1); } buf_free(res); return NULL; } static void buf_append_unq(struct oc_text_buf *buf, const char *str) { while (*str) { if (*str == '\"' || *str == '\\') buf_append(buf, "\\"); buf_append_bytes(buf, str, 1); str++; } } static void buf_append_md5(struct oc_text_buf *buf, void *data, int len) { unsigned char md5[16]; int i; if (openconnect_md5(md5, data, len)) { buf->error = -EIO; return; } for (i = 0; i < 16; i++) buf_append(buf, "%02x", md5[i]); } int digest_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { char *chall; int ret = -EINVAL; int algo = ALGO_MD5; int qop_auth = 0; int nc = 1; struct oc_text_buf *realm = NULL, *nonce = NULL, *opaque = NULL; struct oc_text_buf *a1 = NULL, *a2 = NULL, *kd = NULL; struct oc_text_buf *cnonce = NULL; unsigned char cnonce_random[32]; const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { /* Need to parse this out of the URL */ return -EINVAL; } if (!user || !pass) return -EINVAL; if (auth_state->state < AUTH_AVAILABLE) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } chall = auth_state->challenge; if (!chall) return -EINVAL; while (*chall) { if (!realm && !strncmp(chall, "realm=", 6)) { chall += 6; realm = get_qs(&chall); if (!realm) goto err; } else if (!nonce && !strncmp(chall, "nonce=", 6)) { chall += 6; nonce = get_qs(&chall); if (!nonce) goto err; } else if (!strncmp(chall, "qop=", 4)) { chall += 4; if (strncmp(chall, "\"auth\"", 6)) { /* We don't support "auth-int" */ goto err; } qop_auth = 1; chall += 6; } else if (!opaque && !strncmp(chall, "opaque=", 7)) { chall += 7; opaque = get_qs(&chall); if (!opaque) goto err; } else if (!strncmp(chall, "algorithm=", 10)) { chall += 10; if (!strncmp(chall, "MD5-sess", 8)) { algo = ALGO_MD5_SESS; chall += 8; } else if (!strncmp(chall, "MD5", 3)) { algo = ALGO_MD5; chall += 3; } } else { char *p = strchr(chall, '='); if (!p) goto err; p++; if (*p == '\"') { /* Eat and discard a quoted-string */ int escaped = 0; p++; do { if (escaped) escaped = 0; else if (*p == '\\') escaped = 1; if (!*p) goto err; } while (escaped || *p != '\"'); chall = p+1; } else { /* Not quoted. Just find the next comma (or EOL) */ p = strchr(p, ','); if (!p) break; chall = p; } } while (isspace((int)(unsigned char)*chall)) chall++; if (!*chall) break; if (*chall != ',') goto err; chall++; while (isspace((int)(unsigned char)*chall)) chall++; if (!*chall) break; } if (!nonce || !realm) goto err; if (openconnect_random(&cnonce_random, sizeof(cnonce_random))) goto err; cnonce = buf_alloc(); buf_append_base64(cnonce, cnonce_random, sizeof(cnonce_random)); if (buf_error(cnonce)) goto err; /* * According to RFC2617 §3.2.2.2: * A1 = unq(username-value) ":" unq(realm-value) ":" passwd * So the username is escaped, while the password isn't. */ a1 = buf_alloc(); buf_append_unq(a1, user); buf_append(a1, ":%s:%s", realm->data, pass); if (buf_error(a1)) goto err; if (algo == ALGO_MD5_SESS) { struct oc_text_buf *old_a1 = a1; a1 = buf_alloc(); buf_append_md5(a1, old_a1->data, old_a1->pos); buf_free(old_a1); buf_append(a1, ":%s:%s\n", nonce->data, cnonce->data); if (buf_error(a1)) goto err; } a2 = buf_alloc(); buf_append(a2, "CONNECT:%s:%d", vpninfo->hostname, vpninfo->port); if (buf_error(a2)) goto err; kd = buf_alloc(); buf_append_md5(kd, a1->data, a1->pos); buf_append(kd, ":%s:", nonce->data); if (qop_auth) { buf_append(kd, "%08x:%s:auth:", nc, cnonce->data); } buf_append_md5(kd, a2->data, a2->pos); if (buf_error(kd)) goto err; buf_append(hdrbuf, "%sAuthorization: Digest username=\"", proxy ? "Proxy-" : ""); buf_append_unq(hdrbuf, user); buf_append(hdrbuf, "\", realm=\"%s\", nonce=\"%s\", uri=\"%s:%d\", ", realm->data, nonce->data, vpninfo->hostname, vpninfo->port); if (qop_auth) buf_append(hdrbuf, "cnonce=\"%s\", nc=%08x, qop=auth, ", cnonce->data, nc); if (opaque) buf_append(hdrbuf, "opaque=\"%s\", ", opaque->data); buf_append(hdrbuf, "response=\""); buf_append_md5(hdrbuf, kd->data, kd->pos); buf_append(hdrbuf, "\"\r\n"); ret = 0; auth_state->state = AUTH_IN_PROGRESS; if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting Digest authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting Digest authentication to server '%s'\n"), vpninfo->hostname); err: if (a1 && a1->data) memset(a1->data, 0, a1->pos); buf_free(a1); buf_free(a2); buf_free(kd); buf_free(realm); buf_free(nonce); buf_free(cnonce); buf_free(opaque); return ret; } openconnect-7.06/lzstest.c0000664000076400007640000000413512474364513012604 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #define __OPENCONNECT_INTERNAL_H__ struct oc_packed_uint16_t { unsigned short d; } __attribute__((packed)); int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); #include "lzs.c" #include #include #include #include #define NR_PKTS 2048 #define MAX_PKT 65536 int main(void) { int i, j, ret; int pktlen; unsigned char pktbuf[MAX_PKT + 3]; unsigned char comprbuf[MAX_PKT * 9 / 8 + 2]; unsigned char uncomprbuf[MAX_PKT]; srand(0xdeadbeef); /* Just because we're lazy and fill the buffer three bytes at a time. */ if (RAND_MAX < 0x1000000) { fprintf(stderr, "RAND_MAX 0x%x is smaller than we expect\n", RAND_MAX); exit(1); } for (i = 0; i < NR_PKTS; i++) { if (i) pktlen = (random() % MAX_PKT) + 1; else pktlen = MAX_PKT; for (j = 0; j < pktlen; j+= 3) { int r = rand(); #if __BYTE_ORDER == __BIG_ENDIAN r <<= 8; #endif *(int *)(pktbuf + j) = r; } ret = lzs_compress(comprbuf, sizeof(comprbuf), pktbuf, pktlen); if (ret < 0) { fprintf(stderr, "Compressing packet %d failed: %s\n", i, strerror(-ret)); exit(1); } ret = lzs_decompress(uncomprbuf, pktlen, comprbuf, sizeof(comprbuf)); if (ret != pktlen) { fprintf(stderr, "Compressing packet %d failed\n", i); exit(1); } if (memcmp(uncomprbuf, pktbuf, pktlen)) { fprintf(stderr, "Comparing packet %d failed\n", i); exit(1); } } return 0; } openconnect-7.06/openconnect-internal.h0000664000076400007640000010211612502026115015205 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_INTERNAL_H__ #define __OPENCONNECT_INTERNAL_H__ #define __OPENCONNECT_PRIVATE__ #ifdef _WIN32 #include #include #ifndef SECURITY_WIN32 #define SECURITY_WIN32 1 #endif #include #else #include #include #include #include #include #include #include #endif #include "openconnect.h" #if defined(OPENCONNECT_OPENSSL) || defined(DTLS_OPENSSL) #include #include /* Ick */ #if OPENSSL_VERSION_NUMBER >= 0x00909000L #define method_const const #else #define method_const #endif #endif /* OPENSSL */ #if defined(OPENCONNECT_GNUTLS) #include #include #include #include #ifdef HAVE_TROUSERS #include #include #endif #endif #ifdef HAVE_ICONV #include #include #endif #include #include #include #include #include #ifdef LIBPROXY_HDR #include LIBPROXY_HDR #endif #ifdef HAVE_LIBSTOKEN #include #endif #ifdef HAVE_GSSAPI #include GSSAPI_HDR #endif #ifdef HAVE_LIBPSKC #include #endif #ifdef HAVE_LIBP11 #include #endif #ifdef HAVE_LIBPCSCLITE #ifdef __APPLE__ #include #include #else #include #endif #endif #ifdef ENABLE_NLS #include #define _(s) dgettext("openconnect", s) #else #define _(s) ((char *)(s)) #endif #define N_(s) s #include #define SHA1_SIZE 20 #define MD5_SIZE 16 /****************************************************************************/ struct pkt { int len; struct pkt *next; union { struct { uint32_t spi; uint32_t seq; unsigned char iv[16]; unsigned char payload[]; } esp; struct { unsigned char pad[2]; unsigned char rec[2]; unsigned char kmp[20]; } oncp; struct { unsigned char pad[16]; unsigned char hdr[8]; } cstp; }; unsigned char data[]; }; #define REKEY_NONE 0 #define REKEY_TUNNEL 1 #define REKEY_SSL 2 #define KA_NONE 0 #define KA_DPD 1 #define KA_DPD_DEAD 2 #define KA_KEEPALIVE 3 #define KA_REKEY 4 #define DTLS_NOSECRET 0 #define DTLS_SECRET 1 #define DTLS_DISABLED 2 #define DTLS_SLEEPING 3 /* For ESP, sometimes sending probes */ #define DTLS_CONNECTING 4 /* ESP probe received; must tell server */ #define DTLS_CONNECTED 5 /* Server informed and should be sending ESP */ #define COMPR_DEFLATE (1<<0) #define COMPR_LZS (1<<1) #define COMPR_LZ4 (1<<2) #ifdef HAVE_LZ4 #define COMPR_STATELESS (COMPR_LZS | COMPR_LZ4) #else #define COMPR_STATELESS (COMPR_LZS) #endif #define COMPR_ALL (COMPR_STATELESS | COMPR_DEFLATE) struct keepalive_info { int dpd; int keepalive; int rekey; int rekey_method; time_t last_rekey; time_t last_tx; time_t last_rx; time_t last_dpd; }; struct pin_cache { struct pin_cache *next; char *token; char *pin; }; struct oc_text_buf { char *data; int pos; int buf_len; int error; }; #define RECONNECT_INTERVAL_MIN 10 #define RECONNECT_INTERVAL_MAX 100 #define REDIR_TYPE_NONE 0 #define REDIR_TYPE_NEWHOST 1 #define REDIR_TYPE_LOCAL 2 #define AUTH_TYPE_GSSAPI 0 #define AUTH_TYPE_NTLM 1 #define AUTH_TYPE_DIGEST 2 #define AUTH_TYPE_BASIC 3 #define MAX_AUTH_TYPES 4 #define AUTH_DEFAULT_DISABLED -3 #define AUTH_DISABLED -2 #define AUTH_FAILED -1 /* Failed */ #define AUTH_UNSEEN 0 /* Server has not offered it */ #define AUTH_AVAILABLE 1 /* Server has offered it, we have not tried it */ /* Individual auth types may use 2 onwards for their own state */ #define AUTH_IN_PROGRESS 2 /* In-progress attempt */ struct http_auth_state { int state; char *challenge; union { #ifdef HAVE_GSSAPI struct { gss_name_t gss_target_name; gss_ctx_id_t gss_context; }; #endif #ifdef _WIN32 struct { CredHandle ntlm_sspi_cred; CtxtHandle ntlm_sspi_ctx; }; struct { CredHandle sspi_cred; CtxtHandle sspi_ctx; SEC_WCHAR *sspi_target_name; }; #else struct { int ntlm_helper_fd; }; #endif }; }; struct vpn_proto { int (*vpn_close_session)(struct openconnect_info *vpninfo, const char *reason); /* This does the full authentication, calling back as appropriate */ int (*obtain_cookie)(struct openconnect_info *vpninfo); /* Establish the TCP connection (and obtain configuration) */ int (*tcp_connect)(struct openconnect_info *vpninfo); int (*tcp_mainloop)(struct openconnect_info *vpninfo, int *timeout); /* Add headers common to each HTTP request */ void (*add_http_headers)(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* Set up the UDP (DTLS) connection. Doesn't actually *start* it. */ int (*udp_setup)(struct openconnect_info *vpninfo, int attempt_period); /* This will actually complete the UDP connection setup/handshake on the wire, as well as transporting packets */ int (*udp_mainloop)(struct openconnect_info *vpninfo, int *timeout); /* Close the connection but leave the session setup so it restarts */ void (*udp_close)(struct openconnect_info *vpninfo); /* Close and destroy the (UDP) session */ void (*udp_shutdown)(struct openconnect_info *vpninfo); }; struct pkt_q { struct pkt *head; struct pkt **tail; int count; }; static inline struct pkt *dequeue_packet(struct pkt_q *q) { struct pkt *ret = q->head; if (ret) { q->head = ret->next; if (!--q->count) q->tail = &q->head; } return ret; } static inline void requeue_packet(struct pkt_q *q, struct pkt *p) { p->next = q->head; q->head = p; if (!q->count++) q->tail = &p->next; } static inline int queue_packet(struct pkt_q *q, struct pkt *p) { *(q->tail) = p; p->next = NULL; q->tail = &p->next; return ++q->count; } static inline void init_pkt_queue(struct pkt_q *q) { q->tail = &q->head; } struct esp { #if defined(ESP_GNUTLS) gnutls_cipher_hd_t cipher; gnutls_hmac_hd_t hmac; #elif defined(ESP_OPENSSL) HMAC_CTX hmac; EVP_CIPHER_CTX cipher; #endif uint32_t seq; uint32_t seq_backlog; uint32_t spi; /* Stored network-endian */ unsigned char secrets[0x40]; }; struct openconnect_info { struct vpn_proto proto; #ifdef HAVE_ICONV iconv_t ic_legacy_to_utf8; iconv_t ic_utf8_to_legacy; #endif char *redirect_url; int redirect_type; unsigned char esp_hmac; unsigned char esp_enc; unsigned char esp_compr; uint32_t esp_replay_protect; uint32_t esp_lifetime_bytes; uint32_t esp_lifetime_seconds; uint32_t esp_ssl_fallback; int current_esp_in; int old_esp_maxseq; struct esp esp_in[2]; struct esp esp_out; int tncc_fd; /* For Juniper TNCC */ const char *csd_xmltag; int csd_nostub; char *platname; char *mobile_platform_version; char *mobile_device_type; char *mobile_device_uniqueid; char *csd_token; char *csd_ticket; char *csd_stuburl; char *csd_starturl; char *csd_waiturl; char *csd_preurl; char *csd_scriptname; xmlNode *opaque_srvdata; char *profile_url; char *profile_sha1; #ifdef LIBPROXY_HDR pxProxyFactory *proxy_factory; #endif char *proxy_type; char *proxy; int proxy_port; int proxy_fd; char *proxy_user; char *proxy_pass; int proxy_close_during_auth; int retry_on_auth_fail; int try_http_auth; struct http_auth_state http_auth[MAX_AUTH_TYPES]; struct http_auth_state proxy_auth[MAX_AUTH_TYPES]; char *localname; char *hostname; char *unique_hostname; int port; char *urlpath; int cert_expire_warning; char *cert; char *sslkey; char *cert_password; char *cafile; unsigned no_system_trust; const char *xmlconfig; char xmlsha1[(SHA1_SIZE * 2) + 1]; char *authgroup; int nopasswd; int xmlpost; char *dtls_ciphers; uid_t uid_csd; char *csd_wrapper; int uid_csd_given; int no_http_keepalive; int dump_http_traffic; int token_mode; int token_bypassed; int token_tries; time_t token_time; #ifdef HAVE_LIBSTOKEN struct stoken_ctx *stoken_ctx; char *stoken_pin; int stoken_concat_pin; int stoken_interval; #endif #ifdef HAVE_LIBPSKC pskc_t *pskc; pskc_key_t *pskc_key; #endif char *oath_secret; size_t oath_secret_len; enum { OATH_ALG_HMAC_SHA1 = 0, OATH_ALG_HMAC_SHA256, OATH_ALG_HMAC_SHA512, } oath_hmac_alg; enum { HOTP_SECRET_BASE32 = 1, HOTP_SECRET_RAW, HOTP_SECRET_HEX, HOTP_SECRET_PSKC, } hotp_secret_format; /* We need to give it back in the same form */ #ifdef HAVE_LIBPCSCLITE SCARDHANDLE pcsc_ctx, pcsc_card; char *yubikey_objname; unsigned char yubikey_pwhash[16]; int yubikey_pw_set; int yubikey_mode; #endif openconnect_lock_token_vfn lock_token; openconnect_unlock_token_vfn unlock_token; void *tok_cbdata; void *peer_cert; char *peer_cert_hash; char *cookie; /* Pointer to within cookies list */ struct oc_vpn_option *cookies; struct oc_vpn_option *cstp_options; struct oc_vpn_option *dtls_options; struct oc_vpn_option *script_env; struct oc_vpn_option *csd_env; unsigned pfs; #if defined(OPENCONNECT_OPENSSL) #ifdef HAVE_LIBP11 PKCS11_CTX *pkcs11_ctx; PKCS11_SLOT *pkcs11_slot_list; unsigned int pkcs11_slot_count; PKCS11_SLOT *pkcs11_cert_slot; unsigned char *pkcs11_cert_id; size_t pkcs11_cert_id_len; #endif X509 *cert_x509; SSL_CTX *https_ctx; SSL *https_ssl; #elif defined(OPENCONNECT_GNUTLS) gnutls_session_t https_sess; gnutls_certificate_credentials_t https_cred; char local_cert_md5[MD5_SIZE * 2 + 1]; /* For CSD */ #ifdef HAVE_TROUSERS TSS_HCONTEXT tpm_context; TSS_HKEY srk; TSS_HPOLICY srk_policy; TSS_HKEY tpm_key; TSS_HPOLICY tpm_key_policy; #endif #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY #ifdef HAVE_P11KIT gnutls_pkcs11_privkey_t my_p11key; #endif gnutls_privkey_t my_pkey; gnutls_x509_crt_t *my_certs; uint8_t *free_my_certs; unsigned int nr_my_certs; #endif #endif /* OPENCONNECT_GNUTLS */ struct pin_cache *pin_cache; struct keepalive_info ssl_times; int owe_ssl_dpd_response; int deflate_pkt_size; /* It may need to be larger than MTU */ struct pkt *deflate_pkt; /* For compressing outbound packets into */ struct pkt *pending_deflated_pkt; /* The original packet associated with above */ struct pkt *current_ssl_pkt; /* Partially sent SSL packet */ struct pkt_q oncp_control_queue; /* Control packets to be sent on oNCP next */ int oncp_rec_size; /* For packetising incoming oNCP stream */ /* Packet buffers for receiving into */ struct pkt *cstp_pkt; struct pkt *dtls_pkt; struct pkt *tun_pkt; int pkt_trailer; /* How many bytes after payload for encryption (ESP HMAC) */ z_stream inflate_strm; uint32_t inflate_adler32; z_stream deflate_strm; uint32_t deflate_adler32; int disable_ipv6; int reconnect_timeout; int reconnect_interval; int dtls_attempt_period; time_t new_dtls_started; #if defined(DTLS_OPENSSL) SSL_CTX *dtls_ctx; SSL *dtls_ssl; #elif defined(DTLS_GNUTLS) /* Call this dtls_ssl rather than dtls_sess because it's just a pointer, and generic code in dtls.c wants to check if it's NULL or not or pass it to DTLS_SEND/DTLS_RECV. This way we have fewer ifdefs and accessor macros for it. */ gnutls_session_t dtls_ssl; char *gnutls_dtls_cipher; /* cached for openconnect_get_dtls_cipher() */ #endif char *cstp_cipher; int dtls_state; int dtls_need_reconnect; struct keepalive_info dtls_times; unsigned char dtls_session_id[32]; unsigned char dtls_secret[48]; char *dtls_cipher; char *vpnc_script; int script_tun; char *ifname; int reqmtu, basemtu; const char *banner; struct oc_ip_info ip_info; #ifdef _WIN32 long dtls_monitored, ssl_monitored, cmd_monitored, tun_monitored; HANDLE dtls_event, ssl_event, cmd_event; #else int _select_nfds; fd_set _select_rfds; fd_set _select_wfds; fd_set _select_efds; #endif #ifdef __sun__ int ip_fd; int ip6_fd; #endif #ifdef _WIN32 HANDLE tun_fh; OVERLAPPED tun_rd_overlap, tun_wr_overlap; int tun_rd_pending; #else int tun_fd; #endif int ssl_fd; int dtls_fd; int cmd_fd; int cmd_fd_write; int got_cancel_cmd; int got_pause_cmd; char cancel_type; struct pkt_q incoming_queue; struct pkt_q outgoing_queue; int max_qlen; struct oc_stats stats; openconnect_stats_vfn stats_handler; socklen_t peer_addrlen; struct sockaddr *peer_addr; struct sockaddr *dtls_addr; int dtls_local_port; int req_compr; /* What we requested */ int cstp_compr; /* Accepted for CSTP */ int dtls_compr; /* Accepted for DTLS */ int is_dyndns; /* Attempt to redo DNS lookup on each CSTP reconnect */ char *useragent; const char *quit_reason; int verbose; void *cbdata; openconnect_validate_peer_cert_vfn validate_peer_cert; openconnect_write_new_config_vfn write_new_config; openconnect_process_auth_form_vfn process_auth_form; openconnect_progress_vfn progress; openconnect_protect_socket_vfn protect_socket; int (*ssl_read)(struct openconnect_info *vpninfo, char *buf, size_t len); int (*ssl_gets)(struct openconnect_info *vpninfo, char *buf, size_t len); int (*ssl_write)(struct openconnect_info *vpninfo, char *buf, size_t len); }; #ifdef _WIN32 #define monitor_read_fd(_v, _n) _v->_n##_monitored |= FD_READ #define monitor_write_fd(_v, _n) _v->_n##_monitored |= FD_WRITE #define monitor_except_fd(_v, _n) _v->_n##_monitored |= FD_CLOSE #define unmonitor_read_fd(_v, _n) _v->_n##_monitored &= ~FD_READ #define unmonitor_write_fd(_v, _n) _v->_n##_monitored &= ~FD_WRITE #define unmonitor_except_fd(_v, _n) _v->_n##_monitored &= ~FD_CLOSE #define monitor_fd_new(_v, _n) do { if (!_v->_n##_event) _v->_n##_event = CreateEvent(NULL, FALSE, FALSE, NULL); } while (0) #define read_fd_monitored(_v, _n) (_v->_n##_monitored & FD_READ) #else #define monitor_read_fd(_v, _n) FD_SET(_v-> _n##_fd, &vpninfo->_select_rfds) #define unmonitor_read_fd(_v, _n) FD_CLR(_v-> _n##_fd, &vpninfo->_select_rfds) #define monitor_write_fd(_v, _n) FD_SET(_v-> _n##_fd, &vpninfo->_select_wfds) #define unmonitor_write_fd(_v, _n) FD_CLR(_v-> _n##_fd, &vpninfo->_select_wfds) #define monitor_except_fd(_v, _n) FD_SET(_v-> _n##_fd, &vpninfo->_select_efds) #define unmonitor_except_fd(_v, _n) FD_CLR(_v-> _n##_fd, &vpninfo->_select_efds) #define monitor_fd_new(_v, _n) do { \ if (_v->_select_nfds <= vpninfo->_n##_fd) \ vpninfo->_select_nfds = vpninfo->_n##_fd + 1; \ } while (0) #define read_fd_monitored(_v, _n) FD_ISSET(_v->_n##_fd, &_v->_select_rfds) #endif #if (defined(DTLS_OPENSSL) && defined(SSL_OP_CISCO_ANYCONNECT)) || \ (defined(DTLS_GNUTLS) && defined(HAVE_GNUTLS_SESSION_SET_PREMASTER)) #define HAVE_DTLS 1 #endif /* Packet types */ #define AC_PKT_DATA 0 /* Uncompressed data */ #define AC_PKT_DPD_OUT 3 /* Dead Peer Detection */ #define AC_PKT_DPD_RESP 4 /* DPD response */ #define AC_PKT_DISCONN 5 /* Client disconnection notice */ #define AC_PKT_KEEPALIVE 7 /* Keepalive */ #define AC_PKT_COMPRESSED 8 /* Compressed data */ #define AC_PKT_TERM_SERVER 9 /* Server kick */ #define vpn_progress(_v, lvl, ...) do { \ if ((_v)->verbose >= (lvl)) \ (_v)->progress((_v)->cbdata, lvl, __VA_ARGS__); \ } while(0) #define vpn_perror(vpninfo, msg) vpn_progress((vpninfo), PRG_ERR, "%s: %s\n", (msg), strerror(errno)); /****************************************************************************/ /* Oh Solaris how we hate thee! */ #ifdef HAVE_SUNOS_BROKEN_TIME #define time(x) openconnect__time(x) time_t openconnect__time(time_t *t); #endif #ifndef HAVE_VASPRINTF #define vasprintf openconnect__vasprintf int openconnect__vasprintf(char **strp, const char *fmt, va_list ap); #endif #ifndef HAVE_ASPRINTF #define asprintf openconnect__asprintf int openconnect__asprintf(char **strp, const char *fmt, ...); #endif #ifndef HAVE_GETLINE #define getline openconnect__getline ssize_t openconnect__getline(char **lineptr, size_t *n, FILE *stream); #endif #ifndef HAVE_STRCASESTR #define strcasestr openconnect__strcasestr char *openconnect__strcasestr(const char *haystack, const char *needle); #endif #ifndef HAVE_STRNDUP #undef strndup #define strndup openconnect__strndup char *openconnect__strndup(const char *s, size_t n); #endif #ifndef HAVE_INET_ATON #define inet_aton openconnect__inet_aton int openconnect__inet_aton(const char *cp, struct in_addr *addr); #endif static inline int set_sock_nonblock(int fd) { #ifdef _WIN32 unsigned long mode = 1; return ioctlsocket(fd, FIONBIO, &mode); #else return fcntl(fd, F_SETFL, fcntl(fd, F_GETFL) | O_NONBLOCK); #endif } static inline int set_fd_cloexec(int fd) { #ifdef _WIN32 return 0; /* Windows has O_INHERIT but... */ #else return fcntl(fd, F_SETFD, fcntl(fd, F_GETFD) | FD_CLOEXEC); #endif } #ifdef _WIN32 #define pipe(fds) _pipe(fds, 4096, O_BINARY) int openconnect__win32_sock_init(); char *openconnect__win32_strerror(DWORD err); #undef inet_pton #define inet_pton openconnect__win32_inet_pton int openconnect__win32_inet_pton(int af, const char *src, void *dst); #define OPENCONNECT_CMD_SOCKET SOCKET OPENCONNECT_CMD_SOCKET dumb_socketpair(OPENCONNECT_CMD_SOCKET socks[2], int make_overlapped); #else #define closesocket close #define OPENCONNECT_CMD_SOCKET int #ifndef O_BINARY #define O_BINARY 0 #endif #endif /* For systems that don't support O_CLOEXEC, just don't bother. We don't keep files open for long anyway. */ #ifndef O_CLOEXEC #define O_CLOEXEC 0 #endif /* I always coded as if it worked like this. Now it does. */ #define realloc_inplace(p, size) do { \ void *__realloc_old = p; \ p = realloc(p, size); \ if (size && !p) \ free(__realloc_old); \ } while (0) /****************************************************************************/ /* iconv.c */ #ifdef HAVE_ICONV char *openconnect_utf8_to_legacy(struct openconnect_info *vpninfo, const char *utf8); char *openconnect_legacy_to_utf8(struct openconnect_info *vpninfo, const char *legacy); #else #define openconnect_utf8_to_legacy(v, str) ((char *)str) #define openconnect_legacy_to_utf8(v, str) ((char *)str) #endif /* script.c */ unsigned char unhex(const char *data); int script_setenv(struct openconnect_info *vpninfo, const char *opt, const char *val, int append); int script_setenv_int(struct openconnect_info *vpninfo, const char *opt, int value); void prepare_script_env(struct openconnect_info *vpninfo); int script_config_tun(struct openconnect_info *vpninfo, const char *reason); int apply_script_env(struct oc_vpn_option *envs); void free_split_routes(struct openconnect_info *vpninfo); /* tun.c / tun-win32.c */ void os_shutdown_tun(struct openconnect_info *vpninfo); int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt); int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt); intptr_t os_setup_tun(struct openconnect_info *vpninfo); /* dtls.c */ int dtls_setup(struct openconnect_info *vpninfo, int dtls_attempt_period); int dtls_mainloop(struct openconnect_info *vpninfo, int *timeout); void dtls_close(struct openconnect_info *vpninfo); void dtls_shutdown(struct openconnect_info *vpninfo); /* cstp.c */ void cstp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int cstp_connect(struct openconnect_info *vpninfo); int cstp_mainloop(struct openconnect_info *vpninfo, int *timeout); int cstp_bye(struct openconnect_info *vpninfo, const char *reason); int decompress_and_queue_packet(struct openconnect_info *vpninfo, int compr_type, unsigned char *buf, int len); int compress_packet(struct openconnect_info *vpninfo, int compr_type, struct pkt *this); /* auth-juniper.c */ int oncp_obtain_cookie(struct openconnect_info *vpninfo); void oncp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* oncp.c */ int queue_esp_control(struct openconnect_info *vpninfo, int enable); int oncp_connect(struct openconnect_info *vpninfo); int oncp_mainloop(struct openconnect_info *vpninfo, int *timeout); /* lzs.c */ int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); /* ssl.c */ unsigned string_is_hostname(const char* str); int connect_https_socket(struct openconnect_info *vpninfo); int __attribute__ ((format(printf, 4, 5))) request_passphrase(struct openconnect_info *vpninfo, const char *label, char **response, const char *fmt, ...); int __attribute__ ((format (printf, 2, 3))) openconnect_SSL_printf(struct openconnect_info *vpninfo, const char *fmt, ...); int openconnect_print_err_cb(const char *str, size_t len, void *ptr); #define openconnect_report_ssl_errors(v) ERR_print_errors_cb(openconnect_print_err_cb, (v)) #if defined(FAKE_ANDROID_KEYSTORE) || defined(__ANDROID__) #define ANDROID_KEYSTORE #endif #ifdef ANDROID_KEYSTORE const char *keystore_strerror(int err); int keystore_fetch(const char *key, unsigned char **result); #endif void cmd_fd_set(struct openconnect_info *vpninfo, fd_set *fds, int *maxfd); void check_cmd_fd(struct openconnect_info *vpninfo, fd_set *fds); int is_cancel_pending(struct openconnect_info *vpninfo, fd_set *fds); void poll_cmd_fd(struct openconnect_info *vpninfo, int timeout); int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode); FILE *openconnect_fopen_utf8(struct openconnect_info *vpninfo, const char *fname, const char *mode); int udp_sockaddr(struct openconnect_info *vpninfo, int port); int udp_connect(struct openconnect_info *vpninfo); int ssl_reconnect(struct openconnect_info *vpninfo); void openconnect_clear_cookies(struct openconnect_info *vpninfo); /* openssl-pkcs11.c */ int load_pkcs11_key(struct openconnect_info *vpninfo); int load_pkcs11_certificate(struct openconnect_info *vpninfo); /* esp.c */ int verify_packet_seqno(struct openconnect_info *vpninfo, struct esp *esp, uint32_t seq); int esp_setup(struct openconnect_info *vpninfo, int dtls_attempt_period); int esp_mainloop(struct openconnect_info *vpninfo, int *timeout); void esp_close(struct openconnect_info *vpninfo); void esp_shutdown(struct openconnect_info *vpninfo); int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp); /* {gnutls,openssl}-esp.c */ int setup_esp_keys(struct openconnect_info *vpninfo); void destroy_esp_ciphers(struct esp *esp); int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt); int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt); /* {gnutls,openssl}.c */ int ssl_nonblock_read(struct openconnect_info *vpninfo, void *buf, int maxlen); int ssl_nonblock_write(struct openconnect_info *vpninfo, void *buf, int buflen); int openconnect_open_https(struct openconnect_info *vpninfo); void openconnect_close_https(struct openconnect_info *vpninfo, int final); int cstp_handshake(struct openconnect_info *vpninfo, unsigned init); int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf); int openconnect_sha1(unsigned char *result, void *data, int len); int openconnect_md5(unsigned char *result, void *data, int len); int openconnect_random(void *bytes, int len); int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf); int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result); int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len); int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge); #if defined(OPENCONNECT_OPENSSL) #define openconnect_https_connected(_v) ((_v)->https_ssl) #elif defined (OPENCONNECT_GNUTLS) #define openconnect_https_connected(_v) ((_v)->https_sess) #endif /* mainloop.c */ int tun_mainloop(struct openconnect_info *vpninfo, int *timeout); int queue_new_packet(struct pkt_q *q, void *buf, int len); int keepalive_action(struct keepalive_info *ka, int *timeout); int ka_stalled_action(struct keepalive_info *ka, int *timeout); /* xml.c */ ssize_t read_file_into_string(struct openconnect_info *vpninfo, const char *fname, char **ptr); int config_lookup_host(struct openconnect_info *vpninfo, const char *host); /* oath.c */ int set_totp_mode(struct openconnect_info *vpninfo, const char *token_str); int set_hotp_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int can_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* stoken.c */ int prepare_stoken(struct openconnect_info *vpninfo); int set_libstoken_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* yubikey.c */ int set_yubikey_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* auth.c */ int cstp_obtain_cookie(struct openconnect_info *vpninfo); /* auth-common.c */ int xmlnode_is_named(xmlNode *xml_node, const char *name); int xmlnode_get_prop(xmlNode *xml_node, const char *name, char **var); int xmlnode_match_prop(xmlNode *xml_node, const char *name, const char *match); int append_opt(struct oc_text_buf *body, char *opt, char *name); int append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body); void free_opt(struct oc_form_opt *opt); void free_auth_form(struct oc_auth_form *form); int do_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form); int can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* http.c */ struct oc_text_buf *buf_alloc(void); void dump_buf(struct openconnect_info *vpninfo, char prefix, char *buf); int buf_ensure_space(struct oc_text_buf *buf, int len); void __attribute__ ((format (printf, 2, 3))) buf_append(struct oc_text_buf *buf, const char *fmt, ...); void buf_append_bytes(struct oc_text_buf *buf, const void *bytes, int len); int buf_append_utf16le(struct oc_text_buf *buf, const char *utf8); int get_utf8char(const char **utf8); void buf_append_from_utf16le(struct oc_text_buf *buf, const void *utf16); void buf_truncate(struct oc_text_buf *buf); void buf_append_urlencoded(struct oc_text_buf *buf, char *str); int buf_error(struct oc_text_buf *buf); int buf_free(struct oc_text_buf *buf); char *openconnect_create_useragent(const char *base); int process_proxy(struct openconnect_info *vpninfo, int ssl_sock); int internal_parse_url(const char *url, char **res_proto, char **res_host, int *res_port, char **res_path, int default_port); int do_https_request(struct openconnect_info *vpninfo, const char *method, const char *request_body_type, struct oc_text_buf *request_body, char **form_buf, int fetch_redirect); int http_add_cookie(struct openconnect_info *vpninfo, const char *option, const char *value, int replace); int process_http_response(struct openconnect_info *vpninfo, int connect, int (*header_cb)(struct openconnect_info *, char *, char *), struct oc_text_buf *body); int handle_redirect(struct openconnect_info *vpninfo); void http_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* http-auth.c */ void buf_append_base64(struct oc_text_buf *buf, const void *bytes, int len); void *openconnect_base64_decode(int *len, const char *in); void clear_auth_states(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, int reset); int proxy_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val); int http_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val); int gen_authorization_hdr(struct openconnect_info *vpninfo, int proxy, struct oc_text_buf *buf); /* ntlm.c */ int ntlm_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state); /* gssapi.c */ int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state); int socks_gssapi_auth(struct openconnect_info *vpninfo); /* digest.c */ int digest_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); /* library.c */ void nuke_opt_values(struct oc_form_opt *opt); int process_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form); /* This is private for now since we haven't yet worked out what the API will be */ void openconnect_set_juniper(struct openconnect_info *vpninfo); /* version.c */ extern const char *openconnect_version_str; /* strncasecmp() just checks that the first n characters match. This function ensures that the first n characters of the left-hand side are a *precise* match for the right-hand side. */ static inline int strprefix_match(const char *str, int len, const char *match) { return len == strlen(match) && !strncasecmp(str, match, len); } #define STRDUP(res, arg) \ do { \ free(res); \ if (arg) { \ res = strdup(arg); \ if (res == NULL) return -ENOMEM; \ } else res = NULL; \ } while(0) #define UTF8CHECK(arg) \ if ((arg) && buf_append_utf16le(NULL, (arg))) { \ vpn_progress(vpninfo, PRG_ERR, \ _("ERROR: %s() called with invalid UTF-8 for '%s' argument\n"),\ __func__, #arg); \ return -EILSEQ; \ } #define UTF8CHECK_VOID(arg) \ if ((arg) && buf_append_utf16le(NULL, (arg))) { \ vpn_progress(vpninfo, PRG_ERR, \ _("ERROR: %s() called with invalid UTF-8 for '%s' argument\n"),\ __func__, #arg); \ return; \ } /* Let's stop open-coding big-endian and little-endian loads/stores. * * Start with a packed structure so that we can let the compiler * decide whether the target CPU can cope with unaligned load/stores * or not. Then there are three cases to handle: * - For big-endian loads/stores, just use htons() et al. * - For little-endian when we *know* the CPU is LE, just load/store * - For little-endian otherwise, do the data acess byte-wise */ struct oc_packed_uint32_t { uint32_t d; } __attribute__((packed)); struct oc_packed_uint16_t { uint16_t d; } __attribute__((packed)); static inline uint32_t load_be32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return ntohl(p->d); } static inline uint16_t load_be16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return ntohs(p->d); } static inline void store_be32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = htonl(d); } static inline void store_be16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = htons(d); } /* It doesn't matter if we don't find one. It'll default to the * "not known to be little-endian" case, and do the bytewise * load/store. Modern compilers might even spot the pattern and * optimise it (see GCC PR#55177 around comment 15). */ #ifdef ENDIAN_HDR #include ENDIAN_HDR #endif #if defined(_WIN32) || \ (defined(_LITTLE_ENDIAN) && !defined(_BIG_ENDIAN)) /* Solaris */ || \ (defined(__LITTLE_ENDIAN) && defined(__BIG_ENDIAN) && defined(__BYTE_ORDER) \ && __BYTE_ORDER == __LITTLE_ENDIAN) /* Linux */ || \ (defined(LITTLE_ENDIAN) && defined(BIG_ENDIAN) && defined(BYTE_ORDER) \ && BYTE_ORDER == LITTLE_ENDIAN) /* *BSD */ static inline uint32_t load_le32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return p->d; } static inline uint16_t load_le16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return p->d; } static inline void store_le32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = d; } static inline void store_le16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = d; } #else static inline uint32_t load_le32(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8) | (p[2] << 16) | (p[3] << 24); } static inline uint16_t load_le16(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8); } static inline void store_le32(void *_p, uint32_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; } static inline void store_le16(void *_p, uint16_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; p[2] = d >> 16; p[3] = d >> 24; } #endif /* !Not known to be little-endian */ #endif /* __OPENCONNECT_INTERNAL_H__ */ openconnect-7.06/install-sh0000755000076400007640000003325512404036304012722 00000000000000#!/bin/sh # install - install a program, script, or datafile scriptversion=2011-11-20.07; # UTC # This originates from X11R5 (mit/util/scripts/install.sh), which was # later released in X11R6 (xc/config/util/install.sh) with the # following copyright and license. # # Copyright (C) 1994 X Consortium # # Permission is hereby granted, free of charge, to any person obtaining a copy # of this software and associated documentation files (the "Software"), to # deal in the Software without restriction, including without limitation the # rights to use, copy, modify, merge, publish, distribute, sublicense, and/or # sell copies of the Software, and to permit persons to whom the Software is # furnished to do so, subject to the following conditions: # # The above copyright notice and this permission notice shall be included in # all copies or substantial portions of the Software. # # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE # X CONSORTIUM BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN # AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNEC- # TION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. # # Except as contained in this notice, the name of the X Consortium shall not # be used in advertising or otherwise to promote the sale, use or other deal- # ings in this Software without prior written authorization from the X Consor- # tium. # # # FSF changes to this file are in the public domain. # # Calling this script install-sh is preferred over install.sh, to prevent # 'make' implicit rules from creating a file called install from it # when there is no Makefile. # # This script is compatible with the BSD install script, but was written # from scratch. nl=' ' IFS=" "" $nl" # set DOITPROG to echo to test this script # Don't use :- since 4.3BSD and earlier shells don't like it. doit=${DOITPROG-} if test -z "$doit"; then doit_exec=exec else doit_exec=$doit fi # Put in absolute file names if you don't have them in your path; # or use environment vars. chgrpprog=${CHGRPPROG-chgrp} chmodprog=${CHMODPROG-chmod} chownprog=${CHOWNPROG-chown} cmpprog=${CMPPROG-cmp} cpprog=${CPPROG-cp} mkdirprog=${MKDIRPROG-mkdir} mvprog=${MVPROG-mv} rmprog=${RMPROG-rm} stripprog=${STRIPPROG-strip} posix_glob='?' initialize_posix_glob=' test "$posix_glob" != "?" || { if (set -f) 2>/dev/null; then posix_glob= else posix_glob=: fi } ' posix_mkdir= # Desired mode of installed file. mode=0755 chgrpcmd= chmodcmd=$chmodprog chowncmd= mvcmd=$mvprog rmcmd="$rmprog -f" stripcmd= src= dst= dir_arg= dst_arg= copy_on_change=false no_target_directory= usage="\ Usage: $0 [OPTION]... [-T] SRCFILE DSTFILE or: $0 [OPTION]... SRCFILES... DIRECTORY or: $0 [OPTION]... -t DIRECTORY SRCFILES... or: $0 [OPTION]... -d DIRECTORIES... In the 1st form, copy SRCFILE to DSTFILE. In the 2nd and 3rd, copy all SRCFILES to DIRECTORY. In the 4th, create DIRECTORIES. Options: --help display this help and exit. --version display version info and exit. -c (ignored) -C install only if different (preserve the last data modification time) -d create directories instead of installing files. -g GROUP $chgrpprog installed files to GROUP. -m MODE $chmodprog installed files to MODE. -o USER $chownprog installed files to USER. -s $stripprog installed files. -t DIRECTORY install into DIRECTORY. -T report an error if DSTFILE is a directory. Environment variables override the default commands: CHGRPPROG CHMODPROG CHOWNPROG CMPPROG CPPROG MKDIRPROG MVPROG RMPROG STRIPPROG " while test $# -ne 0; do case $1 in -c) ;; -C) copy_on_change=true;; -d) dir_arg=true;; -g) chgrpcmd="$chgrpprog $2" shift;; --help) echo "$usage"; exit $?;; -m) mode=$2 case $mode in *' '* | *' '* | *' '* | *'*'* | *'?'* | *'['*) echo "$0: invalid mode: $mode" >&2 exit 1;; esac shift;; -o) chowncmd="$chownprog $2" shift;; -s) stripcmd=$stripprog;; -t) dst_arg=$2 # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac shift;; -T) no_target_directory=true;; --version) echo "$0 $scriptversion"; exit $?;; --) shift break;; -*) echo "$0: invalid option: $1" >&2 exit 1;; *) break;; esac shift done if test $# -ne 0 && test -z "$dir_arg$dst_arg"; then # When -d is used, all remaining arguments are directories to create. # When -t is used, the destination is already specified. # Otherwise, the last argument is the destination. Remove it from $@. for arg do if test -n "$dst_arg"; then # $@ is not empty: it contains at least $arg. set fnord "$@" "$dst_arg" shift # fnord fi shift # arg dst_arg=$arg # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac done fi if test $# -eq 0; then if test -z "$dir_arg"; then echo "$0: no input file specified." >&2 exit 1 fi # It's OK to call 'install-sh -d' without argument. # This can happen when creating conditional directories. exit 0 fi if test -z "$dir_arg"; then do_exit='(exit $ret); exit $ret' trap "ret=129; $do_exit" 1 trap "ret=130; $do_exit" 2 trap "ret=141; $do_exit" 13 trap "ret=143; $do_exit" 15 # Set umask so as not to create temps with too-generous modes. # However, 'strip' requires both read and write access to temps. case $mode in # Optimize common cases. *644) cp_umask=133;; *755) cp_umask=22;; *[0-7]) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw='% 200' fi cp_umask=`expr '(' 777 - $mode % 1000 ')' $u_plus_rw`;; *) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw=,u+rw fi cp_umask=$mode$u_plus_rw;; esac fi for src do # Protect names problematic for 'test' and other utilities. case $src in -* | [=\(\)!]) src=./$src;; esac if test -n "$dir_arg"; then dst=$src dstdir=$dst test -d "$dstdir" dstdir_status=$? else # Waiting for this to be detected by the "$cpprog $src $dsttmp" command # might cause directories to be created, which would be especially bad # if $src (and thus $dsttmp) contains '*'. if test ! -f "$src" && test ! -d "$src"; then echo "$0: $src does not exist." >&2 exit 1 fi if test -z "$dst_arg"; then echo "$0: no destination specified." >&2 exit 1 fi dst=$dst_arg # If destination is a directory, append the input filename; won't work # if double slashes aren't ignored. if test -d "$dst"; then if test -n "$no_target_directory"; then echo "$0: $dst_arg: Is a directory" >&2 exit 1 fi dstdir=$dst dst=$dstdir/`basename "$src"` dstdir_status=0 else # Prefer dirname, but fall back on a substitute if dirname fails. dstdir=` (dirname "$dst") 2>/dev/null || expr X"$dst" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$dst" : 'X\(//\)[^/]' \| \ X"$dst" : 'X\(//\)$' \| \ X"$dst" : 'X\(/\)' \| . 2>/dev/null || echo X"$dst" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q' ` test -d "$dstdir" dstdir_status=$? fi fi obsolete_mkdir_used=false if test $dstdir_status != 0; then case $posix_mkdir in '') # Create intermediate dirs using mode 755 as modified by the umask. # This is like FreeBSD 'install' as of 1997-10-28. umask=`umask` case $stripcmd.$umask in # Optimize common cases. *[2367][2367]) mkdir_umask=$umask;; .*0[02][02] | .[02][02] | .[02]) mkdir_umask=22;; *[0-7]) mkdir_umask=`expr $umask + 22 \ - $umask % 100 % 40 + $umask % 20 \ - $umask % 10 % 4 + $umask % 2 `;; *) mkdir_umask=$umask,go-w;; esac # With -d, create the new directory with the user-specified mode. # Otherwise, rely on $mkdir_umask. if test -n "$dir_arg"; then mkdir_mode=-m$mode else mkdir_mode= fi posix_mkdir=false case $umask in *[123567][0-7][0-7]) # POSIX mkdir -p sets u+wx bits regardless of umask, which # is incompatible with FreeBSD 'install' when (umask & 300) != 0. ;; *) tmpdir=${TMPDIR-/tmp}/ins$RANDOM-$$ trap 'ret=$?; rmdir "$tmpdir/d" "$tmpdir" 2>/dev/null; exit $ret' 0 if (umask $mkdir_umask && exec $mkdirprog $mkdir_mode -p -- "$tmpdir/d") >/dev/null 2>&1 then if test -z "$dir_arg" || { # Check for POSIX incompatibilities with -m. # HP-UX 11.23 and IRIX 6.5 mkdir -m -p sets group- or # other-writable bit of parent directory when it shouldn't. # FreeBSD 6.1 mkdir -m -p sets mode of existing directory. ls_ld_tmpdir=`ls -ld "$tmpdir"` case $ls_ld_tmpdir in d????-?r-*) different_mode=700;; d????-?--*) different_mode=755;; *) false;; esac && $mkdirprog -m$different_mode -p -- "$tmpdir" && { ls_ld_tmpdir_1=`ls -ld "$tmpdir"` test "$ls_ld_tmpdir" = "$ls_ld_tmpdir_1" } } then posix_mkdir=: fi rmdir "$tmpdir/d" "$tmpdir" else # Remove any dirs left behind by ancient mkdir implementations. rmdir ./$mkdir_mode ./-p ./-- 2>/dev/null fi trap '' 0;; esac;; esac if $posix_mkdir && ( umask $mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir" ) then : else # The umask is ridiculous, or mkdir does not conform to POSIX, # or it failed possibly due to a race condition. Create the # directory the slow way, step by step, checking for races as we go. case $dstdir in /*) prefix='/';; [-=\(\)!]*) prefix='./';; *) prefix='';; esac eval "$initialize_posix_glob" oIFS=$IFS IFS=/ $posix_glob set -f set fnord $dstdir shift $posix_glob set +f IFS=$oIFS prefixes= for d do test X"$d" = X && continue prefix=$prefix$d if test -d "$prefix"; then prefixes= else if $posix_mkdir; then (umask=$mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir") && break # Don't fail if two instances are running concurrently. test -d "$prefix" || exit 1 else case $prefix in *\'*) qprefix=`echo "$prefix" | sed "s/'/'\\\\\\\\''/g"`;; *) qprefix=$prefix;; esac prefixes="$prefixes '$qprefix'" fi fi prefix=$prefix/ done if test -n "$prefixes"; then # Don't fail if two instances are running concurrently. (umask $mkdir_umask && eval "\$doit_exec \$mkdirprog $prefixes") || test -d "$dstdir" || exit 1 obsolete_mkdir_used=true fi fi fi if test -n "$dir_arg"; then { test -z "$chowncmd" || $doit $chowncmd "$dst"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dst"; } && { test "$obsolete_mkdir_used$chowncmd$chgrpcmd" = false || test -z "$chmodcmd" || $doit $chmodcmd $mode "$dst"; } || exit 1 else # Make a couple of temp file names in the proper directory. dsttmp=$dstdir/_inst.$$_ rmtmp=$dstdir/_rm.$$_ # Trap to clean up those temp files at exit. trap 'ret=$?; rm -f "$dsttmp" "$rmtmp" && exit $ret' 0 # Copy the file name to the temp name. (umask $cp_umask && $doit_exec $cpprog "$src" "$dsttmp") && # and set any options; do chmod last to preserve setuid bits. # # If any of these fail, we abort the whole thing. If we want to # ignore errors from any of these, just make sure not to ignore # errors from the above "$doit $cpprog $src $dsttmp" command. # { test -z "$chowncmd" || $doit $chowncmd "$dsttmp"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dsttmp"; } && { test -z "$stripcmd" || $doit $stripcmd "$dsttmp"; } && { test -z "$chmodcmd" || $doit $chmodcmd $mode "$dsttmp"; } && # If -C, don't bother to copy if it wouldn't change the file. if $copy_on_change && old=`LC_ALL=C ls -dlL "$dst" 2>/dev/null` && new=`LC_ALL=C ls -dlL "$dsttmp" 2>/dev/null` && eval "$initialize_posix_glob" && $posix_glob set -f && set X $old && old=:$2:$4:$5:$6 && set X $new && new=:$2:$4:$5:$6 && $posix_glob set +f && test "$old" = "$new" && $cmpprog "$dst" "$dsttmp" >/dev/null 2>&1 then rm -f "$dsttmp" else # Rename the file to the real destination. $doit $mvcmd -f "$dsttmp" "$dst" 2>/dev/null || # The rename failed, perhaps because mv can't rename something else # to itself, or perhaps because mv is so ancient that it does not # support -f. { # Now remove or move aside any old file at destination location. # We try this two ways since rm can't unlink itself on some # systems and the destination file might be busy for other # reasons. In this case, the final cleanup might fail but the new # file should still install successfully. { test ! -f "$dst" || $doit $rmcmd -f "$dst" 2>/dev/null || { $doit $mvcmd -f "$dst" "$rmtmp" 2>/dev/null && { $doit $rmcmd -f "$rmtmp" 2>/dev/null; :; } } || { echo "$0: cannot unlink or rename $dst" >&2 (exit 1); exit 1 } } && # Now rename the file to the real destination. $doit $mvcmd "$dsttmp" "$dst" } fi || exit 1 trap '' 0 fi done # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: openconnect-7.06/xml.c0000664000076400007640000001172612474366106011700 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" ssize_t read_file_into_string(struct openconnect_info *vpninfo, const char *fname, char **ptr) { int fd, len; struct stat st; char *buf; fd = openconnect_open_utf8(vpninfo, fname, O_RDONLY|O_BINARY); if (fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open %s: %s\n"), fname, strerror(errno)); return -ENOENT; } if (fstat(fd, &st)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to fstat() %s: %s\n"), fname, strerror(errno)); close(fd); return -EIO; } len = st.st_size; buf = malloc(len + 1); if (!buf) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate %d bytes for %s\n"), len + 1, fname); close(fd); return -ENOMEM; } if (read(fd, buf, len) != len) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read %s: %s\n"), fname, strerror(errno)); free(buf); close(fd); return -EIO; } buf[len] = 0; close(fd); *ptr = buf; return len; } static char *fetch_and_trim(xmlNode *node) { char *str = (char *)xmlNodeGetContent(node), *p; int i, len; if (!str) return NULL; len = strlen(str); for (i = len-1; i >= 0; i--) { if (isspace((int)(unsigned char)str[i])) str[i] = 0; else break; } for (p = str; isspace((int)(unsigned char)*p); p++) ; if (p == str) return str; p = strdup(p); free(str); return p; } int config_lookup_host(struct openconnect_info *vpninfo, const char *host) { int i; ssize_t size; char *xmlfile; unsigned char sha1[SHA1_SIZE]; xmlDocPtr xml_doc; xmlNode *xml_node, *xml_node2; if (!vpninfo->xmlconfig) return 0; size = read_file_into_string(vpninfo, vpninfo->xmlconfig, &xmlfile); if (size == -ENOENT) { fprintf(stderr, _("Treating host \"%s\" as a raw hostname\n"), host); return 0; } else if (size <= 0) { return size; } if (openconnect_sha1(sha1, xmlfile, size)) { fprintf(stderr, _("Failed to SHA1 existing file\n")); free(xmlfile); return -1; } for (i = 0; i < SHA1_SIZE; i++) snprintf(&vpninfo->xmlsha1[i*2], 3, "%02x", sha1[i]); vpn_progress(vpninfo, PRG_DEBUG, _("XML config file SHA1: %s\n"), vpninfo->xmlsha1); xml_doc = xmlReadMemory(xmlfile, size, "noname.xml", NULL, 0); free(xmlfile); if (!xml_doc) { fprintf(stderr, _("Failed to parse XML config file %s\n"), vpninfo->xmlconfig); fprintf(stderr, _("Treating host \"%s\" as a raw hostname\n"), host); return 0; } xml_node = xmlDocGetRootElement(xml_doc); for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type == XML_ELEMENT_NODE && !strcmp((char *)xml_node->name, "ServerList")) { for (xml_node = xml_node->children; xml_node && !vpninfo->hostname; xml_node = xml_node->next) { if (xml_node->type == XML_ELEMENT_NODE && !strcmp((char *)xml_node->name, "HostEntry")) { int match = 0; for (xml_node2 = xml_node->children; match >= 0 && xml_node2; xml_node2 = xml_node2->next) { if (xml_node2->type != XML_ELEMENT_NODE) continue; if (!match && !strcmp((char *)xml_node2->name, "HostName")) { char *content = fetch_and_trim(xml_node2); if (content && !strcmp(content, host)) match = 1; else match = -1; free(content); } else if (match && !strcmp((char *)xml_node2->name, "HostAddress")) { char *content = fetch_and_trim(xml_node2); if (content && !openconnect_parse_url(vpninfo, content)) { printf(_("Host \"%s\" has address \"%s\"\n"), host, content); } free(content); } else if (match && !strcmp((char *)xml_node2->name, "UserGroup")) { char *content = fetch_and_trim(xml_node2); if (content) { free(vpninfo->urlpath); vpninfo->urlpath = content; printf(_("Host \"%s\" has UserGroup \"%s\"\n"), host, content); } } } } } break; } } xmlFreeDoc(xml_doc); if (!vpninfo->hostname) { fprintf(stderr, _("Host \"%s\" not listed in config; treating as raw hostname\n"), host); } return 0; } openconnect-7.06/missing0000755000076400007640000001533012404036304012307 00000000000000#! /bin/sh # Common wrapper for a few potentially missing GNU programs. scriptversion=2013-10-28.13; # UTC # Copyright (C) 1996-2013 Free Software Foundation, Inc. # Originally written by Fran,cois Pinard , 1996. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. if test $# -eq 0; then echo 1>&2 "Try '$0 --help' for more information" exit 1 fi case $1 in --is-lightweight) # Used by our autoconf macros to check whether the available missing # script is modern enough. exit 0 ;; --run) # Back-compat with the calling convention used by older automake. shift ;; -h|--h|--he|--hel|--help) echo "\ $0 [OPTION]... PROGRAM [ARGUMENT]... Run 'PROGRAM [ARGUMENT]...', returning a proper advice when this fails due to PROGRAM being missing or too old. Options: -h, --help display this help and exit -v, --version output version information and exit Supported PROGRAM values: aclocal autoconf autoheader autom4te automake makeinfo bison yacc flex lex help2man Version suffixes to PROGRAM as well as the prefixes 'gnu-', 'gnu', and 'g' are ignored when checking the name. Send bug reports to ." exit $? ;; -v|--v|--ve|--ver|--vers|--versi|--versio|--version) echo "missing $scriptversion (GNU Automake)" exit $? ;; -*) echo 1>&2 "$0: unknown '$1' option" echo 1>&2 "Try '$0 --help' for more information" exit 1 ;; esac # Run the given program, remember its exit status. "$@"; st=$? # If it succeeded, we are done. test $st -eq 0 && exit 0 # Also exit now if we it failed (or wasn't found), and '--version' was # passed; such an option is passed most likely to detect whether the # program is present and works. case $2 in --version|--help) exit $st;; esac # Exit code 63 means version mismatch. This often happens when the user # tries to use an ancient version of a tool on a file that requires a # minimum version. if test $st -eq 63; then msg="probably too old" elif test $st -eq 127; then # Program was missing. msg="missing on your system" else # Program was found and executed, but failed. Give up. exit $st fi perl_URL=http://www.perl.org/ flex_URL=http://flex.sourceforge.net/ gnu_software_URL=http://www.gnu.org/software program_details () { case $1 in aclocal|automake) echo "The '$1' program is part of the GNU Automake package:" echo "<$gnu_software_URL/automake>" echo "It also requires GNU Autoconf, GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/autoconf>" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; autoconf|autom4te|autoheader) echo "The '$1' program is part of the GNU Autoconf package:" echo "<$gnu_software_URL/autoconf/>" echo "It also requires GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; esac } give_advice () { # Normalize program name to check for. normalized_program=`echo "$1" | sed ' s/^gnu-//; t s/^gnu//; t s/^g//; t'` printf '%s\n' "'$1' is $msg." configure_deps="'configure.ac' or m4 files included by 'configure.ac'" case $normalized_program in autoconf*) echo "You should only need it if you modified 'configure.ac'," echo "or m4 files included by it." program_details 'autoconf' ;; autoheader*) echo "You should only need it if you modified 'acconfig.h' or" echo "$configure_deps." program_details 'autoheader' ;; automake*) echo "You should only need it if you modified 'Makefile.am' or" echo "$configure_deps." program_details 'automake' ;; aclocal*) echo "You should only need it if you modified 'acinclude.m4' or" echo "$configure_deps." program_details 'aclocal' ;; autom4te*) echo "You might have modified some maintainer files that require" echo "the 'autom4te' program to be rebuilt." program_details 'autom4te' ;; bison*|yacc*) echo "You should only need it if you modified a '.y' file." echo "You may want to install the GNU Bison package:" echo "<$gnu_software_URL/bison/>" ;; lex*|flex*) echo "You should only need it if you modified a '.l' file." echo "You may want to install the Fast Lexical Analyzer package:" echo "<$flex_URL>" ;; help2man*) echo "You should only need it if you modified a dependency" \ "of a man page." echo "You may want to install the GNU Help2man package:" echo "<$gnu_software_URL/help2man/>" ;; makeinfo*) echo "You should only need it if you modified a '.texi' file, or" echo "any other file indirectly affecting the aspect of the manual." echo "You might want to install the Texinfo package:" echo "<$gnu_software_URL/texinfo/>" echo "The spurious makeinfo call might also be the consequence of" echo "using a buggy 'make' (AIX, DU, IRIX), in which case you might" echo "want to install GNU make:" echo "<$gnu_software_URL/make/>" ;; *) echo "You might have modified some files without having the proper" echo "tools for further handling them. Check the 'README' file, it" echo "often tells you about the needed prerequisites for installing" echo "this package. You may also peek at any GNU archive site, in" echo "case some other package contains this missing '$1' program." ;; esac } give_advice "$1" | sed -e '1s/^/WARNING: /' \ -e '2,$s/^/ /' >&2 # Propagate the correct exit status (expected to be 127 for a program # not found, 63 for a program that failed due to version mismatch). exit $st # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: openconnect-7.06/ntlm.c0000664000076400007640000007757612474365462012075 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_ALLOCA_H #include #endif #ifndef _WIN32 #include #endif #include "openconnect-internal.h" #define auth_is_proxy(v, a) ((unsigned long)(a) >= ((unsigned long)(v)->proxy_auth)) #define NTLM_SSO_REQ 2 /* SSO type1 packet sent */ #define NTLM_MANUAL 3 /* SSO challenge/response sent or skipped; manual next */ #define NTLM_MANUAL_REQ 4 /* manual type1 packet sent */ #ifdef _WIN32 static int ntlm_sspi(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, struct oc_text_buf *buf, const char *challenge) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; if (challenge) { int token_len = -EINVAL; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; in_token.pvBuffer = openconnect_base64_decode(&token_len, challenge); if (!in_token.pvBuffer) return token_len; in_token.cbBuffer = token_len; } output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; status = InitializeSecurityContextW(&auth_state->ntlm_sspi_cred, challenge ? &auth_state->ntlm_sspi_ctx : NULL, (SEC_WCHAR *)L"", ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, challenge ? &input_desc : NULL, 0, &auth_state->ntlm_sspi_ctx, &output_desc, &ret_flags, NULL); if (status != SEC_E_OK && status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); return -EIO; } buf_append(buf, "%sAuthorization: NTLM ", auth_is_proxy(vpninfo, auth_state) ? "Proxy-" : ""); buf_append_base64(buf, out_token.pvBuffer, out_token.cbBuffer); buf_append(buf, "\r\n"); FreeContextBuffer(out_token.pvBuffer); return 0; } static int ntlm_helper_spawn(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, struct oc_text_buf *buf) { SECURITY_STATUS status; int ret; status = AcquireCredentialsHandleW(NULL, (SEC_WCHAR *)L"NTLM", SECPKG_CRED_OUTBOUND, NULL, NULL, NULL, NULL, &auth_state->ntlm_sspi_cred, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("AcquireCredentialsHandle() failed: %lx\n"), status); return -EIO; } ret = ntlm_sspi(vpninfo, auth_state, buf, NULL); if (ret) FreeCredentialsHandle(&auth_state->ntlm_sspi_cred); return ret; } static int ntlm_helper_challenge(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, struct oc_text_buf *buf) { return ntlm_sspi(vpninfo, auth_state, buf, auth_state->challenge); } void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state == NTLM_SSO_REQ) { FreeCredentialsHandle(&auth_state->ntlm_sspi_cred); DeleteSecurityContext(&auth_state->ntlm_sspi_ctx); } } #else /* !_WIN32 */ static int ntlm_helper_spawn(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, struct oc_text_buf *buf) { char *username; int pipefd[2]; pid_t pid; char helperbuf[4096]; int len; if (access("/usr/bin/ntlm_auth", X_OK)) return -errno; username = vpninfo->proxy_user; if (!username) username = getenv("NTLMUSER"); if (!username) username = getenv("USER"); if (!username) return -EINVAL; #ifdef SOCK_CLOEXEC if (socketpair(AF_UNIX, SOCK_STREAM | SOCK_CLOEXEC, 0, pipefd)) #endif { if (socketpair(AF_UNIX, SOCK_STREAM, 0, pipefd)) return -errno; set_fd_cloexec(pipefd[0]); set_fd_cloexec(pipefd[1]); } pid = fork(); if (pid == -1) return -errno; if (!pid) { int i; char *p; const char *argv[9]; /* Fork again to detach grandchild */ if (fork()) exit(1); close(pipefd[1]); /* The duplicated fd does not have O_CLOEXEC */ dup2(pipefd[0], 0); dup2(pipefd[0], 1); /* Should we leave stderr open? */ for (i = 3; i < 1024 ; i++) close(i); i = 0; argv[i++] = "/usr/bin/ntlm_auth"; argv[i++] = "--helper-protocol"; argv[i++] = "ntlmssp-client-1"; argv[i++] = "--use-cached-creds"; argv[i++] = "--username"; p = strchr(username, '\\'); if (p) { argv[i++] = p+1; argv[i++] = "--domain"; argv[i++] = strndup(username, p - username); } else argv[i++] = username; argv[i++] = NULL; execv(argv[0], (char **)argv); exit(1); } waitpid(pid, NULL, 0); close(pipefd[0]); if (write(pipefd[1], "YR\n", 3) != 3) { close(pipefd[1]); return -EIO; } len = read(pipefd[1], helperbuf, sizeof(helperbuf)); if (len < 4 || helperbuf[0] != 'Y' || helperbuf[1] != 'R' || helperbuf[2] != ' ' || helperbuf[len - 1] != '\n') { close(pipefd[1]); return -EIO; } helperbuf[len - 1] = 0; buf_append(buf, "%sAuthorization: NTLM %s\r\n", auth_is_proxy(vpninfo, auth_state) ? "Proxy-" : "", helperbuf + 3); auth_state->ntlm_helper_fd = pipefd[1]; return 0; } static int ntlm_helper_challenge(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, struct oc_text_buf *buf) { char helperbuf[4096]; int len; if (!auth_state->challenge || write(auth_state->ntlm_helper_fd, "TT ", 3) != 3 || write(auth_state->ntlm_helper_fd, auth_state->challenge, strlen(auth_state->challenge)) != strlen(auth_state->challenge) || write(auth_state->ntlm_helper_fd, "\n", 1) != 1) { err: vpn_progress(vpninfo, PRG_ERR, _("Error communicating with ntlm_auth helper\n")); close(auth_state->ntlm_helper_fd); auth_state->ntlm_helper_fd = -1; return -EAGAIN; } len = read(auth_state->ntlm_helper_fd, helperbuf, sizeof(helperbuf)); /* Accept both 'KK' and 'AF'. It should be the latter but see https://bugzilla.samba.org/show_bug.cgi?id=10691 */ if (len < 4 || (!(helperbuf[0] == 'K' && helperbuf[1] == 'K') && !(helperbuf[0] == 'A' && helperbuf[1] == 'F')) || helperbuf[2] != ' ' || helperbuf[len - 1] != '\n') { goto err; } helperbuf[len - 1] = 0; buf_append(buf, "%sAuthorization: NTLM %s\r\n", auth_is_proxy(vpninfo, auth_state) ? "Proxy-" : "", helperbuf + 3); if (auth_is_proxy(vpninfo, auth_state)) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLM authentication to proxy (single-sign-on)\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n"), vpninfo->hostname); return 0; } void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state == NTLM_SSO_REQ) { close(auth_state->ntlm_helper_fd); auth_state->ntlm_helper_fd = -1; } } #endif /* !_WIN32 */ /* * NTLM implementation taken from libsoup / Evolution Data Server * Copyright (C) 2007 Red Hat, Inc. * Copyright (C) 1999-2008 Novell, Inc. (www.novell.com) */ /* DES */ typedef uint32_t DES_KS[16][2]; /* Single-key DES key schedule */ /* * MD4 encoder. (The one everyone else uses is not GPL-compatible; * this is a reimplementation from spec.) This doesn't need to be * efficient for our purposes, although it would be nice to fix * it to not malloc()... */ #define F(X,Y,Z) ( ((X)&(Y)) | ((~(X))&(Z)) ) #define G(X,Y,Z) ( ((X)&(Y)) | ((X)&(Z)) | ((Y)&(Z)) ) #define H(X,Y,Z) ( (X)^(Y)^(Z) ) #define ROT(val, n) ( ((val) << (n)) | ((val) >> (32 - (n))) ) static int md4sum (struct oc_text_buf *buf, unsigned char digest[16]) { int nbytes = buf->pos; unsigned char *M; uint32_t A, B, C, D, AA, BB, CC, DD, X[16]; int pbytes, nbits = nbytes * 8, i, j; /* There is *always* padding of at least one bit. */ pbytes = ((119 - (nbytes % 64)) % 64) + 1; if (buf_ensure_space (buf, pbytes + 8)) return -ENOMEM; M = (void *)buf->data; memset (M + nbytes, 0, pbytes + 8); M[nbytes] = 0x80; store_le32(&M[nbytes + pbytes], nbits); A = 0x67452301; B = 0xEFCDAB89; C = 0x98BADCFE; D = 0x10325476; for (i = 0; i < nbytes + pbytes + 8; i += 64) { for (j = 0; j < 16; j++) X[j] = load_le32(&M[i + j * 4]); AA = A; BB = B; CC = C; DD = D; A = ROT (A + F (B, C, D) + X[0], 3); D = ROT (D + F (A, B, C) + X[1], 7); C = ROT (C + F (D, A, B) + X[2], 11); B = ROT (B + F (C, D, A) + X[3], 19); A = ROT (A + F (B, C, D) + X[4], 3); D = ROT (D + F (A, B, C) + X[5], 7); C = ROT (C + F (D, A, B) + X[6], 11); B = ROT (B + F (C, D, A) + X[7], 19); A = ROT (A + F (B, C, D) + X[8], 3); D = ROT (D + F (A, B, C) + X[9], 7); C = ROT (C + F (D, A, B) + X[10], 11); B = ROT (B + F (C, D, A) + X[11], 19); A = ROT (A + F (B, C, D) + X[12], 3); D = ROT (D + F (A, B, C) + X[13], 7); C = ROT (C + F (D, A, B) + X[14], 11); B = ROT (B + F (C, D, A) + X[15], 19); A = ROT (A + G (B, C, D) + X[0] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[4] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[8] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[12] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[1] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[5] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[9] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[13] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[2] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[6] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[10] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[14] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[3] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[7] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[11] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[15] + 0x5A827999, 13); A = ROT (A + H (B, C, D) + X[0] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[8] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[4] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[12] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[2] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[10] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[6] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[14] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[1] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[9] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[5] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[13] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[3] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[11] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[7] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[15] + 0x6ED9EBA1, 15); A += AA; B += BB; C += CC; D += DD; } store_le32(digest, A); store_le32(digest + 4, B); store_le32(digest + 8, C); store_le32(digest + 12, D); return 0; } /* Public domain DES implementation from Phil Karn */ static const uint32_t Spbox[8][64] = { { 0x01010400, 0x00000000, 0x00010000, 0x01010404, 0x01010004, 0x00010404, 0x00000004, 0x00010000, 0x00000400, 0x01010400, 0x01010404, 0x00000400, 0x01000404, 0x01010004, 0x01000000, 0x00000004, 0x00000404, 0x01000400, 0x01000400, 0x00010400, 0x00010400, 0x01010000, 0x01010000, 0x01000404, 0x00010004, 0x01000004, 0x01000004, 0x00010004, 0x00000000, 0x00000404, 0x00010404, 0x01000000, 0x00010000, 0x01010404, 0x00000004, 0x01010000, 0x01010400, 0x01000000, 0x01000000, 0x00000400, 0x01010004, 0x00010000, 0x00010400, 0x01000004, 0x00000400, 0x00000004, 0x01000404, 0x00010404, 0x01010404, 0x00010004, 0x01010000, 0x01000404, 0x01000004, 0x00000404, 0x00010404, 0x01010400, 0x00000404, 0x01000400, 0x01000400, 0x00000000, 0x00010004, 0x00010400, 0x00000000, 0x01010004 }, { 0x80108020, 0x80008000, 0x00008000, 0x00108020, 0x00100000, 0x00000020, 0x80100020, 0x80008020, 0x80000020, 0x80108020, 0x80108000, 0x80000000, 0x80008000, 0x00100000, 0x00000020, 0x80100020, 0x00108000, 0x00100020, 0x80008020, 0x00000000, 0x80000000, 0x00008000, 0x00108020, 0x80100000, 0x00100020, 0x80000020, 0x00000000, 0x00108000, 0x00008020, 0x80108000, 0x80100000, 0x00008020, 0x00000000, 0x00108020, 0x80100020, 0x00100000, 0x80008020, 0x80100000, 0x80108000, 0x00008000, 0x80100000, 0x80008000, 0x00000020, 0x80108020, 0x00108020, 0x00000020, 0x00008000, 0x80000000, 0x00008020, 0x80108000, 0x00100000, 0x80000020, 0x00100020, 0x80008020, 0x80000020, 0x00100020, 0x00108000, 0x00000000, 0x80008000, 0x00008020, 0x80000000, 0x80100020, 0x80108020, 0x00108000 }, { 0x00000208, 0x08020200, 0x00000000, 0x08020008, 0x08000200, 0x00000000, 0x00020208, 0x08000200, 0x00020008, 0x08000008, 0x08000008, 0x00020000, 0x08020208, 0x00020008, 0x08020000, 0x00000208, 0x08000000, 0x00000008, 0x08020200, 0x00000200, 0x00020200, 0x08020000, 0x08020008, 0x00020208, 0x08000208, 0x00020200, 0x00020000, 0x08000208, 0x00000008, 0x08020208, 0x00000200, 0x08000000, 0x08020200, 0x08000000, 0x00020008, 0x00000208, 0x00020000, 0x08020200, 0x08000200, 0x00000000, 0x00000200, 0x00020008, 0x08020208, 0x08000200, 0x08000008, 0x00000200, 0x00000000, 0x08020008, 0x08000208, 0x00020000, 0x08000000, 0x08020208, 0x00000008, 0x00020208, 0x00020200, 0x08000008, 0x08020000, 0x08000208, 0x00000208, 0x08020000, 0x00020208, 0x00000008, 0x08020008, 0x00020200 }, { 0x00802001, 0x00002081, 0x00002081, 0x00000080, 0x00802080, 0x00800081, 0x00800001, 0x00002001, 0x00000000, 0x00802000, 0x00802000, 0x00802081, 0x00000081, 0x00000000, 0x00800080, 0x00800001, 0x00000001, 0x00002000, 0x00800000, 0x00802001, 0x00000080, 0x00800000, 0x00002001, 0x00002080, 0x00800081, 0x00000001, 0x00002080, 0x00800080, 0x00002000, 0x00802080, 0x00802081, 0x00000081, 0x00800080, 0x00800001, 0x00802000, 0x00802081, 0x00000081, 0x00000000, 0x00000000, 0x00802000, 0x00002080, 0x00800080, 0x00800081, 0x00000001, 0x00802001, 0x00002081, 0x00002081, 0x00000080, 0x00802081, 0x00000081, 0x00000001, 0x00002000, 0x00800001, 0x00002001, 0x00802080, 0x00800081, 0x00002001, 0x00002080, 0x00800000, 0x00802001, 0x00000080, 0x00800000, 0x00002000, 0x00802080 }, { 0x00000100, 0x02080100, 0x02080000, 0x42000100, 0x00080000, 0x00000100, 0x40000000, 0x02080000, 0x40080100, 0x00080000, 0x02000100, 0x40080100, 0x42000100, 0x42080000, 0x00080100, 0x40000000, 0x02000000, 0x40080000, 0x40080000, 0x00000000, 0x40000100, 0x42080100, 0x42080100, 0x02000100, 0x42080000, 0x40000100, 0x00000000, 0x42000000, 0x02080100, 0x02000000, 0x42000000, 0x00080100, 0x00080000, 0x42000100, 0x00000100, 0x02000000, 0x40000000, 0x02080000, 0x42000100, 0x40080100, 0x02000100, 0x40000000, 0x42080000, 0x02080100, 0x40080100, 0x00000100, 0x02000000, 0x42080000, 0x42080100, 0x00080100, 0x42000000, 0x42080100, 0x02080000, 0x00000000, 0x40080000, 0x42000000, 0x00080100, 0x02000100, 0x40000100, 0x00080000, 0x00000000, 0x40080000, 0x02080100, 0x40000100 }, { 0x20000010, 0x20400000, 0x00004000, 0x20404010, 0x20400000, 0x00000010, 0x20404010, 0x00400000, 0x20004000, 0x00404010, 0x00400000, 0x20000010, 0x00400010, 0x20004000, 0x20000000, 0x00004010, 0x00000000, 0x00400010, 0x20004010, 0x00004000, 0x00404000, 0x20004010, 0x00000010, 0x20400010, 0x20400010, 0x00000000, 0x00404010, 0x20404000, 0x00004010, 0x00404000, 0x20404000, 0x20000000, 0x20004000, 0x00000010, 0x20400010, 0x00404000, 0x20404010, 0x00400000, 0x00004010, 0x20000010, 0x00400000, 0x20004000, 0x20000000, 0x00004010, 0x20000010, 0x20404010, 0x00404000, 0x20400000, 0x00404010, 0x20404000, 0x00000000, 0x20400010, 0x00000010, 0x00004000, 0x20400000, 0x00404010, 0x00004000, 0x00400010, 0x20004010, 0x00000000, 0x20404000, 0x20000000, 0x00400010, 0x20004010 }, { 0x00200000, 0x04200002, 0x04000802, 0x00000000, 0x00000800, 0x04000802, 0x00200802, 0x04200800, 0x04200802, 0x00200000, 0x00000000, 0x04000002, 0x00000002, 0x04000000, 0x04200002, 0x00000802, 0x04000800, 0x00200802, 0x00200002, 0x04000800, 0x04000002, 0x04200000, 0x04200800, 0x00200002, 0x04200000, 0x00000800, 0x00000802, 0x04200802, 0x00200800, 0x00000002, 0x04000000, 0x00200800, 0x04000000, 0x00200800, 0x00200000, 0x04000802, 0x04000802, 0x04200002, 0x04200002, 0x00000002, 0x00200002, 0x04000000, 0x04000800, 0x00200000, 0x04200800, 0x00000802, 0x00200802, 0x04200800, 0x00000802, 0x04000002, 0x04200802, 0x04200000, 0x00200800, 0x00000000, 0x00000002, 0x04200802, 0x00000000, 0x00200802, 0x04200000, 0x00000800, 0x04000002, 0x04000800, 0x00000800, 0x00200002 }, { 0x10001040, 0x00001000, 0x00040000, 0x10041040, 0x10000000, 0x10001040, 0x00000040, 0x10000000, 0x00040040, 0x10040000, 0x10041040, 0x00041000, 0x10041000, 0x00041040, 0x00001000, 0x00000040, 0x10040000, 0x10000040, 0x10001000, 0x00001040, 0x00041000, 0x00040040, 0x10040040, 0x10041000, 0x00001040, 0x00000000, 0x00000000, 0x10040040, 0x10000040, 0x10001000, 0x00041040, 0x00040000, 0x00041040, 0x00040000, 0x10041000, 0x00001000, 0x00000040, 0x10040040, 0x00001000, 0x00041040, 0x10001000, 0x00000040, 0x10000040, 0x10040000, 0x10040040, 0x10000000, 0x00040000, 0x10001040, 0x00000000, 0x10041040, 0x00040040, 0x10000040, 0x10040000, 0x10001000, 0x10001040, 0x00000000, 0x10041040, 0x00041000, 0x00041000, 0x00001040, 0x00001040, 0x00040040, 0x10000000, 0x10041000 } }; #undef F #define F(l,r,key){\ work = ((r >> 4) | (r << 28)) ^ key[0];\ l ^= Spbox[6][work & 0x3f];\ l ^= Spbox[4][(work >> 8) & 0x3f];\ l ^= Spbox[2][(work >> 16) & 0x3f];\ l ^= Spbox[0][(work >> 24) & 0x3f];\ work = r ^ key[1];\ l ^= Spbox[7][work & 0x3f];\ l ^= Spbox[5][(work >> 8) & 0x3f];\ l ^= Spbox[3][(work >> 16) & 0x3f];\ l ^= Spbox[1][(work >> 24) & 0x3f];\ } /* Encrypt or decrypt a block of data in ECB mode */ static void des (uint32_t ks[16][2], unsigned char block[8]) { uint32_t left, right, work; /* Read input block and place in left/right in big-endian order */ left = load_be32(block); right = load_be32(block + 4); /* Hoey's clever initial permutation algorithm, from Outerbridge * (see Schneier p 478) * * The convention here is the same as Outerbridge: rotate each * register left by 1 bit, i.e., so that "left" contains permuted * input bits 2, 3, 4, ... 1 and "right" contains 33, 34, 35, ... 32 * (using origin-1 numbering as in the FIPS). This allows us to avoid * one of the two rotates that would otherwise be required in each of * the 16 rounds. */ work = ((left >> 4) ^ right) & 0x0f0f0f0f; right ^= work; left ^= work << 4; work = ((left >> 16) ^ right) & 0xffff; right ^= work; left ^= work << 16; work = ((right >> 2) ^ left) & 0x33333333; left ^= work; right ^= (work << 2); work = ((right >> 8) ^ left) & 0xff00ff; left ^= work; right ^= (work << 8); right = (right << 1) | (right >> 31); work = (left ^ right) & 0xaaaaaaaa; left ^= work; right ^= work; left = (left << 1) | (left >> 31); /* Now do the 16 rounds */ F (left,right,ks[0]); F (right,left,ks[1]); F (left,right,ks[2]); F (right,left,ks[3]); F (left,right,ks[4]); F (right,left,ks[5]); F (left,right,ks[6]); F (right,left,ks[7]); F (left,right,ks[8]); F (right,left,ks[9]); F (left,right,ks[10]); F (right,left,ks[11]); F (left,right,ks[12]); F (right,left,ks[13]); F (left,right,ks[14]); F (right,left,ks[15]); /* Inverse permutation, also from Hoey via Outerbridge and Schneier */ right = (right << 31) | (right >> 1); work = (left ^ right) & 0xaaaaaaaa; left ^= work; right ^= work; left = (left >> 1) | (left << 31); work = ((left >> 8) ^ right) & 0xff00ff; right ^= work; left ^= work << 8; work = ((left >> 2) ^ right) & 0x33333333; right ^= work; left ^= work << 2; work = ((right >> 16) ^ left) & 0xffff; left ^= work; right ^= work << 16; work = ((right >> 4) ^ left) & 0x0f0f0f0f; left ^= work; right ^= work << 4; /* Put the block back into the user's buffer with final swap */ store_be32(block, right); store_be32(block + 4, left); } /* Key schedule-related tables from FIPS-46 */ /* permuted choice table (key) */ static const unsigned char pc1[] = { 57, 49, 41, 33, 25, 17, 9, 1, 58, 50, 42, 34, 26, 18, 10, 2, 59, 51, 43, 35, 27, 19, 11, 3, 60, 52, 44, 36, 63, 55, 47, 39, 31, 23, 15, 7, 62, 54, 46, 38, 30, 22, 14, 6, 61, 53, 45, 37, 29, 21, 13, 5, 28, 20, 12, 4 }; /* number left rotations of pc1 */ static const unsigned char totrot[] = { 1,2,4,6,8,10,12,14,15,17,19,21,23,25,27,28 }; /* permuted choice key (table) */ static const unsigned char pc2[] = { 14, 17, 11, 24, 1, 5, 3, 28, 15, 6, 21, 10, 23, 19, 12, 4, 26, 8, 16, 7, 27, 20, 13, 2, 41, 52, 31, 37, 47, 55, 30, 40, 51, 45, 33, 48, 44, 49, 39, 56, 34, 53, 46, 42, 50, 36, 29, 32 }; /* End of DES-defined tables */ /* bit 0 is left-most in byte */ static const int bytebit[] = { 0200,0100,040,020,010,04,02,01 }; /* Generate key schedule for encryption or decryption * depending on the value of "decrypt" */ static void deskey (DES_KS k, unsigned char *key, int decrypt) { unsigned char pc1m[56]; /* place to modify pc1 into */ unsigned char pcr[56]; /* place to rotate pc1 into */ register int i,j,l; int m; unsigned char ks[8]; for (j=0; j<56; j++) { /* convert pc1 to bits of key */ l=pc1[j]-1; /* integer bit location */ m = l & 07; /* find bit */ pc1m[j]=(key[l>>3] & /* find which key byte l is in */ bytebit[m]) /* and which bit of that byte */ ? 1 : 0; /* and store 1-bit result */ } for (i=0; i<16; i++) { /* key chunk for each iteration */ memset (ks,0,sizeof (ks)); /* Clear key schedule */ for (j=0; j<56; j++) /* rotate pc1 the right amount */ pcr[j] = pc1m[(l = j + totrot[decrypt? 15 - i : i]) < (j < 28? 28 : 56) ? l: l - 28]; /* rotate left and right halves independently */ for (j=0; j<48; j++){ /* select bits individually */ /* check bit that goes to ks[j] */ if (pcr[pc2[j]-1]) { /* mask it in if it's there */ l= j % 6; ks[j / 6] |= bytebit[l] >> 2; } } /* Now convert to packed odd/even interleaved form */ k[i][0] = ((uint32_t) ks[0] << 24) | ((uint32_t) ks[2] << 16) | ((uint32_t) ks[4] << 8) | ((uint32_t) ks[6]); k[i][1] = ((uint32_t) ks[1] << 24) | ((uint32_t) ks[3] << 16) | ((uint32_t) ks[5] << 8) | ((uint32_t) ks[7]); } } #define HIKEYBITS(k,s) ((k[(s) / 8] << ((s) % 8)) & 0xFF) #define LOKEYBITS(k,s) (k[(s) / 8 + 1] >> (8 - (s) % 8)) /* DES utils */ /* Set up a key schedule based on a 56bit key */ static void setup_schedule (const unsigned char *key_56, DES_KS ks) { unsigned char key[8]; int i, c, bit; for (i = 0; i < 8; i++) { key[i] = HIKEYBITS (key_56, i * 7); /* Mask in the low bits only if they're used. It doesn't * matter if we get an unwanted bit 0; it's going to be * overwritten with parity anyway. */ if (i && i < 7) key[i] |= LOKEYBITS(key_56, i * 7); /* Fix parity */ for (c = bit = 0; bit < 8; bit++) if (key[i] & (1 << bit)) c++; if (!(c & 1)) key[i] ^= 0x01; } deskey (ks, key, 0); } #define LM_PASSWORD_MAGIC "\x4B\x47\x53\x21\x40\x23\x24\x25" \ "\x4B\x47\x53\x21\x40\x23\x24\x25" \ "\x00\x00\x00\x00\x00" static void ntlm_lanmanager_hash (const char *password, char hash[21]) { unsigned char lm_password[15]; DES_KS ks; int i; for (i = 0; i < 14 && password[i]; i++) lm_password[i] = toupper ((unsigned char) password[i]); for (; i < 15; i++) lm_password[i] = '\0'; memcpy (hash, LM_PASSWORD_MAGIC, 21); setup_schedule (lm_password, ks); des (ks, (unsigned char *) hash); setup_schedule (lm_password + 7, ks); des (ks, (unsigned char *) hash + 8); memset(lm_password, 0, sizeof(lm_password)); } static int ntlm_nt_hash (const char *pass, char hash[21]) { struct oc_text_buf *utf16pass = buf_alloc(); int ret; /* Preallocate just to ensure md4sum() doesn't have to realloc, which would leave a copy of the password lying around. There is always at least one byte of padding, then 8 bytes of length, and round up to the next multiple of 64. */ ret = buf_ensure_space(utf16pass, ((strlen(pass) * 2) + 1 + 8 + 63) & ~63); if (ret) goto out; ret = buf_append_utf16le(utf16pass, pass); if (ret < 0) goto wipe; ret = buf_error(utf16pass); if (ret) goto wipe; ret = md4sum(utf16pass, (unsigned char *) hash); if (ret) goto wipe; memset(hash + 16, 0, 5); wipe: memset(utf16pass->data, 0, utf16pass->pos); out: buf_free(utf16pass); return 0; } static void ntlm_calc_response (const unsigned char key[21], const unsigned char plaintext[8], unsigned char results[24]) { DES_KS ks; memcpy (results, plaintext, 8); memcpy (results + 8, plaintext, 8); memcpy (results + 16, plaintext, 8); setup_schedule (key, ks); des (ks, results); setup_schedule (key + 7, ks); des (ks, results + 8); setup_schedule (key + 14, ks); des (ks, results + 16); } #define NTLM_CHALLENGE_DOMAIN_OFFSET 12 #define NTLM_CHALLENGE_FLAGS_OFFSET 20 #define NTLM_CHALLENGE_NONCE_OFFSET 24 #define NTLM_RESPONSE_BASE_SIZE 64 #define NTLM_RESPONSE_LM_RESP_OFFSET 12 #define NTLM_RESPONSE_NT_RESP_OFFSET 20 #define NTLM_RESPONSE_DOMAIN_OFFSET 28 #define NTLM_RESPONSE_USER_OFFSET 36 #define NTLM_RESPONSE_HOST_OFFSET 44 #define NTLM_RESPONSE_FLAGS_OFFSET 60 static const char ntlm_response_base[NTLM_RESPONSE_BASE_SIZE] = { 'N', 'T', 'L', 'M', 'S', 'S', 'P', 0x00, 0x03, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x82, 0x01, 0x00, 0x00 }; static void ntlm_set_string_utf8(struct oc_text_buf *buf, int offset, const char *data) { int oldpos = buf->pos; int len = buf_append_utf16le(buf, data); /* Fill in the SecurityBuffer pointing to the string */ store_le16(buf->data + offset, len); /* len */ store_le16(buf->data + offset + 2, len); /* allocated */ store_le32(buf->data + offset + 4, oldpos); /* offset */ } static void ntlm_set_string_binary(struct oc_text_buf *buf, int offset, const void *data, int len) { /* Fill in the SecurityBuffer pointing to the string */ store_le16(buf->data + offset, len); /* len */ store_le16(buf->data + offset + 2, len); /* allocated */ store_le32(buf->data + offset + 4, buf->pos); /* offset */ buf_append_bytes(buf, data, len); } static int ntlm_manual_challenge(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf, const char *domuser, const char *pass) { struct oc_text_buf *resp; char *user; unsigned char nonce[8], hash[21], lm_resp[24], nt_resp[24]; unsigned char *token; int token_len = -EINVAL; int ntlmver; if (!auth_state->challenge) return -EINVAL; if (ntlm_nt_hash (pass, (char *) hash)) return -EINVAL; token = openconnect_base64_decode(&token_len, auth_state->challenge); if (!token) return token_len; if (token_len < NTLM_CHALLENGE_NONCE_OFFSET + 8 || token[0] != 'N' || token[1] != 'T' || token[2] != 'L' || token[3] != 'M' || token[4] != 'S' || token[5] != 'S' || token[6] != 'P' || token[7] || token[8] != 2 || token[9] || token[10] || token[11]) { free(token); return -EINVAL; } /* 0x00080000: Negotiate NTLM2 Key */ if (token[NTLM_CHALLENGE_FLAGS_OFFSET + 2] & 8) { /* NTLM2 session response */ struct { uint32_t srv[2]; uint32_t clnt[2]; } sess_nonce; unsigned char digest[16]; ntlmver = 2; if (openconnect_random(sess_nonce.clnt, sizeof(sess_nonce.clnt))) { free(token); return -EIO; } /* LM response is 8-byte client nonce, NUL-padded to 24 */ memcpy (lm_resp, sess_nonce.clnt, 8); memset (lm_resp + 8, 0, 16); /* Session nonce is client nonce + server nonce */ memcpy (sess_nonce.srv, token + NTLM_CHALLENGE_NONCE_OFFSET, 8); /* Take MD5 of session nonce */ if (openconnect_md5(digest, &sess_nonce, sizeof(sess_nonce))) { free(token); return -EIO; } ntlm_calc_response (hash, digest, nt_resp); } else { /* NTLM1 */ ntlmver = 1; memcpy (nonce, token + NTLM_CHALLENGE_NONCE_OFFSET, 8); ntlm_calc_response (hash, nonce, nt_resp); ntlm_lanmanager_hash (pass, (char *) hash); ntlm_calc_response (hash, nonce, lm_resp); } resp = buf_alloc(); buf_append_bytes(resp, ntlm_response_base, sizeof(ntlm_response_base)); if (buf_error(resp)) { free(token); return buf_free(resp); } /* Mask in the NTLM2SESSION flag */ resp->data[NTLM_RESPONSE_FLAGS_OFFSET + 2] = token[NTLM_CHALLENGE_FLAGS_OFFSET + 2] & 8; user = strchr(domuser, '\\'); if (user) { *user = 0; ntlm_set_string_utf8(resp, NTLM_RESPONSE_DOMAIN_OFFSET, domuser); *user = '\\'; user++; } else { int offset = load_le32(token + NTLM_CHALLENGE_DOMAIN_OFFSET + 4); int len = load_le16(token + NTLM_CHALLENGE_DOMAIN_OFFSET); if (!len || offset + len >= token_len) { free(token); buf_free(resp); return -EINVAL; } ntlm_set_string_binary(resp, NTLM_RESPONSE_DOMAIN_OFFSET, token + offset, len); user = (char *)domuser; } ntlm_set_string_utf8(resp, NTLM_RESPONSE_USER_OFFSET, user); ntlm_set_string_utf8(resp, NTLM_RESPONSE_HOST_OFFSET, "UNKNOWN"); ntlm_set_string_binary(resp, NTLM_RESPONSE_LM_RESP_OFFSET, lm_resp, sizeof(lm_resp)); ntlm_set_string_binary(resp, NTLM_RESPONSE_NT_RESP_OFFSET, nt_resp, sizeof(nt_resp)); free(token); if (buf_error(resp)) return buf_free(resp); buf_append(hdrbuf, "%sAuthorization: NTLM ", auth_is_proxy(vpninfo, auth_state) ? "Proxy-" : ""); buf_append_base64(hdrbuf, resp->data, resp->pos); buf_append(hdrbuf, "\r\n"); buf_free(resp); if (auth_is_proxy(vpninfo, auth_state)) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLMv%d authentication to proxy\n"), ntlmver); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLMv%d authentication to server '%s'\n"), ntlmver, vpninfo->hostname); return 0; } int ntlm_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { user = pass = NULL; } if (auth_state->state == AUTH_AVAILABLE) { auth_state->state = NTLM_MANUAL; /* Don't attempt automatic NTLM auth if we were given a password */ if (!pass && !ntlm_helper_spawn(vpninfo, auth_state, buf)) { auth_state->state = NTLM_SSO_REQ; return 0; } } if (auth_state->state == NTLM_SSO_REQ) { int ret; ret = ntlm_helper_challenge(vpninfo, auth_state, buf); /* Clean up after it. We're done here, whether it worked or not */ cleanup_ntlm_auth(vpninfo, auth_state); auth_state->state = NTLM_MANUAL; if (ret == -EAGAIN) { /* Don't let it reset our state when it reconnects */ if (proxy) vpninfo->proxy_close_during_auth = 1; return ret; } if (!ret) return ret; } if (auth_state->state == NTLM_MANUAL && user && pass) { buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", "TlRMTVNTUAABAAAABYIIAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAAAAAAAAAAwAAAA"); auth_state->state = NTLM_MANUAL_REQ; return 0; } if (auth_state->state == NTLM_MANUAL_REQ && user && pass && !ntlm_manual_challenge(vpninfo, auth_state, buf, user, pass)) { /* Leave the state as it is. If we come back there'll be no challenge string and we'll fail then. */ return 0; } auth_state->state = AUTH_FAILED; return -EAGAIN; } openconnect-7.06/auth-common.c0000664000076400007640000001026012474046503013313 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" int xmlnode_is_named(xmlNode *xml_node, const char *name) { return !strcmp((char *)xml_node->name, name); } int xmlnode_get_prop(xmlNode *xml_node, const char *name, char **var) { char *str = (char *)xmlGetProp(xml_node, (unsigned char *)name); if (!str) return -ENOENT; free(*var); *var = str; return 0; } int xmlnode_match_prop(xmlNode *xml_node, const char *name, const char *match) { char *str = (char *)xmlGetProp(xml_node, (unsigned char *)name); int ret = 0; if (!str) return -ENOENT; if (strcmp(str, match)) ret = -EEXIST; free(str); return ret; } int append_opt(struct oc_text_buf *body, char *opt, char *name) { if (buf_error(body)) return buf_error(body); if (body->pos) buf_append(body, "&"); buf_append_urlencoded(body, opt); buf_append(body, "="); buf_append_urlencoded(body, name); return 0; } int append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body) { struct oc_form_opt *opt; int ret; for (opt = form->opts; opt; opt = opt->next) { ret = append_opt(body, opt->name, opt->_value); if (ret) return ret; } return 0; } void free_opt(struct oc_form_opt *opt) { /* for SELECT options, opt->value is a pointer to oc_choice->name */ if (opt->type != OC_FORM_OPT_SELECT) free(opt->_value); else { struct oc_form_opt_select *sel = (void *)opt; int i; for (i = 0; i < sel->nr_choices; i++) { free(sel->choices[i]->name); free(sel->choices[i]->label); free(sel->choices[i]->auth_type); free(sel->choices[i]->override_name); free(sel->choices[i]->override_label); free(sel->choices[i]); } free(sel->choices); } free(opt->name); free(opt->label); free(opt); } void free_auth_form(struct oc_auth_form *form) { if (!form) return; while (form->opts) { struct oc_form_opt *tmp = form->opts->next; free_opt(form->opts); form->opts = tmp; } free(form->error); free(form->message); free(form->banner); free(form->auth_id); free(form->method); free(form->action); free(form); } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int do_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form) { struct oc_form_opt *opt; for (opt = form->opts; ; opt = opt->next) { /* this form might not have anything for us to do */ if (!opt) return 0; if (opt->type == OC_FORM_OPT_TOKEN) break; } switch (vpninfo->token_mode) { #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return do_gen_stoken_code(vpninfo, form, opt); #endif case OC_TOKEN_MODE_TOTP: return do_gen_totp_code(vpninfo, form, opt); case OC_TOKEN_MODE_HOTP: return do_gen_hotp_code(vpninfo, form, opt); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return do_gen_yubikey_code(vpninfo, form, opt); #endif default: return -EINVAL; } } int can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { switch (vpninfo->token_mode) { #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return can_gen_stoken_code(vpninfo, form, opt); #endif case OC_TOKEN_MODE_TOTP: return can_gen_totp_code(vpninfo, form, opt); case OC_TOKEN_MODE_HOTP: return can_gen_hotp_code(vpninfo, form, opt); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return can_gen_yubikey_code(vpninfo, form, opt); #endif default: return -EINVAL; } } openconnect-7.06/openconnect.h0000664000076400007640000005434512474364513013424 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_H__ #define __OPENCONNECT_H__ #include #include #include #ifdef _WIN32 #define uid_t unsigned #endif #define OPENCONNECT_API_VERSION_MAJOR 5 #define OPENCONNECT_API_VERSION_MINOR 1 /* * API version 5.2: * - Add openconnect_set_http_auth(), openconnect_set_protocol(). * * API version 5.1: * - Add openconnect_set_compression_mode(), openconnect_set_loglevel() * * API version 5.0: * - Remove OPENCONNECT_X509 and openconnect_get_peer_cert(). * - Change openconnect_get_cert_der() to openconnect_get_peer_cert_DER() etc. * - Add openconnect_check_peer_cert_hash(). * - Remove openconnect_set_server_cert_sha1(). * - Add openconnect_has_yubioath_support() and OC_TOKEN_MODE_YUBIOATH. * - Add openconnect_has_system_key_support(). * * API version 4.1: * - Add openconnect_get_cstp_cipher(), openconnect_get_dtls_cipher(), * openconnect_set_system_trust(), openconnect_set_csd_environ(). * - Change openconnect_init_ssl() to return int. * * API version 4.0: * - Change string handling to never transfer ownership of allocations. * - Add openconnect_set_option_value(), openconnect_free_cert_info(). * * API version 3.4: * - Add openconnect_set_token_callbacks() * * API version 3.3: * - Add openconnect_set_pfs(), openconnect_set_dpd(), * openconnect_set_proxy_auth() * * API version 3.2: * - Add OC_TOKEN_MODE_HOTP and allow openconnect_has_oath_support() to * return 2 to indicate that it is present. * * API version 3.1: * - Add openconnect_setup_cmd_pipe(), openconnect_mainloop(), * openconnect_setup_tun_device(), openconnect_setup_tun_script(), * openconnect_setup_tun_fd(), openconnect_setup_dtls(), * openconnect_make_cstp_connection(), openconnect_set_server_cert_sha1(), * openconnect_get_ifname(), openconnect_set_reqmtu(), * openconnect_get_ip_info(), openconnect_set_protect_socket_handler(), * openconnect_set_mobile_info(), openconnect_set_xmlpost(), 7 * openconnect_set_stats_handler() * * API version 3.0: * - Change oc_form_opt_select->choices to an array of pointers * - Add oc_form_opt->flags * - Add OC_FORM_RESULT_* and oc_auth_form->authgroup_* * * API version 2.2: * - Add openconnect_set_token_mode(), openconnect_has_oath_support() * - Deprecate openconnect_set_stoken_mode() * * API version 2.1: * - Add openconnect_set_reported_os() * - Add openconnect_set_stoken_mode(), openconnect_has_stoken_support() * * API version 2.0: * - OPENCONNECT_X509 is now an opaque type. * - Add openconnect_has_pkcs11_support(), openconnect_has_tss_blob_support() * - Rename openconnect_init_openssl() -> openconnect_init_ssl() * - Rename openconnect_vpninfo_new_with_cbdata() -> openconnect_vpninfo_new() * and kill the old openconnect_vpninfo_new() and its callback types. * * API version 1.5: * - Add openconnect_get_cert_details(), openconnect_get_cert_DER(). * * API version 1.4: * - Add openconnect_set_cancel_fd() * * API version 1.3: * - Add openconnect_set_cert_expiry_warning() to change from default 60 days * * API version 1.2: * - Add openconnect_vpninfo_new_with_cbdata() * * API version 1.1: * - Add openconnect_vpninfo_free() * * API version 1.0: * - Initial version * * NEW LIBRARY FUNCTION CHECKLIST: * * 1) Bump the API version if the current API version has already appeared * in a release * 2) Add function to the above changelog * 3) Add function to libopenconnect.map.in * 4) Add declaration + comments in the latter part of this file * 5) Add function to jni.c, then test with ./configure --with-java && make * 6) Add declaration to LibOpenConnect.java, then run "ant" to test */ /* Before API version 1.4 (OpenConnect 3.19) this macro didn't exist. * Somewhat ironic, that the API version check itself needs to be * conditionally used depending on the API version. A very simple way * for users to handle this with an approximately correct answer is * #include * #ifndef OPENCONNECT_CHECK_VER * #define OPENCONNECT_CHECK_VER(x,y) 0 * #endif */ #define OPENCONNECT_CHECK_VER(maj, min) \ (OPENCONNECT_API_VERSION_MAJOR > (maj) || \ (OPENCONNECT_API_VERSION_MAJOR == (maj) && \ OPENCONNECT_API_VERSION_MINOR >= (min))) /****************************************************************************/ /* Authentication form processing */ #define OC_FORM_OPT_TEXT 1 #define OC_FORM_OPT_PASSWORD 2 #define OC_FORM_OPT_SELECT 3 #define OC_FORM_OPT_HIDDEN 4 #define OC_FORM_OPT_TOKEN 5 #define OC_FORM_RESULT_ERR -1 #define OC_FORM_RESULT_OK 0 #define OC_FORM_RESULT_CANCELLED 1 #define OC_FORM_RESULT_NEWGROUP 2 #ifdef __OPENCONNECT_PRIVATE__ #define OC_FORM_RESULT_LOGGEDIN 255 #define OC_FORM_OPT_SECOND_AUTH 0x8000 #endif #define OC_FORM_OPT_IGNORE 0x0001 #define OC_FORM_OPT_NUMERIC 0x0002 /* char * fields are static (owned by XML parser) and don't need to be freed by the form handling code — except for value, which for TEXT and PASSWORD options is allocated by openconnect_set_option_value() when process_form() interacts with the user and must be freed. */ struct oc_form_opt { struct oc_form_opt *next; int type; char *name; char *label; char *_value; /* Use openconnect_set_option_value() to set this */ unsigned int flags; void *reserved; }; /* To set the value to a form use the following function */ int openconnect_set_option_value(struct oc_form_opt *opt, const char *value); /* All fields are static, owned by the XML parser */ struct oc_choice { char *name; char *label; char *auth_type; char *override_name; char *override_label; #ifdef __OPENCONNECT_PRIVATE__ int second_auth; char *secondary_username; int secondary_username_editable; int noaaa; #endif }; struct oc_form_opt_select { struct oc_form_opt form; int nr_choices; struct oc_choice **choices; }; /* All char * fields are static, owned by the XML parser */ struct oc_auth_form { char *banner; char *message; char *error; char *auth_id; char *method; char *action; struct oc_form_opt *opts; struct oc_form_opt_select *authgroup_opt; int authgroup_selection; }; struct oc_split_include { const char *route; struct oc_split_include *next; }; struct oc_ip_info { const char *addr; const char *netmask; const char *addr6; const char *netmask6; const char *dns[3]; const char *nbns[3]; const char *domain; const char *proxy_pac; int mtu; struct oc_split_include *split_dns; struct oc_split_include *split_includes; struct oc_split_include *split_excludes; }; struct oc_vpn_option { char *option; char *value; struct oc_vpn_option *next; }; struct oc_stats { uint64_t tx_pkts; uint64_t tx_bytes; uint64_t rx_pkts; uint64_t rx_bytes; }; /****************************************************************************/ #define PRG_ERR 0 #define PRG_INFO 1 #define PRG_DEBUG 2 #define PRG_TRACE 3 /* Byte commands to write into the cmd_fd: * * CANCEL closes network connections, logs off the session (cookie) * and shuts down the tun device. * PAUSE closes network connections and returns. The caller is expected * to call openconnect_mainloop() again soon. * DETACH closes network connections and shuts down the tun device. * It is not legal to call openconnect_mainloop() again after this, * but a new instance of openconnect can be started using the same * cookie. * STATS calls the stats_handler. */ #define OC_CMD_CANCEL 'x' #define OC_CMD_PAUSE 'p' #define OC_CMD_DETACH 'd' #define OC_CMD_STATS 's' #define RECONNECT_INTERVAL_MIN 10 #define RECONNECT_INTERVAL_MAX 100 struct openconnect_info; typedef enum { OC_TOKEN_MODE_NONE, OC_TOKEN_MODE_STOKEN, OC_TOKEN_MODE_TOTP, OC_TOKEN_MODE_HOTP, OC_TOKEN_MODE_YUBIOATH, } oc_token_mode_t; typedef enum { OC_COMPRESSION_MODE_NONE, OC_COMPRESSION_MODE_STATELESS, OC_COMPRESSION_MODE_ALL, } oc_compression_mode_t; /* All strings are UTF-8. If operating in a legacy environment where nl_langinfo(CODESET) returns anything other than UTF-8, or on Windows, the library will take appropriate steps to convert back to the legacy character set (or UTF-16) for file handling and wherever else it is appropriate to do so. Library functions may (but probably don't yet) return -EILSEQ if passed invalid UTF-8 strings. */ /* Unlike previous versions of openconnect, no functions will take ownership of the provided strings. */ /* Provide environment variables to be set in the CSD trojan environment before spawning it. Some callers may need to set $TMPDIR, $PATH and other such things if not running from a standard UNIX-like environment. To ensure that a variable is unset, pass its name with value==NULL. To clear all settings and allow the CSD trojan to inherit an unmodified environment, call with name==NULL. */ int openconnect_set_csd_environ(struct openconnect_info *vpninfo, const char *name, const char *value); /* This string is static, valid only while the connection lasts. If you * are going to cache this to remember which certs the user has accepted, * make sure you also store the host/port for which it was accepted and * don't just accept this cert from *anywhere*. Also use use the check * function below instead of manually comparing. When this function * returns a string which *doesn't* match the previously-stored hash * matched with openconnect_check_peer_cert_hash(), you should store * the new result from this function in place of the old. It means * we have upgraded to a better hash function. */ const char *openconnect_get_peer_cert_hash(struct openconnect_info *vpninfo); /* Check if the current peer certificate matches a hash previously * obtained from openconect_get_peer_cert_hash(). Clients should not * attempt to do this using strcmp() and the *current* result of * openconnect_get_peer_cert_hash() because it might use * a different hash function today. This function will get it right. * Returns 0 on match; 1 on mismatch, -errno on failure. */ int openconnect_check_peer_cert_hash(struct openconnect_info *vpninfo, const char *old_hash); /* The buffers returned by these two functions must be freed with openconnect_free_cert_info(), especially on Windows. */ char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo); /* Returns the length of the created DER output, in a newly-allocated buffer that will need to be freed by openconnect_free_cert_info(). */ int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf); void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf); /* Contains a comma-separated list of authentication methods to enabled. Currently supported: Negotiate,NTLM,Digest,Basic */ int openconnect_set_http_auth(struct openconnect_info *vpninfo, const char *methods); int openconnect_set_proxy_auth(struct openconnect_info *vpninfo, const char *methods); int openconnect_set_http_proxy(struct openconnect_info *vpninfo, const char *proxy); int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo); int openconnect_obtain_cookie(struct openconnect_info *vpninfo); int openconnect_init_ssl(void); /* These are strictly cosmetic. The strings differ depending on * whether OpenSSL or GnuTLS is being used. And even depending on the * version of GnuTLS. Do *not* attempt to do anything meaningful based * on matching these strings; if you want to do something like that then * ask for an API that *does* offer you what you need. */ const char *openconnect_get_cstp_cipher(struct openconnect_info *); const char *openconnect_get_dtls_cipher(struct openconnect_info *); const char *openconnect_get_hostname(struct openconnect_info *); int openconnect_set_hostname(struct openconnect_info *, const char *); char *openconnect_get_urlpath(struct openconnect_info *); int openconnect_set_urlpath(struct openconnect_info *, const char *); /* Some software tokens, such as HOTP tokens, include a counter which * needs to be stored in persistent storage. * * For such tokens, the lock function is first invoked to obtain a lock * on the storage because we're about to generate a new code. It is * permitted to call openconnect_set_token_mode() from the lock function, * if the token storage has been updated since it was first loaded. The * token mode must not change; only the token secret. * * The unlock function is called when a token code has been generated, * with a new token secret to be written to the persistent storage. The * secret will be in the same format as it was originally received by * openconnect_set_token_mode(). The new token may be NULL if an error * was encountered generating the code, in which case it is only * necessary for the callback function to unlock the storage. */ typedef int (*openconnect_lock_token_vfn)(void *tokdata); typedef int (*openconnect_unlock_token_vfn)(void *tokdata, const char *new_tok); int openconnect_set_token_callbacks(struct openconnect_info *, void *tokdata, openconnect_lock_token_vfn, openconnect_unlock_token_vfn); int openconnect_set_token_mode(struct openconnect_info *, oc_token_mode_t, const char *token_str); /* Legacy stoken-only function; do not use */ int openconnect_set_stoken_mode(struct openconnect_info *, int, const char *); int openconnect_set_compression_mode(struct openconnect_info *, oc_compression_mode_t); /* The size must be 41 bytes, since that's the size of a 20-byte SHA1 represented as hex with a trailing NUL. */ void openconnect_set_xmlsha1(struct openconnect_info *, const char *, int size); int openconnect_set_cafile(struct openconnect_info *, const char *); /* call this function to disable the system trust from being used to * verify the server certificate. @val is a boolean value. * * For backwards compatibility reasons this is enabled by default. */ void openconnect_set_system_trust(struct openconnect_info *vpninfo, unsigned val); int openconnect_setup_csd(struct openconnect_info *, uid_t, int silent, const char *wrapper); void openconnect_set_xmlpost(struct openconnect_info *, int enable); /* Valid choices are: "linux", "linux-64", "win", "mac-intel", "android", and "apple-ios". This also selects the corresponding CSD trojan binary. */ int openconnect_set_reported_os(struct openconnect_info *, const char *os); int openconnect_set_mobile_info(struct openconnect_info *vpninfo, const char *mobile_platform_version, const char *mobile_device_type, const char *mobile_device_uniqueid); int openconnect_set_client_cert(struct openconnect_info *, const char *cert, const char *sslkey); const char *openconnect_get_ifname(struct openconnect_info *); void openconnect_set_reqmtu(struct openconnect_info *, int reqmtu); void openconnect_set_dpd(struct openconnect_info *, int min_seconds); /* The returned structures are owned by the library and may be freed/replaced due to rekey or reconnect. Assume that once the mainloop starts, the pointers are no longer valid. For similar reasons, it is unsafe to call this function from another thread. */ int openconnect_get_ip_info(struct openconnect_info *, const struct oc_ip_info **info, const struct oc_vpn_option **cstp_options, const struct oc_vpn_option **dtls_options); int openconnect_get_port(struct openconnect_info *); const char *openconnect_get_cookie(struct openconnect_info *); void openconnect_clear_cookie(struct openconnect_info *); void openconnect_reset_ssl(struct openconnect_info *vpninfo); int openconnect_parse_url(struct openconnect_info *vpninfo, const char *url); void openconnect_set_cert_expiry_warning(struct openconnect_info *vpninfo, int seconds); void openconnect_set_pfs(struct openconnect_info *vpninfo, unsigned val); /* If this is set, then openconnect_obtain_cookie() will abort and return failure if the file descriptor is readable. Typically a user may create a pair of pipes with the pipe(2) system call, hand the readable one to this function, and then write a byte to the other end if it ever wants to cancel the connection. This way, a multi-threaded UI (which will be running openconnect_obtain_cookie() in a separate thread since it blocks) has the ability to cancel that call, reap its thread and free the vpninfo structure (or retry). An 'fd' argument of -1 will render the cancellation mechanism inactive. */ void openconnect_set_cancel_fd(struct openconnect_info *vpninfo, int fd); /* Create a nonblocking pipe used to send cancellations and other commands to the library. This returns a file descriptor to the write side of the pipe. Both sides will be closed by openconnect_vpninfo_free(). This replaces openconnect_set_cancel_fd(). */ #ifdef _WIN32 SOCKET #else int #endif openconnect_setup_cmd_pipe(struct openconnect_info *vpninfo); const char *openconnect_get_version(void); /* Open CSTP connection; on success, IP information will be available. */ int openconnect_make_cstp_connection(struct openconnect_info *vpninfo); /* Create a tun device through the OS kernel (typical use case). Both strings are optional and can be NULL if desired. */ int openconnect_setup_tun_device(struct openconnect_info *vpninfo, const char *vpnc_script, const char *ifname); /* Pass traffic to a script program (no tun device). */ int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script); #ifdef _WIN32 /* Caller will provide an overlap-capable handle for the tunnel traffic. */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd); #else /* Caller will provide a file descriptor for the tunnel traffic. */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, int tun_fd); #endif /* Optional call to enable DTLS on the connection. */ int openconnect_setup_dtls(struct openconnect_info *vpninfo, int dtls_attempt_period); /* Start the main loop; exits if OC_CMD_CANCEL is received on cmd_fd or the remote site aborts. */ int openconnect_mainloop(struct openconnect_info *vpninfo, int reconnect_timeout, int reconnect_interval); /* The first (privdata) argument to each of these functions is either the privdata argument provided to openconnect_vpninfo_new_with_cbdata(), or if that argument was NULL then it'll be the vpninfo itself. */ /* When the server's certificate fails validation via the normal means, this function is called with the offending certificate along with a textual reason for the failure (which may not be translated, if it comes directly from OpenSSL, but will be if it is rejected for "certificate does not match hostname", because that check is done in OpenConnect and *is* translated). The function shall return zero if the certificate is (or has in the past been) explicitly accepted by the user, and non-zero to abort the connection. */ typedef int (*openconnect_validate_peer_cert_vfn) (void *privdata, const char *reason); /* On a successful connection, the server may provide us with a new XML configuration file. This contains the list of servers that can be chosen by the user to connect to, amongst other stuff that we mostly ignore. By "new", we mean that the SHA1 indicated by the server does not match the SHA1 set with the openconnect_set_xmlsha1() above. If they don't match, or openconnect_set_xmlsha1() has not been called, then the new XML is downloaded and this function is invoked. */ typedef int (*openconnect_write_new_config_vfn) (void *privdata, const char *buf, int buflen); /* Handle an authentication form, requesting input from the user. * Return value: * < 0, on error * = 0, when form was parsed and POST required * = 1, when response was cancelled by user */ typedef int (*openconnect_process_auth_form_vfn) (void *privdata, struct oc_auth_form *form); /* Logging output which the user *may* want to see. */ typedef void __attribute__ ((format(printf, 3, 4))) (*openconnect_progress_vfn) (void *privdata, int level, const char *fmt, ...); struct openconnect_info *openconnect_vpninfo_new(const char *useragent, openconnect_validate_peer_cert_vfn, openconnect_write_new_config_vfn, openconnect_process_auth_form_vfn, openconnect_progress_vfn, void *privdata); void openconnect_vpninfo_free(struct openconnect_info *vpninfo); /* Callback to allow binding a newly created socket's file descriptor to a specific interface, e.g. with SO_BINDTODEVICE. This tells the kernel not to route the traffic in question over the VPN tunnel. */ typedef void (*openconnect_protect_socket_vfn) (void *privdata, int fd); void openconnect_set_protect_socket_handler(struct openconnect_info *vpninfo, openconnect_protect_socket_vfn protect_socket); void openconnect_set_loglevel(struct openconnect_info *vpninfo, int level); /* Callback for obtaining traffic stats via OC_CMD_STATS. */ typedef void (*openconnect_stats_vfn) (void *privdata, const struct oc_stats *stats); void openconnect_set_stats_handler(struct openconnect_info *vpninfo, openconnect_stats_vfn stats_handler); /* SSL certificate capabilities. openconnect_has_pkcs11_support() means that we can accept PKCS#11 URLs in place of filenames, for the certificate and key. */ int openconnect_has_pkcs11_support(void); /* The OpenSSL TPM ENGINE stores keys in a PEM file labelled with the string -----BEGIN TSS KEY BLOB-----. GnuTLS may learn to support this format too, in the near future. */ int openconnect_has_tss_blob_support(void); /* Software token capabilities. */ int openconnect_has_stoken_support(void); int openconnect_has_oath_support(void); int openconnect_has_yubioath_support(void); int openconnect_has_system_key_support(void); int openconnect_set_protocol(struct openconnect_info *vpninfo, const char *protocol); #endif /* __OPENCONNECT_H__ */ openconnect-7.06/auth-juniper.c0000664000076400007640000003523012502026115013470 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Grateful thanks to Tiebing Zhang, who did much of the hard work * of analysing and decoding the protocol. */ #include #include #include #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #endif #include #include #include "openconnect-internal.h" /* XX: This is actually a lot of duplication with the CSTP version. */ void oncp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { http_common_headers(vpninfo, buf); buf_append(buf, "Connection: close\r\n"); // buf_append(buf, "Content-Length: 256\r\n"); buf_append(buf, "NCP-Version: 3\r\n"); // buf_append(buf, "Accept-Encoding: gzip\r\n"); } static xmlNodePtr htmlnode_next(xmlNodePtr top, xmlNodePtr node) { if (node->children) return node->children; while (!node->next) { node = node->parent; if (!node || node == top) return NULL; } return node->next; } static int oncp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_mode == OC_TOKEN_MODE_NONE || vpninfo->token_bypassed) return -EINVAL; if (strcmp(form->auth_id, "frmDefender") && strcmp(form->auth_id, "frmNextToken")) return -EINVAL; return can_gen_tokencode(vpninfo, form, opt); } static int parse_input_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node, const char *submit_button) { char *type = (char *)xmlGetProp(node, (unsigned char *)"type"); struct oc_form_opt **p = &form->opts; struct oc_form_opt *opt; int ret = 0; if (!type) return -EINVAL; opt = calloc(1, sizeof(*opt)); if (!opt) { ret = -ENOMEM; goto out; } if (!strcasecmp(type, "hidden")) { opt->type = OC_FORM_OPT_HIDDEN; xmlnode_get_prop(node, "name", &opt->name); xmlnode_get_prop(node, "value", &opt->_value); /* XXX: Handle tz_offset / tz */ } else if (!strcasecmp(type, "password")) { opt->type = OC_FORM_OPT_PASSWORD; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } if (!oncp_can_gen_tokencode(vpninfo, form, opt)) opt->type = OC_FORM_OPT_TOKEN; } else if (!strcasecmp(type, "text")) { opt->type = OC_FORM_OPT_TEXT; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } } else if (!strcasecmp(type, "submit")) { xmlnode_get_prop(node, "name", &opt->name); if (!opt->name || strcmp(opt->name, submit_button)) { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring unknown form submit item '%s'\n"), opt->name); ret = -EINVAL; goto out; } xmlnode_get_prop(node, "value", &opt->_value); opt->type = OC_FORM_OPT_HIDDEN; } else if (!strcasecmp(type, "checkbox")) { opt->type = OC_FORM_OPT_HIDDEN; xmlnode_get_prop(node, "name", &opt->name); xmlnode_get_prop(node, "value", &opt->_value); } else { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring unknown form input type '%s'\n"), type); ret = -EINVAL; goto out; } /* Append to the existing list */ while (*p) { if (!strcmp((*p)->name, opt->name)) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding duplicate option '%s'\n"), opt->name); goto out; } p = &(*p)->next; } *p = opt; out: if (ret) free_opt(opt); free(type); return ret; } static int parse_select_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node) { xmlNodePtr child; struct oc_form_opt_select *opt; struct oc_choice *choice; opt = calloc(1, sizeof(*opt)); if (!opt) return -ENOMEM; xmlnode_get_prop(node, "name", &opt->form.name); opt->form.label = strdup(opt->form.name); opt->form.type = OC_FORM_OPT_SELECT; if (!strcmp(opt->form.name, "realm")) form->authgroup_opt = opt; for (child = node->children; child; child = child->next) { struct oc_choice **new_choices; if (!child->name || strcasecmp((const char *)child->name, "option")) continue; choice = calloc(1, sizeof(*choice)); if (!choice) return -ENOMEM; xmlnode_get_prop(node, "name", &choice->name); choice->label = (char *)xmlNodeGetContent(child); choice->name = strdup(choice->label); new_choices = realloc(opt->choices, sizeof(opt->choices[0]) * (opt->nr_choices+1)); if (!new_choices) { free_opt((void *)opt); free(choice); return -ENOMEM; } opt->choices = new_choices; opt->choices[opt->nr_choices++] = choice; } /* Prepend to the existing list */ opt->form.next = form->opts; form->opts = &opt->form; return 0; } static struct oc_auth_form *parse_form_node(struct openconnect_info *vpninfo, xmlNodePtr node, const char *submit_button) { struct oc_auth_form *form = calloc(1, sizeof(*form)); xmlNodePtr child; if (!form) return NULL; xmlnode_get_prop(node, "method", &form->method); xmlnode_get_prop(node, "action", &form->action); if (!form->method || strcasecmp(form->method, "POST") || !form->action || !form->action[0]) { vpn_progress(vpninfo, PRG_ERR, _("Cannot handle form method='%s', action='%s'\n"), form->method, form->action); free(form); return NULL; } xmlnode_get_prop(node, "name", &form->auth_id); form->banner = strdup(form->auth_id); for (child = htmlnode_next(node, node); child && child != node; child = htmlnode_next(node, child)) { if (!child->name) continue; if (!strcasecmp((char *)child->name, "input")) parse_input_node(vpninfo, form, child, submit_button); else if (!strcasecmp((char *)child->name, "select")) { parse_select_node(vpninfo, form, child); /* Skip its children */ while (child->children) child = child->last; } } return form; } static int oncp_https_submit(struct openconnect_info *vpninfo, struct oc_text_buf *req_buf, xmlDocPtr *doc) { int ret; char *form_buf = NULL; struct oc_text_buf *url; if (req_buf && req_buf->pos) ret =do_https_request(vpninfo, "POST", "application/x-www-form-urlencoded", req_buf, &form_buf, 2); else ret = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, 2); if (ret < 0) return ret; url = buf_alloc(); buf_append(url, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(url, ":%d", vpninfo->port); buf_append(url, "/"); if (vpninfo->urlpath) buf_append(url, "%s", vpninfo->urlpath); if (buf_error(url)) { free(form_buf); return buf_free(url); } *doc = htmlReadMemory(form_buf, ret, url->data, NULL, HTML_PARSE_RECOVER|HTML_PARSE_NOERROR|HTML_PARSE_NOWARNING|HTML_PARSE_NONET); buf_free(url); free(form_buf); if (!*doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTML document\n")); return -EINVAL; } return 0; } static xmlNodePtr find_form_node(xmlDocPtr doc) { xmlNodePtr root, node; for (root = node = xmlDocGetRootElement(doc); node; node = htmlnode_next(root, node)) { if (node->name && !strcasecmp((char *)node->name, "form")) return node; } return NULL; } static int check_cookie_success(struct openconnect_info *vpninfo) { const char *dslast = NULL, *dsfirst = NULL, *dsurl = NULL, *dsid = NULL; struct oc_vpn_option *cookie; struct oc_text_buf *buf; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "DSFirstAccess")) dsfirst = cookie->value; else if (!strcmp(cookie->option, "DSLastAccess")) dslast = cookie->value; else if (!strcmp(cookie->option, "DSID")) dsid = cookie->value; else if (!strcmp(cookie->option, "DSSignInUrl")) dsurl = cookie->value; } if (!dsid) return -ENOENT; buf = buf_alloc(); if (vpninfo->tncc_fd != -1) { buf_append(buf, "setcookie\n"); buf_append(buf, "Cookie=%s\n", dsid); if (buf_error(buf)) return buf_free(buf); send(vpninfo->tncc_fd, buf->data, buf->pos, 0); buf_truncate(buf); } /* XXX: Do these need escaping? Could they theoreetically have semicolons in? */ buf_append(buf, "DSID=%s", dsid); if (dsfirst) buf_append(buf, "; DSFirst=%s", dsfirst); if (dslast) buf_append(buf, "; DSLast=%s", dslast); if (dsurl) buf_append(buf, "; DSSignInUrl=%s", dsurl); if (buf_error(buf)) return buf_free(buf); free(vpninfo->cookie); vpninfo->cookie = buf->data; buf->data = NULL; buf_free(buf); return 0; } #ifdef _WIN32 static int tncc_preauth(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("TNCC support not implemented yet on Windows\n")); return -EOPNOTSUPP; } #else static int tncc_preauth(struct openconnect_info *vpninfo) { int sockfd[2]; pid_t pid; struct oc_text_buf *buf; struct oc_vpn_option *cookie; const char *dspreauth = NULL, *dssignin = "null"; char recvbuf[1024], *p; int len; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "DSPREAUTH")) dspreauth = cookie->value; else if (!strcmp(cookie->option, "DSSIGNIN")) dssignin = cookie->value; } if (!dspreauth) { vpn_progress(vpninfo, PRG_ERR, _("No DSPREAUTH cookie; not attempting TNCC\n")); return -EINVAL; } buf = buf_alloc(); buf_append(buf, "start\n"); buf_append(buf, "IC=%s\n", vpninfo->hostname); buf_append(buf, "Cookie=%s\n", dspreauth); buf_append(buf, "DSSIGNIN=%s\n", dssignin); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for communication with TNCC\n")); return buf_free(buf); } #ifdef SOCK_CLOEXEC if (socketpair(AF_UNIX, SOCK_SEQPACKET | SOCK_CLOEXEC, 0, sockfd)) #endif { if (socketpair(AF_UNIX, SOCK_SEQPACKET, 0, sockfd)) { buf_free(buf); return -errno; } set_fd_cloexec(sockfd[0]); set_fd_cloexec(sockfd[1]); } pid = fork(); if (pid == -1) { buf_free(buf); return -errno; } if (!pid) { int i; /* Fork again to detach grandchild */ if (fork()) exit(1); close(sockfd[1]); /* The duplicated fd does not have O_CLOEXEC */ dup2(sockfd[0], 0); /* We really don't want anything going to stdout */ dup2(1, 2); for (i = 3; i < 1024 ; i++) close(i); execl(vpninfo->csd_wrapper, vpninfo->csd_wrapper, vpninfo->hostname, NULL); fprintf(stderr, _("Failed to exec TNCC script %s: %s\n"), vpninfo->csd_wrapper, strerror(errno)); exit(1); } waitpid(pid, NULL, 0); close(sockfd[0]); if (send(sockfd[1], buf->data, buf->pos, 0) != buf->pos) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send start command to TNCC\n")); buf_free(buf); close(sockfd[1]); return -EIO; } buf_free(buf); vpn_progress(vpninfo, PRG_DEBUG, _("Sent start; waiting for response from TNCC\n")); len = recv(sockfd[1], recvbuf, sizeof(recvbuf) - 1, 0); if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read response from TNCC\n")); close(sockfd[1]); return -EIO; } recvbuf[len] = 0; p = strchr(recvbuf, '\n'); if (!p) { invalid_response: vpn_progress(vpninfo, PRG_ERR, _("Received invalid response from TNCC\n")); print_response: vpn_progress(vpninfo, PRG_TRACE, _("TNCC response: -->\n%s\n<--\n"), recvbuf); close(sockfd[1]); return -EINVAL; } *p = 0; if (strcmp(recvbuf, "200")) { vpn_progress(vpninfo, PRG_ERR, _("Received unsuccessful %s response from TNCC\n"), recvbuf); goto print_response; } p = strchr(p + 1, '\n'); if (!p) goto invalid_response; dspreauth = p + 1; p = strchr(p + 1, '\n'); if (!p) goto invalid_response; *p = 0; vpn_progress(vpninfo, PRG_DEBUG, _("Got new DSPREAUTH cookie from TNCC: %s\n"), dspreauth); http_add_cookie(vpninfo, "DSPREAUTH", dspreauth, 1); vpninfo->tncc_fd = sockfd[1]; return 0; } #endif int oncp_obtain_cookie(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *resp_buf = NULL; xmlDocPtr doc = NULL; xmlNodePtr node; struct oc_auth_form *form = NULL; char *form_id = NULL; int try_tncc = !!vpninfo->csd_wrapper; resp_buf = buf_alloc(); if (buf_error(resp_buf)) return -ENOMEM; while (1) { ret = oncp_https_submit(vpninfo, resp_buf, &doc); if (ret || !check_cookie_success(vpninfo)) break; buf_truncate(resp_buf); node = find_form_node(doc); if (!node) { if (try_tncc) { try_tncc = 0; ret = tncc_preauth(vpninfo); if (ret) return ret; goto tncc_done; } vpn_progress(vpninfo, PRG_ERR, _("Failed to find or parse web form in login page\n")); ret = -EINVAL; break; } free(form_id); form_id = (char *)xmlGetProp(node, (unsigned char *)"name"); if (!form_id) { vpn_progress(vpninfo, PRG_ERR, _("Encountered form with no ID\n")); goto dump_form; } else if (!strcmp(form_id, "frmLogin")) { form = parse_form_node(vpninfo, node, "btnSubmit"); if (!form) { ret = -EINVAL; break; } } else if (!strcmp(form_id, "frmDefender") || !strcmp(form_id, "frmNextToken")) { form = parse_form_node(vpninfo, node, "btnAction"); if (!form) { ret = -EINVAL; break; } } else if (!strcmp(form_id, "frmConfirmation")) { form = parse_form_node(vpninfo, node, "btnContinue"); if (!form) { ret = -EINVAL; break; } /* XXX: Actually ask the user? */ goto form_done; } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown form ID '%s'\n"), form_id); dump_form: fprintf(stderr, _("Dumping unknown HTML form:\n")); htmlNodeDumpFileFormat(stderr, node->doc, node, NULL, 1); ret = -EINVAL; break; } do { ret = process_auth_form(vpninfo, form); } while (ret == OC_FORM_RESULT_NEWGROUP); if (ret) goto out; ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; goto out; } form_done: append_form_opts(vpninfo, form, resp_buf); ret = buf_error(resp_buf); if (ret) break; vpninfo->redirect_url = form->action; form->action = NULL; free_auth_form(form); form = NULL; handle_redirect(vpninfo); tncc_done: xmlFreeDoc(doc); doc = NULL; } out: if (doc) xmlFreeDoc(doc); free(form_id); if (form) free_auth_form(form); buf_free(resp_buf); return ret; } openconnect-7.06/script.c0000664000076400007640000003372212474046503012400 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #ifndef _WIN32 #include #endif #include #include #include #include #include "openconnect-internal.h" int script_setenv(struct openconnect_info *vpninfo, const char *opt, const char *val, int append) { struct oc_vpn_option *p; char *str; for (p = vpninfo->script_env; p; p = p->next) { if (!strcmp(opt, p->option)) { if (append) { if (asprintf(&str, "%s %s", p->value, val) == -1) return -ENOMEM; } else str = val ? strdup(val) : NULL; free (p->value); p->value = str; return 0; } } p = malloc(sizeof(*p)); if (!p) return -ENOMEM; p->next = vpninfo->script_env; p->option = strdup(opt); p->value = val ? strdup(val) : NULL; vpninfo->script_env = p; return 0; } int script_setenv_int(struct openconnect_info *vpninfo, const char *opt, int value) { char buf[16]; sprintf(buf, "%d", value); return script_setenv(vpninfo, opt, buf, 0); } static int netmasklen(struct in_addr addr) { int masklen; for (masklen = 0; masklen < 32; masklen++) { if (ntohl(addr.s_addr) >= (0xffffffff << masklen)) break; } return 32 - masklen; } static int process_split_xxclude(struct openconnect_info *vpninfo, int include, const char *route, int *v4_incs, int *v6_incs) { struct in_addr addr; const char *in_ex = include ? "IN" : "EX"; char envname[80]; char *slash; slash = strchr(route, '/'); if (!slash) { badinc: if (include) vpn_progress(vpninfo, PRG_ERR, _("Discard bad split include: \"%s\"\n"), route); else vpn_progress(vpninfo, PRG_ERR, _("Discard bad split exclude: \"%s\"\n"), route); return -EINVAL; } *slash = 0; if (strchr(route, ':')) { snprintf(envname, 79, "CISCO_IPV6_SPLIT_%sC_%d_ADDR", in_ex, *v6_incs); script_setenv(vpninfo, envname, route, 0); snprintf(envname, 79, "CISCO_IPV6_SPLIT_%sC_%d_MASKLEN", in_ex, *v6_incs); script_setenv(vpninfo, envname, slash+1, 0); (*v6_incs)++; return 0; } if (!inet_aton(route, &addr)) { *slash = '/'; goto badinc; } envname[79] = 0; snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_ADDR", in_ex, *v4_incs); script_setenv(vpninfo, envname, route, 0); /* Put it back how we found it */ *slash = '/'; if (!inet_aton(slash+1, &addr)) goto badinc; snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_MASK", in_ex, *v4_incs); script_setenv(vpninfo, envname, slash+1, 0); snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_MASKLEN", in_ex, *v4_incs); script_setenv_int(vpninfo, envname, netmasklen(addr)); (*v4_incs)++; return 0; } static void setenv_cstp_opts(struct openconnect_info *vpninfo) { char *env_buf; int buflen = 0; int bufofs = 0; struct oc_vpn_option *opt; for (opt = vpninfo->cstp_options; opt; opt = opt->next) buflen += 2 + strlen(opt->option) + strlen(opt->value); env_buf = malloc(buflen + 1); if (!env_buf) return; env_buf[buflen] = 0; for (opt = vpninfo->cstp_options; opt; opt = opt->next) bufofs += snprintf(env_buf + bufofs, buflen - bufofs, "%s=%s\n", opt->option, opt->value); script_setenv(vpninfo, "CISCO_CSTP_OPTIONS", env_buf, 0); free(env_buf); } static unsigned char nybble(unsigned char n) { if (n >= '0' && n <= '9') return n - '0'; else if (n >= 'A' && n <= 'F') return n - ('A' - 10); else if (n >= 'a' && n <= 'f') return n - ('a' - 10); return 0; } unsigned char unhex(const char *data) { return (nybble(data[0]) << 4) | nybble(data[1]); } static void set_banner(struct openconnect_info *vpninfo) { char *banner, *legacy_banner, *q; const char *p; if (!vpninfo->banner || !(banner = malloc(strlen(vpninfo->banner)+1))) { script_setenv(vpninfo, "CISCO_BANNER", NULL, 0); return; } p = vpninfo->banner; q = banner; while (*p) { if (*p == '%' && isxdigit((int)(unsigned char)p[1]) && isxdigit((int)(unsigned char)p[2])) { *(q++) = unhex(p + 1); p += 3; } else *(q++) = *(p++); } *q = 0; legacy_banner = openconnect_utf8_to_legacy(vpninfo, banner); script_setenv(vpninfo, "CISCO_BANNER", legacy_banner, 0); if (legacy_banner != banner) free(legacy_banner); free(banner); } void prepare_script_env(struct openconnect_info *vpninfo) { char host[80]; int ret = getnameinfo(vpninfo->peer_addr, vpninfo->peer_addrlen, host, sizeof(host), NULL, 0, NI_NUMERICHOST); if (!ret) script_setenv(vpninfo, "VPNGATEWAY", host, 0); set_banner(vpninfo); script_setenv(vpninfo, "CISCO_SPLIT_INC", NULL, 0); script_setenv(vpninfo, "CISCO_SPLIT_EXC", NULL, 0); script_setenv_int(vpninfo, "INTERNAL_IP4_MTU", vpninfo->ip_info.mtu); if (vpninfo->ip_info.addr) { script_setenv(vpninfo, "INTERNAL_IP4_ADDRESS", vpninfo->ip_info.addr, 0); if (vpninfo->ip_info.netmask) { struct in_addr addr; struct in_addr mask; if (inet_aton(vpninfo->ip_info.addr, &addr) && inet_aton(vpninfo->ip_info.netmask, &mask)) { char *netaddr; addr.s_addr &= mask.s_addr; netaddr = inet_ntoa(addr); script_setenv(vpninfo, "INTERNAL_IP4_NETADDR", netaddr, 0); script_setenv(vpninfo, "INTERNAL_IP4_NETMASK", vpninfo->ip_info.netmask, 0); script_setenv_int(vpninfo, "INTERNAL_IP4_NETMASKLEN", netmasklen(mask)); } } } if (vpninfo->ip_info.addr6) { script_setenv(vpninfo, "INTERNAL_IP6_ADDRESS", vpninfo->ip_info.addr6, 0); script_setenv(vpninfo, "INTERNAL_IP6_NETMASK", vpninfo->ip_info.netmask6, 0); } else if (vpninfo->ip_info.netmask6) { char *slash = strchr(vpninfo->ip_info.netmask6, '/'); script_setenv(vpninfo, "INTERNAL_IP6_NETMASK", vpninfo->ip_info.netmask6, 0); if (slash) { *slash = 0; script_setenv(vpninfo, "INTERNAL_IP6_ADDRESS", vpninfo->ip_info.netmask6, 0); *slash = '/'; } } if (vpninfo->ip_info.dns[0]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[0], 0); else script_setenv(vpninfo, "INTERNAL_IP4_DNS", NULL, 0); if (vpninfo->ip_info.dns[1]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[1], 1); if (vpninfo->ip_info.dns[2]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[2], 1); if (vpninfo->ip_info.nbns[0]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[0], 0); else script_setenv(vpninfo, "INTERNAL_IP4_NBNS", NULL, 0); if (vpninfo->ip_info.nbns[1]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[1], 1); if (vpninfo->ip_info.nbns[2]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[2], 1); if (vpninfo->ip_info.domain) script_setenv(vpninfo, "CISCO_DEF_DOMAIN", vpninfo->ip_info.domain, 0); else script_setenv(vpninfo, "CISCO_DEF_DOMAIN", NULL, 0); if (vpninfo->ip_info.proxy_pac) script_setenv(vpninfo, "CISCO_PROXY_PAC", vpninfo->ip_info.proxy_pac, 0); if (vpninfo->ip_info.split_dns) { char *list; int len = 0; struct oc_split_include *dns = vpninfo->ip_info.split_dns; while (dns) { len += strlen(dns->route) + 1; dns = dns->next; } list = malloc(len); if (list) { char *p = list; dns = vpninfo->ip_info.split_dns; while (1) { strcpy(p, dns->route); p += strlen(p); dns = dns->next; if (!dns) break; *(p++) = ','; } script_setenv(vpninfo, "CISCO_SPLIT_DNS", list, 0); free(list); } } if (vpninfo->ip_info.split_includes) { struct oc_split_include *this = vpninfo->ip_info.split_includes; int nr_split_includes = 0; int nr_v6_split_includes = 0; while (this) { process_split_xxclude(vpninfo, 1, this->route, &nr_split_includes, &nr_v6_split_includes); this = this->next; } if (nr_split_includes) script_setenv_int(vpninfo, "CISCO_SPLIT_INC", nr_split_includes); if (nr_v6_split_includes) script_setenv_int(vpninfo, "CISCO_IPV6_SPLIT_INC", nr_v6_split_includes); } if (vpninfo->ip_info.split_excludes) { struct oc_split_include *this = vpninfo->ip_info.split_excludes; int nr_split_excludes = 0; int nr_v6_split_excludes = 0; while (this) { process_split_xxclude(vpninfo, 0, this->route, &nr_split_excludes, &nr_v6_split_excludes); this = this->next; } if (nr_split_excludes) script_setenv_int(vpninfo, "CISCO_SPLIT_EXC", nr_split_excludes); if (nr_v6_split_excludes) script_setenv_int(vpninfo, "CISCO_IPV6_SPLIT_EXC", nr_v6_split_excludes); } setenv_cstp_opts(vpninfo); } void free_split_routes(struct openconnect_info *vpninfo) { struct oc_split_include *inc; for (inc = vpninfo->ip_info.split_includes; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } for (inc = vpninfo->ip_info.split_excludes; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } for (inc = vpninfo->ip_info.split_dns; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } vpninfo->ip_info.split_dns = vpninfo->ip_info.split_includes = vpninfo->ip_info.split_excludes = NULL; } #ifdef _WIN32 static wchar_t *create_script_env(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt; struct oc_text_buf *envbuf; wchar_t **oldenv, **p, *newenv = NULL; int nr_envs = 0, i; /* _wenviron is NULL until we call _wgetenv() */ (void)_wgetenv(L"PATH"); /* Take a copy of _wenviron (but not of its strings) */ for (p = _wenviron; *p; p++) nr_envs++; oldenv = malloc(nr_envs * sizeof(*oldenv)); if (!oldenv) return NULL; memcpy(oldenv, _wenviron, nr_envs * sizeof(*oldenv)); envbuf = buf_alloc(); /* Add the script environment variables, prodding out any members of oldenv which are obsoleted by them. */ for (opt = vpninfo->script_env; opt && !buf_error(envbuf); opt = opt->next) { struct oc_text_buf *buf; buf = buf_alloc(); buf_append_utf16le(buf, opt->option); buf_append_utf16le(buf, "="); if (buf_error(buf)) { buf_free(buf); goto err; } /* See if we can find it in the existing environment */ for (i = 0; i < nr_envs; i++) { if (oldenv[i] && !wcsncmp((wchar_t *)buf->data, oldenv[i], buf->pos / 2)) { oldenv[i] = NULL; break; } } if (opt->value) { buf_append_bytes(envbuf, buf->data, buf->pos); buf_append_utf16le(envbuf, opt->value); buf_append_bytes(envbuf, "\0\0", 2); } buf_free(buf); } for (i = 0; i < nr_envs && !buf_error(envbuf); i++) { if (oldenv[i]) buf_append_bytes(envbuf, oldenv[i], (wcslen(oldenv[i]) + 1) * sizeof(wchar_t)); } buf_append_bytes(envbuf, "\0\0", 2); if (!buf_error(envbuf)) { newenv = (wchar_t *)envbuf->data; envbuf->data = NULL; } err: free(oldenv); buf_free(envbuf); return newenv; } int script_config_tun(struct openconnect_info *vpninfo, const char *reason) { wchar_t *script_w; wchar_t *script_env; int nr_chars; int ret; char *cmd; PROCESS_INFORMATION pi; STARTUPINFOW si; DWORD cpflags; if (!vpninfo->vpnc_script || vpninfo->script_tun) return 0; memset(&si, 0, sizeof(si)); si.cb = sizeof(si); /* probably superfluous */ si.dwFlags = STARTF_USESHOWWINDOW; si.wShowWindow = SW_HIDE; script_setenv(vpninfo, "reason", reason, 0); if (asprintf(&cmd, "cscript.exe \"%s\"", vpninfo->vpnc_script) == -1) return 0; nr_chars = MultiByteToWideChar(CP_UTF8, 0, cmd, -1, NULL, 0); script_w = malloc(nr_chars * sizeof(wchar_t)); if (!script_w) { free(cmd); return -ENOMEM; } MultiByteToWideChar(CP_UTF8, 0, cmd, -1, script_w, nr_chars); free(cmd); script_env = create_script_env(vpninfo); cpflags = CREATE_UNICODE_ENVIRONMENT; /* If we're running from a console, let the script use it too. */ if (!GetConsoleWindow()) cpflags |= CREATE_NO_WINDOW; if (CreateProcessW(NULL, script_w, NULL, NULL, FALSE, cpflags, script_env, NULL, &si, &pi)) { ret = WaitForSingleObject(pi.hProcess,10000); CloseHandle(pi.hThread); CloseHandle(pi.hProcess); if (ret == WAIT_TIMEOUT) ret = -ETIMEDOUT; else ret = 0; } else { ret = -EIO; } free(script_env); if (ret < 0) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to spawn script '%s' for %s: %s\n"), vpninfo->vpnc_script, reason, errstr); free(errstr); goto cleanup; } cleanup: free(script_w); return ret; } #else /* Must only be run after fork(). */ int apply_script_env(struct oc_vpn_option *envs) { struct oc_vpn_option *p; for (p = envs; p; p = p->next) { if (p->value) setenv(p->option, p->value, 1); else unsetenv(p->option); } return 0; } int script_config_tun(struct openconnect_info *vpninfo, const char *reason) { int ret; pid_t pid; if (!vpninfo->vpnc_script || vpninfo->script_tun) return 0; pid = fork(); if (!pid) { /* Child */ char *script = openconnect_utf8_to_legacy(vpninfo, vpninfo->vpnc_script); apply_script_env(vpninfo->script_env); setenv("reason", reason, 1); execl("/bin/sh", "/bin/sh", "-c", script, NULL); exit(127); } if (pid == -1 || waitpid(pid, &ret, 0) == -1) { int e = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to spawn script '%s' for %s: %s\n"), vpninfo->vpnc_script, reason, strerror(e)); return -e; } if (!WIFEXITED(ret)) { vpn_progress(vpninfo, PRG_ERR, _("Script '%s' exited abnormally (%x)\n"), vpninfo->vpnc_script, ret); return -EIO; } ret = WEXITSTATUS(ret); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Script '%s' returned error %d\n"), vpninfo->vpnc_script, ret); return -EIO; } return 0; } #endif openconnect-7.06/gnutls.h0000664000076400007640000000507612461546130012413 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_GNUTLS_H__ #define __OPENCONNECT_GNUTLS_H__ #include #include #include #include "openconnect-internal.h" #ifndef HAVE_GNUTLS_PKCS12_SIMPLE_PARSE /* If we're using a version of GnuTLS from before this was exported, pull in our local copy. */ int gnutls_pkcs12_simple_parse(gnutls_pkcs12_t p12, const char *password, gnutls_x509_privkey_t *key, gnutls_x509_crt_t **chain, unsigned int *chain_len, gnutls_x509_crt_t **extra_certs, unsigned int *extra_certs_len, gnutls_x509_crl_t *crl, unsigned int flags); #endif /* !HAVE_GNUTLS_PKCS12_SIMPLE_PARSE */ #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY int gtls2_tpm_sign_cb(gnutls_session_t sess, void *_vpninfo, gnutls_certificate_type_t cert_type, const gnutls_datum_t *cert, const gnutls_datum_t *data, gnutls_datum_t *sig); int gtls2_tpm_sign_dummy_data(struct openconnect_info *vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig); #endif /* !HAVE_GNUTLS_CERTIFICATE_SET_KEY */ /* In GnuTLS 2.12 this can't be a real private key; we have to use the sign_callback instead. But we want to set the 'pkey' variable to *something* non-NULL in order to indicate that we aren't just using an x509 key. */ #define OPENCONNECT_TPM_PKEY ((void *)1UL) static inline int sign_dummy_data(struct openconnect_info *vpninfo, gnutls_privkey_t pkey, const gnutls_datum_t *data, gnutls_datum_t *sig) { #if defined(HAVE_TROUSERS) && !defined(HAVE_GNUTLS_CERTIFICATE_SET_KEY) if (pkey == OPENCONNECT_TPM_PKEY) return gtls2_tpm_sign_dummy_data(vpninfo, data, sig); #endif return gnutls_privkey_sign_data(pkey, GNUTLS_DIG_SHA1, 0, data, sig); } int load_tpm_key(struct openconnect_info *vpninfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig); char *get_gnutls_cipher(gnutls_session_t session); #endif /* __OPENCONNECT_GNUTLS_H__ */ openconnect-7.06/main.c0000664000076400007640000014752112474364513012027 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #ifdef HAVE_GETLINE /* Various BSD systems require this for getline() to be visible */ #define _WITH_GETLINE #endif #include #include #include #include #include #ifdef HAVE_STRINGS_H #include #endif #include #include #include #include #include #include #include #ifdef LIBPROXY_HDR #include LIBPROXY_HDR #endif #include "openconnect-internal.h" #ifdef _WIN32 #include #include #include #else #include #include #include #endif #ifdef HAVE_NL_LANGINFO #include static const char *legacy_charset; #endif static int write_new_config(void *_vpninfo, const char *buf, int buflen); static void __attribute__ ((format(printf, 3, 4))) write_progress(void *_vpninfo, int level, const char *fmt, ...); static int validate_peer_cert(void *_vpninfo, const char *reason); static int process_auth_form_cb(void *_vpninfo, struct oc_auth_form *form); static void init_token(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str); /* A sanity check that the openconnect executable is running against a library of the same version */ #define openconnect_version_str openconnect_binary_version #include #undef openconnect_version_str static int verbose = PRG_INFO; static int timestamp; int background; static int do_passphrase_from_fsid; static int nocertcheck; static int non_inter; static int cookieonly; static char *token_filename; static char *server_cert = NULL; static char *username; static char *password; static char *authgroup; static int authgroup_set; static int last_form_empty; static int sig_cmd_fd; #ifdef __ANDROID__ #include static void __attribute__ ((format(printf, 3, 4))) syslog_progress(void *_vpninfo, int level, const char *fmt, ...) { static int l[4] = { ANDROID_LOG_ERROR, /* PRG_ERR */ ANDROID_LOG_INFO, /* PRG_INFO */ ANDROID_LOG_DEBUG, /* PRG_DEBUG */ ANDROID_LOG_DEBUG /* PRG_TRACE */ }; va_list args, args2; if (verbose >= level) { va_start(args, fmt); va_copy(args2, args); __android_log_vprint(l[level], "openconnect", fmt, args); /* Android wants it to stderr too, so the GUI can scrape it and display it as well as going to syslog */ vfprintf(stderr, fmt, args2); va_end(args); va_end(args2); } } #define openlog(...) /* */ #elif defined(_WIN32) /* * FIXME: Perhaps we could implement syslog_progress() using these APIs: * http://msdn.microsoft.com/en-us/library/windows/desktop/aa364148%28v=vs.85%29.aspx */ #else /* !__ANDROID__ && !_WIN32 */ #include static void __attribute__ ((format(printf, 3, 4))) syslog_progress(void *_vpninfo, int level, const char *fmt, ...) { int priority = level ? LOG_INFO : LOG_NOTICE; va_list args; if (verbose >= level) { va_start(args, fmt); vsyslog(priority, fmt, args); va_end(args); } } #endif enum { OPT_AUTHENTICATE = 0x100, OPT_AUTHGROUP, OPT_BASEMTU, OPT_CAFILE, OPT_COMPRESSION, OPT_CONFIGFILE, OPT_COOKIEONLY, OPT_COOKIE_ON_STDIN, OPT_CSD_USER, OPT_CSD_WRAPPER, OPT_DISABLE_IPV6, OPT_DTLS_CIPHERS, OPT_DUMP_HTTP, OPT_FORCE_DPD, OPT_GNUTLS_DEBUG, OPT_JUNIPER, OPT_KEY_PASSWORD_FROM_FSID, OPT_LIBPROXY, OPT_NO_CERT_CHECK, OPT_NO_DTLS, OPT_NO_HTTP_KEEPALIVE, OPT_NO_SYSTEM_TRUST, OPT_NO_PASSWD, OPT_NO_PROXY, OPT_NO_XMLPOST, OPT_PIDFILE, OPT_PASSWORD_ON_STDIN, OPT_PRINTCOOKIE, OPT_RECONNECT_TIMEOUT, OPT_SERVERCERT, OPT_USERAGENT, OPT_NON_INTER, OPT_DTLS_LOCAL_PORT, OPT_TOKEN_MODE, OPT_TOKEN_SECRET, OPT_OS, OPT_TIMESTAMP, OPT_PFS, OPT_PROXY_AUTH, OPT_HTTP_AUTH, }; #ifdef __sun__ /* * The 'name' field in Solaris 'struct option' lacks the 'const', and causes * lots of warnings unless we cast it... https://www.illumos.org/issues/1881 */ #define OPTION(name, arg, abbrev) {(char *)name, arg, NULL, abbrev} #else #define OPTION(name, arg, abbrev) {name, arg, NULL, abbrev} #endif static const struct option long_options[] = { #ifndef _WIN32 OPTION("background", 0, 'b'), OPTION("pid-file", 1, OPT_PIDFILE), OPTION("setuid", 1, 'U'), OPTION("script-tun", 0, 'S'), OPTION("syslog", 0, 'l'), OPTION("csd-user", 1, OPT_CSD_USER), OPTION("csd-wrapper", 1, OPT_CSD_WRAPPER), #endif OPTION("pfs", 0, OPT_PFS), OPTION("certificate", 1, 'c'), OPTION("sslkey", 1, 'k'), OPTION("cookie", 1, 'C'), OPTION("compression", 1, OPT_COMPRESSION), OPTION("deflate", 0, 'd'), OPTION("juniper", 0, OPT_JUNIPER), OPTION("no-deflate", 0, 'D'), OPTION("cert-expire-warning", 1, 'e'), OPTION("usergroup", 1, 'g'), OPTION("help", 0, 'h'), OPTION("http-auth", 1, OPT_HTTP_AUTH), OPTION("interface", 1, 'i'), OPTION("mtu", 1, 'm'), OPTION("base-mtu", 1, OPT_BASEMTU), OPTION("script", 1, 's'), OPTION("timestamp", 0, OPT_TIMESTAMP), OPTION("key-password", 1, 'p'), OPTION("proxy", 1, 'P'), OPTION("proxy-auth", 1, OPT_PROXY_AUTH), OPTION("user", 1, 'u'), OPTION("verbose", 0, 'v'), OPTION("version", 0, 'V'), OPTION("cafile", 1, OPT_CAFILE), OPTION("config", 1, OPT_CONFIGFILE), OPTION("no-dtls", 0, OPT_NO_DTLS), OPTION("authenticate", 0, OPT_AUTHENTICATE), OPTION("cookieonly", 0, OPT_COOKIEONLY), OPTION("printcookie", 0, OPT_PRINTCOOKIE), OPTION("quiet", 0, 'q'), OPTION("queue-len", 1, 'Q'), OPTION("xmlconfig", 1, 'x'), OPTION("cookie-on-stdin", 0, OPT_COOKIE_ON_STDIN), OPTION("passwd-on-stdin", 0, OPT_PASSWORD_ON_STDIN), OPTION("no-passwd", 0, OPT_NO_PASSWD), OPTION("reconnect-timeout", 1, OPT_RECONNECT_TIMEOUT), OPTION("dtls-ciphers", 1, OPT_DTLS_CIPHERS), OPTION("authgroup", 1, OPT_AUTHGROUP), OPTION("servercert", 1, OPT_SERVERCERT), OPTION("key-password-from-fsid", 0, OPT_KEY_PASSWORD_FROM_FSID), OPTION("useragent", 1, OPT_USERAGENT), OPTION("disable-ipv6", 0, OPT_DISABLE_IPV6), OPTION("no-proxy", 0, OPT_NO_PROXY), OPTION("libproxy", 0, OPT_LIBPROXY), OPTION("no-http-keepalive", 0, OPT_NO_HTTP_KEEPALIVE), OPTION("no-cert-check", 0, OPT_NO_CERT_CHECK), OPTION("force-dpd", 1, OPT_FORCE_DPD), OPTION("non-inter", 0, OPT_NON_INTER), OPTION("dtls-local-port", 1, OPT_DTLS_LOCAL_PORT), OPTION("token-mode", 1, OPT_TOKEN_MODE), OPTION("token-secret", 1, OPT_TOKEN_SECRET), OPTION("os", 1, OPT_OS), OPTION("no-xmlpost", 0, OPT_NO_XMLPOST), OPTION("dump-http-traffic", 0, OPT_DUMP_HTTP), OPTION("no-system-trust", 0, OPT_NO_SYSTEM_TRUST), #ifdef OPENCONNECT_GNUTLS OPTION("gnutls-debug", 1, OPT_GNUTLS_DEBUG), #endif OPTION(NULL, 0, 0) }; #ifdef OPENCONNECT_GNUTLS static void oc_gnutls_log_func(int level, const char *str) { fputs(str, stderr); } #endif #ifdef _WIN32 static int __attribute__ ((format(printf, 2, 0))) vfprintf_utf8(FILE *f, const char *fmt, va_list args) { HANDLE h = GetStdHandle(f == stdout ? STD_OUTPUT_HANDLE : STD_ERROR_HANDLE); wchar_t wbuf[1024]; char buf[1024]; int chars, wchars; buf[sizeof(buf) - 1] = 0; chars = _vsnprintf(buf, sizeof(buf) - 1, fmt, args); wchars = MultiByteToWideChar(CP_UTF8, 0, buf, -1, wbuf, sizeof(wbuf)/2); WriteConsoleW(h, wbuf, wchars, NULL, NULL); return chars; } static int __attribute__ ((format(printf, 2, 3))) fprintf_utf8(FILE *f, const char *fmt, ...) { va_list args; int ret; va_start(args, fmt); ret = vfprintf_utf8(f, fmt, args); va_end(args); return ret; } static wchar_t **argv_w; /* This isn't so much "convert" the arg to UTF-8, as go grubbing * around in the real UTF-16 command line and find the corresponding * argument *there*, and convert *that* to UTF-8. Ick. But the * alternative is to implement wgetopt(), and that's even more horrid. */ static char *convert_arg_to_utf8(char **argv, char *arg) { char *utf8; int chars; int offset; if (!argv_w) { int argc_w; argv_w = CommandLineToArgvW(GetCommandLineW(), &argc_w); if (!argv_w) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("CommandLineToArgvW() failed: %s\n"), errstr); free(errstr); exit(1); } } offset = arg - argv[optind - 1]; /* Sanity check */ if (offset < 0 || offset >= strlen(argv[optind - 1]) || (offset && (argv[optind - 1][offset-1] != '=' || argv_w[optind - 1][offset - 1] != '='))) { fprintf(stderr, _("Fatal error in command line handling\n")); exit(1); } chars = WideCharToMultiByte(CP_UTF8, 0, argv_w[optind-1] + offset, -1, NULL, 0, NULL, NULL); utf8 = malloc(chars); if (!utf8) return arg; WideCharToMultiByte(CP_UTF8, 0, argv_w[optind-1] + offset, -1, utf8, chars, NULL, NULL); return utf8; } #undef fprintf #undef vfprintf #define fprintf fprintf_utf8 #define vfprintf vfprintf_utf8 #define is_arg_utf8(str) (0) static void read_stdin(char **string, int hidden) { CONSOLE_READCONSOLE_CONTROL rcc = { sizeof(rcc), 0, 13, 0 }; HANDLE stdinh = GetStdHandle(STD_INPUT_HANDLE); DWORD cmode, nr_read; wchar_t wbuf[1024]; char *buf; if (hidden) { GetConsoleMode(stdinh, &cmode); SetConsoleMode(stdinh, cmode & (~ENABLE_ECHO_INPUT)); } if (!ReadConsoleW(stdinh, wbuf, sizeof(wbuf)/2, &nr_read, &rcc)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("ReadConsole() failed: %s\n"), errstr); free(errstr); goto out; } if (nr_read >= 2 && wbuf[nr_read - 1] == 10 && wbuf[nr_read - 2] == 13) { wbuf[nr_read - 2] = 0; nr_read -= 2; } nr_read = WideCharToMultiByte(CP_UTF8, 0, wbuf, -1, NULL, 0, NULL, NULL); if (!nr_read) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("Error converting console input: %s\n"), errstr); free(errstr); goto out; } buf = malloc(nr_read); if (!buf) { fprintf(stderr, _("Allocation failure for string from stdin\n")); exit(1); } if (!WideCharToMultiByte(CP_UTF8, 0, wbuf, -1, buf, nr_read, NULL, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("Error converting console input: %s\n"), errstr); free(errstr); free(buf); goto out; } *string = buf; out: if (hidden) { SetConsoleMode(stdinh, cmode); fprintf(stderr, "\n"); } } #elif defined(HAVE_ICONV) #include static int is_ascii(char *str) { while (str && *str) { if ((unsigned char)*str > 0x7f) return 0; str++; } return 1; } static int __attribute__ ((format(printf, 2, 0))) vfprintf_utf8(FILE *f, const char *fmt, va_list args) { char *utf8_str; iconv_t ic; int ret; char outbuf[80]; ICONV_CONST char *ic_in; char *ic_out; size_t insize, outsize; if (!legacy_charset) return vfprintf(f, fmt, args); ret = vasprintf(&utf8_str, fmt, args); if (ret < 0) return -1; if (is_ascii(utf8_str)) return fwrite(utf8_str, 1, strlen(utf8_str), f); ic = iconv_open(legacy_charset, "UTF-8"); if (ic == (iconv_t) -1) { /* Better than nothing... */ ret = fprintf(f, "%s", utf8_str); free(utf8_str); return ret; } ic_in = utf8_str; insize = strlen(utf8_str); ret = 0; while (insize) { ic_out = outbuf; outsize = sizeof(outbuf) - 1; if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == EILSEQ) { do { ic_in++; insize--; } while (insize && (ic_in[0] & 0xc0) == 0x80); ic_out[0] = '?'; outsize--; } else if (errno != E2BIG) break; } ret += fwrite(outbuf, 1, sizeof(outbuf) - 1 - outsize, f); } iconv_close(ic); return ret; } static int __attribute__ ((format(printf, 2, 3))) fprintf_utf8(FILE *f, const char *fmt, ...) { va_list args; int ret; va_start(args, fmt); ret = vfprintf_utf8(f, fmt, args); va_end(args); return ret; } static char *convert_to_utf8(char *legacy, int free_it) { char *utf8_str; iconv_t ic; ICONV_CONST char *ic_in; char *ic_out; size_t insize, outsize; if (!legacy_charset || is_ascii(legacy)) return legacy; ic = iconv_open("UTF-8", legacy_charset); if (ic == (iconv_t) -1) return legacy; insize = strlen(legacy) + 1; ic_in = legacy; outsize = insize; ic_out = utf8_str = malloc(outsize); if (!utf8_str) { enomem: iconv_close(ic); return legacy; } while (insize) { if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == E2BIG) { int outlen = ic_out - utf8_str; realloc_inplace(utf8_str, outlen + 10); if (!utf8_str) goto enomem; ic_out = utf8_str + outlen; outsize = 10; } else { /* Should never happen */ perror("iconv"); free(utf8_str); goto enomem; } } } iconv_close(ic); if (free_it) free(legacy); return utf8_str; } #define fprintf fprintf_utf8 #define vfprintf vfprintf_utf8 #define convert_arg_to_utf8(av, l) convert_to_utf8((l), 0) #define is_arg_utf8(a) (!legacy_charset || is_ascii(a)) #else #define convert_to_utf8(l,f) (l) #define convert_arg_to_utf8(av, l) (l) #define is_arg_utf8(a) (1) #endif static void helpmessage(void) { printf(_("For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n")); } static void print_build_opts(void) { const char *comma = ", ", *sep = comma + 1; #if defined(OPENCONNECT_OPENSSL) printf(_("Using OpenSSL. Features present:")); #elif defined(OPENCONNECT_GNUTLS) printf(_("Using GnuTLS. Features present:")); #endif if (openconnect_has_tss_blob_support()) { printf("%sTPM", sep); sep = comma; } #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) else { printf("%sTPM (%s)", sep, _("OpenSSL ENGINE not present")); sep = comma; } #endif if (openconnect_has_pkcs11_support()) { printf("%sPKCS#11", sep); sep = comma; } if (openconnect_has_stoken_support()) { printf("%sRSA software token", sep); sep = comma; } switch(openconnect_has_oath_support()) { case 2: printf("%sHOTP software token", sep); sep = comma; case 1: printf("%sTOTP software token", sep); sep = comma; } if (openconnect_has_yubioath_support()) { printf("%sYubikey OATH", sep); sep = comma; } if (openconnect_has_system_key_support()) { printf("%sSystem keys", sep); sep = comma; } #ifdef HAVE_DTLS printf("%sDTLS", sep); #if defined(OPENCONNECT_GNUTLS) && defined(DTLS_OPENSSL) printf(" (%s)", _("using OpenSSL")); #endif printf("\n"); #else printf(_("\nWARNING: No DTLS support in this binary. Performance will be impaired.\n")); #endif } #ifndef _WIN32 static const char default_vpncscript[] = DEFAULT_VPNCSCRIPT; static void read_stdin(char **string, int hidden) { char *c, *buf = malloc(1025); int fd = fileno(stdin); struct termios t; if (!buf) { fprintf(stderr, _("Allocation failure for string from stdin\n")); exit(1); } if (hidden) { tcgetattr(fd, &t); t.c_lflag &= ~ECHO; tcsetattr(fd, TCSANOW, &t); } buf = fgets(buf, 1025, stdin); if (hidden) { t.c_lflag |= ECHO; tcsetattr(fd, TCSANOW, &t); fprintf(stderr, "\n"); } if (!buf) { perror(_("fgets (stdin)")); exit(1); } c = strchr(buf, '\n'); if (c) *c = 0; *string = convert_to_utf8(buf, 1); } static void handle_signal(int sig) { char cmd; switch (sig) { case SIGINT: cmd = OC_CMD_CANCEL; break; case SIGHUP: cmd = OC_CMD_DETACH; break; case SIGUSR2: default: cmd = OC_CMD_PAUSE; break; } if (write(sig_cmd_fd, &cmd, 1) < 0) { /* suppress warn_unused_result */ } } #else /* _WIN32 */ static const char *default_vpncscript; static void set_default_vpncscript(void) { if (PathIsRelative(DEFAULT_VPNCSCRIPT)) { char *c = strrchr(_pgmptr, '\\'); if (!c) { fprintf(stderr, _("Cannot process this executable path \"%s\""), _pgmptr); exit(1); } if (asprintf((char **)&default_vpncscript, "%.*s%s", (c - _pgmptr + 1), _pgmptr, DEFAULT_VPNCSCRIPT) < 0) { fprintf(stderr, _("Allocation for vpnc-script path failed\n")); exit(1); } } else { default_vpncscript = "cscript " DEFAULT_VPNCSCRIPT; } } #endif static void usage(void) { printf(_("Usage: openconnect [options] \n")); printf(_("Open client for Cisco AnyConnect VPN, version %s\n\n"), openconnect_version_str); print_build_opts(); printf(" --config=CONFIGFILE %s\n", _("Read options from config file")); #ifndef _WIN32 printf(" -b, --background %s\n", _("Continue in background after startup")); printf(" --pid-file=PIDFILE %s\n", _("Write the daemon's PID to this file")); #endif printf(" -c, --certificate=CERT %s\n", _("Use SSL client certificate CERT")); printf(" -e, --cert-expire-warning=DAYS %s\n", _("Warn when certificate lifetime < DAYS")); printf(" -k, --sslkey=KEY %s\n", _("Use SSL private key file KEY")); printf(" -C, --cookie=COOKIE %s\n", _("Use WebVPN cookie COOKIE")); printf(" --cookie-on-stdin %s\n", _("Read cookie from standard input")); printf(" -d, --deflate %s\n", _("Enable compression (default)")); printf(" -D, --no-deflate %s\n", _("Disable compression")); printf(" --force-dpd=INTERVAL %s\n", _("Set minimum Dead Peer Detection interval")); printf(" -g, --usergroup=GROUP %s\n", _("Set login usergroup")); printf(" -h, --help %s\n", _("Display help text")); printf(" -i, --interface=IFNAME %s\n", _("Use IFNAME for tunnel interface")); #ifndef _WIN32 printf(" -l, --syslog %s\n", _("Use syslog for progress messages")); #endif printf(" --timestamp %s\n", _("Prepend timestamp to progress messages")); #ifndef _WIN32 printf(" -U, --setuid=USER %s\n", _("Drop privileges after connecting")); printf(" --csd-user=USER %s\n", _("Drop privileges during CSD execution")); printf(" --csd-wrapper=SCRIPT %s\n", _("Run SCRIPT instead of CSD binary")); #endif printf(" -m, --mtu=MTU %s\n", _("Request MTU from server")); printf(" --base-mtu=MTU %s\n", _("Indicate path MTU to/from server")); printf(" -p, --key-password=PASS %s\n", _("Set key passphrase or TPM SRK PIN")); printf(" --key-password-from-fsid %s\n", _("Key passphrase is fsid of file system")); printf(" -P, --proxy=URL %s\n", _("Set proxy server")); printf(" --proxy-auth=METHODS %s\n", _("Set proxy authentication methods")); printf(" --no-proxy %s\n", _("Disable proxy")); printf(" --libproxy %s\n", _("Use libproxy to automatically configure proxy")); #ifndef LIBPROXY_HDR printf(" %s\n", _("(NOTE: libproxy disabled in this build)")); #endif printf(" --pfs %s\n", _("Require perfect forward secrecy")); printf(" -q, --quiet %s\n", _("Less output")); printf(" -Q, --queue-len=LEN %s\n", _("Set packet queue limit to LEN pkts")); printf(" -s, --script=SCRIPT %s\n", _("Shell command line for using a vpnc-compatible config script")); printf(" %s: \"%s\"\n", _("default"), default_vpncscript); #ifndef _WIN32 printf(" -S, --script-tun %s\n", _("Pass traffic to 'script' program, not tun")); #endif printf(" -u, --user=NAME %s\n", _("Set login username")); printf(" -V, --version %s\n", _("Report version number")); printf(" -v, --verbose %s\n", _("More output")); printf(" --dump-http-traffic %s\n", _("Dump HTTP authentication traffic (implies --verbose")); printf(" -x, --xmlconfig=CONFIG %s\n", _("XML config file")); printf(" --authgroup=GROUP %s\n", _("Choose authentication login selection")); printf(" --authenticate %s\n", _("Authenticate only and print login info")); printf(" --cookieonly %s\n", _("Fetch webvpn cookie only; don't connect")); printf(" --printcookie %s\n", _("Print webvpn cookie before connecting")); printf(" --cafile=FILE %s\n", _("Cert file for server verification")); printf(" --disable-ipv6 %s\n", _("Do not ask for IPv6 connectivity")); printf(" --dtls-ciphers=LIST %s\n", _("OpenSSL ciphers to support for DTLS")); printf(" --no-dtls %s\n", _("Disable DTLS")); printf(" --no-http-keepalive %s\n", _("Disable HTTP connection re-use")); printf(" --no-passwd %s\n", _("Disable password/SecurID authentication")); printf(" --no-cert-check %s\n", _("Do not require server SSL cert to be valid")); printf(" --no-system-trust %s\n", _("Disable default system certificate authorities")); printf(" --no-xmlpost %s\n", _("Do not attempt XML POST authentication")); printf(" --non-inter %s\n", _("Do not expect user input; exit if it is required")); printf(" --passwd-on-stdin %s\n", _("Read password from standard input")); printf(" --token-mode=MODE %s\n", _("Software token type: rsa, totp or hotp")); printf(" --token-secret=STRING %s\n", _("Software token secret")); #ifndef HAVE_LIBSTOKEN printf(" %s\n", _("(NOTE: libstoken (RSA SecurID) disabled in this build)")); #endif #ifndef HAVE_LIBPCSCLITE printf(" %s\n", _("(NOTE: Yubikey OATH disabled in this build)")); #endif printf(" --reconnect-timeout %s\n", _("Connection retry timeout in seconds")); printf(" --servercert=FINGERPRINT %s\n", _("Server's certificate SHA1 fingerprint")); printf(" --useragent=STRING %s\n", _("HTTP header User-Agent: field")); printf(" --os=STRING %s\n", _("OS type (linux,linux-64,win,...) to report")); printf(" --dtls-local-port=PORT %s\n", _("Set local port for DTLS datagrams")); printf("\n"); helpmessage(); exit(1); } static FILE *config_file = NULL; static int config_line_num = 0; static char *xstrdup(const char *arg) { char *ret; if (!arg) return NULL; ret = strdup(arg); if (!ret) { fprintf(stderr, _("Failed to allocate string\n")); exit(1); } return ret; } /* There are three ways to handle config_arg: * * 1. We only care about it transiently and it can be lost entirely * (e.g. vpninfo->reconnect_timeout = atoi(config_arg); * 2. We need to keep it, but it's a static string and will never be freed * so when it's part of argv[] we can use it in place (unless it needs * converting to UTF-8), but when it comes from a file we have to strdup() * because otherwise it'll be overwritten. * For this we use the keep_config_arg() macro below. * 3. It may be freed during normal operation, so we have to use strdup() * or convert_arg_to_utf8() even when it's an option from argv[]. * (e.g. vpninfo->cert_password). * For this we use the dup_config_arg() macro below. */ #define keep_config_arg() \ (config_file ? xstrdup(config_arg) : convert_arg_to_utf8(argv, config_arg)) #define dup_config_arg() \ ((config_file || is_arg_utf8(config_arg)) ? xstrdup(config_arg) : \ convert_arg_to_utf8(argv, config_arg)) static int next_option(int argc, char **argv, char **config_arg) { /* These get re-used */ static char *line_buf = NULL; static size_t line_size = 0; ssize_t llen; int opt, optlen = 0; const struct option *this; char *line; int ate_equals = 0; next: if (!config_file) { opt = getopt_long(argc, argv, #ifdef _WIN32 "C:c:Dde:g:hi:k:m:P:p:Q:qs:u:Vvx:", #else "bC:c:Dde:g:hi:k:lm:P:p:Q:qSs:U:u:Vvx:", #endif long_options, NULL); *config_arg = optarg; return opt; } llen = getline(&line_buf, &line_size, config_file); if (llen < 0) { if (feof(config_file)) { fclose(config_file); config_file = NULL; goto next; } fprintf(stderr, _("Failed to get line from config file: %s\n"), strerror(errno)); exit(1); } line = line_buf; /* Strip the trailing newline (coping with DOS newlines) */ if (llen && line[llen-1] == '\n') line[--llen] = 0; if (llen && line[llen-1] == '\r') line[--llen] = 0; /* Skip and leading whitespace */ while (line[0] == ' ' || line[0] == '\t' || line[0] == '\r') line++; /* Ignore comments and empty lines */ if (!line[0] || line[0] == '#') { config_line_num++; goto next; } /* Try to match on a known option... naïvely. This could be improved. */ for (this = long_options; this->name; this++) { optlen = strlen(this->name); /* If the option isn't followed by whitespace or NUL, or perhaps an equals sign if the option takes an argument, then it's not a match */ if (!strncmp(this->name, line, optlen) && (!line[optlen] || line[optlen] == ' ' || line[optlen] == '\t' || line[optlen] == '=')) break; } if (!this->name) { char *l; for (l = line; *l && *l != ' ' && *l != '\t'; l++) ; *l = 0; fprintf(stderr, _("Unrecognised option at line %d: '%s'\n"), config_line_num, line); return '?'; } line += optlen; while (*line == ' ' || *line == '\t' || (*line == '=' && this->has_arg && !ate_equals && ++ate_equals)) line++; if (!this->has_arg && *line) { fprintf(stderr, _("Option '%s' does not take an argument at line %d\n"), this->name, config_line_num); return '?'; } else if (this->has_arg == 1 && !*line) { fprintf(stderr, _("Option '%s' requires an argument at line %d\n"), this->name, config_line_num); return '?'; } else if (this->has_arg == 2 && !*line) { line = NULL; } config_line_num++; *config_arg = line; return this->val; } int main(int argc, char **argv) { struct openconnect_info *vpninfo; char *urlpath = NULL; const char *compr = ""; char *proxy = getenv("https_proxy"); char *vpnc_script = NULL, *ifname = NULL; const struct oc_ip_info *ip_info; int autoproxy = 0; int opt; char *pidfile = NULL; FILE *fp = NULL; char *config_arg; char *config_filename; char *token_str = NULL; oc_token_mode_t token_mode = OC_TOKEN_MODE_NONE; int reconnect_timeout = 300; int ret; #ifdef HAVE_NL_LANGINFO char *charset; #endif #ifndef _WIN32 struct sigaction sa; struct utsname utsbuf; uid_t uid = getuid(); int use_syslog = 0; int script_tun = 0; #endif #ifdef ENABLE_NLS bindtextdomain("openconnect", LOCALEDIR); #endif setlocale(LC_ALL, ""); #ifdef HAVE_NL_LANGINFO charset = nl_langinfo(CODESET); if (charset && strcmp(charset, "UTF-8")) legacy_charset = strdup(charset); #ifndef HAVE_ICONV if (legacy_charset) fprintf(stderr, _("WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n"), legacy_charset); #endif /* !HAVE_ICONV */ #endif /* HAVE_NL_LANGINFO */ if (strcmp(openconnect_version_str, openconnect_binary_version)) { fprintf(stderr, _("WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n"), openconnect_binary_version, openconnect_version_str); } openconnect_init_ssl(); vpninfo = openconnect_vpninfo_new((char *)"Open AnyConnect VPN Agent", validate_peer_cert, NULL, process_auth_form_cb, write_progress, NULL); if (!vpninfo) { fprintf(stderr, _("Failed to allocate vpninfo structure\n")); exit(1); } vpninfo->cbdata = vpninfo; #ifdef _WIN32 set_default_vpncscript(); #else if (!uname(&utsbuf)) { free(vpninfo->localname); vpninfo->localname = xstrdup(utsbuf.nodename); } #endif while ((opt = next_option(argc, argv, &config_arg))) { if (opt < 0) break; switch (opt) { #ifndef _WIN32 case 'b': background = 1; break; case 'l': use_syslog = 1; break; case 'S': script_tun = 1; break; case 'U': { char *strend; uid = strtol(config_arg, &strend, 0); if (strend[0]) { struct passwd *pw = getpwnam(config_arg); if (!pw) { fprintf(stderr, _("Invalid user \"%s\"\n"), config_arg); exit(1); } uid = pw->pw_uid; } break; } case OPT_JUNIPER: fprintf(stderr, "WARNING: Juniper Network Connect support is experimental.\n"); fprintf(stderr, "It will probably be superseded by Junos Pulse support.\n"); openconnect_set_protocol(vpninfo, "nc"); break; case OPT_CSD_USER: { char *strend; vpninfo->uid_csd = strtol(config_arg, &strend, 0); if (strend[0]) { struct passwd *pw = getpwnam(config_arg); if (!pw) { fprintf(stderr, _("Invalid user \"%s\"\n"), config_arg); exit(1); } vpninfo->uid_csd = pw->pw_uid; } vpninfo->uid_csd_given = 1; break; } case OPT_CSD_WRAPPER: vpninfo->csd_wrapper = keep_config_arg(); break; #endif /* !_WIN32 */ case OPT_CONFIGFILE: if (config_file) { fprintf(stderr, _("Cannot use 'config' option inside config file\n")); exit(1); } config_filename = keep_config_arg(); /* Convert to UTF-8 */ config_file = openconnect_fopen_utf8(vpninfo, config_filename, "r"); if (config_filename != config_arg) free(config_filename); if (!config_file) { fprintf(stderr, _("Cannot open config file '%s': %s\n"), config_arg, strerror(errno)); exit(1); } config_line_num = 1; /* The next option will come from the file... */ break; case OPT_COMPRESSION: if (!strcmp(config_arg, "none") || !strcmp(config_arg, "off")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_NONE); else if (!strcmp(config_arg, "all")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_ALL); else if (!strcmp(config_arg, "stateless")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_STATELESS); else { fprintf(stderr, _("Invalid compression mode '%s'\n"), config_arg); exit(1); } break; case OPT_CAFILE: openconnect_set_cafile(vpninfo, dup_config_arg()); break; case OPT_PIDFILE: pidfile = keep_config_arg(); break; case OPT_PFS: openconnect_set_pfs(vpninfo, 1); break; case OPT_SERVERCERT: server_cert = keep_config_arg(); openconnect_set_system_trust(vpninfo, 0); break; case OPT_NO_DTLS: vpninfo->dtls_state = DTLS_DISABLED; break; case OPT_COOKIEONLY: cookieonly = 1; break; case OPT_PRINTCOOKIE: cookieonly = 2; break; case OPT_AUTHENTICATE: cookieonly = 3; break; case OPT_COOKIE_ON_STDIN: read_stdin(&vpninfo->cookie, 0); /* If the cookie is empty, ignore it */ if (!*vpninfo->cookie) vpninfo->cookie = NULL; break; case OPT_PASSWORD_ON_STDIN: read_stdin(&password, 0); break; case OPT_NO_PASSWD: vpninfo->nopasswd = 1; break; case OPT_NO_XMLPOST: openconnect_set_xmlpost(vpninfo, 0); break; case OPT_NON_INTER: non_inter = 1; break; case OPT_RECONNECT_TIMEOUT: reconnect_timeout = atoi(config_arg); break; case OPT_DTLS_CIPHERS: vpninfo->dtls_ciphers = keep_config_arg(); break; case OPT_AUTHGROUP: authgroup = keep_config_arg(); break; case 'C': vpninfo->cookie = dup_config_arg(); break; case 'c': vpninfo->cert = dup_config_arg(); break; case 'e': vpninfo->cert_expire_warning = 86400 * atoi(config_arg); break; case 'k': vpninfo->sslkey = dup_config_arg(); break; case 'd': vpninfo->req_compr = COMPR_ALL; break; case 'D': vpninfo->req_compr = 0; break; case 'g': free(urlpath); urlpath = dup_config_arg(); break; case 'h': usage(); case 'i': ifname = dup_config_arg(); break; case 'm': { int mtu = atol(config_arg); if (mtu < 576) { fprintf(stderr, _("MTU %d too small\n"), mtu); mtu = 576; } openconnect_set_reqmtu(vpninfo, mtu); break; } case OPT_BASEMTU: vpninfo->basemtu = atol(config_arg); if (vpninfo->basemtu < 576) { fprintf(stderr, _("MTU %d too small\n"), vpninfo->basemtu); vpninfo->basemtu = 576; } break; case 'p': vpninfo->cert_password = strdup(config_arg); break; case 'P': proxy = keep_config_arg(); autoproxy = 0; break; case OPT_PROXY_AUTH: openconnect_set_proxy_auth(vpninfo, config_arg); break; case OPT_HTTP_AUTH: openconnect_set_http_auth(vpninfo, config_arg); break; case OPT_NO_PROXY: autoproxy = 0; proxy = NULL; break; case OPT_NO_SYSTEM_TRUST: openconnect_set_system_trust(vpninfo, 0); break; case OPT_LIBPROXY: autoproxy = 1; proxy = NULL; break; case OPT_NO_HTTP_KEEPALIVE: fprintf(stderr, _("Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n")); vpninfo->no_http_keepalive = 1; break; case OPT_NO_CERT_CHECK: nocertcheck = 1; break; case 's': vpnc_script = dup_config_arg(); break; case 'u': free(username); username = dup_config_arg(); break; case OPT_DISABLE_IPV6: vpninfo->disable_ipv6 = 1; break; case 'Q': vpninfo->max_qlen = atol(config_arg); if (!vpninfo->max_qlen) { fprintf(stderr, _("Queue length zero not permitted; using 1\n")); vpninfo->max_qlen = 1; } break; case 'q': verbose = PRG_ERR; break; case OPT_DUMP_HTTP: vpninfo->dump_http_traffic = 1; break; case 'v': verbose++; break; case 'V': printf(_("OpenConnect version %s\n"), openconnect_version_str); print_build_opts(); exit(0); case 'x': vpninfo->xmlconfig = keep_config_arg(); vpninfo->write_new_config = write_new_config; break; case OPT_KEY_PASSWORD_FROM_FSID: do_passphrase_from_fsid = 1; break; case OPT_USERAGENT: free(vpninfo->useragent); vpninfo->useragent = dup_config_arg(); break; case OPT_FORCE_DPD: openconnect_set_dpd(vpninfo, atoi(config_arg)); break; case OPT_DTLS_LOCAL_PORT: vpninfo->dtls_local_port = atoi(config_arg); break; case OPT_TOKEN_MODE: if (strcasecmp(config_arg, "rsa") == 0) { token_mode = OC_TOKEN_MODE_STOKEN; } else if (strcasecmp(config_arg, "totp") == 0) { token_mode = OC_TOKEN_MODE_TOTP; } else if (strcasecmp(config_arg, "hotp") == 0) { token_mode = OC_TOKEN_MODE_HOTP; } else if (strcasecmp(config_arg, "yubioath") == 0) { token_mode = OC_TOKEN_MODE_YUBIOATH; } else { fprintf(stderr, _("Invalid software token mode \"%s\"\n"), config_arg); exit(1); } break; case OPT_TOKEN_SECRET: token_str = keep_config_arg(); break; case OPT_OS: if (openconnect_set_reported_os(vpninfo, config_arg)) { fprintf(stderr, _("Invalid OS identity \"%s\"\n"), config_arg); exit(1); } if (!strcmp(config_arg, "android") || !strcmp(config_arg, "apple-ios")) { /* generic defaults */ openconnect_set_mobile_info(vpninfo, xstrdup("1.0"), dup_config_arg(), xstrdup("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA")); } break; case OPT_TIMESTAMP: timestamp = 1; break; #ifdef OPENCONNECT_GNUTLS case OPT_GNUTLS_DEBUG: gnutls_global_set_log_level(atoi(config_arg)); gnutls_global_set_log_function(oc_gnutls_log_func); break; #endif default: usage(); } } if (optind < argc - 1) { fprintf(stderr, _("Too many arguments on command line\n")); usage(); } else if (optind > argc - 1) { fprintf(stderr, _("No server specified\n")); usage(); } if (!vpninfo->sslkey) vpninfo->sslkey = vpninfo->cert; if (vpninfo->dump_http_traffic && verbose < PRG_DEBUG) verbose = PRG_DEBUG; vpninfo->progress = write_progress; if (autoproxy) { #ifdef LIBPROXY_HDR vpninfo->proxy_factory = px_proxy_factory_new(); #else fprintf(stderr, _("This version of openconnect was built without libproxy support\n")); exit(1); #endif } if (token_mode != OC_TOKEN_MODE_NONE) init_token(vpninfo, token_mode, token_str); if (proxy && openconnect_set_http_proxy(vpninfo, strdup(proxy))) exit(1); #ifndef _WIN32 if (use_syslog) { openlog("openconnect", LOG_PID, LOG_DAEMON); vpninfo->progress = syslog_progress; } memset(&sa, 0, sizeof(sa)); sa.sa_handler = handle_signal; sigaction(SIGINT, &sa, NULL); sigaction(SIGHUP, &sa, NULL); sigaction(SIGUSR2, &sa, NULL); #endif /* !_WIN32 */ sig_cmd_fd = openconnect_setup_cmd_pipe(vpninfo); if (sig_cmd_fd < 0) { fprintf(stderr, _("Error opening cmd pipe\n")); exit(1); } if (vpninfo->sslkey && do_passphrase_from_fsid) openconnect_passphrase_from_fsid(vpninfo); if (config_lookup_host(vpninfo, argv[optind])) exit(1); if (!vpninfo->hostname) { char *url = strdup(argv[optind]); if (openconnect_parse_url(vpninfo, url)) exit(1); free(url); } /* Historically, the path in the URL superseded the one in the * --usergroup argument, just because of the order in which they * were processed. Preserve that behaviour. */ if (urlpath && !vpninfo->urlpath) { vpninfo->urlpath = urlpath; urlpath = NULL; } free(urlpath); if (!vpninfo->cookie && openconnect_obtain_cookie(vpninfo)) { if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); vpninfo->csd_scriptname = NULL; } fprintf(stderr, _("Failed to obtain WebVPN cookie\n")); exit(1); } if (cookieonly == 3) { /* --authenticate */ printf("COOKIE='%s'\n", vpninfo->cookie); printf("HOST='%s'\n", openconnect_get_hostname(vpninfo)); printf("FINGERPRINT='%s'\n", openconnect_get_peer_cert_hash(vpninfo)); openconnect_vpninfo_free(vpninfo); exit(0); } else if (cookieonly) { printf("%s\n", vpninfo->cookie); if (cookieonly == 1) { /* We use cookieonly=2 for 'print it and continue' */ openconnect_vpninfo_free(vpninfo); exit(0); } } if (openconnect_make_cstp_connection(vpninfo)) { fprintf(stderr, _("Creating SSL connection failed\n")); openconnect_vpninfo_free(vpninfo); exit(1); } if (!vpnc_script) vpnc_script = xstrdup(default_vpncscript); #ifndef _WIN32 if (script_tun) { if (openconnect_setup_tun_script(vpninfo, vpnc_script)) { fprintf(stderr, _("Set up tun script failed\n")); openconnect_vpninfo_free(vpninfo); exit(1); } } else #endif if (openconnect_setup_tun_device(vpninfo, vpnc_script, ifname)) { fprintf(stderr, _("Set up tun device failed\n")); openconnect_vpninfo_free(vpninfo); exit(1); } #ifndef _WIN32 if (uid != getuid()) { if (setuid(uid)) { fprintf(stderr, _("Failed to set uid %ld\n"), (long)uid); openconnect_vpninfo_free(vpninfo); exit(1); } } #endif if (vpninfo->dtls_state != DTLS_DISABLED && openconnect_setup_dtls(vpninfo, 60)) fprintf(stderr, _("Set up DTLS failed; using SSL instead\n")); openconnect_get_ip_info(vpninfo, &ip_info, NULL, NULL); if (vpninfo->dtls_state != DTLS_CONNECTED) { if (vpninfo->cstp_compr == COMPR_DEFLATE) compr = " + deflate"; else if (vpninfo->cstp_compr == COMPR_LZS) compr = " + lzs"; else if (vpninfo->cstp_compr == COMPR_LZ4) compr = " + lz4"; } else { if (vpninfo->dtls_compr == COMPR_DEFLATE) compr = " + deflate"; else if (vpninfo->dtls_compr == COMPR_LZS) compr = " + lzs"; else if (vpninfo->dtls_compr == COMPR_LZ4) compr = " + lz4"; } vpn_progress(vpninfo, PRG_INFO, _("Connected %s as %s%s%s, using %s%s\n"), openconnect_get_ifname(vpninfo), ip_info->addr?:"", (ip_info->netmask6 && ip_info->addr) ? " + " : "", ip_info->netmask6 ? : "", (vpninfo->dtls_state != DTLS_CONNECTED) ? "SSL" : "DTLS", compr); if (!vpninfo->vpnc_script) { vpn_progress(vpninfo, PRG_INFO, _("No --script argument provided; DNS and routing are not configured\n")); vpn_progress(vpninfo, PRG_INFO, _("See http://www.infradead.org/openconnect/vpnc-script.html\n")); } #ifndef _WIN32 if (background) { int pid; /* Open the pidfile before forking, so we can report errors more sanely. It's *possible* that we'll fail to write to it, but very unlikely. */ if (pidfile != NULL) { fp = openconnect_fopen_utf8(vpninfo, pidfile, "w"); if (!fp) { fprintf(stderr, _("Failed to open '%s' for write: %s\n"), pidfile, strerror(errno)); openconnect_vpninfo_free(vpninfo); exit(1); } } if ((pid = fork())) { if (fp) { fprintf(fp, "%d\n", pid); fclose(fp); } vpn_progress(vpninfo, PRG_INFO, _("Continuing in background; pid %d\n"), pid); openconnect_vpninfo_free(vpninfo); exit(0); } if (fp) fclose(fp); } #endif openconnect_set_loglevel(vpninfo, verbose); while (1) { ret = openconnect_mainloop(vpninfo, reconnect_timeout, RECONNECT_INTERVAL_MIN); if (ret) break; vpn_progress(vpninfo, PRG_INFO, _("User requested reconnect\n")); } if (fp) unlink(pidfile); switch (ret) { case -EPERM: vpn_progress(vpninfo, PRG_ERR, _("Cookie was rejected on reconnection; exiting.\n")); ret = 2; break; case -EPIPE: vpn_progress(vpninfo, PRG_ERR, _("Session terminated by server; exiting.\n")); ret = 1; break; case -EINTR: vpn_progress(vpninfo, PRG_INFO, _("User cancelled (SIGINT); exiting.\n")); ret = 0; break; case -ECONNABORTED: vpn_progress(vpninfo, PRG_INFO, _("User detached from session (SIGHUP); exiting.\n")); ret = 0; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown error; exiting.\n")); ret = 1; break; } openconnect_vpninfo_free(vpninfo); exit(ret); } static int write_new_config(void *_vpninfo, const char *buf, int buflen) { struct openconnect_info *vpninfo = _vpninfo; int config_fd; int err; config_fd = openconnect_open_utf8(vpninfo, vpninfo->xmlconfig, O_WRONLY|O_TRUNC|O_CREAT|O_BINARY); if (config_fd < 0) { err = errno; fprintf(stderr, _("Failed to open %s for write: %s\n"), vpninfo->xmlconfig, strerror(err)); return -err; } /* FIXME: We should actually write to a new tempfile, then rename */ if (write(config_fd, buf, buflen) != buflen) { err = errno; fprintf(stderr, _("Failed to write config to %s: %s\n"), vpninfo->xmlconfig, strerror(err)); close(config_fd); return -err; } close(config_fd); return 0; } static void __attribute__ ((format(printf, 3, 4))) write_progress(void *_vpninfo, int level, const char *fmt, ...) { FILE *outf = level ? stdout : stderr; va_list args; if (cookieonly) outf = stderr; if (verbose >= level) { if (timestamp) { char ts[64]; time_t t = time(NULL); struct tm *tm = localtime(&t); strftime(ts, 64, "[%Y-%m-%d %H:%M:%S] ", tm); fprintf(outf, "%s", ts); } va_start(args, fmt); vfprintf(outf, fmt, args); va_end(args); fflush(outf); } } struct accepted_cert { struct accepted_cert *next; char *fingerprint; char *host; int port; } *accepted_certs; static int validate_peer_cert(void *_vpninfo, const char *reason) { struct openconnect_info *vpninfo = _vpninfo; const char *fingerprint; struct accepted_cert *this; if (server_cert) { int err = openconnect_check_peer_cert_hash(vpninfo, server_cert); if (!err) return 0; if (err < 0) vpn_progress(vpninfo, PRG_ERR, _("Could not calculate hash of server's certificate\n")); else vpn_progress(vpninfo, PRG_ERR, _("Server SSL certificate didn't match: %s\n"), openconnect_get_peer_cert_hash(vpninfo)); return -EINVAL; } if (nocertcheck) return 0; fingerprint = openconnect_get_peer_cert_hash(vpninfo); for (this = accepted_certs; this; this = this->next) { if (!strcasecmp(this->host, vpninfo->hostname) && this->port == vpninfo->port && !openconnect_check_peer_cert_hash(vpninfo, this->fingerprint)) return 0; } while (1) { char *details; char *response = NULL; fprintf(stderr, _("\nCertificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n"), vpninfo->hostname, reason); if (non_inter) return -EINVAL; fprintf(stderr, _("Enter '%s' to accept, '%s' to abort; anything else to view: "), _("yes"), _("no")); read_stdin(&response, 0); if (!response) return -EINVAL; if (!strcasecmp(response, _("yes"))) { struct accepted_cert *newcert = malloc(sizeof(*newcert)); if (newcert) { newcert->next = accepted_certs; accepted_certs = newcert; newcert->fingerprint = strdup(fingerprint); newcert->host = strdup(vpninfo->hostname); newcert->port = vpninfo->port; } free(response); return 0; } if (!strcasecmp(response, _("no"))) { free(response); return -EINVAL; } free(response); details = openconnect_get_peer_cert_details(vpninfo); fputs(details, stderr); openconnect_free_cert_info(vpninfo, details); fprintf(stderr, _("Server key hash: %s\n"), fingerprint); } } static int match_choice_label(struct openconnect_info *vpninfo, struct oc_form_opt_select *select_opt, char *label) { int i, input_len, partial_matches = 0; char *match = NULL; input_len = strlen(label); if (input_len < 1) return -EINVAL; for (i = 0; i < select_opt->nr_choices; i++) { struct oc_choice *choice = select_opt->choices[i]; if (!strncasecmp(label, choice->label, input_len)) { if (strlen(choice->label) == input_len) { select_opt->form._value = choice->name; return 0; } else { match = choice->name; partial_matches++; } } } if (partial_matches == 1) { select_opt->form._value = match; return 0; } else if (partial_matches > 1) { vpn_progress(vpninfo, PRG_ERR, _("Auth choice \"%s\" matches multiple options\n"), label); return -EINVAL; } else { vpn_progress(vpninfo, PRG_ERR, _("Auth choice \"%s\" not available\n"), label); return -EINVAL; } } static char *prompt_for_input(const char *prompt, struct openconnect_info *vpninfo, int hidden) { char *response; fprintf(stderr, "%s", prompt); fflush(stderr); if (non_inter) { fprintf(stderr, "***\n"); vpn_progress(vpninfo, PRG_ERR, _("User input required in non-interactive mode\n")); return NULL; } read_stdin(&response, hidden); return response; } static int prompt_opt_select(struct openconnect_info *vpninfo, struct oc_form_opt_select *select_opt, char **saved_response) { int i; char *response; if (!select_opt->nr_choices) return -EINVAL; retry: fprintf(stderr, "%s [", select_opt->form.label); for (i = 0; i < select_opt->nr_choices; i++) { struct oc_choice *choice = select_opt->choices[i]; if (i) fprintf(stderr, "|"); fprintf(stderr, "%s", choice->label); } fprintf(stderr, "]:"); if (select_opt->nr_choices == 1) { response = strdup(select_opt->choices[0]->label); fprintf(stderr, "%s\n", response); } else response = prompt_for_input("", vpninfo, 0); if (!response) return -EINVAL; if (match_choice_label(vpninfo, select_opt, response) < 0) { free(response); goto retry; } if (saved_response) *saved_response = response; else free(response); return 0; } /* Return value: * < 0, on error * = 0, when form was parsed and POST required * = 1, when response was cancelled by user */ static int process_auth_form_cb(void *_vpninfo, struct oc_auth_form *form) { struct openconnect_info *vpninfo = _vpninfo; struct oc_form_opt *opt; int empty = 1; if (form->banner && verbose > PRG_ERR) fprintf(stderr, "%s\n", form->banner); if (form->error) fprintf(stderr, "%s\n", form->error); if (form->message && verbose > PRG_ERR) fprintf(stderr, "%s\n", form->message); /* Special handling for GROUP: field if present, as different group selections can make other fields disappear/reappear */ if (form->authgroup_opt) { if (!authgroup || match_choice_label(vpninfo, form->authgroup_opt, authgroup) != 0) { if (prompt_opt_select(vpninfo, form->authgroup_opt, &authgroup) < 0) goto err; } if (!authgroup_set) { authgroup_set = 1; return OC_FORM_RESULT_NEWGROUP; } } for (opt = form->opts; opt; opt = opt->next) { if (opt->flags & OC_FORM_OPT_IGNORE) continue; /* I haven't actually seen a non-authgroup dropdown in the wild, but the Cisco clients do support them */ if (opt->type == OC_FORM_OPT_SELECT) { struct oc_form_opt_select *select_opt = (void *)opt; if (select_opt == form->authgroup_opt) continue; if (prompt_opt_select(vpninfo, select_opt, NULL) < 0) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_TEXT) { if (username && !strcmp(opt->name, "username")) { opt->_value = username; username = NULL; } else { opt->_value = prompt_for_input(opt->label, vpninfo, 0); } if (!opt->_value) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_PASSWORD) { if (password && !strcmp(opt->name, "password")) { opt->_value = password; password = NULL; } else { opt->_value = prompt_for_input(opt->label, vpninfo, 1); } if (!opt->_value) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_TOKEN) { /* Nothing to do here, but if the tokencode is being * automatically generated then don't treat it as an * empty form for the purpose of loop avoidance. */ empty = 0; } } /* prevent infinite loops if the authgroup requires certificate auth only */ if (last_form_empty && empty) return OC_FORM_RESULT_CANCELLED; last_form_empty = empty; return OC_FORM_RESULT_OK; err: return OC_FORM_RESULT_ERR; } static int lock_token(void *tokdata) { struct openconnect_info *vpninfo = tokdata; char *file_token; int err; /* FIXME: Actually lock the file */ err = read_file_into_string(vpninfo, token_filename, &file_token); if (err < 0) return err; err = openconnect_set_token_mode(vpninfo, vpninfo->token_mode, file_token); free(file_token); return 0; } static int unlock_token(void *tokdata, const char *new_tok) { struct openconnect_info *vpninfo = tokdata; int tok_fd; int err; if (!new_tok) return 0; tok_fd = openconnect_open_utf8(vpninfo, token_filename, O_WRONLY|O_TRUNC|O_CREAT|O_BINARY); if (tok_fd < 0) { err = errno; fprintf(stderr, _("Failed to open token file for write: %s\n"), strerror(err)); return -err; } /* FIXME: We should actually write to a new tempfile, then rename */ if (write(tok_fd, new_tok, strlen(new_tok)) != strlen(new_tok)) { err = errno; fprintf(stderr, _("Failed to write token: %s\n"), strerror(err)); close(tok_fd); return -err; } close(tok_fd); return 0; } static void init_token(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str) { int ret; char *file_token = NULL; if (token_str) { switch(token_str[0]) { case '@': token_str++; /* fall through... */ case '/': if (read_file_into_string(vpninfo, token_str, &file_token) < 0) exit(1); break; default: /* Use token_str as raw data */ break; } } ret = openconnect_set_token_mode(vpninfo, token_mode, file_token ? : token_str); if (file_token) { token_filename = strdup(token_str); openconnect_set_token_callbacks(vpninfo, vpninfo, lock_token, unlock_token); free(file_token); } switch (token_mode) { case OC_TOKEN_MODE_STOKEN: switch (ret) { case 0: return; case -EINVAL: fprintf(stderr, _("Soft token string is invalid\n")); exit(1); case -ENOENT: fprintf(stderr, _("Can't open ~/.stokenrc file\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with libstoken support\n")); exit(1); default: fprintf(stderr, _("General failure in libstoken\n")); exit(1); } break; case OC_TOKEN_MODE_TOTP: case OC_TOKEN_MODE_HOTP: switch (ret) { case 0: return; case -EINVAL: fprintf(stderr, _("Soft token string is invalid\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with liboath support\n")); exit(1); default: fprintf(stderr, _("General failure in liboath\n")); exit(1); } break; case OC_TOKEN_MODE_YUBIOATH: switch(ret) { case 0: return; case -ENOENT: fprintf(stderr, _("Yubikey token not found\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with Yubikey support\n")); exit(1); default: fprintf(stderr, _("General Yubikey failure: %s\n"), strerror(-ret)); exit(1); } case OC_TOKEN_MODE_NONE: /* No-op */ break; /* Option parsing already checked for invalid modes. */ } } openconnect-7.06/java/0000775000076400007640000000000012502026432011711 500000000000000openconnect-7.06/java/src/0000775000076400007640000000000012502026432012500 500000000000000openconnect-7.06/java/src/org/0000775000076400007640000000000012502026432013267 500000000000000openconnect-7.06/java/src/org/infradead/0000775000076400007640000000000012502026432015204 500000000000000openconnect-7.06/java/src/org/infradead/libopenconnect/0000775000076400007640000000000012502026432020206 500000000000000openconnect-7.06/java/src/org/infradead/libopenconnect/LibOpenConnect.java0000664000076400007640000002070612453040465023647 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ package org.infradead.libopenconnect; import java.util.ArrayList; import java.util.HashMap; public abstract class LibOpenConnect { /* constants */ public static final int OC_FORM_OPT_TEXT = 1; public static final int OC_FORM_OPT_PASSWORD = 2; public static final int OC_FORM_OPT_SELECT = 3; public static final int OC_FORM_OPT_HIDDEN = 4; public static final int OC_FORM_OPT_TOKEN = 5; public static final int OC_FORM_OPT_IGNORE = 0x0001; public static final int OC_FORM_OPT_NUMERIC = 0x0002; public static final int OC_TOKEN_MODE_NONE = 0; public static final int OC_TOKEN_MODE_STOKEN = 1; public static final int OC_TOKEN_MODE_TOTP = 2; public static final int OC_TOKEN_MODE_HOTP = 3; public static final int OC_FORM_RESULT_ERR = -1; public static final int OC_FORM_RESULT_OK = 0; public static final int OC_FORM_RESULT_CANCELLED = 1; public static final int OC_FORM_RESULT_NEWGROUP = 2; public static final int PRG_ERR = 0; public static final int PRG_INFO = 1; public static final int PRG_DEBUG = 2; public static final int PRG_TRACE = 3; public static final int RECONNECT_INTERVAL_MIN = 10; public static final int RECONNECT_INTERVAL_MAX = 100; /* required callbacks */ public abstract int onProcessAuthForm(AuthForm authForm); public abstract void onProgress(int level, String msg); /* optional callbacks */ public int onValidatePeerCert(String msg) { return 0; } public int onWriteNewConfig(byte[] buf) { return 0; } public void onProtectSocket(int fd) { } public void onStatsUpdate(VPNStats stats) { } public int onTokenLock() { return 0; } public int onTokenUnlock(String newToken) { return 0; } /* create/destroy library instances */ public LibOpenConnect() { libctx = init("OpenConnect VPN Agent (Java)"); } public synchronized void destroy() { if (libctx != 0) { free(); libctx = 0; } } /* async requests (safe to call from any thread) */ public void cancel() { synchronized (asyncLock) { if (!canceled) { doCancel(); canceled = true; } } } public boolean isCanceled() { synchronized (asyncLock) { return canceled; } } public native void pause(); public native void requestStats(); public native void setLogLevel(int level); /* control operations */ public synchronized native int parseURL(String url); public synchronized native int obtainCookie(); public synchronized native void clearCookie(); public synchronized native void resetSSL(); public synchronized native int makeCSTPConnection(); public synchronized native int setupTunDevice(String vpncScript, String IFName); public synchronized native int setupTunScript(String tunScript); public synchronized native int setupTunFD(int tunFD); public synchronized native int setupDTLS(int attemptPeriod); public synchronized native int mainloop(int reconnectTimeout, int reconnectInterval); /* connection settings */ public synchronized native int passphraseFromFSID(); public synchronized native void setCertExpiryWarning(int seconds); public synchronized native void setDPD(int minSeconds); public synchronized native int setProxyAuth(String methods); public synchronized native int setHTTPProxy(String proxy); public synchronized native void setXMLSHA1(String hash); public synchronized native void setHostname(String hostname); public synchronized native void setUrlpath(String urlpath); public synchronized native void setCAFile(String caFile); public synchronized native void setReportedOS(String os); public synchronized native void setMobileInfo(String mobilePlatformVersion, String mobileDeviceType, String mobileDeviceUniqueID); public synchronized native int setTokenMode(int tokenMode, String tokenString); public synchronized native void setCSDWrapper(String wrapper, String TMPDIR, String PATH); public synchronized native void setXMLPost(boolean isEnabled); public synchronized native void setClientCert(String cert, String sslKey); public synchronized native void setReqMTU(int mtu); public synchronized native void setPFS(boolean isEnabled); public synchronized native void setSystemTrust(boolean isEnabled); /* connection info */ public synchronized native String getHostname(); public synchronized native String getUrlpath(); public synchronized native int getPort(); public synchronized native String getCookie(); public synchronized native String getIFName(); public synchronized native IPInfo getIPInfo(); public synchronized native String getCSTPCipher(); public synchronized native String getDTLSCipher(); /* certificate info */ public synchronized native int checkPeerCertHash(String hash); public synchronized native String getPeerCertHash(); public synchronized native String getPeerCertDetails(); public synchronized native byte[] getPeerCertDER(); /* library info */ public static native String getVersion(); public static native boolean hasPKCS11Support(); public static native boolean hasTSSBlobSupport(); public static native boolean hasStokenSupport(); public static native boolean hasOATHSupport(); public static native boolean hasYubiOATHSupport(); /* public data structures */ public static class FormOpt { public int type; public String name; public String label; public long flags; public ArrayList choices = new ArrayList(); public String value; public Object userData; /* FormOpt internals (called from JNI) */ void addChoice(FormChoice fc) { this.choices.add(fc); } }; public static class FormChoice { public String name; public String label; public String authType; public String overrideName; public String overrideLabel; public Object userData; }; public static class AuthForm { public String banner; public String message; public String error; public String authID; public String method; public String action; public ArrayList opts = new ArrayList(); public FormOpt authgroupOpt; public int authgroupSelection; public Object userData; /* AuthForm internals (called from JNI) */ FormOpt addOpt(boolean isAuthgroup) { FormOpt fo = new FormOpt(); opts.add(fo); if (isAuthgroup) { authgroupOpt = fo; } return fo; } String getOptValue(String name) { for (FormOpt fo : opts) { if (fo.name.equals(name)) { return fo.value; } } return null; } } public static class IPInfo { public String addr; public String netmask; public String addr6; public String netmask6; public ArrayList DNS = new ArrayList(); public ArrayList NBNS = new ArrayList(); public String domain; public String proxyPac; public int MTU; public ArrayList splitDNS = new ArrayList(); public ArrayList splitIncludes = new ArrayList(); public ArrayList splitExcludes = new ArrayList(); public HashMap CSTPOptions = new HashMap(); public HashMap DTLSOptions = new HashMap(); public Object userData; /* IPInfo internals (called from JNI) */ void addDNS(String arg) { DNS.add(arg); } void addNBNS(String arg) { NBNS.add(arg); } void addSplitDNS(String arg) { splitDNS.add(arg); } void addSplitInclude(String arg) { splitIncludes.add(arg); } void addSplitExclude(String arg) { splitExcludes.add(arg); } void addCSTPOption(String key, String value) { CSTPOptions.put(key, value); } void addDTLSOption(String key, String value) { DTLSOptions.put(key, value); } } public static class VPNStats { public long txPkts; public long txBytes; public long rxPkts; public long rxBytes; public Object userData; }; /* Optional storage for caller's data */ public Object userData; /* LibOpenConnect internals */ long libctx; boolean canceled = false; Object asyncLock = new Object(); static synchronized native void globalInit(); static { globalInit(); } synchronized native long init(String useragent); synchronized native void free(); native void doCancel(); } openconnect-7.06/java/src/com/0000775000076400007640000000000012502026432013256 500000000000000openconnect-7.06/java/src/com/example/0000775000076400007640000000000012502026432014711 500000000000000openconnect-7.06/java/src/com/example/LibTest.java0000664000076400007640000001550112453040465017053 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ package com.example; import java.io.*; import java.util.*; import org.infradead.libopenconnect.LibOpenConnect; public final class LibTest { private static void die(String msg) { System.out.println(msg); System.exit(1); } private static String getline() { BufferedReader br = new BufferedReader(new InputStreamReader(System.in)); try { String line = br.readLine(); return line; } catch (IOException e) { die("\nI/O error"); } return ""; } private static class TestLib extends LibOpenConnect { @Override public int onValidatePeerCert(String msg) { System.out.println("cert warning: " + msg); System.out.println("cert hash: " + getPeerCertHash()); System.out.println("cert details: " + getPeerCertDetails()); System.out.println("Internal consistency check: " + (checkPeerCertHash(getPeerCertHash()) == 0 ? "OK" : "FAIL")); byte der[] = getPeerCertDER(); System.out.println("DER is " + der.length + " bytes long"); System.out.print("\nAccept this certificate? [n] "); String s = getline(); if (s.startsWith("y") || s.startsWith("Y")) { return 0; } else { return -1; } } @Override public int onWriteNewConfig(byte[] buf) { System.out.println("NEW_CONFIG: " + buf.length + " bytes"); return 0; } @Override public void onProtectSocket(int fd) { System.out.println("PROTECT_FD: " + fd); } private void printChoices(FormOpt fo) { for (FormChoice fc : fo.choices) { System.out.println("--->FormChoice: "); System.out.println(" +-name: " + fc.name); System.out.println(" +-label: " + fc.label); System.out.println(" +-authType: " + fc.authType); System.out.println(" +-overrideName: " + fc.overrideName); System.out.println(" +-overrideLabel: " + fc.overrideLabel); } } private String authgroup; private boolean lastFormEmpty; @Override public int onProcessAuthForm(LibOpenConnect.AuthForm authForm) { boolean empty = true; System.out.println("\nCSTP Cipher: " + getCSTPCipher()); System.out.println("\nAuthForm:"); System.out.println("+-banner: " + authForm.banner); System.out.println("+-message: " + authForm.message); System.out.println("+-error: " + authForm.error); System.out.println("+-authID: " + authForm.authID); System.out.println("+-method: " + authForm.method); System.out.println("+-action: " + authForm.action); if (authgroup == null && authForm.authgroupOpt != null) { FormOpt fo = authForm.authgroupOpt; printChoices(fo); System.out.print("\n" + fo.label + " "); String value = getline(); fo.value = value; authgroup = value; return OC_FORM_RESULT_NEWGROUP; } for (FormOpt fo : authForm.opts) { System.out.println("->FormOpt: "); System.out.println(" +-type: " + fo.type); System.out.println(" +-name: " + fo.name); System.out.println(" +-label: " + fo.label); System.out.println(" +-flags: " + fo.flags); if ((fo.flags & OC_FORM_OPT_IGNORE) != 0) { continue; } if (fo.type == OC_FORM_OPT_SELECT) { if (fo == authForm.authgroupOpt && authgroup != null) { fo.value = authgroup; continue; } printChoices(fo); } if (fo.type == OC_FORM_OPT_TEXT || fo.type == OC_FORM_OPT_PASSWORD || fo.type == OC_FORM_OPT_SELECT) { System.out.print("\n" + fo.label + " "); String value = getline(); fo.value = value; empty = false; } } System.out.println(""); if (lastFormEmpty && empty) { return OC_FORM_RESULT_CANCELLED; } lastFormEmpty = empty; return OC_FORM_RESULT_OK; } @Override public void onProgress(int level, String msg) { switch (level) { case LibOpenConnect.PRG_TRACE: System.out.print("TRACE: " + msg); break; case LibOpenConnect.PRG_DEBUG: System.out.print("DEBUG: " + msg); break; case LibOpenConnect.PRG_INFO: System.out.print("INFO: " + msg); break; case LibOpenConnect.PRG_ERR: System.out.print("ERROR: " + msg); break; } } } private static void printList(String pfx, List ss) { System.out.print(pfx + ":"); if (ss.size() == 0) { System.out.println(" "); return; } for (String s : ss) { System.out.print(" " + s); } System.out.println(""); } private static void printIPInfo(LibOpenConnect.IPInfo ip) { System.out.println("\nIPInfo:"); System.out.println("+-IPv4: " + ip.addr + " / " + ip.netmask); System.out.println("+-IPv6: " + ip.addr6 + " / " + ip.netmask6); System.out.println("+-Domain: " + ip.domain); System.out.println("+-proxy.pac: " + ip.proxyPac); System.out.println("+-MTU: " + ip.MTU); printList("+-DNS", ip.DNS); printList("+-NBNS", ip.NBNS); printList("+-Split DNS", ip.splitDNS); printList("+-Split includes", ip.splitIncludes); printList("+-Split excludes", ip.splitExcludes); System.out.println(""); } public static void main(String argv[]) { System.loadLibrary("openconnect-wrapper"); LibOpenConnect lib = new TestLib(); if (argv.length != 1) die("usage: LibTest "); System.out.println("OpenConnect version: " + lib.getVersion()); System.out.println(" PKCS=" + lib.hasPKCS11Support() + ", TSS=" + lib.hasTSSBlobSupport() + ", STOKEN=" + lib.hasStokenSupport() + ", OATH=" + lib.hasOATHSupport() + ", YUBIOATH=" + lib.hasYubiOATHSupport()); lib.setReportedOS("win"); lib.setLogLevel(lib.PRG_DEBUG); //lib.setTokenMode(LibOpenConnect.OC_TOKEN_MODE_STOKEN, null); if (new File("csd.sh").exists()) { lib.setCSDWrapper("csd.sh", null, null); } lib.parseURL(argv[0]); lib.setSystemTrust(true); int ret = lib.obtainCookie(); if (ret < 0) die("obtainCookie() returned error"); else if (ret > 0) die("Aborted by user"); String cookie = lib.getCookie(); if (cookie.length() > 40) { System.out.println("Cookie: " + cookie.substring(0, 40) + "..."); } else { System.out.println("Cookie: " + cookie); } if (lib.makeCSTPConnection() != 0) die("Error establishing VPN link"); printIPInfo(lib.getIPInfo()); if (lib.setupTunDevice("/etc/vpnc/vpnc-script", null) != 0 && lib.setupTunScript("ocproxy") != 0) die("Error setting up tunnel"); if (lib.setupDTLS(60) != 0) die("Error setting up DTLS"); lib.mainloop(300, LibOpenConnect.RECONNECT_INTERVAL_MIN); } } openconnect-7.06/java/README0000664000076400007640000000111412337053523012515 00000000000000Description: This directory contains a JNI interface layer for libopenconnect, and a demo program to show how it can be used. Build instructions: From the top level, run: ./configure --with-java make cd java ant sudo java -Djava.library.path=../.libs -jar dist/example.jar If ocproxy[1] is installed somewhere in your $PATH, this can be run as a non-root user and it should be pingable from across the VPN. Test/demo code is in src/com/example/ OpenConnect wrapper library is in src/org/infradead/libopenconnect/ [1] http://repo.or.cz/w/ocproxy.git openconnect-7.06/java/build.xml0000664000076400007640000000167112453040465013466 00000000000000 openconnect-7.06/gssapi.c0000664000076400007640000002467212474364513012372 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include "openconnect-internal.h" static void print_gss_err(struct openconnect_info *vpninfo, const char *where, gss_OID mech, OM_uint32 err_maj, OM_uint32 err_min) { OM_uint32 major, minor, msg_ctx = 0; gss_buffer_desc status; do { major = gss_display_status(&minor, err_maj, GSS_C_GSS_CODE, mech, &msg_ctx, &status); if (GSS_ERROR(major)) break; vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", where, (char *)status.value); gss_release_buffer(&minor, &status); } while (msg_ctx); msg_ctx = 0; do { major = gss_display_status(&minor, err_min, GSS_C_MECH_CODE, mech, &msg_ctx, &status); if (GSS_ERROR(major)) break; vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", where, (char *)status.value); gss_release_buffer(&minor, &status); } while (msg_ctx); } static const char spnego_OID[] = "\x2b\x06\x01\x05\x05\x02"; static const gss_OID_desc gss_mech_spnego = { 6, (void *)&spnego_OID }; static int gssapi_setup(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, const char *service, int proxy) { OM_uint32 major, minor; gss_buffer_desc token = GSS_C_EMPTY_BUFFER; char *name; if (asprintf(&name, "%s@%s", service, proxy ? vpninfo->proxy : vpninfo->hostname) == -1) return -ENOMEM; token.length = strlen(name); token.value = name; major = gss_import_name(&minor, &token, (gss_OID)GSS_C_NT_HOSTBASED_SERVICE, &auth_state->gss_target_name); free(name); if (GSS_ERROR(major)) { vpn_progress(vpninfo, PRG_ERR, _("Error importing GSSAPI name for authentication:\n")); print_gss_err(vpninfo, "gss_import_name()", GSS_C_NO_OID, major, minor); return -EIO; } return 0; } #define GSSAPI_CONTINUE 2 #define GSSAPI_COMPLETE 3 int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { OM_uint32 major, minor; gss_buffer_desc in = GSS_C_EMPTY_BUFFER; gss_buffer_desc out = GSS_C_EMPTY_BUFFER; gss_OID mech = GSS_C_NO_OID; if (auth_state->state == AUTH_AVAILABLE && gssapi_setup(vpninfo, auth_state, "HTTP", proxy)) { auth_state->state = AUTH_FAILED; return -EIO; } if (auth_state->challenge && *auth_state->challenge) { int len = -EINVAL; in.value = openconnect_base64_decode(&len, auth_state->challenge); if (!in.value) return len; in.length = len; } else if (auth_state->state > AUTH_AVAILABLE) { /* This indicates failure. We were trying, but got an empty 'Proxy-Authorization: Negotiate' header back from the server implying that we should start again... */ goto fail_gssapi; } major = gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &auth_state->gss_context, auth_state->gss_target_name, (gss_OID)&gss_mech_spnego, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, &in, &mech, &out, NULL, NULL); if (in.value) free(in.value); if (major == GSS_S_COMPLETE) auth_state->state = GSSAPI_COMPLETE; else if (major == GSS_S_CONTINUE_NEEDED) auth_state->state = GSSAPI_CONTINUE; else { vpn_progress(vpninfo, PRG_ERR, _("Error generating GSSAPI response:\n")); print_gss_err(vpninfo, "gss_init_sec_context()", mech, major, minor); fail_gssapi: auth_state->state = AUTH_FAILED; cleanup_gssapi_auth(vpninfo, auth_state); /* If we were *trying*, then -EAGAIN. Else -ENOENT to let another auth method try without having to reconnect first. */ return in.value ? -EAGAIN : -ENOENT; } buf_append(hdrbuf, "%sAuthorization: Negotiate ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, out.value, out.length); buf_append(hdrbuf, "\r\n"); gss_release_buffer(&minor, &out); if (!auth_state->challenge) { if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting GSSAPI authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting GSSAPI authentication to server '%s'\n"), vpninfo->hostname); } return 0; } /* auth_state is NULL when called from socks_gssapi_auth() */ void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { OM_uint32 minor; if (auth_state->gss_target_name != GSS_C_NO_NAME) gss_release_name(&minor, &auth_state->gss_target_name); if (auth_state->gss_context != GSS_C_NO_CONTEXT) gss_delete_sec_context(&minor, &auth_state->gss_context, GSS_C_NO_BUFFER); /* Shouldn't be necessary, but make sure... */ auth_state->gss_target_name = GSS_C_NO_NAME; auth_state->gss_context = GSS_C_NO_CONTEXT; } int socks_gssapi_auth(struct openconnect_info *vpninfo) { gss_buffer_desc in = GSS_C_EMPTY_BUFFER; gss_buffer_desc out = GSS_C_EMPTY_BUFFER; gss_OID mech = GSS_C_NO_OID; OM_uint32 major, minor; unsigned char *pktbuf; int i; int ret = -EIO; struct http_auth_state *auth_state = &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]; if (gssapi_setup(vpninfo, auth_state, "rcmd", 1)) return -EIO; pktbuf = malloc(65538); if (!pktbuf) return -ENOMEM; while (1) { major = gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &auth_state->gss_context, auth_state->gss_target_name, (gss_OID)&gss_mech_spnego, GSS_C_MUTUAL_FLAG | GSS_C_REPLAY_FLAG | GSS_C_DELEG_FLAG | GSS_C_SEQUENCE_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, &in, &mech, &out, NULL, NULL); in.value = NULL; if (major == GSS_S_COMPLETE) { /* If we still have a token to send, send it. */ if (!out.length) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); gss_release_buffer(&minor, &out); ret = 0; break; } } else if (major != GSS_S_CONTINUE_NEEDED) { print_gss_err(vpninfo, "gss_init_sec_context()", mech, major, minor); break; } if (out.length > 65535) { vpn_progress(vpninfo, PRG_ERR, _("GSSAPI token too large (%zd bytes)\n"), out.length); break; } pktbuf[0] = 1; /* ver */ pktbuf[1] = 1; /* mtyp */ store_be16(pktbuf + 2, out.length); memcpy(pktbuf + 4, out.value, out.length); free(out.value); vpn_progress(vpninfo, PRG_TRACE, _("Sending GSSAPI token of %zu bytes\n"), out.length + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out.length + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GSSAPI authentication token to proxy: %s\n"), strerror(-i)); break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI authentication token from proxy: %s\n"), strerror(-i)); break; } if (pktbuf[1] == 0xff) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server reported GSSAPI context failure\n")); break; } else if (pktbuf[1] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unknown GSSAPI status response (0x%02x) from SOCKS server\n"), pktbuf[1]); break; } in.length = load_be16(pktbuf + 2); in.value = pktbuf; if (!in.length) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in.length); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI authentication token from proxy: %s\n"), strerror(-i)); break; } vpn_progress(vpninfo, PRG_TRACE, _("Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n"), in.length, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); } if (!ret) { ret = -EIO; pktbuf[0] = 0; in.value = pktbuf; in.length = 1; major = gss_wrap(&minor, auth_state->gss_context, 0, GSS_C_QOP_DEFAULT, &in, NULL, &out); if (major != GSS_S_COMPLETE) { print_gss_err(vpninfo, "gss_wrap()", mech, major, minor); goto err; } pktbuf[0] = 1; pktbuf[1] = 2; store_be16(pktbuf + 2, out.length); memcpy(pktbuf + 4, out.value, out.length); free(out.value); vpn_progress(vpninfo, PRG_TRACE, _("Sending GSSAPI protection negotiation of %zu bytes\n"), out.length + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out.length + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GSSAPI protection response to proxy: %s\n"), strerror(-i)); goto err; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI protection response from proxy: %s\n"), strerror(-i)); goto err; } in.length = load_be16(pktbuf + 2); in.value = pktbuf; i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in.length); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI protection response from proxy: %s\n"), strerror(-i)); goto err; } vpn_progress(vpninfo, PRG_TRACE, _("Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n"), in.length, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); major = gss_unwrap(&minor, auth_state->gss_context, &in, &out, NULL, GSS_C_QOP_DEFAULT); if (major != GSS_S_COMPLETE) { print_gss_err(vpninfo, "gss_unwrap()", mech, major, minor); goto err; } if (out.length != 1) { vpn_progress(vpninfo, PRG_ERR, _("Invalid GSSAPI protection response from proxy (%zu bytes)\n"), out.length); gss_release_buffer(&minor, &out); goto err; } i = *(char *)out.value; gss_release_buffer(&minor, &out); if (i == 1) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message integrity, which is not supported\n")); goto err; } else if (i == 2) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message confidentiality, which is not supported\n")); goto err; } else if (i) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands protection unknown type 0x%02x\n"), (unsigned char)i); goto err; } ret = 0; } err: cleanup_gssapi_auth(vpninfo, NULL); free(pktbuf); return ret; } openconnect-7.06/cstp.c0000664000076400007640000010333612474364513012050 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_LZ4 #include #endif #include "openconnect-internal.h" /* * Data packets are encapsulated in the SSL stream as follows: * * 0000: Magic "STF\x1" * 0004: Big-endian 16-bit length (not including 8-byte header) * 0006: Byte packet type (see openconnect-internal.h) * 0008: data payload */ static const char data_hdr[8] = { 'S', 'T', 'F', 1, 0, 0, /* Length */ AC_PKT_DATA, /* Type */ 0 /* Unknown */ }; /* Strange initialisers here to work around GCC PR#10676 (which was * fixed in GCC 4.6 but it takes a while for some systems to catch * up. */ static const struct pkt keepalive_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_KEEPALIVE, 0 } } }; static const struct pkt dpd_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_DPD_OUT, 0 } } }; static const struct pkt dpd_resp_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_DPD_RESP, 0 } } }; /* Calculate MTU to request. Old servers simply use the X-CSTP-MTU: header, * which represents the tunnel MTU, while new servers do calculations on the * X-CSTP-Base-MTU: header which represents the cleartext MTU between client * and server. * * If possible, the legacy MTU value should be the TCP MSS less 5 bytes of * TLS and 8 bytes of CSTP overhead. We can get the MSS from either the * TCP_INFO or TCP_MAXSEG sockopts. * * The base MTU comes from the TCP_INFO sockopt under Linux, but I don't know * how to work it out on other systems. So leave it blank and do things the * legacy way there. Contributions welcome... * * If we don't even have TCP_MAXSEG, then default to sending a legacy MTU of * 1406 which is what we always used to do. */ static void calculate_mtu(struct openconnect_info *vpninfo, int *base_mtu, int *mtu) { *mtu = vpninfo->reqmtu; *base_mtu = vpninfo->basemtu; #if defined(__linux__) && defined(TCP_INFO) if (!*mtu || !*base_mtu) { struct tcp_info ti; socklen_t ti_size = sizeof(ti); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_INFO, &ti, &ti_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n"), ti.tcpi_rcv_mss, ti.tcpi_snd_mss, ti.tcpi_advmss, ti.tcpi_pmtu); if (!*base_mtu) *base_mtu = ti.tcpi_pmtu; if (!*mtu) { if (ti.tcpi_rcv_mss < ti.tcpi_snd_mss) *mtu = ti.tcpi_rcv_mss - 13; else *mtu = ti.tcpi_snd_mss - 13; } } } #endif #ifdef TCP_MAXSEG if (!*mtu) { int mss; socklen_t mss_size = sizeof(mss); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_MAXSEG, &mss, &mss_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_MAXSEG %d\n"), mss); *mtu = mss - 13; } } #endif if (!*mtu) { /* Default */ *mtu = 1406; } if (*mtu < 1280) *mtu = 1280; } /* For OpenSSL the configure script detects DTLS 1.2 support. * For GnuTLS just check for v3.2.0+ */ #if defined(DTLS_GNUTLS) && GNUTLS_VERSION_NUMBER >= 0x030200 #define HAVE_DTLS12 1 #endif #ifdef HAVE_DTLS12 # define DEFAULT_CIPHER_LIST "OC-DTLS1_2-AES256-GCM:OC-DTLS1_2-AES128-GCM:AES256-SHA:AES128-SHA:DES-CBC3-SHA:DES-CBC-SHA" #else # define DEFAULT_CIPHER_LIST "AES256-SHA:AES128-SHA:DES-CBC3-SHA:DES-CBC-SHA" #endif static void append_compr_types(struct oc_text_buf *buf, const char *proto, int avail) { if (avail) { char sep = ' '; buf_append(buf, "X-%s-Accept-Encoding:", proto); if (avail & COMPR_LZ4) { buf_append(buf, "%coc-lz4", sep); sep = ','; } if (avail & COMPR_LZS) { buf_append(buf, "%clzs", sep); sep = ','; } if (avail & COMPR_DEFLATE) { buf_append(buf, "%cdeflate", sep); sep = ','; } buf_append(buf, "\r\n"); } } static void append_mobile_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { if (vpninfo->mobile_platform_version) { buf_append(buf, "X-AnyConnect-Identifier-ClientVersion: %s\r\n", openconnect_version_str); buf_append(buf, "X-AnyConnect-Identifier-Platform: %s\r\n", vpninfo->platname); buf_append(buf, "X-AnyConnect-Identifier-PlatformVersion: %s\r\n", vpninfo->mobile_platform_version); buf_append(buf, "X-AnyConnect-Identifier-DeviceType: %s\r\n", vpninfo->mobile_device_type); buf_append(buf, "X-AnyConnect-Identifier-Device-UniqueID: %s\r\n", vpninfo->mobile_device_uniqueid); } } static int start_cstp_connection(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; char buf[65536]; int i; int dtls_secret_set = 0; int retried = 0, sessid_found = 0; struct oc_vpn_option **next_dtls_option = &vpninfo->dtls_options; struct oc_vpn_option **next_cstp_option = &vpninfo->cstp_options; struct oc_vpn_option *old_cstp_opts = vpninfo->cstp_options; struct oc_vpn_option *old_dtls_opts = vpninfo->dtls_options; const char *old_addr = vpninfo->ip_info.addr; const char *old_netmask = vpninfo->ip_info.netmask; const char *old_addr6 = vpninfo->ip_info.addr6; const char *old_netmask6 = vpninfo->ip_info.netmask6; int base_mtu, mtu; /* Clear old options which will be overwritten */ vpninfo->ip_info.addr = vpninfo->ip_info.netmask = NULL; vpninfo->ip_info.addr6 = vpninfo->ip_info.netmask6 = NULL; vpninfo->cstp_options = vpninfo->dtls_options = NULL; vpninfo->ip_info.domain = vpninfo->ip_info.proxy_pac = NULL; vpninfo->banner = NULL; for (i = 0; i < 3; i++) vpninfo->ip_info.dns[i] = vpninfo->ip_info.nbns[i] = NULL; free_split_routes(vpninfo); retry: calculate_mtu(vpninfo, &base_mtu, &mtu); reqbuf = buf_alloc(); buf_append(reqbuf, "CONNECT /CSCOSSLC/tunnel HTTP/1.1\r\n"); buf_append(reqbuf, "Host: %s\r\n", vpninfo->hostname); buf_append(reqbuf, "User-Agent: %s\r\n", vpninfo->useragent); buf_append(reqbuf, "Cookie: webvpn=%s\r\n", vpninfo->cookie); buf_append(reqbuf, "X-CSTP-Version: 1\r\n"); buf_append(reqbuf, "X-CSTP-Hostname: %s\r\n", vpninfo->localname); append_mobile_headers(vpninfo, reqbuf); append_compr_types(reqbuf, "CSTP", vpninfo->req_compr); if (base_mtu) buf_append(reqbuf, "X-CSTP-Base-MTU: %d\r\n", base_mtu); buf_append(reqbuf, "X-CSTP-MTU: %d\r\n", mtu); buf_append(reqbuf, "X-CSTP-Address-Type: %s\r\n", vpninfo->disable_ipv6 ? "IPv4" : "IPv6,IPv4"); if (!vpninfo->disable_ipv6) buf_append(reqbuf, "X-CSTP-Full-IPv6-Capability: true\r\n"); if (vpninfo->dtls_state != DTLS_DISABLED) { buf_append(reqbuf, "X-DTLS-Master-Secret: "); for (i = 0; i < sizeof(vpninfo->dtls_secret); i++) { buf_append(reqbuf, "%02X", vpninfo->dtls_secret[i]); dtls_secret_set |= vpninfo->dtls_secret[i]; } if (!dtls_secret_set) { vpn_progress(vpninfo, PRG_ERR, _("CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n")); buf_free(reqbuf); return -EINVAL; } buf_append(reqbuf, "\r\nX-DTLS-CipherSuite: %s\r\n", vpninfo->dtls_ciphers ? : DEFAULT_CIPHER_LIST); append_compr_types(reqbuf, "DTLS", vpninfo->req_compr & ~COMPR_DEFLATE); } buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating HTTPS CONNECT request\n")); return buf_free(reqbuf); } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); buf_free(reqbuf); /* FIXME: Use process_http_response() instead of reimplementing it. It has a header callback function, and can cope with CONNECT requests. */ if ((i = vpninfo->ssl_gets(vpninfo, buf, 65536)) < 0) { if (i == -EINTR) return i; vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTPS response\n")); if (!retried) { retried = 1; openconnect_close_https(vpninfo, 0); if (openconnect_open_https(vpninfo)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); return -EIO; } goto retry; } return -EINVAL; } if (strncmp(buf, "HTTP/1.1 200 ", 13)) { if (!strncmp(buf, "HTTP/1.1 503 ", 13)) { /* "Service Unavailable. Why? */ const char *reason = ""; while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { if (!strncmp(buf, "X-Reason: ", 10)) { reason = buf + 10; break; } } vpn_progress(vpninfo, PRG_ERR, _("VPN service unavailable; reason: %s\n"), reason); return -EINVAL; } vpn_progress(vpninfo, PRG_ERR, _("Got inappropriate HTTP CONNECT response: %s\n"), buf); if (!strncmp(buf, "HTTP/1.1 401 ", 13)) return -EPERM; return -EINVAL; } vpn_progress(vpninfo, PRG_INFO, _("Got CONNECT response: %s\n"), buf); /* We may have advertised it, but we only do it if the server agrees */ vpninfo->cstp_compr = vpninfo->dtls_compr = 0; mtu = 0; while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { struct oc_vpn_option *new_option; char *colon; if (i < 0) return i; colon = strchr(buf, ':'); if (!colon) continue; *colon = 0; colon++; if (*colon == ' ') colon++; if (strncmp(buf, "X-DTLS-", 7) && strncmp(buf, "X-CSTP-", 7)) continue; new_option = malloc(sizeof(*new_option)); if (!new_option) { vpn_progress(vpninfo, PRG_ERR, _("No memory for options\n")); return -ENOMEM; } new_option->option = strdup(buf); new_option->value = strdup(colon); new_option->next = NULL; if (!new_option->option || !new_option->value) { vpn_progress(vpninfo, PRG_ERR, _("No memory for options\n")); free(new_option->option); free(new_option->value); free(new_option); return -ENOMEM; } /* This contains the whole document, including the webvpn cookie. */ if (!strcasecmp(buf, "X-CSTP-Post-Auth-XML")) vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, _("")); else vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, colon); if (!strncmp(buf, "X-DTLS-", 7)) { *next_dtls_option = new_option; next_dtls_option = &new_option->next; if (!strcmp(buf + 7, "MTU")) { int dtlsmtu = atol(colon); if (dtlsmtu > mtu) mtu = dtlsmtu; } else if (!strcmp(buf + 7, "Session-ID")) { int dtls_sessid_changed = 0; if (strlen(colon) != 64) { vpn_progress(vpninfo, PRG_ERR, _("X-DTLS-Session-ID not 64 characters; is: \"%s\"\n"), colon); vpninfo->dtls_attempt_period = 0; return -EINVAL; } for (i = 0; i < 64; i += 2) { unsigned char c = unhex(colon + i); if (vpninfo->dtls_session_id[i/2] != c) { vpninfo->dtls_session_id[i/2] = c; dtls_sessid_changed = 1; } } sessid_found = 1; if (dtls_sessid_changed && vpninfo->dtls_state > DTLS_SLEEPING) vpninfo->dtls_need_reconnect = 1; } else if (!strcmp(buf + 7, "Content-Encoding")) { if (!strcmp(colon, "lzs")) vpninfo->dtls_compr = COMPR_LZS; else if (!strcmp(colon, "oc-lz4")) vpninfo->dtls_compr = COMPR_LZ4; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS-Content-Encoding %s\n"), colon); return -EINVAL; } } continue; } /* CSTP options... */ *next_cstp_option = new_option; next_cstp_option = &new_option->next; if (!strcmp(buf + 7, "Keepalive")) { vpninfo->ssl_times.keepalive = atol(colon); } else if (!strcmp(buf + 7, "DPD")) { int j = atol(colon); if (j && (!vpninfo->ssl_times.dpd || j < vpninfo->ssl_times.dpd)) vpninfo->ssl_times.dpd = j; } else if (!strcmp(buf + 7, "Rekey-Time")) { vpninfo->ssl_times.rekey = atol(colon); } else if (!strcmp(buf + 7, "Rekey-Method")) { if (!strcmp(colon, "new-tunnel")) vpninfo->ssl_times.rekey_method = REKEY_TUNNEL; else if (!strcmp(colon, "ssl")) vpninfo->ssl_times.rekey_method = REKEY_SSL; else vpninfo->ssl_times.rekey_method = REKEY_NONE; } else if (!strcmp(buf + 7, "Content-Encoding")) { if (!strcmp(colon, "deflate")) vpninfo->cstp_compr = COMPR_DEFLATE; else if (!strcmp(colon, "lzs")) vpninfo->cstp_compr = COMPR_LZS; else if (!strcmp(colon, "oc-lz4")) vpninfo->cstp_compr = COMPR_LZ4; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown CSTP-Content-Encoding %s\n"), colon); return -EINVAL; } } else if (!strcmp(buf + 7, "MTU")) { int cstpmtu = atol(colon); if (cstpmtu > mtu) mtu = cstpmtu; } else if (!strcmp(buf + 7, "DynDNS")) { if (!strcmp(colon, "true")) vpninfo->is_dyndns = 1; } else if (!strcmp(buf + 7, "Address-IP6")) { vpninfo->ip_info.netmask6 = new_option->value; } else if (!strcmp(buf + 7, "Address")) { if (strchr(new_option->value, ':')) { if (!vpninfo->disable_ipv6) vpninfo->ip_info.addr6 = new_option->value; } else vpninfo->ip_info.addr = new_option->value; } else if (!strcmp(buf + 7, "Netmask")) { if (strchr(new_option->value, ':')) { if (!vpninfo->disable_ipv6) vpninfo->ip_info.netmask6 = new_option->value; } else vpninfo->ip_info.netmask = new_option->value; } else if (!strcmp(buf + 7, "DNS")) { int j; for (j = 0; j < 3; j++) { if (!vpninfo->ip_info.dns[j]) { vpninfo->ip_info.dns[j] = new_option->value; break; } } } else if (!strcmp(buf + 7, "NBNS")) { int j; for (j = 0; j < 3; j++) { if (!vpninfo->ip_info.nbns[j]) { vpninfo->ip_info.nbns[j] = new_option->value; break; } } } else if (!strcmp(buf + 7, "Default-Domain")) { vpninfo->ip_info.domain = new_option->value; } else if (!strcmp(buf + 7, "MSIE-Proxy-PAC-URL")) { vpninfo->ip_info.proxy_pac = new_option->value; } else if (!strcmp(buf + 7, "Banner")) { vpninfo->banner = new_option->value; } else if (!strcmp(buf + 7, "Split-DNS")) { struct oc_split_include *dns = malloc(sizeof(*dns)); if (!dns) continue; dns->route = new_option->value; dns->next = vpninfo->ip_info.split_dns; vpninfo->ip_info.split_dns = dns; } else if (!strcmp(buf + 7, "Split-Include") || !strcmp(buf + 7, "Split-Include-IP6")) { struct oc_split_include *inc = malloc(sizeof(*inc)); if (!inc) continue; inc->route = new_option->value; inc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = inc; } else if (!strcmp(buf + 7, "Split-Exclude") || !strcmp(buf + 7, "Split-Exclude-IP6")) { struct oc_split_include *exc = malloc(sizeof(*exc)); if (!exc) continue; exc->route = new_option->value; exc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = exc; } } if (!mtu) { vpn_progress(vpninfo, PRG_ERR, _("No MTU received. Aborting\n")); return -EINVAL; } vpninfo->ip_info.mtu = mtu; if (!vpninfo->ip_info.addr && !vpninfo->ip_info.addr6) { vpn_progress(vpninfo, PRG_ERR, _("No IP address received. Aborting\n")); return -EINVAL; } if (mtu < 1280 && (vpninfo->ip_info.addr6 || vpninfo->ip_info.netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("IPv6 configuration received but MTU %d is too small.\n"), mtu); } if (old_addr) { if (strcmp(old_addr, vpninfo->ip_info.addr)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP address (%s != %s)\n"), vpninfo->ip_info.addr, old_addr); return -EINVAL; } } if (old_netmask) { if (strcmp(old_netmask, vpninfo->ip_info.netmask)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP netmask (%s != %s)\n"), vpninfo->ip_info.netmask, old_netmask); return -EINVAL; } } if (old_addr6) { if (strcmp(old_addr6, vpninfo->ip_info.addr6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 address (%s != %s)\n"), vpninfo->ip_info.addr6, old_addr6); return -EINVAL; } } if (old_netmask6) { if (strcmp(old_netmask6, vpninfo->ip_info.netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 netmask (%s != %s)\n"), vpninfo->ip_info.netmask6, old_netmask6); return -EINVAL; } } while (old_dtls_opts) { struct oc_vpn_option *tmp = old_dtls_opts; old_dtls_opts = old_dtls_opts->next; free(tmp->value); free(tmp->option); free(tmp); } while (old_cstp_opts) { struct oc_vpn_option *tmp = old_cstp_opts; old_cstp_opts = old_cstp_opts->next; free(tmp->value); free(tmp->option); free(tmp); } vpn_progress(vpninfo, PRG_INFO, _("CSTP connected. DPD %d, Keepalive %d\n"), vpninfo->ssl_times.dpd, vpninfo->ssl_times.keepalive); vpn_progress(vpninfo, PRG_DEBUG, _("CSTP Ciphersuite: %s\n"), openconnect_get_cstp_cipher(vpninfo)); monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); if (!sessid_found) vpninfo->dtls_attempt_period = 0; if (vpninfo->ssl_times.rekey <= 0) vpninfo->ssl_times.rekey_method = REKEY_NONE; vpninfo->ssl_times.last_rekey = vpninfo->ssl_times.last_rx = vpninfo->ssl_times.last_tx = time(NULL); return 0; } int cstp_connect(struct openconnect_info *vpninfo) { int ret; int deflate_bufsize = 0; int compr_type; /* This needs to be done before openconnect_setup_dtls() because it's sent with the CSTP CONNECT handshake. Even if we don't end up doing DTLS. */ if (vpninfo->dtls_state == DTLS_NOSECRET) { if (openconnect_random(vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret))) return -EINVAL; /* The application will later call openconnect_setup_dtls() */ vpninfo->dtls_state = DTLS_SECRET; } ret = openconnect_open_https(vpninfo); if (ret) return ret; ret = start_cstp_connection(vpninfo); if (ret) goto out; /* Allow for the theoretical possibility of having *different* * compression type for CSTP and DTLS. Although all we've seen * in practice is that one is enabled and the other isn't. */ compr_type = vpninfo->cstp_compr | vpninfo->dtls_compr; /* This will definitely be smaller than zlib's */ if (compr_type & (COMPR_LZS|COMPR_LZ4)) deflate_bufsize = vpninfo->ip_info.mtu; /* If deflate compression is enabled (which is CSTP-only), it needs its * context to be allocated. */ if (compr_type & COMPR_DEFLATE) { vpninfo->deflate_adler32 = 1; vpninfo->inflate_adler32 = 1; if (inflateInit2(&vpninfo->inflate_strm, -12) || deflateInit2(&vpninfo->deflate_strm, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY)) { vpn_progress(vpninfo, PRG_ERR, _("Compression setup failed\n")); ret = -ENOMEM; goto out; } /* Add four bytes for the adler32 */ deflate_bufsize = deflateBound(&vpninfo->deflate_strm, vpninfo->ip_info.mtu) + 4; } /* If *any* compression is enabled, we'll need a deflate_pkt to compress into */ if (deflate_bufsize > vpninfo->deflate_pkt_size) { free(vpninfo->deflate_pkt); vpninfo->deflate_pkt = malloc(sizeof(struct pkt) + deflate_bufsize); if (!vpninfo->deflate_pkt) { vpninfo->deflate_pkt_size = 0; vpn_progress(vpninfo, PRG_ERR, _("Allocation of deflate buffer failed\n")); ret = -ENOMEM; goto out; } vpninfo->deflate_pkt_size = deflate_bufsize; memset(vpninfo->deflate_pkt, 0, sizeof(struct pkt)); memcpy(vpninfo->deflate_pkt->cstp.hdr, data_hdr, 8); vpninfo->deflate_pkt->cstp.hdr[6] = AC_PKT_COMPRESSED; } out: if (ret < 0) openconnect_close_https(vpninfo, 0); return ret; } static int cstp_reconnect(struct openconnect_info *vpninfo) { if (vpninfo->cstp_compr == COMPR_DEFLATE) { /* Requeue the original packet that was deflated */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { vpninfo->current_ssl_pkt = NULL; queue_packet(&vpninfo->outgoing_queue, vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } inflateEnd(&vpninfo->inflate_strm); deflateEnd(&vpninfo->deflate_strm); } return ssl_reconnect(vpninfo); } int decompress_and_queue_packet(struct openconnect_info *vpninfo, int compr_type, unsigned char *buf, int len) { struct pkt *new = malloc(sizeof(struct pkt) + vpninfo->ip_info.mtu); const char *comprname = ""; if (!new) return -ENOMEM; new->next = NULL; if (compr_type == COMPR_DEFLATE) { uint32_t pkt_sum; comprname = "deflate"; vpninfo->inflate_strm.next_in = buf; vpninfo->inflate_strm.avail_in = len - 4; vpninfo->inflate_strm.next_out = new->data; vpninfo->inflate_strm.avail_out = vpninfo->ip_info.mtu; vpninfo->inflate_strm.total_out = 0; if (inflate(&vpninfo->inflate_strm, Z_SYNC_FLUSH)) { vpn_progress(vpninfo, PRG_ERR, _("inflate failed\n")); free(new); return -EINVAL; } new->len = vpninfo->inflate_strm.total_out; vpninfo->inflate_adler32 = adler32(vpninfo->inflate_adler32, new->data, new->len); pkt_sum = load_be32(buf + len - 4); if (vpninfo->inflate_adler32 != pkt_sum) vpninfo->quit_reason = "Compression (inflate) adler32 failure"; } else if (compr_type == COMPR_LZS) { comprname = "LZS"; new->len = lzs_decompress(new->data, vpninfo->ip_info.mtu, buf, len); if (new->len < 0) { len = new->len; if (len == 0) len = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("LZS decompression failed: %s\n"), strerror(-len)); free(new); return len; } #ifdef HAVE_LZ4 } else if (compr_type == COMPR_LZ4) { comprname = "LZ4"; new->len = LZ4_decompress_safe((void *)buf, (void *)new->data, len, vpninfo->ip_info.mtu); if (new->len <= 0) { len = new->len; if (len == 0) len = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("LZ4 decompression failed\n")); free(new); return len; } #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown compression type %d\n"), compr_type); free(new); return -EINVAL; } vpn_progress(vpninfo, PRG_TRACE, _("Received %s compressed data packet of %d bytes (was %d)\n"), comprname, new->len, len); queue_packet(&vpninfo->incoming_queue, new); return 0; } int compress_packet(struct openconnect_info *vpninfo, int compr_type, struct pkt *this) { int ret; if (compr_type == COMPR_DEFLATE) { vpninfo->deflate_strm.next_in = this->data; vpninfo->deflate_strm.avail_in = this->len; vpninfo->deflate_strm.next_out = (void *)vpninfo->deflate_pkt->data; vpninfo->deflate_strm.avail_out = vpninfo->deflate_pkt_size - 4; vpninfo->deflate_strm.total_out = 0; ret = deflate(&vpninfo->deflate_strm, Z_SYNC_FLUSH); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("deflate failed %d\n"), ret); /* Things are going to go horribly wrong if we try to do any more compression. Give up entirely. */ vpninfo->cstp_compr = 0; return -EIO; } /* Add ongoing adler32 to tail of compressed packet */ vpninfo->deflate_adler32 = adler32(vpninfo->deflate_adler32, this->data, this->len); store_be32(&vpninfo->deflate_pkt->data[vpninfo->deflate_strm.total_out], vpninfo->deflate_adler32); vpninfo->deflate_pkt->len = vpninfo->deflate_strm.total_out + 4; return 0; } else if (compr_type == COMPR_LZS) { if (this->len < 40) return -EFBIG; ret = lzs_compress(vpninfo->deflate_pkt->data, this->len, this->data, this->len); if (ret < 0) return ret; vpninfo->deflate_pkt->len = ret; return 0; #ifdef HAVE_LZ4 } else if (compr_type == COMPR_LZ4) { if (this->len < 40) return -EFBIG; ret = LZ4_compress_limitedOutput((void*)this->data, (void*)vpninfo->deflate_pkt->data, this->len, this->len); if (ret <= 0) { if (ret == 0) ret = -EFBIG; return ret; } vpninfo->deflate_pkt->len = ret; return 0; #endif } else return -EINVAL; return 0; } int cstp_mainloop(struct openconnect_info *vpninfo, int *timeout) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (1) { int len = vpninfo->deflate_pkt_size ? : vpninfo->ip_info.mtu; int payload_len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } len = ssl_nonblock_read(vpninfo, vpninfo->cstp_pkt->cstp.hdr, len + 8); if (!len) break; if (len < 0) goto do_reconnect; if (len < 8) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } if (vpninfo->cstp_pkt->cstp.hdr[0] != 'S' || vpninfo->cstp_pkt->cstp.hdr[1] != 'T' || vpninfo->cstp_pkt->cstp.hdr[2] != 'F' || vpninfo->cstp_pkt->cstp.hdr[3] != 1 || vpninfo->cstp_pkt->cstp.hdr[7]) goto unknown_pkt; payload_len = load_be16(vpninfo->cstp_pkt->cstp.hdr + 4); if (len != 8 + payload_len) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected packet length. SSL_read returned %d but packet is\n"), len); vpn_progress(vpninfo, PRG_ERR, "%02x %02x %02x %02x %02x %02x %02x %02x\n", vpninfo->cstp_pkt->cstp.hdr[0], vpninfo->cstp_pkt->cstp.hdr[1], vpninfo->cstp_pkt->cstp.hdr[2], vpninfo->cstp_pkt->cstp.hdr[3], vpninfo->cstp_pkt->cstp.hdr[4], vpninfo->cstp_pkt->cstp.hdr[5], vpninfo->cstp_pkt->cstp.hdr[6], vpninfo->cstp_pkt->cstp.hdr[7]); continue; } vpninfo->ssl_times.last_rx = time(NULL); switch (vpninfo->cstp_pkt->cstp.hdr[6]) { case AC_PKT_DPD_OUT: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP DPD request\n")); vpninfo->owe_ssl_dpd_response = 1; continue; case AC_PKT_DPD_RESP: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP DPD response\n")); continue; case AC_PKT_KEEPALIVE: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP Keepalive\n")); continue; case AC_PKT_DATA: vpn_progress(vpninfo, PRG_TRACE, _("Received uncompressed data packet of %d bytes\n"), payload_len); vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; work_done = 1; continue; case AC_PKT_DISCONN: { int i; if (payload_len >= 2) { for (i = 1; i < payload_len; i++) { if (!isprint(vpninfo->cstp_pkt->data[i])) vpninfo->cstp_pkt->data[i] = '.'; } vpninfo->cstp_pkt->data[payload_len] = 0; vpn_progress(vpninfo, PRG_ERR, _("Received server disconnect: %02x '%s'\n"), vpninfo->cstp_pkt->data[0], vpninfo->cstp_pkt->data + 1); } else { vpn_progress(vpninfo, PRG_ERR, _("Received server disconnect\n")); } vpninfo->quit_reason = "Server request"; return -EPIPE; } case AC_PKT_COMPRESSED: if (!vpninfo->cstp_compr) { vpn_progress(vpninfo, PRG_ERR, _("Compressed packet received in !deflate mode\n")); goto unknown_pkt; } decompress_and_queue_packet(vpninfo, vpninfo->cstp_compr, vpninfo->cstp_pkt->data, payload_len); work_done = 1; continue; case AC_PKT_TERM_SERVER: vpn_progress(vpninfo, PRG_ERR, _("received server terminate packet\n")); vpninfo->quit_reason = "Server request"; return -EPIPE; } unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n"), vpninfo->cstp_pkt->cstp.hdr[0], vpninfo->cstp_pkt->cstp.hdr[1], vpninfo->cstp_pkt->cstp.hdr[2], vpninfo->cstp_pkt->cstp.hdr[3], vpninfo->cstp_pkt->cstp.hdr[4], vpninfo->cstp_pkt->cstp.hdr[5], vpninfo->cstp_pkt->cstp.hdr[6], vpninfo->cstp_pkt->cstp.hdr[7]); vpninfo->quit_reason = "Unknown packet received"; return 1; } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, vpninfo->current_ssl_pkt->cstp.hdr, vpninfo->current_ssl_pkt->len + 8); if (ret < 0) goto do_reconnect; else if (!ret) { /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ ; } } if (ret != vpninfo->current_ssl_pkt->len + 8) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 8, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free(vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else if (vpninfo->current_ssl_pkt != &dpd_pkt && vpninfo->current_ssl_pkt != &dpd_resp_pkt && vpninfo->current_ssl_pkt != &keepalive_pkt) free(vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; if (vpninfo->cstp_compr) { ret = compress_packet(vpninfo, vpninfo->cstp_compr, this); if (ret < 0) goto uncompr; store_be16(vpninfo->deflate_pkt->cstp.hdr + 4, vpninfo->deflate_pkt->len); /* DTLS compression may have screwed with this */ vpninfo->deflate_pkt->cstp.hdr[7] = 0; vpn_progress(vpninfo, PRG_TRACE, _("Sending compressed data packet of %d bytes (was %d)\n"), vpninfo->deflate_pkt->len, this->len); vpninfo->pending_deflated_pkt = this; vpninfo->current_ssl_pkt = vpninfo->deflate_pkt; } else { uncompr: memcpy(this->cstp.hdr, data_hdr, 8); store_be16(this->cstp.hdr + 4, this->len); vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); vpninfo->current_ssl_pkt = this; } goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int cstp_bye(struct openconnect_info *vpninfo, const char *reason) { unsigned char *bye_pkt; int reason_len; /* already lost connection? */ #if defined(OPENCONNECT_OPENSSL) if (!vpninfo->https_ssl) return 0; #elif defined(OPENCONNECT_GNUTLS) if (!vpninfo->https_sess) return 0; #endif reason_len = strlen(reason); bye_pkt = malloc(reason_len + 9); if (!bye_pkt) return -ENOMEM; memcpy(bye_pkt, data_hdr, 8); memcpy(bye_pkt + 9, reason, reason_len); store_be16(bye_pkt + 4, reason_len + 1); bye_pkt[6] = AC_PKT_DISCONN; bye_pkt[8] = 0xb0; vpn_progress(vpninfo, PRG_INFO, _("Send BYE packet: %s\n"), reason); ssl_nonblock_write(vpninfo, bye_pkt, reason_len + 9); free(bye_pkt); return 0; } void cstp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { http_common_headers(vpninfo, buf); buf_append(buf, "Accept: */*\r\n"); buf_append(buf, "Accept-Encoding: identity\r\n"); buf_append(buf, "X-Transcend-Version: 1\r\n"); if (vpninfo->xmlpost) { buf_append(buf, "X-Aggregate-Auth: 1\r\n"); buf_append(buf, "X-AnyConnect-Platform: %s\r\n", vpninfo->platname); } if (vpninfo->try_http_auth) buf_append(buf, "X-Support-HTTP-Auth: true\r\n"); append_mobile_headers(vpninfo, buf); } openconnect-7.06/stoken.c0000664000076400007640000001715012474046503012374 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2012-2014 Kevin Cernekee * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include "openconnect-internal.h" #ifndef STOKEN_CHECK_VER #define STOKEN_CHECK_VER(x,y) 0 #endif int set_libstoken_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret; if (!vpninfo->stoken_ctx) { vpninfo->stoken_ctx = stoken_new(); if (!vpninfo->stoken_ctx) return -EIO; } ret = token_str ? stoken_import_string(vpninfo->stoken_ctx, token_str) : stoken_import_rcfile(vpninfo->stoken_ctx, NULL); if (ret) return ret; vpninfo->token_mode = OC_TOKEN_MODE_STOKEN; return 0; } /* * A SecurID token can be encrypted with a device ID, a password, both, * or neither. Gather the required information, decrypt the token, and * check the hash to make sure it is sane. * * Return value: * < 0, on error * = 0, on success * = 1, if the user cancelled the form submission * = 2, if the user left the entire form blank and clicked OK */ static int decrypt_stoken(struct openconnect_info *vpninfo) { struct oc_auth_form form; struct oc_form_opt opts[2], *opt = opts; char **devid = NULL, **pass = NULL; int ret = 0; memset(&form, 0, sizeof(form)); memset(&opts, 0, sizeof(opts)); form.opts = opts; form.message = _("Enter credentials to unlock software token."); if (stoken_devid_required(vpninfo->stoken_ctx)) { opt->type = OC_FORM_OPT_TEXT; opt->name = (char *)"devid"; opt->label = _("Device ID:"); devid = &opt->_value; opt++; } if (stoken_pass_required(vpninfo->stoken_ctx)) { opt->type = OC_FORM_OPT_PASSWORD; opt->name = (char *)"password"; opt->label = _("Password:"); pass = &opt->_value; opt++; } opts[0].next = opts[1].type ? &opts[1] : NULL; while (1) { nuke_opt_values(opts); if (!opts[0].type) { /* don't bug the user if there's nothing to enter */ ret = 0; } else { int some_empty = 0, all_empty = 1; /* < 0 for error; 1 if cancelled */ ret = process_auth_form(vpninfo, &form); if (ret) break; for (opt = opts; opt; opt = opt->next) { if (!opt->_value || !strlen(opt->_value)) some_empty = 1; else all_empty = 0; } if (all_empty) { vpn_progress(vpninfo, PRG_INFO, _("User bypassed soft token.\n")); ret = 2; break; } if (some_empty) { vpn_progress(vpninfo, PRG_INFO, _("All fields are required; try again.\n")); continue; } } ret = stoken_decrypt_seed(vpninfo->stoken_ctx, pass ? *pass : NULL, devid ? *devid : NULL); if (ret == -EIO || (ret && !devid && !pass)) { vpn_progress(vpninfo, PRG_ERR, _("General failure in libstoken.\n")); break; } else if (ret != 0) { vpn_progress(vpninfo, PRG_INFO, _("Incorrect device ID or password; try again.\n")); continue; } vpn_progress(vpninfo, PRG_DEBUG, _("Soft token init was successful.\n")); ret = 0; break; } nuke_opt_values(opts); return ret; } static void get_stoken_details(struct openconnect_info *vpninfo) { #if STOKEN_CHECK_VER(1,3) struct stoken_info *info = stoken_get_info(vpninfo->stoken_ctx); if (info) { vpninfo->stoken_concat_pin = !info->uses_pin; vpninfo->stoken_interval = info->interval; return; } #endif vpninfo->stoken_concat_pin = 0; vpninfo->stoken_interval = 60; } /* * Return value: * < 0, on error * = 0, on success * = 1, if the user cancelled the form submission */ static int request_stoken_pin(struct openconnect_info *vpninfo) { struct oc_auth_form form; struct oc_form_opt opts[1], *opt = opts; int ret = 0; if (!vpninfo->stoken_concat_pin && !stoken_pin_required(vpninfo->stoken_ctx)) return 0; memset(&form, 0, sizeof(form)); memset(&opts, 0, sizeof(opts)); form.opts = opts; form.message = _("Enter software token PIN."); opt->type = OC_FORM_OPT_PASSWORD; opt->name = (char *)"password"; opt->label = _("PIN:"); opt->flags = OC_FORM_OPT_NUMERIC; while (1) { char *pin; nuke_opt_values(opts); /* < 0 for error; 1 if cancelled */ ret = process_auth_form(vpninfo, &form); if (ret) break; pin = opt->_value; if (!pin || !strlen(pin)) { /* in some cases there really is no PIN */ if (vpninfo->stoken_concat_pin) return 0; vpn_progress(vpninfo, PRG_INFO, _("All fields are required; try again.\n")); continue; } if (!vpninfo->stoken_concat_pin && stoken_check_pin(vpninfo->stoken_ctx, pin) != 0) { vpn_progress(vpninfo, PRG_INFO, _("Invalid PIN format; try again.\n")); continue; } free(vpninfo->stoken_pin); vpninfo->stoken_pin = strdup(pin); if (!vpninfo->stoken_pin) ret = -ENOMEM; break; } nuke_opt_values(opts); return ret; } /* * If the user clicks OK on the devid/password prompt without entering * any data, we will continue connecting but bypass soft token generation * for the duration of this "obtain_cookie" session. (They might not even * have the credentials that we're prompting for.) * * If the user clicks Cancel, we will abort the connection. * * Return value: * < 0, on error * = 0, on success (or if the user bypassed soft token init) * = 1, if the user cancelled the form submission */ int prepare_stoken(struct openconnect_info *vpninfo) { int ret; vpninfo->token_tries = 0; vpninfo->token_bypassed = 0; ret = decrypt_stoken(vpninfo); if (ret == 2) { vpninfo->token_bypassed = 1; return 0; } else if (ret != 0) return ret; get_stoken_details(vpninfo); return request_stoken_pin(vpninfo); } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1 && form->message && strcasestr(form->message, "next tokencode")) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += vpninfo->stoken_interval; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } int do_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[STOKEN_MAX_TOKENCODE + 1]; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating RSA token code\n")); /* This doesn't normally fail */ if (stoken_compute_tokencode(vpninfo->stoken_ctx, vpninfo->token_time, vpninfo->stoken_pin, tokencode) < 0) { vpn_progress(vpninfo, PRG_ERR, _("General failure in libstoken.\n")); return -EIO; } vpninfo->token_tries++; if (asprintf(&opt->_value, "%s%s", (vpninfo->stoken_concat_pin && vpninfo->stoken_pin) ? vpninfo->stoken_pin : "", tokencode) < 0) return -ENOMEM; return 0; } openconnect-7.06/openconnect.pc.in0000664000076400007640000000055312502026141014154 00000000000000prefix=@prefix@ exec_prefix=@exec_prefix@ libdir=@libdir@ includedir=@includedir@ Name: openconnect Description: OpenConnect VPN client Version: @VERSION@ Requires.private: @LIBPROXY_PC@ @ZLIB_PC@ @SSL_DTLS_PC@ @P11KIT_PC@ @LIBSTOKEN_PC@ @LIBPSKC_PC@ @LIBPCSCLITE_PC@ libxml-2.0 Libs: -L${libdir} -lopenconnect Libs.private: @INTL_LIBS@ Cflags: -I${includedir} openconnect-7.06/www/0000775000076400007640000000000012502026432011614 500000000000000openconnect-7.06/www/packages.xml0000664000076400007640000000440612337053524014050 00000000000000

Distribution Status

Updates to the information below are welcomed, especially for distributions (including *BSD etc.) which aren't yet mentioned.

  • Fedora

    Both openconnect and NetworkManager-openconnect packages are included in Fedora and kept up to date. Fedora's OpenSSL packages include all required patches for DTLS compatibility.

  • Debian

    The openconnect and network-manager-openconnect packages are included in Debian.
    Debian's OpenSSL packages include all required patches for DTLS compatibility.

  • Ubuntu

    Reasonably current versions of the required packages are finally included in Ubuntu 10.04 "Lucid". Older releases still have out of date OpenSSL and out of date OpenConnect which doesn't work around the latest Cisco bugs.

  • OpenSuSE

    OpenSuSE 12.1 should finally include openconnect and NetworkManager-openconnect packages, which are absent from older releases.

  • Gentoo

    Gentoo Portage contains packages for both openconnect and networkmanager-openconnect.

  • NetBSD, DragonFly BSD, etc. (pkgsrc)

    There are somewhat out of date packages for vpnc-script and openconnect in the pkgsrc-wip repository (pkgsrc-wip.sf.net).

  • FreeBSD

    An openconnect port is available for FreeBSD.

  • OpenBSD

    The OpenBSD ports collection contains an openconnect package.
 openconnect-7.06/www/building.xml0000664000076400007640000001254212474046503014070 00000000000000

Building OpenConnect

Unless you need to test the very latest version, you should not need to build OpenConnect for yourself. Your operating system should have a prepackaged version which you can install; if it does not then file a bug or enhancement request asking for one.

Requirements

To build OpenConnect from its source code, you will need the following libraries and tools installed:

  • libxml2
  • zlib
  • Either OpenSSL or GnuTLS
  • pkg-config
And optionally also:
  • p11-kit (for PKCS#11 support)
  • libp11 (also needed for PKCS#11 support if using OpenSSL)
  • libproxy
  • trousers (for TPM support if using GnuTLS)
  • libstoken (for SecurID software token support)
  • libpskc (for RFC6030 PSKC file storage of HOTP/TOTP keys)
  • libpcsclite (for Yubikey hardware HOTP/HOTP support)

OpenConnect supports the use of HTTP and SOCKS proxies to connect to the AnyConnect service, even without using libproxy. You may wish to use libproxy if you want OpenConnect to automatically use the appropriate proxies for your environment, without having to manually give it the --proxy argument on the command line.

Install vpnc-script

Since version 3.17, The vpnc-script that OpenConnect uses to configure the network is no longer optional, so it needs to be told at compile time where to find that script.

The configure script will check whether /etc/vpnc/vpnc-script exists and can be executed, and will fail if not. If you don't already have a copy then you should install one. It might be in a separate vpnc-script package for your operating system, it might be part of their vpnc package, and there's one linked from from the vpnc-script page, if you need to download it manually. Install it as /etc/vpnc/vpnc-script.

If you do not want to use the standard location, you can configure OpenConnect to use a different location by default. When running the ./configure script in the instructions below, you can append an argument such as --with-vpnc-script=/where/I/put/vpnc-script to its command line. Note that the path you give will not be checked; the script doesn't have to be present when you build OpenConnect. But of course OpenConnect won't work very well without it, so you'll still have to install it later.

Building OpenConnect

If you checked the source code out from git rather from a release tarball then run this command first to prepare the build system:

  • ./autogen.sh

Then to build it, run the following commands:

  • ./configure
  • make
  • make install (If you want to install it)

Note that OpenConnect will attempt to use the GnuTLS library by default. If you want it to use OpenSSL instead, then add --without-gnutls to the ./configure command above.

If compilation fails, please make sure you have a working compiler and the development packages for all the required libraries mentioned above. If it still doesn't build, please send the full output in a plain-text mail to the mailing list.

TUN/TAP driver

Mac OS X users with OS X 10.6 or older, or using OpenConnect 6.00 or older, will also need to install the Mac OS X tun/tap driver. Newer versions of OpenConnect will use the utun device on OS X which does not require additional kernel modules to be installed.

Solaris/OpenIndiana users will need the Solaris TAP driver. Note that for IPv6 support, the Solaris tun/tap driver from 16th Nov 2009 or newer is required.

On Windows, version 9.9 or later of the TAP-Windows driver from the OpenVPN project is required. The easiest way to install the driver is to use the Windows installer from the Community Downloads page. The 64-bit installer contains signed drivers suitable for use on Windows 7 and later versions.

 openconnect-7.06/www/juniper.xml0000664000076400007640000001140012474364513013743 00000000000000

Juniper SSL VPN / Pulse Connect Secure

Support for Juniper's Network Connect protocol was added to OpenConnect in early 2015, for the 7.05 release. It is still experimental, and is quite likely to be deprecated in favour of the newer Junos Pulse protocol.

For the time being, Juniper mode is requested by adding --juniper to the command line: 

  openconnect --juniper vpn.example.com

Network Connect works very similarly to AnyConnect — initial authentication is made over HTTP, resulting in an HTTP cookie which is used to make the actual VPN connection. That connection is also made over HTTP, and the IP address and routing information are provided by the VPN server. The client then attempts to bring up a UDP transport, which in the case of Juniper is ESP.

Authentication

The authentication stage with Juniper is what is expected to cause most problems. Unlike AnyConnect which has a relatively simple XML schema for interacting with the user, the Juniper VPN expects a full web browser environment and uses HTML forms with JavaScript and even full-blown Java support.

The common case is relatively simple, and OpenConnect supports the common forms defined by the Juniper-provided templates. However, administrators have the facility to put arbitrary HTML pages into the login sequence and full compatibility may require actually using a web browser to log in — ironically, since much of the reason users have been asking for OpenConnect to support Juniper is because they didn't want to have to use a web browser.

For NetworkManager we may end up putting a full HTML renderer into the GUI authentication dialog, while the command line client continues to parse the common login forms and make a best attempt at handling anything non-standard.

External authentication

There are a number of perl and python scripts which handle authentication to Juniper servers to bypass the web browser. One such script has been ported to invoke OpenConnect instead of Juniper's own ncsvc client and can be found here.

Any of these scripts which authenticate and obtain a DSID cookie representing a VPN session can be used with OpenConnect. Just pass the cookie to OpenConnect with its -C option, for example: 

  openconnect --juniper -C "DSID=foobar12345" vpn.example.com

Host Checker (tncc.jar)

Many sites require a Java applet to run certain tests as a precondition of authentication. This works by sending a DSPREAUTH cookie to the client which is attempting to authenticate, and the Java code in tncc.jar then runs and communicates with the server, handing back a new value for the DSPREAUTH cookie to be used when autnentication continues.

OpenConnect supports this with a little assistance. There is a python script tncc-wrapper.py in the git repository which can be used along with the tncc-preload.so from this repository. It may also be necessary to pass a Mozilla-compatible user agent string: 

  ./openconnect --juniper --useragent  'Mozilla/5.0 (Linux) Firefox' --csd-wrapper=./tncc-wrapper.py vpn.example.com

Connectivity

Once authentication is complete, the VPN connection can be established. At the time of writing much of the configuration for Legacy IP addressing and routes is understood and implemented. IPv6 is not yet implemented, and test reports from someone with an IPv6-capable server would be greatly appreciated.

The data transport is functional both over the HTTPS session and also over ESP. Servers with compression enabled should also be supported, as LZO decompression is working and although we lack compression support it appears acceptable to simply send packets uncompressed.

At the time of writing, keepalive for the ESP connection has been implemented and extremely lightly tested, while it isn't yet known if the VPN supports keepalive on the HTTPS connection. Reconnection of both the HTTPS and ESP links is implemented. The current implementation is basically usable and is definitely ready for some more widespread testing.

 openconnect-7.06/www/index.xml0000664000076400007640000000414212474046503013377 00000000000000

OpenConnect

OpenConnect is an SSL VPN client initially created to support Cisco's AnyConnect SSL VPN. It has since been ported to support the Juniper SSL VPN which is now known as Pulse Connect Secure.

OpenConnect is released under the GNU Lesser Public License, version 2.1.

Like vpnc, OpenConnect is not officially supported by, or associated in any way with, Cisco Systems, Juniper Networks or Pulse Secure. It just happens to interoperate with their equipment.

Development of OpenConnect was started after a trial of the Cisco client under Linux found it to have many deficiencies:

  • Inability to use SSL certificates from a TPM or PKCS#11 smartcard, or even use a passphrase.
  • Lack of support for Linux platforms other than i386.
  • Lack of integration with NetworkManager on the Linux desktop.
  • Lack of proper (RPM/DEB) packaging for Linux distributions.
  • "Stealth" use of libraries with dlopen(), even using the development-only symlinks such as libz.so — making it hard to properly discover the dependencies which proper packaging would have expressed
  • Tempfile races allowing unprivileged users to trick it into overwriting arbitrary files, as root.
  • Unable to run as an unprivileged user, which would have reduced the severity of the above bug.
  • Inability to audit the source code for further such "Security 101" bugs.

Naturally, OpenConnect addresses all of the above issues, and more.

openconnect-7.06/www/mail.xml0000664000076400007640000000632412474046503013216 00000000000000

Getting help

If you have problems building or using OpenConnect, or other questions or comments, please send email to the mailing list described below. You don't need to be subscribed to the list; you only need to click on the email address below, and send a plain text (not HTML) mail.

A lot of people seem to post questions about OpenConnect on random web forums, where they are unlikely to get a quick or knowledgeable response. It's almost as if they don't want a coherent response, which is strange. Please, don't do that.

Mailing list

There is a mailing list at openconnect-devel@lists.infradead.org. The list does not accept HTML email, so please make sure you post as plain text only.

As mentioned above, you do not have to be subscribed to the list in order to post a question.

It's usually best to read the recent messages in the archive before posting a question that is likely to have been asked before.

If you do want to subscribe to the mailing list, you can do so from the Mailman admin page.

SECURITY WARNING:
If you are posting debugging output from openconnect to the mailing list, do not include a line which looks like this:
Set-Cookie: webvpn=835278264@921600@1221512527@6B9EC24DEB2F59E242F75B424D42F223D0912984;PATH=/
That HTTP cookie is all that's needed to grant access to the VPN session you just logged in to — it's almost as bad as giving your password away. Version 2.26 or later of OpenConnect will automatically filter this out of the debugging output for you.

For Juniper VPN, the equivalent is a DSID cookie, which is not yet filtered out of any output (the authentication support in Juniper is still very new).

Internet Relay Chat (IRC)

There is also an IRC channel #openconnect on the OFTC network. You can access it via the OFTC webchat if you don't have an IRC client.

Please note that the people who can help you may be busy, and may be in a different time zone to you, and often indeed in a different time zone from one day to the next. If nobody is answering you immediately, please be patient — state your problem or question concisely and completely, and remain on the channel. You may well find that by the time you look back again, even if it's the next day, you have an answer or a fix has been made.

If you simply look in, say "hello?" a few times in the middle of the night, and then disappear again, that's not a lot more useful than posting to a randomly-chosen web forum as discussed above.

 openconnect-7.06/www/html.py0000775000076400007640000001157712337053524013100 00000000000000#!/usr/bin/env python # # Simple XML to HTML converter. # # (C) 2005 Thomas Gleixner # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2 as # published by the Free Software Foundation. # import os import sys import getopt import pprint import shutil import string import smtplib import socket import time import xml.sax import commands import codecs reload(sys) sys.setdefaultencoding('utf-8') lookupdir = '' # Print the usage information def usage(): print "USAGE:" print "html.py <-f -h file.xml>" print " -d DIR use DIR as base directory for opening files" print " -f write output to file.html (default is stdout)" print " -h help" return # Headerfields header = [ "Mime-Version: 1.0\r\n", "Content-Type: text/plain; charset=utf-8\r\n", "Content-Transfer-Encoding: 8bit\r\n", "Content-Disposition: inline\r\n", ] html = [] replace = [] fdout = sys.stdout def replaceVars(line): cnt = 0 while cnt < len(replace): if line.find(replace[cnt]) >= 0: line = line.replace(replace[cnt], replace[cnt+1]) cnt = cnt + 2 return line def writeHtml(line): fdout.write(replaceVars(line)) def startMenu(level): writeHtml("
\n" %(level)) def placeMenu(topic, link, mode): topic = replaceVars(topic) mode = replaceVars(mode) if mode == 'text': writeHtml("

%s

\n" %(topic)) return if mode == 'selected': writeHtml("\n") else: writeHtml("\n") writeHtml("%s\n" %(link, topic)) writeHtml("\n") # configuration parser class docHandler(xml.sax.ContentHandler): def __init__(self): self.content = "" return def startElement(self, name, attrs): self.element = name if len(self.content) > 0: writeHtml(self.content) self.content = "" if name == "PAGE": return elif name == "INCLUDE": try: fd = open(attrs.get('file'), 'r') except: fd = open(lookupdir + attrs.get('file'), 'r') lines = fd.readlines() fd.close() for line in lines: writeHtml(line) elif name == "PARSE": parseConfig(attrs.get('file')) elif name == 'STARTMENU': startMenu(attrs.get('level')) elif name == 'MENU': placeMenu(attrs.get('topic'), attrs.get('link'), attrs.get('mode')) elif name == 'ENDMENU': writeHtml("
\n") elif name == 'VAR': match = attrs.get('match') repl = attrs.get('replace') idx = len(replace) replace[idx:] = [match] idx = len(replace) replace[idx:] = [repl] elif name == "br": writeHtml(" 0: names = attrs.getNames() for name in names: writeHtml(" " + name + "=\"" + attrs.get(name) + "\"") writeHtml(" />") else: writeHtml("<" + name) if attrs.getLength > 0: names = attrs.getNames() for name in names: writeHtml(" " + name + "=\"" + attrs.get(name) + "\"") writeHtml(">") def characters(self, ch): self.content = self.content + ch def endElement(self, name): if name == "PAGE": return elif name == 'INCLUDE': return elif name == 'PARSE': return elif name == 'PAGE': return elif name == 'STARTMENU': return elif name == 'ENDMENU': return elif name == 'MENU': return elif name == 'VAR': return elif name == 'br': return if len(self.content) > 0: writeHtml(self.content) self.content = "" writeHtml("") # error handler class errHandler(xml.sax.ErrorHandler): def __init__(self): return def error(self, exception): sys.stderr.write("%s\n" % exception) def fatalError(self, exception): sys.stderr.write("Fatal error while parsing configuration\n") sys.stderr.write("%s\n" % exception) sys.exit(1) # parse the configuration file def parseConfig(file): # handlers dh = docHandler() eh = errHandler() # Create an XML parser parser = xml.sax.make_parser() # Set the handlers parser.setContentHandler(dh) parser.setErrorHandler(eh) try: fd = open(file, 'r') except: fd = open(lookupdir + file, 'r') # Parse the file parser.parse(fd) fd.close() # Here we go # Parse the commandline writefile = 0 try: (options, arguments) = getopt.getopt(sys.argv[1:],'fhd:') except getopt.GetoptError, ex: print print "ERROR:" print ex.msg usage() sys.exit(1) pass for option, value in options: if option == '-d': lookupdir = value + '/' if option == '-f': writefile = 1 elif option == '-h': usage() sys.exit(0) pass pass # Handle special case VAR_ORIGIN idx = len(replace) replace[idx:] = ['VAR_ORIGIN'] idx = len(replace) replace[idx:] = [lookupdir] if not arguments: print "No source file specified" usage() sys.exit(1) pass if writefile > 0: fname = arguments[0].split('.')[0] fname = fname + ".html" fdout = codecs.open(fname, 'w', 'utf-8') parseConfig(arguments[0]) if writefile > 0: fdout.close() openconnect-7.06/www/manual.xml0000664000076400007640000000052112337053524013541 00000000000000 openconnect-7.06/www/inc/0000775000076400007640000000000012502026432012365 500000000000000openconnect-7.06/www/inc/header.tmpl0000664000076400007640000000152412474046503014446 00000000000000 OpenConnect VPN client.
openconnect-7.06/www/inc/Makefile.in0000664000076400007640000003771512502026423014367 00000000000000# Makefile.in generated by automake 1.14.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2013 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = test -n '$(MAKEFILE_LIST)' && test -n '$(MAKELEVEL)' am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/inc DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/Makefile.am \ $(dist_tmpldata_DATA) ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(tmpldatadir)" DATA = $(dist_tmpldata_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DTLS_SSL_CFLAGS = @DTLS_SSL_CFLAGS@ DTLS_SSL_LIBS = @DTLS_SSL_LIBS@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_DTLS_PC = @SSL_DTLS_PC@ SSL_LIBS = @SSL_LIBS@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ tmpldatadir = $(htmldir)/inc dist_tmpldata_DATA = $(srcdir)/*.tmpl all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/inc/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/inc/Makefile .PRECIOUS: Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_tmpldataDATA: $(dist_tmpldata_DATA) @$(NORMAL_INSTALL) @list='$(dist_tmpldata_DATA)'; test -n "$(tmpldatadir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(tmpldatadir)'"; \ $(MKDIR_P) "$(DESTDIR)$(tmpldatadir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(tmpldatadir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(tmpldatadir)" || exit $$?; \ done uninstall-dist_tmpldataDATA: @$(NORMAL_UNINSTALL) @list='$(dist_tmpldata_DATA)'; test -n "$(tmpldatadir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(tmpldatadir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(tmpldatadir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_tmpldataDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_tmpldataDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_tmpldataDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_tmpldataDATA # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-7.06/www/inc/content.tmpl0000664000076400007640000000006711641071556014672 00000000000000
openconnect-7.06/www/inc/footer.tmpl0000664000076400007640000000005112337053524014505 00000000000000
openconnect-7.06/www/inc/Makefile.am0000664000076400007640000000010411741401073014336 00000000000000tmpldatadir = $(htmldir)/inc dist_tmpldata_DATA = $(srcdir)/*.tmpl openconnect-7.06/www/anyconnect.xml0000664000076400007640000000572612474046503014442 00000000000000

Cisco AnyConnect

How the VPN works

The VPN is extremely simple, based almost entirely on the standard HTTPS and DTLS protocols. You connect to the secure web server, authenticate using certificates and/or arbitrary web forms, and you are rewarded with a standard HTTP cookie.

You then use this cookie in an HTTP CONNECT request, and can then pass traffic over that connection. IP addresses and routing information are passed back and forth in the headers of that CONNECT request.

Since TCP over TCP is very suboptimal, the VPN also attempts to use UDP datagrams, and will only actually pass traffic over the HTTPS connection if that fails. The UDP connectivity is done using Datagram TLS, which is supported by OpenSSL.

DTLS compatibility

Note: DTLS is optional and not required for basic connectivity, as explained above.

Unfortunately, Cisco used an old version of OpenSSL for their server, which predates the official RFC and has a few differences in the implementation of DTLS.

OpenSSL

Compatibility support for their "speshul" version of the protocol is in the 0.9.8m and later releases of OpenSSL (and 1.0.0-beta2 and later).

NOTE: OpenSSL 1.0.0k, 1.0.1d and 1.0.1e have introduced bugs which break this compatibility. See the thread on the mailing list, which has patches for each.

If you are using an older version of OpenSSL which predates the compatibility, you will need to apply this patch from OpenSSL CVS:

For versions older than 0.9.8j, some generic DTLS bug fixes are also required: The username/password for OpenSSL RT is 'guest/guest'

GnuTLS

Support for Cisco's version of DTLS was included in GnuTLS from 3.0.21 onwards.

 openconnect-7.06/www/connecting.xml0000664000076400007640000000345512337053524014424 00000000000000

Connecting to the VPN

Once you have installed OpenConnect and checked that you have a vpnc-script which will set up the routing and DNS for it, using OpenConnect is very simple. As root, run the following command:

  • openconnect https://vpn.mycompany.com/

That should be it, if you have a password-based login. If you use certificates, you'll need to tell OpenConnect where to find the certificate with the -c option.

You can provide the certificate either as the file name of a PKCS#12 or PEM file, or if OpenConnect is built against a suitable version of GnuTLS you can provide the certificate in the form of a PKCS#11 URL:

  • openconnect -c certificate.pem https://vpn.mycompany.com/
  • openconnect -c pkcs11:id=X_%b04%c3%85%d4u%e7%0b%10v%08%c9%0dA%8f%3bl%df https://vpn.mycompany.com/

You might need to steal the certificate from your Windows certificate store using a tool like Jailbreak.

To start with, you can ignore anything you see in the technical page about needing to patch OpenSSL or GnuTLS so that DTLS works — you can survive without it, although DTLS will make your connections much faster if you're experiencing packet loss between you and the VPN server. But you can worry about that later.

openconnect-7.06/www/charset.xml0000664000076400007640000000360512453040465013722 00000000000000

Character set handling

OpenConnect development started in 2008 on a modern Linux box, and as such the character set handling was extremely simplistic. It boiled down to the simple but reasonable assumption that "everything is UTF-8, all of the time". This was the case up to and including the OpenConnect 6.00 release in July 2014.

Since its inception, however, OpenConnect has been ported to various less progressive POSIX-based systems and also to Windows, which has its own particular style of charset insanity. It was therefore necessary to implement some explicit handling for character set conversion.

The design of this character set handling is that the internal libopenconnect library still handles every string as UTF-8. All input and output of the library remains UTF-8, and all callers of the library are expected to handle them appropriately. For the GNOME and KDE GUI tools, this should come naturally as all strings are expected to be UTF-8 there. For the command-line tool openconnect itself, implemented in main.c, this means that character set conversion is done on all terminal input and output, and all arguments provided on the command line.

Where it is necessary to open files or interact with the system in other ways using the legacy character set, libopenconnect will do the required conversion transparently. On POSIX systems with legacy non-UTF-8 character sets, it will use iconv to convert, while on Windows it will convert to UTF-16 and use the wide character (so-called "Unicode") APIs instead.

 openconnect-7.06/www/platforms.xml0000664000076400007640000000374312337053524014304 00000000000000

Supported Platforms

OpenConnect is known to work, with both IPv6 and Legacy IP, on Linux (including Android), OpenBSD, FreeBSD (including Debian GNU/kFreeBSD), NetBSD, DragonFly BSD, OpenIndiana/OpenSolaris, Solaris 10/11, Windows and Mac OS X platforms, and should be trivially portable to any other platform supporting TUN/TAP devices and on which GnuTLS or OpenSSL runs.

For Solaris support, and for IPv6 on any platform, the vpnc-script shipped with vpnc itself (as of v0.5.3) is not sufficient. It is necessary to use the script from the vpnc-scripts repository instead. That repository also contains an updated version of vpnc-script-win.js which is required for correct IPv6 configuration under Windows.

OpenConnect is known to work on at least i386, x86_64, PowerPC and MIPS processors, and should not have issues with portability to other CPUs.

Note that 'Cisco Secure Desktop' support may require the ability to run Linux/i386 binaries; see the CSD page. CSD is not yet supported under Windows.

New Ports

Platform support for new UNIX systems is relatively simple to add — most of the difference is in the TUN/TAP device handling, and the major variants of that are already supported.

OpenConnect builds for Windows using MinGW in 32-bit and 64-bit mode, and works with the TAP-Windows driver shipped with OpenVPN (driver version 9.9 or later).

 openconnect-7.06/www/vpnc-script.xml0000664000076400007640000000600412453040465014535 00000000000000

Install a vpnc-script.

OpenConnect just handles the communication with the VPN server; it does not know how to configure the network routing and name service on all the various operating systems that it runs on.

To set the routing and name service up, it uses an external script which is usually called vpnc-script. It's exactly the same script that vpnc uses. You may already have a vpnc-script installed on your system, perhaps in a location such as /etc/vpnc/vpnc-script.

If you don't already have it, you can get a current version from here. Even if you already have a copy from vpnc, you may wish to install this updated version which has support for IPv6, and for running on Solaris and on newer Linux kernels amongst other bug fixes.

Note that the script needs to be executable, and stored somewhere where SELinux or similar security systems won't prevent the root user from accessing it.

Current versions of OpenConnect (since version 3.17) are configured with the location of the script at build time, and will use the script automatically. If you are using a packaged build of OpenConnect rather than building it yourself, then the OpenConnect package should have a dependency on a suitable version of vpnc-script and should be built to look in the right place for it. Hopefully your distributions gets that right.

If you're using an older version of OpenConnect, or if you want to use a script other than the one that OpenConnect was configured to use, you can use the --script argument on the command line. For example:

  • openconnect --script /etc/vpnc/vpnc-script https://vpn.example.com/

If OpenConnect is invoked without a suitable script, it will not be able to configure the routing or name service for the VPN.

Windows

On Windows, the default configuration of OpenConnect will look for a script named named vpnc-script-win.js in the same directory as the openconnect.exe executable, and will execute it with the command-based script host (CScript.exe).

The current version of this script can be found here.

Note that although the script is basically functional for configuring both IPv6 and Legacy IP, it does not fully tear down the configuration on exit so stale IP address might be left around on the interface.

 openconnect-7.06/www/menu2.xml0000664000076400007640000000067712300467336013326 00000000000000 openconnect-7.06/www/csd.xml0000664000076400007640000000240112337053524013034 00000000000000

Cisco Secure Desktop

The 'Cisco Secure Desktop' is a bit of a misnomer — it works by downloading a trojan binary from the server and running it on your client machine to perform some kind of 'verification' and post its approval back to the server. This seems anything but secure to me, especially given their history of trivially-exploitable bugs.

It's also fairly easy to subvert, by running your own modified binary instead of the one you download from the server. Or by running their binary but poking at it with gdb.

We support this idiocy, but because of the security concerns the trojan will be executed only if a userid is specified on the command line using the --csd-user= option, or the --csd-wrapper= option is used to handle the script in a 'safe' manner.

This support currently only works when the server has a Linux binary installed, and only when that Linux binary runs on the client machine.

 openconnect-7.06/www/menu2-features.xml0000664000076400007640000000117512453040465015133 00000000000000 openconnect-7.06/www/contribute.xml0000664000076400007640000000654312474046503014455 00000000000000

Contributing to OpenConnect

Translations

The main thing needed at the present time is translations into languages other than English. All contributions will be gratefully received.

Translations for OpenConnect are maintained in the GNOME network-manager-openconnect module. Translations can be contributed by joining the GNOME team as described on their TranslationProject wiki page, or simply by editing one of the language files in the po/ directory and sending the resulting patch (or file) to the mailing list.

If there are questions about the messages because the intent is not clear, or if the messages could be improved to make translation easier or better, please also feel free to ask or make suggestions on the mailing list.

TODO

Other items on the TODO list include:

Submitting Patches

Patches can be sent to the mailing list or directly to the author in private email.

When sending patches to be included in OpenConnect, please certify that your patch meets the criteria below by including include a sign-off line in your email which looks like this:

Signed-off-by: Random J Developer &lt;random@developer.example.org&gt;

This confirms that you are permitted to submit the patch for inclusion in OpenConnect under the LGPLv2.1 licence. The full text of the certificate is as follows:

  • Developer's Certificate of Origin 1.1

    By making a contribution to this project, I certify that:

    1. The contribution was created in whole or in part by me and I have the right to submit it under the open source license indicated in the file; or
    2. The contribution is based upon previous work that, to the best of my knowledge, is covered under an appropriate open source license and I have the right under that license to submit that work with modifications, whether created in whole or in part by me, under the same open source license (unless I am permitted to submit under a different license), as indicated in the file; or
    3. The contribution was provided directly to me by some other person who certified (1), (2) or (3) and I have not modified it.

    and also that:

    • I understand and agree that this project and the contribution are public and that a record of the contribution (including all personal information I submit with it, including my sign-off) is maintained indefinitely and may be redistributed consistent with this project or the open source license(s) involved.

openconnect-7.06/www/gui.xml0000664000076400007640000000235412453040465013055 00000000000000

GUI Tools for OpenConnect

NetworkManager

Support for OpenConnect in NetworkManager has been integrated into GNOME git and is released alongside NetworkManager's other VPN modules: http://ftp.gnome.org/pub/GNOME/sources/NetworkManager-openconnect/.

OpenConnect is also supported in KDE Plasma NM as well as the older widget-based NetworkManagement applet.

ConnMan

ConnMan has core OpenConnect functionality as from version 0.48, and the corresponding support is also in the meego-panel-networks user interface. Other ConnMan UI front ends may lack VPN support.

OpenConnect-gui

OpenConnect-gui is a Windows port of OpenConnect.

 openconnect-7.06/www/token.xml0000664000076400007640000002361712474046503013420 00000000000000

One Time Password support

OpenConnect supports three types of software tokens for automatically generating one-time passwords:

OATH HOTP/TOTP tokens are also supported in hardware by:

On the command line, the token mode is specified with the --token-mode argument, which can be one of rsa, totp, hotp or yubioath.

The token secret is provided with the --token-secret argument, and the precise form it takes is dependent on the type of token as described below.

For the openconnect command line program, if the first character of the --token-secret value is / or @, the argument is interpreted as a filename. The secret data will be loaded from (and potentially saved back to, in the case of HOTP tokens) the specifed file.

In each case, the automatic token generation will be tried twice before it is automatically disabled and the user asked to enter tokencodes manually.

SecurID token codes will automatically fill in the primary password field in the authentication form presented by the server, while OATH token codes will fill in the secondary password field. This behaviour is empirically determined by the requirements of the servers that we have tested with; if you find a configuration in which it is not appropriate, please let us know.

SecurID

If no --token-secret argument is provided in SecurID mode, the default .stokenrc file from the user's home directory will be used. For the NetworkManager integration, this is a separate choice for the token type — the UI has separate choices for "RSA SecurID - read from ~/.stokenrc" vs. "RSA SecurID - manually entered".

If a token is provided — either directly on the command line, as the contents of a referenced file, or entered into the NetworkManager configuration dialog — it may take one of the many forms accepted by the stoken import command:

  • 286510182209303756117707012447003320623006...
  • 29658-21098-45467-64675-65731-01441-11337...
    Pure numeric (81-digit) "ctf" (compressed token format) strings, with or without dashes. These may have been furnished as-is, or they could have been derived from an sdtid file by the RSA TokenConverter program.
  • com.rsa.securid.iphone://ctf?ctfData=229639330774927764401...
    iPhone-compatible token strings.
  • http://127.0.0.1/securid/ctf?ctfData=250494932146245277466...
  • http://127.0.0.1/securid/ctf?ctfData=AwAAfBc3QSopPxxjLGnxf...
    Android-compatible token strings.
  • &lt;?xml version=...
    RSA sdtid-formatted XML files. These should be generally be imported from a file: '--token-secret @FILE.SDTID'

SecurID two-factor authentication is based on something you have (a hardware or software token) and something you know (a 4-8 digit PIN code). SecurID administrators can provision software tokens in three different ways:

  • PIN included in tokencode computation
    In most deployments, the software token application will prompt the user for a PIN, and then use the PIN to help calculate an 8-digit tokencode by summing each of the lower digits (modulo 10). The tokencode displayed by the app is then entered verbatim into the password field.
  • PIN manually prepended to tokencode
    In other cases, the software token application will not prompt for a PIN; it will simply display a "bare" tokencode, often 6 digits long, similar to a SecurID hardware token (SID700 or equivalent). In response to the Password: prompt, the user concatenates his PIN and the tokencode: PIN & Tokencode = Passcode.
  • No PIN
    In rare cases, the server is configured such that a PIN is not required at all. In this case, the software token application does not prompt for a PIN and the user simply enters the tokencode into the password field.

For the first case, OpenConnect will prompt for a PIN if the PIN has not been saved in ~/.stokenrc using the stoken setpin command. Otherwise the saved PIN will automatically be used, permitting unattended operation. This works with all versions of libstoken.

For the second and third cases, OpenConnect will unconditionally prompt for a PIN and concatenate the PIN with the generated tokencode. If appropriate, an empty PIN may be entered. This requires libstoken v0.8 or higher.

TOTP (Time-Based One-Time Password)

As with SecurID tokens, OATH TOTP tokens may be provided either directly on the command line, as the contents of a referenced file, or entered into the NetworkManager configuration dialog. They may be specified in one of the following forms:

  • SecretSecret!
  • sha256:SecretSecret!
  • sha512:SecretSecret!
    For secrets which are actually UTF-8 strings instead of entirely randomly generated data, they may be specified directly in this form.
  • 0x53656372657453656372657421
  • sha256:0x53656372657453656372657421
  • sha512:0x53656372657453656372657421
    This is the hexadecimal form which (without the leading 0x) is accepted by default by the oathtool program.
  • base32:KNSWG4TFORJWKY3SMV2CC===
  • sha256:base32:KNSWG4TFORJWKY3SMV2CC===
  • sha512:base32:KNSWG4TFORJWKY3SMV2CC===
    This is the base32 form which is accepted by the oathtool program with its -b option..
  • &lt;?xml version=...
    PSKC XML files conforming to RFC6030. These should be generally be imported from a file: '--token-secret @FILE.PSKC'

The default HMAC algorithm for TOTP tokens is SHA-1. SHA-256 and SHA-512 are also supported; to use them prefix "sha256:" or "sha512:" when explicitly providing a key on the command line. Algorithms other than SHA-1 are not yet supported with PSKC files until the relevant standards have been updated to indicate how they shall be indicated in the PSKC file. See this erratum to RFC6238 for current status.

HOTP (HMAC-Based One-Time Password)

HOTP tokens are very similar to TOTP tokens except that they are event-based, and contain an additional counter which is incremented each time a token is generated.

For HOTP tokens, the secret and counter may be provided in one of the following forms:

  • SecretSecret!,99
  • 0x53656372657453656372657421,99
  • base32:KNSWG4TFORJWKY3SMV2CC===,99
    These correspond to the raw forms of the TOTP tokens given above, with the counter value appended in decimal form after a comma.
  • &lt;?xml version=...
    PSKC XML files conforming to RFC6030 will contain the counter value.

Although it is possible to specify HOTP tokens in their raw form on the command line, that's not very useful because any updates to the counter field will be discarded. Therefore it is advisable to use the @filename form of the --token-secret argument, and the updated secret with incremented counter value will be stored back to the file each time a token is generated.

The token will be stored back to the file in the same form that it was originally provided.

Although NetworkManager-openconnect only supports direct token entry (you can't enter @filename into its GUI configuration and expect that to work), versions which are new enough to support HOTP will also have support for reading the updated counter values back from libopenconnect and storing them to the NetworkManager VPN configuration. So if you configure a VPN connection with a HOTP token secret of "0x1234,1" and authenticate once, you should be able to go back into the configuration and see that the token secret has been updated to "0x1234,2".

HOTP tokens also support SHA-256 and SHA-512 in precisely the same fashion as TOTP tokens, as described above.

Yubikey HOTP/TOTP

The ykneo-oath applet implements secure HOTP/TOTP support by storing the private key within the hardware device so that it cannot be recovered.

The applet can store multiple credentials. If a --token-secret argument is provided, it specifies the name of the credential which is to be used. Otherwise OpenConnect will use the first credential found on the device.

Yubikey support is not yet implemented in NetworkManager.

 openconnect-7.06/www/menu2-started.xml0000664000076400007640000000055212337053524014762 00000000000000 openconnect-7.06/www/Makefile.in0000664000076400007640000005661712502026423013620 00000000000000# Makefile.in generated by automake 1.14.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2013 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ # VPATH = @srcdir@ am__is_gnu_make = test -n '$(MAKEFILE_LIST)' && test -n '$(MAKELEVEL)' am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/Makefile.am ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(htmldir)" DATA = $(html_DATA) RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ distdir am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DTLS_SSL_CFLAGS = @DTLS_SSL_CFLAGS@ DTLS_SSL_LIBS = @DTLS_SSL_LIBS@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_DTLS_PC = @SSL_DTLS_PC@ SSL_LIBS = @SSL_LIBS@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = styles inc images CONV = "$(srcdir)/html.py" FTR_PAGES = csd.html charset.html token.html pkcs11.html features.html gui.html nonroot.html START_PAGES = building.html connecting.html manual.html vpnc-script.html INDEX_PAGES = changelog.html download.html index.html packages.html platforms.html PROTO_PAGES = anyconnect.html juniper.html TOPLEVEL_PAGES = contribute.html mail.html ALL_PAGES = $(FTR_PAGES) $(START_PAGES) $(INDEX_PAGES) $(TOPLEVEL_PAGES) $(PROTO_PAGES) html_DATA = $(ALL_PAGES) EXTRA_DIST = $(patsubst %.html,%.xml,$(ALL_PAGES)) $(srcdir)/menu1.xml $(srcdir)/menu2*.xml $(srcdir)/html.py all: all-recursive .SUFFIXES: .SUFFIXES: .html .xml $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/Makefile .PRECIOUS: Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-htmlDATA: $(html_DATA) @$(NORMAL_INSTALL) @list='$(html_DATA)'; test -n "$(htmldir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(htmldir)'"; \ $(MKDIR_P) "$(DESTDIR)$(htmldir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(htmldir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(htmldir)" || exit $$?; \ done uninstall-htmlDATA: @$(NORMAL_UNINSTALL) @list='$(html_DATA)'; test -n "$(htmldir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(htmldir)'; $(am__uninstall_files_from_dir) # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done check-am: all-am check: check-recursive all-am: Makefile $(DATA) installdirs: installdirs-recursive installdirs-am: for dir in "$(DESTDIR)$(htmldir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic clean-libtool clean-local mostlyclean-am distclean: distclean-recursive -rm -f Makefile distclean-am: clean-am distclean-generic distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-htmlDATA install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: uninstall-htmlDATA .MAKE: $(am__recursive_targets) install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am check \ check-am clean clean-generic clean-libtool clean-local \ cscopelist-am ctags ctags-am distclean distclean-generic \ distclean-libtool distclean-tags distdir dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-htmlDATA \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs installdirs-am \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-generic mostlyclean-libtool pdf pdf-am ps ps-am \ tags tags-am uninstall uninstall-am uninstall-htmlDATA .xml.html: $(PYTHON) $(CONV) -d $(srcdir) $< > $@ || (rm $@; exit 1) clean-local: rm -f $(ALL_PAGES) openconnect.8.inc $(ALL_PAGES): menu1.xml $(srcdir)/inc/*.tmpl $(FTR_PAGES): menu2-features.xml $(START_PAGES): menu2-started.xml $(PROTO_PAGES): menu2-protocols.xml $(MAIN_PAGES): menu2.xml manual.html: openconnect.8.inc $(top_builddir)/openconnect.8: $(top_srcdir)/openconnect.8.in $(top_builddir)/config.status cd $(top_builddir) && $(SHELL) ./config.status openconnect.8 # If this command line ever changes significantly, so should the # corresponding autoconf check. openconnect.8.inc: $(top_builddir)/openconnect.8 $(GROFF) -t -K UTF-8 -mandoc -Txhtml $? | sed 's/−/-/g' > $@.html.tmp sed -e '1,//d' -e '/<\/body>/,$$d' $@.html.tmp > $@.tmp rm -f $@.html.tmp mv $@.tmp $@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-7.06/www/pkcs11.xml0000664000076400007640000002631412453040465013375 00000000000000

Smart Card / PKCS#11 support

OpenConnect supports the use of X.509 certificates and keys from smart cards (as well as software storage such as GNOME Keyring and SoftHSM) by means of the PKCS#11 standard. Objects from PKCS#11 tokens are specified by a PKCS#11 URI.

In order to use a certificate or key with OpenConnect, you must provide a PKCS#11 URI which identifies it sufficiently. That can be as simple as the following example:

  • openconnect -c pkcs11:id=%01 vpn.example.com
However, if you're now looking blankly at a USB crypto device and wondering what PKCS#11 URI to use, the following documentation should hopefully assist you in working it out.

Identifying the token

In order to use a PKCS#11 token with OpenConnect, first it must be installed appropriately in the system's p11-kit configuration. You shouldn't need to worry about this; it should automatically be the case for properly packaged software on any modern operating system.

Typically, the smart card support is likely to be provided by OpenSC and a distribution's packaging of OpenSC should automatically have registered the OpenSC module with p11-kit by creating a file such as /usr/share/p11-kit/modules/opensc.module.

In order to query the available PKCS#11 modules, and the certificates stored therein, the best tool to use is the p11tool distributed with GnuTLS. In Fedora it's in the gnutls-utils package.

First identify the PKCS#11 modules which are available by using the --list-tokens option:

  • p11tool --list-tokens
This should produce output including something like the following: 
Token 7:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29 
	Label: PIV_II (PIV Card Holder pin)
	Type: Hardware token
	Manufacturer: piv_II
	Model: PKCS#15 emulated
	Serial: 108421384210c3f5

This example shows the relatively common PIV SmartCard, in this case in a Yubikey NEO device.

Locating the certificate

Having established that the token is present and registered correctly with p11-kit, the next step is to identify the URI of the certificate you wish to use. You will note that the above output of p11tool --list-tokens gave a PKCS#11 URI for each token. With that, we can now query the objects available within a specific token, using the --list-all-certs option. We can cut and paste the PKCS#11 URI for the token, but be careful to put it within quotes because it contains semicolons:

  • p11tool --list-all-certs 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29'

Note that the PKCS#11 URI specifies a list of attributes which must match. Some of these match criteria may be redundant — in this case we've asked it to list the certificates in a token which has a model of "PKCS#15 emulated" and a manufacturer of "piv_II" and serial number 108421384210c3f5 and token label "PIV_II (PIV Card Holder pin)". Since any one of those criteria would probably be sufficient to uniquely identify this token from the other configured tokens in our system, a simpler command line would also work. For example:

  • p11tool --list-all-certs pkcs11:manufacturer=piv_II
The output of either such command should look something like this: 
Object 0:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for PIV Authentication
	ID: 01

Object 1:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%02;object=Certificate%20for%20Digital%20Signature;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Digital Signature
	ID: 02

Object 2:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%03;object=Certificate%20for%20Key%20Management;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Key Management
	ID: 03

Object 3:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%04;object=Certificate%20for%20Card%20Authentication;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Card Authentication
	ID: 04

This device has four certificates installed; the URL for each one is given in the output. (Choosing between the certificates on a given device, if there is more than one, is left as an exercise for the user. You may need to try each one.)

Some devices may not even permit you to list the certificates without logging in. In that case add --login to the p11tool command line above, and provide the PIN when requested

For OpenConnect 7.01 we should be able to use the URI seen here in its entirety, and the software will be cunning enough to find the corresponding key:

  • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert' vpn.example.com
Older versions, however, may require a little help...

Helping OpenConnect find the key

If no explicit -k argument is given to specify the key, OpenConnect will use the contents of the -c argument as the basis for finding both certificate and key.

It will sensibly add object-type=cert or object-type=private for itself, according to which object it is trying to locate each time. But in version 7.00 and earlier, it would not do that if the URI you provide already contained any object-type= element. So the first thing you need to do with older versions of OpenConnect is trim that part of the URI. So the above example might now be:

  • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication' vpn.example.com

Additionally, it can sometimes be the case that although the ID (id=) for a certificate should match the ID of its matching key, the label (object=) might not match. Newer versions of OpenConnect (7.01+), on failing to find a key, will strip the label from the search URI and add the ID of the certificate that was found (even if no ID was part of the original search terms provided with the -c option). But older versions don't.

So it can be useful also to remove the object= part of the URI and leave only the id= attribute to specify the individual object, so that you're giving search criteria which are true for both the certificate and the key:

  • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01' vpn.example.com

And while we're at it, that's still a massively redundant way of specifying which token to look in, so we can cut that down as we did before just to make it less unwieldy:

  • openconnect -c 'pkcs11:manufacturer=piv_II;id=%01' vpn.example.com

Searching for the key manually

If the heuristics for finding the key don't work, you can always provide an explicit PKCS#11 URI for the key with the -k option. You can look for them by using the --list-privkeys option to p11tool. You will almost certainly want to use the --login option too:

  • p11tool --list-privkeys --login pkcs11:manufacturer=piv_II
Token 'PIV_II (PIV Card Holder pin)' with URL 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29' requires user PIN
Enter PIN: 
Object 0:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=PIV%20AUTH%20key;object-type=private
	Type: Private key
	Label: PIV AUTH key
	Flags: CKA_WRAP/UNWRAP; CKA_PRIVATE; CKA_SENSITIVE; 
	ID: 01

Object 1:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%02;object=SIGN%20key;object-type=private
	Type: Private key
	Label: SIGN key
	Flags: CKA_PRIVATE; CKA_SENSITIVE; 
	ID: 02

Object 2:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%03;object=KEY%20MAN%20key;object-type=private
	Type: Private key
	Label: KEY MAN key
	Flags: CKA_WRAP/UNWRAP; CKA_PRIVATE; CKA_SENSITIVE; 
	ID: 03

Object 3:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%04;object=CARD%20AUTH%20key;object-type=private
	Type: Private key
	Label: CARD AUTH key
	Flags: CKA_SENSITIVE; 
	ID: 04

Here's the full longhand specification of both certificate and key:

  • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert' -k 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=PIV%20AUTH%20key;object-type=private' vpn.example.com
OpenConnect doesn't care; you can use certificate and key from entirely different hardware tokens if you want to. Or one from a file. Or a key from a TPM and a certificate from a PKCS#11 hardware token. Or all kinds of bizarre combinations. But if it's a sensible combination on a sanely configured PKCS#11 token, and OpenConnect can't infer the key location from the certificate, then please send us an email and we'll try to fix it.

 openconnect-7.06/www/menu1.xml0000664000076400007640000000120512474046503013312 00000000000000 openconnect-7.06/www/features.xml0000664000076400007640000000332512474046503014110 00000000000000

Features

  • Connection through HTTP proxy, including libproxy support for automatic proxy configuration.
  • Connection through SOCKS5 proxy.
  • Automatic detection of IPv4 and IPv6 address, routes.
  • Authentication via HTTP forms.
  • Authentication using SSL certificates — from local file, Trusted Platform Module and PKCS#11 smartcards.
  • Authentication using SecurID software tokens (when built with libstoken)
  • Authentication using OATH TOTP or HOTP software tokens.
  • Authentication using Yubikey OATH tokens (when built with libpcsclite)
  • UserGroup support for selecting between multiple configurations on a single VPN server.
  • Data transport over TCP (HTTPS) or UDP (DTLS or ESP).
  • Keepalive and Dead Peer Detection on both HTTPS and DTLS.
  • Automatic update of VPN server list / configuration.
  • Roaming support, allowing reconnection when the local IP address changes.
  • Run without root privileges (see here).
  • "Cisco Secure Desktop" support (see here).
  • Graphical connection tools for various environments (see here).
 openconnect-7.06/www/download.xml0000664000076400007640000000404712502026417014075 00000000000000

Download

Released versions of OpenConnect are available from the FTP site:

Release tarballs (since 3.13) are signed with the PGP key 67E2F359.

The latest release is OpenConnect v7.06 (PGP signature), released on 2015-03-17 with the following changelog:

  • Fix openconnect.pc breakage after liboath removal.
  • Refactor Juniper Network Connect receive loop.
  • Fix some memory leaks.
  • Add Bosnian translation.

For older releases and change logs, see the changelog page.

(Note: Due to a longstanding Fedora bug you may occasionally find that the FTP server is accessible only by IPv6 and not Legacy IP. If this happens, please let me know by sending me an email. Or just join us in the 21st century and get IPv6.)

Latest sources

The latest source code is available from the git repository at:

 openconnect-7.06/www/styles/0000775000076400007640000000000012502026432013137 500000000000000openconnect-7.06/www/styles/main.css0000664000076400007640000000565012474046503014534 00000000000000body { background: white; font-family: 'Raleway', Sans, Arial, Helvetica, Geneva, Swiss, SunSans-Regular; font-size: 12px; } #logo { text-align: right; margin: 0; } #main { margin: 0; border-left-style: double; border-bottom-style: double; border-color: #1414a6; border-left-width: 5px; border-bottom-width: 5px; min-width: 70em; } #menu1 { margin: 0; padding-left: 20px; background: #1414a6; height: 2.2em; } #menu1 p { color: white; font-size: 14px; text-align: right; vertical-align: middle; padding-right: 10px; padding-top: 0.2em; } #menu1 .nonsel a { color: black; float: left; background: url(../images/left.png) top left no-repeat #b3b3b3; margin-top: 0.2em; margin-left: 5px; padding-top: 0.2em; height: 1.8em; text-decoration: none; } #menu1 .nonsel a span { background: url(../images/right.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu1 .nonsel a:hover { background: url(../images/leftsel.png) top left no-repeat #e6e6e6; } #menu1 .nonsel a:hover span { color: Black; text-decoration: underline; background: url(../images/rightsel.png) top right no-repeat transparent; } #menu1 .sel a { color: black; float: left; padding-top: 0.2em; background: url(../images/leftsel.png) top left no-repeat #e6e6e6; margin-top: 0.2em; margin-left: 5px; height: 2em; text-decoration: none; } #menu1 .sel a span { background: url(../images/rightsel.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu2 { background: #e6e6e6; height: 2.3em; border-bottom-style: solid; border-color: #1414a6; border-bottom-width: 1px; } #menu2 .nonsel a { color: black; float: left; background: url(../images/left2.png) top left no-repeat #b3b3b3; margin-top: 0.2em; margin-left: 5px; padding-top: 0.2em; height: 1.8em; text-decoration: none; } #menu2 .nonsel a span { background: url(../images/right2.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu2 .nonsel a:hover { background: url(../images/leftsel2.png) top left no-repeat #e6e6e6; } #menu2 .nonsel a:hover span { color: Black; text-decoration: underline; background: url(../images/rightsel2.png) top right no-repeat transparent; } #menu2 .sel a { color: black; float: left; padding: 0.2em 1em 0 1em; margin-top: 0.2em; margin-left: 0px; height: 2em; text-decoration: none; } #textbox { margin-left: 20px; margin-bottom: 20px; margin-right: 20px; margin-top: 20px; padding-top: 20px; padding-left: 20px; padding-right: 120px; padding-bottom: 20px; font-size: 14px; } #text { margin: 0; border-color: #e6e6e6; font-size: 14px; background: #ffffff; } #text a { color: blue; text-decoration: none; } #text a:hover { text-decoration: underline; } openconnect-7.06/www/styles/Makefile.in0000664000076400007640000003777512502026423015147 00000000000000# Makefile.in generated by automake 1.14.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2013 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = test -n '$(MAKEFILE_LIST)' && test -n '$(MAKELEVEL)' am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/styles DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/Makefile.am \ $(dist_stylesdata_DATA) ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(stylesdatadir)" DATA = $(dist_stylesdata_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DTLS_SSL_CFLAGS = @DTLS_SSL_CFLAGS@ DTLS_SSL_LIBS = @DTLS_SSL_LIBS@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_DTLS_PC = @SSL_DTLS_PC@ SSL_LIBS = @SSL_LIBS@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ stylesdatadir = $(htmldir)/styles dist_stylesdata_DATA = main.css all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/styles/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/styles/Makefile .PRECIOUS: Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_stylesdataDATA: $(dist_stylesdata_DATA) @$(NORMAL_INSTALL) @list='$(dist_stylesdata_DATA)'; test -n "$(stylesdatadir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(stylesdatadir)'"; \ $(MKDIR_P) "$(DESTDIR)$(stylesdatadir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(stylesdatadir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(stylesdatadir)" || exit $$?; \ done uninstall-dist_stylesdataDATA: @$(NORMAL_UNINSTALL) @list='$(dist_stylesdata_DATA)'; test -n "$(stylesdatadir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(stylesdatadir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(stylesdatadir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_stylesdataDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_stylesdataDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_stylesdataDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_stylesdataDATA # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-7.06/www/styles/Makefile.am0000664000076400007640000000010311741401073015107 00000000000000stylesdatadir = $(htmldir)/styles dist_stylesdata_DATA = main.css openconnect-7.06/www/changelog.xml0000664000076400007640000011011312502026417014205 00000000000000

Changelog

For full changelog entries including the latest development, see gitweb.

  • OpenConnect HEAD
    • No changelog entries yet

  • OpenConnect v7.06 (PGP signature) — 2015-03-17
    • Fix openconnect.pc breakage after liboath removal.
    • Refactor Juniper Network Connect receive loop.
    • Fix some memory leaks.
    • Add Bosnian translation.

  • OpenConnect v7.05 (PGP signature) — 2015-03-10
    • Fix alignment issue which broke LZS compression on ARM etc.
    • Support HTTP authentication to servers, not just proxies.
    • Work around Yubikey issue with non-ASCII passphrase set on pre-KitKat Android.
    • Add SHA256/SHA512 support for OATH.
    • Remove liboath dependency.
    • Support DTLS v1.2 and AES-GCM with OpenSSL 1.0.2.
    • Add OpenSSL 1.0.2 to known-broken releases (RT#3703, RT#3711).
    • Fix build with OpenSSL HEAD (OpenSSL 1.1.x).
    • Preliminary support for Juniper SSL VPN.

  • OpenConnect v7.04 (PGP signature) — 2015-01-25
    • Change default behaviour to enable only stateless compression.
    • Add --compression argument and openconnect_set_compression_mode().
    • Add support for LZS compression (compatible with latest Cisco ASA and ocserv).
    • Add support for LZ4 compression (compatible with ocserv).

  • OpenConnect v7.03 (PGP signature) — 2015-01-09
    • Android build infrastructure updates, including 64-bit support.
    • Clean up handling of incoming packets.
    • Fix issue with two-stage (i.e. NetworkManager) connection to servers with trick DNS (RH#1179681).
    • Stop using static variables for received packets.

  • OpenConnect v7.02 (PGP signature) — 2014-12-19
    • Add PKCS#11 support for OpenSSL.
    • Fix handling of select options in openconnect_set_option_value().

  • OpenConnect v7.01 (PGP signature) — 2014-12-07
    • Try harder to find a PKCS#11 key to match a given certificate.
    • Handle 'Connection: close' from proxies correctly.
    • Warn when MTU is set too low (<1280) to permit IPv6 connectivity.
    • Add support for X-CSTP-DynDNS, to trigger DNS lookup on each reconnect.

  • OpenConnect v7.00 (PGP signature) — 2014-11-27
    • Add support for GnuTLS 3.4 system: keys including Windows certificate store.
    • Add support for HOTP/TOTP keys from Yubikey NEO devices.
    • Add ---no-system-trust option to disable default certificate authorities.
    • Improve libiconv and libintl detection.
    • Stop calling setenv() from library functions.
    • Support utun driver on OS X.
    • Change library API so string ownership is never transferred.
    • Support new NDIS6 TAP-Windows driver shipped with OpenVPN 2.3.4.
    • Support using PSKC (RFC6030) token files for HOTP/TOTP tokens.
    • Support for updating HOTP token storage when token is used.
    • Support for reading OTP token data from a file.
    • Add full character set handling for legacy non-UTF8 systems (including Windows).
    • Fix legacy (i.e. not XML POST) submission of non-ASCII form entries (even in UTF-8 locales).
    • Add support for 32-bit Windows XP.
    • Avoid retrying without XML POST, when we failed to even reach the server.
    • Fix off-by-one in parameter substitution in error messages.
    • Improve reporting when GSSAPI auth requested but not compiled in.
    • Fix parsing of split include routes on Windows.
    • Fix crash on invocation with --token-mode but no --token-secret.

  • OpenConnect v6.00 (PGP signature) — 2014-07-08
    • Support SOCKS proxy authentication (password, GSSAPI).
    • Support HTTP proxy authentication (Basic, Digest, NTLM and GSSAPI).
    • Download XML profile in XML POST mode.
    • Fix a couple of bugs involving DTLS rekeying.
    • Fix problems seen when building or connecting without DTLS enabled.
    • Fix tun error handling on Windows hosts.
    • Skip password prompts when using PKCS#8 and PKCS#12 certificates with empty passwords.
    • Fix several minor memory leaks and error paths.
    • Update several Android dependencies, and make the download process more robust.

  • OpenConnect v5.99 (PGP signature) — 2014-03-05
    • Add RFC4226 HOTP token support.
    • Tolerate servers closing connection uncleanly after HTTP/1.0 response (Ubuntu #1225276).
    • Add support for IPv6 split tunnel configuration.
    • Add Windows support with MinGW (tested with both IPv6 and Legacy IP with latest vpnc-script-win.js)
    • Change library API to support updating the auth form when the authgroup is changed (Ubuntu #1229195).
    • Change --os mac to --os mac-intel, to match the identifier used by Cisco clients.
    • Add new API functions to support invoking the VPN mainloop directly from an application.
    • Add JNI interface and sample Java application.
    • Fix junk in --cookieonly output when CSD is enabled.
    • Enable TOTP, stoken, and JNI support in the Android builds.
    • Add --pfs option to enforce perfect forward secrecy.
    • Enable elliptic curves with GnuTLS 3.2.9+, where there is a workaround for certain firewalls that fail with client hellos between 256 and 512 bytes.
    • Add padding when sending password, to avoid leakage of password and username length.
    • Add support for DTLS 1.2 and AES-GCM when connecting to ocserv.
    • Add support for server name indication when compiled with GnuTLS 3.2.9+.

  • OpenConnect v5.03 (PGP signature) — 2014-02-03
    • Fix crash on --authenticate due to freeing --cafile option in argv.

  • OpenConnect v5.02 (PGP signature) — 2014-01-01
    • Fix XML POST issues with authgroups by falling back to old style login.
    • Fix --cookie-on-stdin with cookies from ocserv.
    • Fix reconnection to wrong host after redirect.
    • Reduce limit of queued packets on DTLS socket, to fix VoIP latency.
    • Fix Solaris build breakage due to missing &lt;string.h&gt; includes.
    • Include path in &lt;group-access&gt; node.
    • Include supporting CA certificates from PKCS#11 tokens (with GnuTLS 3.2.7+).
    • Fix possible heap overflow if MTU is increased on reconnection (CVE-2013-7098).

  • OpenConnect v5.01 (PGP signature) — 2013-06-01
    • Attempt to handle &lt;client-cert-request&gt; in aggregate auth mode.
    • Don't include X-Aggregate-Auth: header in fallback mode.
    • Enable AES256 mode for DTLS with GnuTLS (RH#955710).
    • Add --dump-http-traffic option for debugging.
    • Be more permissive in parsing XML forms.
    • Use original URL when falling back to non-XML POST mode.
    • Add --no-xmlpost option to revert to older, compatible behaviour.
    • Close connection before falling back to non-xmlpost mode (RH#964650).
    • Improve error handling when server closes connection (Debian #708928).

  • OpenConnect v5.00 (PGP signature) — 2013-05-15
    • Use GnuTLS by default instead of OpenSSL.
    • Avoid using deprecated gnutls_pubkey_verify_data() function.
    • Fix compatibility issues with XML POST authentication.
    • Fix memory leaks on realloc() failure.
    • Fix certificate validation problem caused by hostname canonicalisation.
    • Add RFC6238 TOTP token support using liboath.
    • Replace --stoken option with more generic --token-mode and --token-secret options.

  • OpenConnect v4.99 (PGP signature) — 2013-02-07
    • Add --os switch to report a different OS type to the gateway.
    • Support new XML POST format.
    • Add SecurID token support using libstoken.

  • OpenConnect v4.08 (PGP signature) — 2013-02-13
    • Fix overflow on HTTP request buffers (CVE-2012-6128)
    • Fix connection to servers with round-robin DNS with two-stage auth/connect.
    • Impose minimum MTU of 1280 bytes.
    • Fix some harmless issues reported by Coverity.
    • Improve "Attempting to connect..." message to be explicit when it's connecting to a proxy.

  • OpenConnect v4.07 (PGP signature) — 2012-08-31
    • Fix segmentation fault when invoked with -p argument.
    • Fix handling of write stalls on CSTP (TCP) socket.

  • OpenConnect v4.06 (PGP signature) — 2012-07-23
    • Fix default CA location for non-Fedora systems with old GnuTLS.
    • Improve error handing when vpnc-script exits with error.
    • Handle PKCS#11 tokens which won't list keys without login.

  • OpenConnect v4.05 (PGP signature) — 2012-07-12
    • Use correct CSD script for Mac OS X.
    • Fix endless loop in PIN cache handling with multiple PKCS#11 tokens.
    • Fix PKCS#11 URI handling to preserve all attributes.
    • Don't forget key password on GUI reconnect.
    • Fix GnuTLS v3 build on OpenBSD.

  • OpenConnect v4.04 (PGP signature) — 2012-07-05
    • Fix GnuTLS password handling for PKCS#8 files.

  • OpenConnect v4.03 (PGP signature) — 2012-07-02
    • Fix --no-proxy option.
    • Fix handling of requested vs. received MTU settings.
    • Fix DTLS MTU for GnuTLS 3.0.21 and newer.
    • Support more ciphers for OpenSSL encrypted PEM keys, with GnuTLS.
    • Fix GnuTLS compatibilty issue with servers that insist on TLSv1.0 or non-AES ciphers (RH#836558).

  • OpenConnect v4.02 (PGP signature) — 2012-06-28
    • Fix build failure due to unconditional inclusion of &lt;gnutls/dtls.h&gt;.

  • OpenConnect v4.01 (PGP signature) — 2012-06-28
    • Fix DTLS MTU issue with GnuTLS.
    • Fix reconnect crash when compression is disabled.
    • Fix build on systems like FreeBSD 8 without O_CLOEXEC.
    • Add --dtls-local-port option.
    • Print correct error when /dev/net/tun cannot be opened.
    • Fix openconnect.pc pkg-config file not to require zlib.pc on systems which lack it (like RHEL5).

  • OpenConnect v4.00 (PGP signature) — 2012-06-20
    • Add support for OpenSSL's odd encrypted PKCS#1 files, for GnuTLS.
    • Fix repeated passphrase retry for OpenSSL.
    • Add keystore support for Android.
    • Support TPM, and also additional checks on PKCS#11 certs, even with GnuTLS 2.12.
    • Fix library references to OpenSSL's ERR_print_errors_cb() when built against GnuTLS v2.12.

  • OpenConnect v3.99 (PGP signature) — 2012-06-13
    • Enable native TPM support when built with GnuTLS.
    • Enable PKCS#11 token support when built with GnuTLS.
    • Eliminate all SSL library exposure through libopenconnect.
    • Parse split DNS information, provide $CISCO_SPLIT_DNS environment variable to vpnc-script.
    • Attempt to provide new-style MTU information to server (on Linux only, unless specified on command line).
    • Allow building against GnuTLS, including DTLS support.
    • Add --with-pkgconfigdir= option to configure for FreeBSD's benefit (fd#48743).

  • OpenConnect v3.20 (PGP signature) — 2012-05-18
    • Cope with non-keepalive HTTP response on authentication success.
    • Fix progress callback with incorrect cbdata which caused KDE crash.

  • OpenConnect v3.19 (PGP signature) — 2012-05-17
    • Add --config option for reading options from file.
    • Improve OpenSSL DTLS compatibility to work on Ubuntu 10.04.
    • Flush progress logging output promptly after each message.
    • Add symbol versioning for shared library (on sane platforms).
    • Add openconnect_set_cancel_fd() function to allow clean cancellation.
    • Fix corruption of URL in openconnect_parse_url() if it specifies a port number.
    • Fix inappropriate exit() calls from library code.
    • Library namespace cleanup — all symbols now have the prefix openconnect_ on platforms where symbol versioning works.
    • Fix --non-inter option so it still uses login information from command line.

  • OpenConnect v3.18 (PGP signature) — 2012-04-25
    • Fix autohate breakage with --disable-nls... hopefully.
    • Fix buffer overflow in banner handling.

  • OpenConnect v3.17 (PGP signature) — 2012-04-20
    • Work around time() brokenness on Solaris.
    • Fix interface plumbing on Solaris 10.
    • Provide asprintf() function for (unpatched) Solaris 10.
    • Make vpnc-script mandatory, like it is for vpnc
    • Don't set Legacy IP address on tun device; let vpnc-script do it.
    • Detect OpenSSL even without pkg-config.
    • Stop building static library by default.
    • Invoke vpnc-script with "pre-init" reason to load tun module if necessary.

  • OpenConnect v3.16 (PGP signature) — 2012-04-08
    • Fix build failure on Debian/kFreeBSD and Hurd.
    • Fix memory leak of deflated packets.
    • Fix memory leak of zlib state on CSTP reconnect.
    • Eliminate memcpy() calls on packets from DTLS and tunnel device.
    • Use I_LINK instead of I_PLINK on Solaris to plumb interface for Legacy IP.
    • Plumb interface for IPv6 on Solaris, instead of expecting vpnc-script to do it.
    • Refer to vpnc-script and help web pages in openconnect output.
    • Fix potential crash when processing libproxy results.
    • Be more conservative in detecting libproxy without pkg-config.

  • OpenConnect v3.15 (PGP signature) — 2011-11-25
    • Fix for reading multiple packets from Solaris tun device.
    • Call bindtextdomain() to ensure that translations are found in install path.

  • OpenConnect v3.14 (PGP signature) — 2011-11-08
    • Move executable to $prefix/sbin.
    • Fix build issues on OSX, OpenIndiana, DragonFlyBSD, OpenBSD, FreeBSD &amp; NetBSD.
    • Fix non-portable (void *) arithmetic.
    • Make more messages translatable.
    • Attempt to make NLS support more portable (with fewer dependencies).

  • OpenConnect v3.13 (PGP signature) — 2011-09-30
    • Add --cert-expire-warning option.
    • Give visible warning when server dislikes client SSL certificate.
    • Add localisation support.
    • Fix build on Debian systems where dtls1_stop_timer() is not available.
    • Fix libproxy detection.
    • Enable a useful set of compiler warnings by default.
    • Fix various minor compiler warnings.

  • OpenConnect v3.12 — 2011-09-12
    • Fix DTLS compatibility with ASA firmware 8.4.1(11) and above.
    • Fix build failures on GNU Hurd, on systems with ancient OpenSSL, and on Debian.
    • Add --pid-file option.
    • Print SHA1 fingerprint with server certificate details.

  • OpenConnect v3.11 — 2011-07-20
    • Add Android.mk file for Android build support
    • Add logging support for Android, in place of standard syslog().
    • Switch back to using TLSv1, but without extensions.
    • Make TPM support optional, dependent on OpenSSL ENGINE support.

  • OpenConnect v3.10 — 2011-06-30
    • Switch to using GNU autoconf/automake/libtool.
    • Produce shared library for authentication.
    • Improve library API to make life easier for C++ users.
    • Be more explicit about requiring pkg-config.
    • Invoke script with reason=reconnect on CSTP reconnect.
    • Add --non-inter option to avoid all user input.

  • OpenConnect v3.02 — 2011-04-19
    • Install man page in make install target.
    • Add openconnect_vpninfo_free() to libopenconnect.
    • Clear cached peer_addr to avoid reconnecting to wrong host.

  • OpenConnect v3.01 — 2011-03-09
    • Add libxml2 to pkg-config requirements.

  • OpenConnect v3.00 — 2011-03-09
    • Create libopenconnect.a for GUI authentication dialog to use.
    • Remove auth-dialog, which now lives in the network-manager-openconnect package.
    • Cope with more entries in authentication forms.
    • Add --csd-wrapper option to wrap CSD trojan.
    • Report error and abort if CA file cannot be opened.

  • OpenConnect v2.26 — 2010-09-22
    • Fix potential crash on relative HTTP redirect.
    • Use correct TUN/TAP device node on Android.
    • Check client certificate expiry date.
    • Implement CSTP and DTLS rekeying (both by reconnecting CSTP).
    • Add --force-dpd option to set minimum DPD interval.
    • Don't print webvpn cookie in debug output.
    • Fix host selection in NetworkManager auth dialog.
    • Use SSLv3 instead of TLSv1; some servers (or their firewalls) don't accept any ClientHello options.
    • Never include address family prefix on script-tun connections.

  • OpenConnect v2.25 — 2010-05-15
    • Always validate server certificate, even when no extra --cafile is provided.
    • Add --no-cert-check option to avoid certificate validation.
    • Check server hostname against its certificate.
    • Provide text-mode function for reviewing and accepting "invalid" certificates.
    • Fix libproxy detection on NetBSD.

  • OpenConnect v2.24 — 2010-05-07
    • Forget preconfigured password after a single attempt; don't retry infinitely if it's failing.
    • Set $CISCO_BANNER environment variable when running script.
    • Better handling of passphrase failure on certificate files.
    • Fix NetBSD build (thanks to Pouya D. Tafti).
    • Fix DragonFly BSD build.

  • OpenConnect v2.23 — 2010-04-09
    • Support "Cisco Secure Desktop" trojan in NetworkManager auth-dialog.
    • Support proxy in NetworkManager auth-dialog.
    • Add --no-http-keepalive option to work around Cisco's incompetence.
    • Fix build on Debian/kFreeBSD.
    • Fix crash on receiving HTTP 404 error.
    • Improve workaround for server certificates lacking SSL_SERVER purpose, so that it also works with OpenSSL older than 0.9.8k.

  • OpenConnect v2.22 — 2010-03-07
    • Fix bug handling port numbers above 9999.
    • Ignore "Connection: Keep-Alive" in HTTP/1.0 to work around server bug with certificate authentication.
    • Handle non-standard port (and full URLs) when used with NetworkManager.
    • Cope with relative redirect and form URLs.
    • Allocate HTTP receive buffer dynamically, to cope with arbitrary size of content.
    • Fix server cert SHA1 comparison to be case-insensitive.
    • Fix build on Solaris and OSX (strndup(), AI_NUMERICSERV).
    • Fix exit code with --background option.

  • OpenConnect v2.21 — 2010-01-10
    • Fix handling of HTTP 1.0 responses with keepalive (RH#553817).
    • Fix case sensitivity in HTTP headers and hostname comparison on redirect.

  • OpenConnect v2.20 — 2010-01-04
    • Fix use-after-free bug in NetworkManager authentication dialog (RH#551665).
    • Allow server to be specified with https:// URL, including port and pathname (which Cisco calls 'UserGroup')
    • Support connection through HTTP and SOCKS proxies.
    • Handle HTTP redirection with port numbers.
    • Handle HTTP redirection with IPv6 literal addresses.

  • OpenConnect v2.12 — 2009-12-07
    • Fix buffer overflow when generating useragent string.
    • Cope with idiotic schizoDNS configurations by not repeating DNS lookup for VPN server on reconnects.
    • Support DragonFlyBSD. Probably.

  • OpenConnect v2.11 — 2009-11-17
    • Add IPv6 support for FreeBSD.
    • Support "split tunnel" mode for IPv6 routing.
    • Fix bug where client certificate's MD5 was only given to the CSD trojan if a PKCS#12 certificate was used.

  • OpenConnect v2.10 — 2009-11-04
    • OpenSolaris support.
    • Preliminary support for IPv6 connectivity.
    • Fix session shutdown on exit.
    • Fix reconnection when TCP connection is closed.
    • Support for "Cisco Secure Desktop" idiocy.
    • Allow User-Agent: to be specified on command line.
    • Fix session termination on disconnect.
    • Fix recognition of certificates from OpenSSL 1.0.0.

  • OpenConnect v2.01 — 2009-06-24
    • Fix bug causing loss of DTLS (and lots of syslog spam about it) after a CSTP reconnection.
    • Don't apply OpenSSL certificate chain workaround if we already have "extra" certificates loaded (e.g. from a PKCS#12 file).
    • Load "extra" certificates from .pem files too.
    • Fix SEGV caused by freeing certificates after processing cert chain.

  • OpenConnect v2.00 — 2009-06-03
    • Add OpenBSD and FreeBSD support.
    • Build with OpenSSL-0.9.7 (Mac OS X, OpenBSD, etc.)
    • Support PKCS#12 certificates.
    • Automatic detection of certificate type (PKCS#12, PEM, TPM).
    • Work around OpenSSL trust chain issues (RT#1942).
    • Allow PEM passphrase to be specified on command line.
    • Allow PEM passphrase automatically generated from the fsid of the file system on which the certificate is stored.
    • Fix certificate comparisons (in NM auth-dialog and --servercert option) to use SHA1 fingerprint, not signature.
    • Fix segfault in NM auth-dialog when changing hosts.

  • OpenConnect v1.40 — 2009-05-27
    • Fix validation of server's SSL certificate when NetworkManager runs openconnect as an unprivileged user (which can't read the real user's trust chain file).
    • Fix double-free of DTLS Cipher option on reconnect.
    • Reconnect on SSL write errors
    • Fix reporting of SSL errors through syslog/UI.

  • OpenConnect v1.30 — 2009-05-13
    • NetworkManager auth-dialog will now cache authentication form options.

  • OpenConnect v1.20 — 2009-05-08
    • DTLS cipher choice fixes.
    • Improve handling of authentication group selection.
    • Export more information to connection script.
    • Add --background option to dæmonize after connection.
    • Detect TCP connection closure.

  • OpenConnect v1.10 — 2009-04-01
    • NetworkManager UI rewrite with many improvements.
    • Support for "UserGroups" where a single server offers multiple configurations according to the URL used to connect.

  • OpenConnect v1.00 — 2009-03-18
    • First non-beta release.
 openconnect-7.06/www/menu2-protocols.xml0000664000076400007640000000032512474046503015337 00000000000000 openconnect-7.06/www/nonroot.xml0000664000076400007640000000635512474046503013776 00000000000000

Running as non-root user

Under normal circumstances OpenConnect needs to be run as the root user. If it cannot create the local tun network interface, you will see an error such as: 

  Failed to bind (TUNSETIFF) tun device: Operation not permitted
or in older versions, "TUNSETIFF failed: Operation not permitted". The simple fix for this problem is, of course, to run OpenConnect as root.

For security reasons, it is better if network-facing code can run without root privileges — and there are a few options which allow OpenConnect to run as an unprivileged user instead.

Pre-configured tun device

On Linux, it's possible to create its tun device in advance. For example:

# ip tuntap add vpn0 mode tun user dwmw2

This creates a device vpn0 which can be opened by user dwmw2 who can pass traffic to/from it without needing any elevated privileges. You can now tell OpenConnect to use that device by adding "-i vpn0" to its command-line arguments. Note that the /dev/net/tun device node should be readable and writeable by everyone. (Some distributions misconfigure that, so if it isn't world-writeable then please file a bug against your distribution.)

Of course, something does also need to configure the IP addresses and routing. You could either add "-s /bin/true" to OpenConnect's command line to stop it trying to run vpnc-script for itself, and manually configure the network as root too. Or you could use "-s 'sudo -E /etc/vpnc/vpnc-script'" so that OpenConnect itself runs without elevated privileges but can still invoke vpnc-script as root. Note the -E part which ensures the environment variables with the configuration are actually passed through to vpnc-script.

NetworkManager usually has a dedicated unprivileged user nm-openconnect and runs OpenConnect as that user, having pre-created the tun device for it. OpenConnect then invokes a "vpnc-script" provided by NetworkManager which just passes all the configuration back to NetworkManager over DBus.

SOCKS / port-forwarding proxy

An alternative option which doesn't require any root access at all, is simply not to create the tun device and modify the system's network configuration. Instead, OpenConnect can spawn a user-supplied program, passing all data traffic through a UNIX socket to that program.

This option can be used in conjunction with a userspace TCP stack such as lwip to provide SOCKS access to the VPN, without requiring root privileges at all.

SOCKS proxy implementions suitable for being used from OpenConnect include:

 openconnect-7.06/www/Makefile.am0000664000076400007640000000262212474046503013603 00000000000000# SUBDIRS = styles inc images CONV = "$(srcdir)/html.py" FTR_PAGES = csd.html charset.html token.html pkcs11.html features.html gui.html nonroot.html START_PAGES = building.html connecting.html manual.html vpnc-script.html INDEX_PAGES = changelog.html download.html index.html packages.html platforms.html PROTO_PAGES = anyconnect.html juniper.html TOPLEVEL_PAGES = contribute.html mail.html ALL_PAGES = $(FTR_PAGES) $(START_PAGES) $(INDEX_PAGES) $(TOPLEVEL_PAGES) $(PROTO_PAGES) html_DATA = $(ALL_PAGES) .xml.html: $(PYTHON) $(CONV) -d $(srcdir) $< > $@ || (rm $@; exit 1) clean-local: rm -f $(ALL_PAGES) openconnect.8.inc $(ALL_PAGES): menu1.xml $(srcdir)/inc/*.tmpl $(FTR_PAGES): menu2-features.xml $(START_PAGES): menu2-started.xml $(PROTO_PAGES): menu2-protocols.xml $(MAIN_PAGES): menu2.xml manual.html: openconnect.8.inc $(top_builddir)/openconnect.8: $(top_srcdir)/openconnect.8.in $(top_builddir)/config.status cd $(top_builddir) && $(SHELL) ./config.status openconnect.8 # If this command line ever changes significantly, so should the # corresponding autoconf check. openconnect.8.inc: $(top_builddir)/openconnect.8 $(GROFF) -t -K UTF-8 -mandoc -Txhtml $? | sed 's/−/-/g' > $@.html.tmp sed -e '1,//d' -e '/<\/body>/,$$d' $@.html.tmp > $@.tmp rm -f $@.html.tmp mv $@.tmp $@ EXTRA_DIST = $(patsubst %.html,%.xml,$(ALL_PAGES)) $(srcdir)/menu1.xml $(srcdir)/menu2*.xml $(srcdir)/html.py openconnect-7.06/www/images/0000775000076400007640000000000012502026432013061 500000000000000openconnect-7.06/www/images/openconnect.png0000664000076400007640000015521311641071556016043 00000000000000PNG  IHDR:88DsBIT|d pHYstEXtSoftwarewww.inkscape.org< IDATxyp]};@ (A4EQ-YQ,^xlS*oũ,]qO''\Ig$])Tb%Jlɖ Ӣ$ @oYsu{Dx?U}|o9B@BBBBB+? !!!!asHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBM? !!!^- [' u+u $$)XE,_K4QH$!!hGu_bYx]BI$!O"(vm=z,!Ji=|]"1MVl):D&.&`1$b5I$!u$&ݶGH J)`Y8diiI,$DŽ!5M )*O[P1٢$aiD U,P!B ,$x]~O4 --- @ "`R"(+$O" DkhUXDx9!J,1ላH4HmB#p WEEu i"tyf$bII$!pÜs1 !>,@ea!2 HA}hh\(X5eYPs^Ka]!D\׽$X}zjj4~Z cq1 q**1F '02I-@" Մѣ^h0p.rs44M 9rY``M]m|߷(a0 L@B0ƀ9x1@p9T0ƄiLӴk晦yj̜yRX|g8k:4Md2J:$C" 1 8<9(|A@heuhFvac`6ܸqB!WǙVONOO=|nSB 9#iF$$*"II$!5D¡s)$Ja-$ɐ|;B{(l6kea`&Rz1{!L4fY4MfY/ <IDOI$!UM/ǁ^"ŭRݤEb6Z-)ۄj77ihZuR)I\Z}H" 7AUAl6K|LԤ?wuR\,dH8 È\T\R-H8ke>PJ#lµk ,:vш4Ml6F ;2FD@^!ݬm QJɟ?xqK7骒eZb!RP{synj\pca߻~>裧l=ϣaV,ˢJldEV""?$$VsY9C tZ]uƘV.Rz|>]d*PcmߊkN {mCV qhV~|;߹>uڶM àB?IHX'ģ^ Z:ւ Фx|c{i;*R d2HQP\ͤz5ze5^Y-%8DM\ׅv ϟ)h4²z},..}ߧmе?IHXy$hkAJ%ˆa<~X,BX04Uk:]҅޳|ώ/H&,A8077Pڄ/;v쯟{ ˲R"DD^IHXu]-uu]uJ|s߿\.CT|>T*ʨ/?=6ONޫ ".!DT=w3t[.j5x駡nCfiիW__VU4mHHB but:Z'>bСCFTb\Lӌʌnղ#uMtxLMMARBSSSQc->lmp]t]r G~qpjhbt]|> _"E8q87naxƍ~O?ED(D@6D@V!f}`HӚyO~ aJ|lG`|-wQv|LOO!Rd2(X`Br)alۆYJh6wrΣB NGhs@yp5z @)s7}''&&j(1hz""K" =%28!-O_foX,B*>{?tԢjZPVsuFc: y#0!D !X !taGi`fbr\v 00:: Xm[u/;0.LOOB.^F Xp3Nz򩧞Z4M3p'yH%n=(iZ&\5M3 0>O}u``Q200JwjVG7kCt}߇f Nr!jo!Giyrc<9^[ZZr٫'NXl~sl6u]f65JRj۶mH0A]׷ !?jvEaR)( J JEkX: ʕ+Hxa#QtZZ-p]@ d28vY۶cbbg}vnL&C$ׅD@^%W+$k %ccclFA1 0>OGGGJ%HRQFUYk~ې ϝ;Md|l Ji#;9wwM޸qC]H*n;:-t:d2[{&4;8 r9d2f!EBh4`ii !F$YUMp%FfJ?_xS=B*6r4TO!W*mj#jϭO\'w]۶Z*5M3|7~W~p4(x8lۆcǎHZ:ޕ+Wʼn BhEw@ W.jtU<W6JJ|[v]jA޹s'&Kc ]krHՊDE-"MӠ^ÓO> B^ 㜫j /t뺾eY4N06D@֠`csGu_%vnSwulw{\PD>lj{R)u]C4cO[_>c۶m]-z~*4 ii@Zee]J]oC.zjfcii |ߟmZwwBp`l 189 'kZk N<$sy=)RJL$|z'<(4}Rl6 ˵b"Se\^åKܹsm|jjɓ'ffft:$YYm-  0>>3n&?hH&$P-x0T>Wף:JAIĤ̺R\W'>X7 d۶mP,5첒GO>$@VׯL>|ROCK}hߪ_JE^}݃ L${Çs=R}`2?v̄ypΡjP՞~o8q+Wjd2Rĕ1hkd뱆p ](RTQX i}r8P4eY(\ #nև18@,4H<BB4.ߪض- ccc?@|䱹/:4>>jfa9޿Rr lLٯC̥^!zXVw~wu=`Q0m۔s82 CHD+G*X)0<fp˲ bE B'ud2 7v[]l۶O<9~N8<)za--M,(088SSS ‘KKKvh1qK$6QWrUѐ)1ƘsN#B`1  !i5 !0 R,t:mi4- ;Vv8}A XPJXV%66ED!#PZPꮆmu1( pug?+u!X.c"\(/Uv9OF DQr9j 1JǏ9N&(eWu}cu2  طox{:~b617eU8T4 SJIL4R8HX4:VJ%s׮]]v=<<|eY{l!3ư Ň1&c!u]gBBcbܸq˗_k4@(!0 !=ci|̂ e117 #.B6زH}%$(ز,ZoG/`Y+j``u ~qRAW)Uߎ=ScjhrrRHk$H!$M |ԩS|>wu{Mӄ|>JΝ;g```|۶m'''=i4PqfRm&h Du1&s&1F2vС;8#t>6!D0 R.L&CdR5eqUj%UVݟJ~j``=C BRZ=vϞ=;j\ ECɔP&PJeYjq g*[b\ x}CoJi BA]W1j0??_'l6r',kv"$"t!Qm鴳ַ&>Z^x"޽{U.nX\kwΝ;?qcm[J@zYGEzÙLKc0 MiB cL#4ɑ#G:xϤRc˲+N*wܫ-Y'V3vp3Y2+ @}jjuoru"7&&&NϷ( !DÛ.3MNU!1l]kydq xxxHVzONN=C) 2[XX⡢MMM(n`ii [w\̙3ahhh]u1XLJLMMݹ}kn=[F@z:8V}L&C( !hc"Bhhij cccsLӤ"1˿˯=PZlZ011wr57{*۷7 ~jy2ѣ2xSʦ^.q,I6%u#"M4=U*1Ct@ֆ uP.l֋P Jiư,hܢ竢"ej[yPT`ddٳgGmo{7aM!R)djZsz6 uժ! ƒu|sNl6 ZMx?!iR-(w̍'衦iBul6i c̞~;|[333,,,!G+Ȗa@pί$r ؔ-qQ,]V\.G<|@ csu14M3>}4Nkppm68]%]Tk굴, /.9K㜃eYN!B>XZZB'O7'x.^&`qeYԶm$]ZDD"`BqV sh4_x{7 ! !W}m"&''Ν;\Њ1>|js=?0Z-tiعs'd+ PJSl6_ptE51M3ꖦ zE[VZWC9mҒbR*`nn&&&M#nJ@@x.+MH8vQٟJݻWQ5(W2w nGBHTN0 <Ӹn{>uԗ|+23}$UDRD By^QN$@!H)ch4inMXVu_Na׮]/(er0;; jl6"밈h41Ƣ M% Bt]u0HnB J|t bbԿ9P*F.^q8̘{UU[:|I!wp4ȑ#Gw{gۺ#r9h6P׷%"gt}ʵ=qj9 xTZfi ۶E^Ajx \.Çʕ+{={@VpwBT],[ĦnxXiF:!@c#Ng>l{R " ٌ$ecUd:̎?I%g^Պ+UaQ߫fkIщT*b.\\ghh ǎ#'n&`(JyF|ZtΝ;1Bn _~;Z! }rl6w6M)"¶x=zT QcjGj "۷ch$9l6z. \i\v apXXX\Y!y:9}/ 9}=ϋt]Uc?sb:\V3߹b_ܥE)---AрZMӠjAPڵkѺ YQ~*0Ipn&y۾}{;B@)ׯΝ;att4[@ 4h4n#wiQ F۶m,..Ǐ'fLOO?K}!-Br^!P**I,qq+fò,Q;e2s{]`zz._ ###011B!hZi[>S\.#mxR<>яLox́T*NWU ̪<ի0009W8G9!OiMX4iu! ۶]K/US޾}{z```T* 4$@1}9;@)a\)/SSB*}0R\^hrna~~&B N89gΜA޷o߾O3ɓ'4 ̓X7Dt(_S"c q{\i-KDNMYd(9,\&c0 vΝzvZ΄[C_ HH< iR !$-(*| J%d2NÔHKCǁsAXqc ׮]f)(t:=My] <*lnG-EPBi+ vJ>|xב#GB7{oܸǶ}+ ]\WQC 1FxH6ÇH!?8Q|nCVf |bԏZt]gϞѱ ccu]6"Aպڠ&vwq0pmTjSM(֩Pyu5JxKf}j54PJ54M+w]_8p@RtXUpPJu]r GhW{mBc1!J8X(_'T*?B$P(w; [ {77C.Jxevr B! D-!DAT(^R*dsjcVqJ)m9{+$B('j0 pι l!x1GA>Ŏfї !{y` tr r9 tAV ;pu J7/ʵkl!7 mF,T*%0ƲTEGfǖewr 2+{v;850PJiرcO?›u>}жmΝ;ȵoQ'MӌܹZh} B|{ڶms΃v1>>7b@Vk6QK z mVkiqs2&W,8Hw>\EGmh |ׄ!DÕJl:^㰴\ŋ'}ߧс.k4Y MӢeuc3=^PJ8b|> 19g>7W~wZ8qxضmpΣ縻OnYeAT1!سgi4V^z6n YqrAMa^4JZ@ lԹ=!qH> ˶m'XH HȊGBBcϞ=s!\.G+墸^ՓSfXK`TUr d2kkiZrO!iF(j }3GO=\EqJ)}m|A `{|mϿo3gpZwy' @..^g]ׁR c8O,eׯclaa,eq4EXBͨ,?/zqn19 lMN~z{qq?moAV{N?r!X,vǰvPuaϞ=ڵ륹Fu]g`d6V_Vfˆs뙭'.BAavۻy+Y5@X;vJrT*]^\\tlcu] ]R2snU+ Tb~~91۹o/8)ZzeN'|OMHw?K䚑0s B~G]&S-/_ p XXX=3׾Ar.,,aL&CKbax+Ҏx*q1O>ͧX:fi24۶ao6~u}'`nn.*(^@2 ,EسgY,~ǎ-19hllLCatW["-[ez=cBH"]兺Y2`FӖ SJ [sNDw|> dܶm5/^G}tZ|`YMRljj&J0b 1'''իWY*baPq0 fi_|?y,=PV!u͸,P+ >`Y9DžB1dGRFa^Xh?*ZQT$7FX܅@cM<=/ lҷ<9GbQuhFַA)-:P}?j._:kB\<4bR4:VU255RuIK}j۶׿\VO>$4ȗE0 JA>ݱcG>JaJ)fa媷!$"~ -DVy/?nŏq|%4qam }# >">8o|GFGGjE)j5d2 "ScrrWpq4RJ۶k׮5_Fַq?t\?bYd2;pD~^ *τXP*+񎁄.$eқ>t"XF@Bd@-!!,b5 JJR l6ZRuʕ+-)Ƙ7M:x,[4QJvMf*;;; b?m,Tc IR044drtZclxs ],hmX iQQ̈́pλ HmpGA/[",hug%zAm6h6`̟~ c8u[e׈LNNr08!k,cL_zT*v 000=,--An,%{k@*ʌ:tѾ "a-WP^'"ZbIu1(Z^P;|bEXQ@O2Z"XsXڱzW/xf0kBl-DdUi&t]fcyXU9CzꩯfYpwñcʕ+jCZuܹ3NQ {BzTz l6BSJYqOc'EZCAo!pKKrC%Zd-%mۆjj?S\u@X٭IcAy(ǏOZl0>>pQhpI *ȕlW*9wD6xZ8+NW1fu+ t­/VǦ.p#0BB"kJ3w׮]pUJy; )kqVΚ- .--msՂpZ_`rR†Oґ lȍ6hh"@ : 8??cjn_'&X#DјyB%GFF̙3pupwm099 f[]PJ5-)߈o?A7ܪBI*xI@:G8 0ɰmT&VF7k^0my-go#rQ?Y)<ur̙("l :t .@{nfK/AV,(l: Y-ͤs6:/gWdׇb 70 dl߾=k۶!SF{>f)?(ux(ēb*rQ!<ٳoOZCCCsN8sL2x+Jf5cɺu vW+|^x ;Ɂv9Di IDAT)E2p ,!r9`A8nmJϿ!$ ](ρiPT{K.A044###~BHl6fZ]Ց^ΐy@!"1ـ׊l^-Zp->3LA)mߓ^i}!u ",,, \|YD7eC}kE}$>V+ղ1p]w}L_ @G'2M3Z=/fD d df؝RB mML&{( B:r5oKC>XY)o"XY+q!9L Hu݌/^S5C\TV@%.NR):Pf066022/ VH/VVMƳt;(^[ #|4M˪jZ&'$$N21]cP u - U V;-)5!rj5?u;aE]]BwJGѵ|J) cyy 6#USTF]ӱR۷oΙfF,;}]m@K)AtU\r{%ZY*$LZ7J)<ϋgb%gaBlpJ%hb-}q_NBz^'Hl3\#|ljw ~:[a{5t!Xu7, Lfjz<6|S\c7>^mNoA$YXHߞܥRi>Z~-A d/om|y9B4M^>S>pSp0VFzW;u3ɬ zCǾn$ez[X13FBL z5_uB\!̛fR[b v7M) L`X)wjnՒ:x,nb3[z͌QO6f۶~Φ6`V4lɠZjo=+*(olVM%W6.mZZ܎QJZL`s͊7`v. sVW5%.uy== ظ_пiDEu`e+'& s+NnۅB"_)&H.^ښnN͔@ֵ[<e `~ynk{lȊ뙥YahP [u+c8o|5Y?Xo}?I9&n.i1?86ҍbALVU`o`UJ|%o=h'm"]"fīBdFDksHӪ[19̦@4aBXkCYa] *=8K 5zu--pf *O}_X6 :y-8ܿ)F´nueuW'{d""+HkD<6$ {EjF^.> Oą՛{ s!EV}-0UT{ N H#bRAdxqA$VD,;JWdkYbYRL7• ~c!6mW4mBis,o=]X*e)0X9.t!7M% qz]̽^X ɉmV,3u aiͰP{U,"ˇ*;3*[ruZb(Bҷ |@?!iG8wy,: W(+ p]w,CcεSi8܈V!bD[$Wtp' "Q 1I_iQnұgs{=9ǜsSsjWP^{=k9o<~Ckeh4JV1rO.)[5J?&Xdefve+'+Y)ce_9 Z0ph.\`xF⥂S{D~'4`oZ NSfRXBRB)%ݮȲLw}n;h߿hZieY3 jt$IbǤsF@5gۉLv̷RCb<WﵸiRݖiV%69N`HĴm,u#fS S (Be)ERJE-R&ƘTH:ly|\@$IJ)%ʲZk%B@n֪aЈ<7O12-2B$d<Ʋg@$I$)iYv$QRJЎȐVVVɓ''"W2qt 4`0 F~_yZ,Sz _X*HQX]]$I>UNyGIDy.>Mj#x, YEEQ$(4MS 6Xj-F <'lYr<VQiY2UJB^Լ\NFV-"ʲl ! !$"]&fCauuUw:N#1e)LHen]<*MD`)]cěIӔ(ZatQphr+N+`0H;WlZ ($I$$,yAK֩{SȴnYx.]RDBhAs+  "ba"LZK!=`Վ$IZJ1F!dQBEQ&I"*I1N#677Ê5A.0 "IY̲LmP)&I? /~wu$AQxGq!t]3O7Їȑ#ӧODQdls.-4bqu+x !)em)v-uB$^[[i*|qID.!;@1gdYyi:W"eYr#%)4Toׅ΅P&"1&Z}5k1FQZ yk"RJ#B%ԣHu]ni}}] 'Oƃ{V#;@*.QQeY$Ih@c~'i7=Xc,zI52-6T=fQm~pF}c׆_ƸFc/wF%<`qsC h g|w^Ły~ohVVVL45 VsssxGNQIY:nM;Q5bߜ(+ݟ۞?3 n y?~?\}31I>b;)e+˲4I?~ W?Klj@&l0)Ew}`@Lwch9}Va'إY2sq# "oP}urA{}7$ր xcG/ܿ)׋\)as@"ґſsO=~/yϼuQW2n)WN:q8IMq+I]E:B|םw7N/P {I}6+oiVB$ւ!aI/BqxeA~n ?# Xyp=@(Qx3>@ثP|D!̻ʊc`[B{o=10x玁;GG#\ #xF#vhԒRco~p~ΣǐmAy#_ u=xolkM})`$>V_3. 48f}3ƥ:Fh{]? Z副}ӵYYyGQ177W߿_=C.ƚuaTF`)iI)Tk%_K7]zsMP :I  aOc CCm @ AA@9N = $"ϯBJF:Ǔ} ᕋn%ʽ HH2l!{!dV0F* EcWG^3kEFAh]}Ӌ疵0ٟa |+*2*˒/cYEQN#,{{WyOQn|!3 䞁+cFH"? ϏxƱbɆV=–P|]yFV0xc(:ގk0ڝX0(Q`Ϡøߗǣ[=7Kh]Bkk.0$?~#v,KDZS rMH=x B%$cBVrA0אÌ>28[+lmӤ+YVEcu7Ri=tBNJOxsR4&P(0BQnGQh: IDATȞ"S.O4ɼ8IkMJJߥ d9`=`4(V5A7ž/RH_86?9ޢq}[ʜlE HȆѰ?F80v @UDs)!'=w;ߣL d ^:uR>tDQ\}j+vRe赝J3%Q\ ]G r "ܹQ0b@a6zҢs)ZHm6ZA"v-r\dβ̟ Dm@b )E:~68ނtJ? @ RÅIDviKuԍB@Ė- ҿ&8#(\8QAhMZ`%+fݓ-dHZSףx,P$dؙ96GvV`2206#NC "/{myv;^Ks.~ !ܵEI\`*5-`Er.+r.. Dz!S Lk D+h@q:( 8u)h]9Q 0eN] EV>0}(3I̴nW@!!3h&oK(RJUwwVa\i](@ ZFByi?1% iPd8F&1c[0XکQ9<4FmٓKȎ!X2$@ k&u?䚚=ֶքNv$21+sEXvW0pn pTsF ?5kp;(Z8Qe ^xu֦$k NJn9e`l*h*B@k7`A+V AaT]g@"m4mB_V4ͤhߜ#"aB#$R)!ѨyWUd3:0_;t"%)5ѓ XPW>!j '~mBw_#4b8"FȡG`C 2 Q=Nx 5*H6 ^Ce`K./"x}XC-Atx6:o:V}BZQHe8DÓ=&nt3NLh 0P@ikӍڋ]GCv0>gD3b(`De+"?Mxs.Ӑ^ 2m]hD d2돵F5rkxW Vk=/%TBtª8{G)qF(b*x9W;4& Ratn]esi 3 e #caQ%@ pp$HkD) C\,5Ve]SG?oUΪb)'{jIn .jQ koRDIUv~]nXs!Y]]5RJn:y&"$?cdHQjd"va '[" tĔ}p/7dO*%uǏ v`0hV3T)c=y˧O0t:TJΝۗub߾}%)zVL)gQ?!|3D%aD3"XCbBxAgEY"yj<5GJMlAsɻ9}'tեup)YUS2+YXut]G]Ϯց>vQ) 35 f.U8~xr…ZWo|>,,,ܕ,C J绲@Cqj DƬH걕&JhaQOD'dDk>j"NeHD-d2+f%/FC%jv^l1;54., Ps6U.Y-? (cy0|VnEŀL5{2; WRՁp} whB͵sc*B^[xի^5{w8p๷v[Z( (~(e+ÇO}/}̙3~}OcǎN:UJdHu/M~뛅`$4A10Jz 5f;5(=P>qVY9&>@TΪ=t LkZ ?s cXkDF|sssXŠD,gPhtv/~/,//{_yceeeHW 7waY7-ktTN&qs)*wc519v߅i'HjrS՟T&p﫽`o=./ -Ռq (]Vs+űp_vrTp?\`L),Wm:2ņ,, }Kya5kjFc Wh sOۨ Vc *0ζ8[!^lUv{z84jƆ5eYSl\a*ٍ<@%ȍ3f1QB6Equ^ƩM +h+QA @ĭ\Z~ W9FzhB0c_?߫:_刈LiUz8FdHDZʈg'BDT Q}ոe( M2ŭZ(׃*,Q1j@d)^}@G+\]]mI)_җBq,a)ۿ_+ηO|:=QRfYm(''|.//ϵ>lܮJ{^@-eRO}SO(`&RvPJa8jA<+ieYV҅{X ϔܿpRMT_e`S0J}pJɖ J٥ j-me!BFw)( Cq5-7vp%:\z?'[KQhlnmW!ごG6=宻/{˾6MV4M}"2/;8P>|8t:̙3R$w,],KHQ(׊pHNL/v߿~_EX/ӎΔi]ADiD Mٺ ڴ8hj-(гWa|&:°Do;P1Hn9>SG'}W ֗cZ%QJSZn3" `TKwM  AiR`BFRݭ4+͊t":Vs/WES>(7r1Ǜ硵mP*l/gP8J`B\SxB ^1Ѣ3ALJ4`r"I (Q޸Rx#CzzΈ3YX+Ρ(di8pٽ^/|<=)~}o~y^~w}NQ<6Rܿ/"YXkC'I@(Ck%S#lB{鬘ZB3!%XB*fBP j,+Q *Mb2ܻAd' ϓ ]4(u5/ $"Iōul*sW,#ԫᐬq)q\rt[Mc7TlѼ`!V3+o4@; "NO~bӹgPJ4Rv;߾/Zk-vj8{,!*sssHB I0IOH3IYhoVNDvzWZr &hmP*['D "STzc[:Xd`|B[cRFELo 5< vO sa rűBFu ҵ-`f"\%g߈]sUFXHcOh 3nVa轎 .Yj1ց:+ 8qΜ9#|-2"Z-he]c,RJc}lll`߾}X__G<2<> sזRJJD);# 0:+f Nגvy%Eֲt^?y`?^BtR՘"ޫE >FPή+M@wu R?gWds O&d1c0XƧfPuay7\s\幍Wy$TkRn;\U1Q"'~ϲ ^BAJV$IpY,--!MSZ- C۷p@( aE.0hZriiΝ;wu2S $&S 8Ͷjj |AoCPش` ه|֦|3&Z0b+2ؓqxqr=CKDX| sayN7'D:='|].opSGԔQօm2$F̻º7T  6^{LG@[Jϲ,n+6b*^b*#ϲ\%ܽtWW﫣 ?뚍[(W{1o$k]v1"`$.pȴ^ t:H)1 vؿ?xꅅnߎ>XfJ܌b6Akp] ]v \MhjLj8C' XTuPm@MBVL;G_H:a3O&()+z@M ,5{jh38.BTM4^&1>^8甏Vˉp JЈѫ}Mc]s\X3:Ǝvq#d.@Lblnn`pC\>dDk8F־HpuupA> ؀1sss(@JŠYY: )AQomo˷U;n E%&[s,k)Bش@|V]4޺KC\8ՠ&N_l vb Mv ҈7U IDATWi(U'׻nB?\iU%$z0k9666XwTncss^!15JvB}S{˲B3@x1!QWr 46ޛɅVʂ0;>!5[Tj[7;*cEDKy14p+7`ћ]XUQwNfߣVf ԁuB)|&!vuC Qy*w蓋X#4; .~tBsta]in1D[~bMc#Xp ={z*. dvȃ NR)Ui3@dOvSDי۔wik= %ŋY^^~q FQlӭ3e{GYX__( \p "lnn"IO֨4bɲ ?Zܑ7 xu$˱\`E^3ej.z80j)A؊ ˪[ @rƧNjA_สU|[=ٓ=ݮ*2;{짎9E$(Szxccssn׳e镅o@(htǚO~Te~iL)^9U%vLWXDVSVp5BF]< { pHE_ҧN 1p6̴߃\ ZW] LS#'ׅjjIkUj5+)UNב!KTUTEAA:d +GUGݕזe)IUG"^,~)%:>OP1p0qeY@dCR Wʂ`+k͹Z6YA,!0=q&8-.\zȣJOȢ:O"D i+VChkFz[iחLQ+Ձ"iOL.!^;. jpy?yG c!1^ccH¦їL>u-mǫv]UsC`L3߻2 YK^O,,,+qT3&Jqb|lQ^Y_'>$Iֵv}̈vR 3=I-\[L(LP@Qjvv Ol<-i"7}\vE0++\?=ͪsyLgWnaRVwʹ `Ri{W[:>UwMk6xDbR?QCMBkTk8tK 4rg5#Xi.YKky}-m+sssSv TIL-b޸0溊q…ϼ}NǎOP fŮKu-Å4mB߁hm8;%8QqV'vQ+QQvIz}!|wc2H ¿K!j9H<|K7"v'a6Sxw&=*ݼ!:Ѷ5+rG-˿'~?$^]];7$I^^^Ι S915I\m8FrEO}~~c>讠`F@6G64R p qB $ni냕":j c}Mt":-ж֢y!\=a'nu ʌ 7 #LDg3 PO/+bˌ004ϥb [ @g#.6XnPK t\XDsShsg6`` ;<;L27׹ߝȱc6{~k^_R޶zv9uep8#,'Gp>Oo}u:չܹsj70# $h/ ҜƻU ٪-Z`(WZub'.E)V\\#R'] 5|OhN̓xϗ吅c6ω A^t"C$sN켟bWT&&bX!h q NJoh*:6r"_J\@+&Bq̀ZC\\C*YrQǧ4 Rq}ԩ'СCZ%n  9bS0/|o|CD$܇G v ~‚Yv&Lb[]>?|Zm#FauB@M/)"FpܺǼ!-?o;q(ܢ,,84b[j@ b78vgh̋;&܅k`&A|s2^MǓG$#bff 3\-ѷ;݅U;<ެ`ꎌk08?=;y#ȧw9W,//W:q9"r]`Dŋc}䵯}ۈ|>Åݮl(0u4(a97QKJ ]=AlJn@v/A؅%@h!wî.ua _)VKloxk8im8ipO[0\0KRޘc&M8{ ve1 od\;$x#G__~镯|7Yzֿ?;'vPy^hBeF̕?S?S(1f/9P[ߺ )V'+`ᘈCN|k_@u{?{Ӟvbii vX[[sm B^ej҂Jn2^yF\6h WW'؍z(P?gWDe{zGVK}pG'GH@wxgߺSC-ꆈ?WVVs΍oŻx<>|7絪,˞x׻4Mv4>}:%n#Q Ka;T&ՅƧ}%D:dP-1%u8 eGUIGDŽy;йէC}*KsT*ʃ)lR`S[pIcB(:{b~Q b`bk~yc(i(b#I`3>/|Ξ={,ˍ'x" XfG\Ci s u,,a΢1.fhp ~`х왊}#Ί@TCbp}B%8\`EQ,o e P ,-m xL"^6x3N6ХOIIۺ@;-ȽD+dDGxgaZ,+S Fiݟ] u 5ge8gciynn1%<βb+,ξU!ơC'xb0# s퉴JW!L`uvYrNJp+sZٱ!t8eJ%ІϒifU|ѭ-\=~jLb"O&{ИUUw68qxϫu 0FʹDKT#W]C0Fc] ;DK$f0H]| F'O9̈avSt rai8TZ-@PW'Є8Q,B'tˋd[]N p8$ƈKƑ] `m-0wcsYnLPe7LoBB* h "OzՐ7"3؝ -QU_[7+j.ԦJ~76XvoZ4,ξ] O>]5B;zy4Ҭ7V%"OPKe&S v:+Ea.VέU&!Ubč:y6] ݮ"ܒ M7?[W[ETx<; H{F]KC' %`Ux:!R!ǜkU-Eq̅u&pF !Q>pًƘ1vYJdVMI%(܄;X!QwS%S]Xg%FU힐8n=0a Ŷ1(T8>w\/v}8I@ď`0νc)Ⱥ]7F-iB 5B 5'mUo] vM~ri9M8Tp~̶ҮB^+DdRŠ%$Iy8 -@+./XBQBk> ŰZ H=Qq5OZ <l}+U&NW\P/uzH}M~ фlYK!(y :pwN-"Zq\X۩D vgOM;V]C`ݩk+svokra1Ϻ8}՚=y6n6e&NyBi{"˰2xE솺pV\X6~-`L/̑aK!Ԯj>$]6J x0Ʌ1bq%q0/:=ƋmKWңؘwyxwW퉮مcu`1vg0RnRdVi(/|?JAD3ƚb b[˔SA=ђ[[@XNv}mUՁ4*=E،I>nգ<|HtLZaB{J]DDaxb8crFnB9r;A Yx]ԽK-Rkv1c2Z[ Z@ ۓW>og] o"ls4;7:Edb Wx}f[[O]XiJE/zG?m(=#3@RZ \_j.I>.,p=Oh{* : 9e[ uk]Rv9a1bC/LG MY:nbQEux)";!)gaq[&Rv#G q®e&~$]3[{r.xr@!W/fb;k/s0"Sӳ[W7BNK *O񚫠sc`,K u ӊ eCČ3@v/'&N'mJ֤@Fj(u5W4sG[SC AXL#?4tP dB9(T't-a*aha[ag FAyv2 jި ?Os_PRM{Dzp YEBa.`l){r%r=?,5bRG Y=?o0zK BCy 6F|1al^qg+DI] * * [@7 YXKAG(粣tRLfZJ@tepMfaqWW đ}g,/bdY Q-)ࢍ!8TV[#LdRXX8X^;4NI\0n\-?8-H n_a,Dvi4*<@J@N)@;7WuGۖl@k__t:(@+aظzkT!Xy6+9eXhEz$B`ssWgI ̑Z sl 4l$I;dB2pR8Ą1XgD\M ce 3k 0(ZSՊMXA{[YYZZ0 OV{m)N Bc\t;B n" 2 .xb/Mzc\w='YXej\3)"`~j:^H\LH? 4YMW~89?/Xجe∾ĄE:8(QR/phJAϴwLI Ss_NK6"u$Œ dJ a1+U647Int A=uPf?c3&{Bq =h Ԫj<2G $63e]>kEdgThџh Zt  $kHi 0}K&5D@R {G?T#}^?q/}g?m۶WlݺsΩ*,5 r3Dxж&, ; iH@(^DI^slvxq%XXEQ1QP)0^x6 璆evU}El3a=wfҀIݫV$mDXFCP)+Yb;t,y9{kh{-B~&z>ţAc7Q獈ȦJ G7߼3"(Ӕ0~Z51EC\!Ԋ/U‹6fRwGJ6 *S9Z($$VQ$Q6)FظL1מ :ԉL‰0 +6PmtL Vn]+үVJ82,&2g*$qHLX|!$?7qwN bop;|+_G !h}g60;$3n\@ҒCͣ~MozӧWVV:;w:GT0wGˆ`:@hFuGbNlDp&@g3q\m5^m9޳l}': ՙg1J,. VHfoW,tw(1k>I+<@3Yo> ݐN+K @6XM%6&&Ҵ~jh$vT?,,"2W^y廚}|L qvjER' el3=%{Qv0g@w}FOcִQI9E+Vk:isC`4aSLklŠ<-7aE1ʚ`iF5?G6$D,ٳ犋.:cM742)RfthNj5<o6:iMaxIKi)"!IK\pw:C'pBk߾}S}hJ/N!j*?[0M";gt|N("j/7뮻ݻ]є0b ؆ 4LD?37AMαDkep(1@˾i{e_5Us?ZZ dF!MveH1j|~vl޼9ؽ{QJaڴia v' ?6 vٟc@;Jqvl)\ 2$Vq:7m4ش k DO %pSNwe$cҁֲ1PB2S!NezNbNLtٳbVjsP H$q =QQքk?_|]veZ͛wi"S@ cࢮaٕv6n[Da+%vi <YF99‡k76jl:8q1hYGYI*=tTcpIj b1D7q U&9o 5`M=} ,vı cHx9P*ѢHVU~ zo:sz(m耣t՚U\fFQ܋1^N7>E/zr&əx CPLtBQ&rtG?K.+JʴV% 5ԡ؀Ȥ/p\&,JX$u}{KYSݬ *s 9cd,3Gqyc; *&QX1mkΜirL\w' ^ڢ;s.ŝ7l\䀁1aBO=yDZe &dL|~@1 XܵkWk,DS@zL+1br{[#kH#^E0H38wR &_"̘S=L ^n:gsHkʓkI*ɦdhwn_Qy*k`Q'ڶw3AIOԾpZ蕜E)QEsDjdEaeWNٰaʊY\\f0{{:ABCf;i7ruPگ6w&:Y) wbk[.1CqU8΢)ծ]2lYq>C!kΒۥHa ց_a@ϸîR NP\qE̜i߾ lfAߟ @* +HNzPT0X 9]&,Yjn(G&>gF+OJL_䙹∳8fz I'sv+ŕ]?!FDIi.8#d5d8xBHڄCi&qg$ᛞ\8G8uY*NЬbM ,Y) ?6]9ܨ` 3D1)";Ӕ%x38)W'O1VU{᙭50N<3TȞK&:nE9-#a.h}H։k׮mh Z"B<~hLyR^MQt0WԄ5&l5=ʚaxnZtISL^Ρ|'M!Y\/aLh%dA:R]זJƓC:) c Ga)x>"qĉWGK k@rwexxNk2"\uUwc۷o: !e4]cM4f8 VɟB䃾c4EN}f3Dg]-Ԟjر"N+b@h*1>PdJ2ɂ&ָd>Vj 's\ u@i:X}?G"t|$\O(pϋ0TyF$dޝ˵28<j#%؍}.oRrgm.ԾZlycd t^}Nԫ9`M#y@ai1 d3V"r䋕!OI=zK3GE) 26YC1HA J0(G)*DҤmOMQ1.V߇sO@3RZd5=e {kY&0jw(,@X8weבaŎ5.EΆB 8-"L1ka6$Wu'9o慝'4&KF΄mZc̝Fciݝi<ҸGafLE 'lªvE,Yz' BUjDF-6D઀@6{i :]&vnF}sGN\/u#bӖX}O;@x/8x_I~F J)6 Z̕J%+X)Ӧi8Dφk{Fuu`,TP &"l&k7IrZΝ hhNHk 67WKZ<+;M ݞ=HLins<*wݻJr䦛nhb>mc7H)Ъj)c`ӄH^~L`"^-^[o ;LZl5H{&x y tj~C?bMjAF'LX{- i/21qy0ƛ5-BW/0AJpPV}fXE{Z J֯RZ5 u;vE𪫮 ݻ P_57{l dزe -//A2Au1<ܪͭ|$l~VK4^RvԙX2%kf<$繶/Zr{bavS.7vb†BeUpg|@(rW΄9:3n,,95cMpo雌BłPypk=*TS4z8@F YkM+++&2DA( b9jž@1 &"%U͙o'2dӞ- ,5 ,1 zg9s3꽱ܢ{EA*tPؔdfee͍+p֬Y4 8cǎm^xuJ#gqFk޽y#f vM؇Y(wOO|Y܄#퇗8Հ9l#ڝ$/$Q&5JR{y%UkheR Zig~6 "wi 4||Z Ǧi͔؇rQXN/BCAl69i4fg7]8ƮƇ>ӂ`nnl6JtjAԢ(AP3T Y_pVq̑rIN[÷w~i_x:$nxq3"^^^HөjJE(*j50j=1c bNC~0EӉ vX:Z-*Xu?p| oy f^ywx=5cU m`5Qz/eq9nj/~xtѨ~O3!οׂt,_rM9@Bi@8;suO >f:X)~LG72λ1(^l$#zx* ^Ó${| iH!YK%t3=%xϯ5`I~i'hN !3w<6#7¿o8#i uWa_gް} `{ X3\r [}`F5.ϫKQ,!kvAI¾M?b|\b\l`mr18ʬo= cz*1mncN}RLk$ 8O7I>c03:<ύ7"`\G4 ϭӄR`8߷s^\cݛ\$ԋ DEa":Xm$ſD)z4xY/.A Ró2FK.Os6RzTTǧLYRJJJ%ۯNa[\Jݤt\%[UygxR`mm(b09~אҭDDž F89tg.{]GLgPJ{Z!,U.CM=g<0SzTpT86;-sR#+;CF pgAzvn*9`?voj\ /9]%'N,(R5H)}l: 8̄ ^2}3s!y/Ei{n?{#u@4mgc~ 8+96o}s,1{pV}, y`DL*mzD~IËw`LK>ß!'dzjq}9o>Z0PQ?% 0G>O:<&DxJxw? 6. qI`G>$^-}$}<}8>}qG_}+CC{->o}w}סkzo,s] -[D4(8b~QT] <(eImLt Ro'[ccݨ7 6/Ia!}}ƴ\D?/> ̀?gx@%D^ﻂ6kP)DDۅc4 OlOШa4"lw] Yyz||0$J? x$ E"? ]bE~*l72RJU!~ EҏmKH{#)G-Y q$")kq^pDT0kms[IDK!&s:1U G?_~dtCw{r.k!Hx,p LaZIDH,N<(xbt6dBQD9Cy$?%zȢADVyyuFI%)h37P>ҭ$Lڑd#5I"*+PI*l<[h>ep䞄$'%5g60QyDݲ$yN?);5=M,/.^rSv452&Ϧ%slD$q2i"jjH) 25h{ ޥ$p/8EBdWmD D&&ki^ԃ4 a>IӗK\kGHGIR~Rd/y_XtI9^:믅nt[џx9.zk)914C;]9 31CukzeEc}0pf ]`eI[剂"e\^`g(>&:м'r -}kkȢxwp/,a?' %1iOCP Op4*hf AOaU5|j>ƒ/ yptFQQ%Q^ޏָmY#}!|{?MXpS 28-`\B?`<21vͼ=kGu=~^(%~{]5JO][N 8 lnpL0֮?, 뾸W_v("?pN<95X~҃M(sQ% `2J5M&|\\IU;fr?߿k?fH)uWtƫfƇSpLLl0',wX@Y~xb=l8 Z{^{?C8EpaXW!1f" AgkIENDB`openconnect-7.06/www/images/Makefile.in0000664000076400007640000003767412502026423015067 00000000000000# Makefile.in generated by automake 1.14.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2013 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = test -n '$(MAKEFILE_LIST)' && test -n '$(MAKELEVEL)' am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/images DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/Makefile.am \ $(dist_images_DATA) ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(imagesdir)" DATA = $(dist_images_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DTLS_SSL_CFLAGS = @DTLS_SSL_CFLAGS@ DTLS_SSL_LIBS = @DTLS_SSL_LIBS@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_DTLS_PC = @SSL_DTLS_PC@ SSL_LIBS = @SSL_LIBS@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ imagesdir = $(htmldir)/images dist_images_DATA = $(srcdir)/*.png $(srcdir)/*.svg all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/images/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/images/Makefile .PRECIOUS: Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_imagesDATA: $(dist_images_DATA) @$(NORMAL_INSTALL) @list='$(dist_images_DATA)'; test -n "$(imagesdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(imagesdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(imagesdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(imagesdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(imagesdir)" || exit $$?; \ done uninstall-dist_imagesDATA: @$(NORMAL_UNINSTALL) @list='$(dist_images_DATA)'; test -n "$(imagesdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(imagesdir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(imagesdir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_imagesDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_imagesDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_imagesDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_imagesDATA # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-7.06/www/images/openconnect.svg0000664000076400007640000044413111641071556016056 00000000000000 image/svg+xml OpenConnect openconnect-7.06/www/images/rightsel2.png0000664000076400007640000000020511641071556015421 00000000000000PNG  IHDR \'. PLTEcw, pHYs  tIME 8?<IDATcXj;KfQCIENDB`openconnect-7.06/www/images/right.png0000664000076400007640000000022611641071556014636 00000000000000PNG  IHDR PX pHYs  tIME "#5IDATcܼy3 $&~f@LȜy) WOYvi tC @7ai IENDB`openconnect-7.06/www/images/left2.png0000664000076400007640000000022311641071556014532 00000000000000PNG  IHDR 2Ͻ pHYs  tIME 7s2IDATc|,ٳ(|B `E( )+$j 14-$1wFIENDB`openconnect-7.06/www/images/leftsel.png0000664000076400007640000000022411641071556015155 00000000000000PNG  IHDR \'. PLTEcw, pHYs  tIME khIDATc``[jsg* m~wIENDB`openconnect-7.06/www/images/Makefile.am0000664000076400007640000000012211741401073015032 00000000000000imagesdir = $(htmldir)/images dist_images_DATA = $(srcdir)/*.png $(srcdir)/*.svg openconnect-7.06/www/images/rightsel.png0000664000076400007640000000022411641071556015340 00000000000000PNG  IHDR \'. PLTEcw, pHYs  tIME "IDATcXjU x 89IENDB`openconnect-7.06/oath.c0000664000076400007640000003376012474046503012031 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" static int b32_char(char in) { if (in >= 'A' && in <= 'Z') return in - 'A'; if (in >= 'a' && in <= 'z') return in - 'a'; if (in >= '2' && in <= '7') return in - '2' + 26; if (in == '=') return -2; return -1; } static int decode_b32_group(unsigned char *out, const char *in) { uint32_t d = 0; int c, i, len; for (i = 0; i < 8; i++) { c = b32_char(in[i]); if (c == -1) return -EINVAL; if (c == -2) break; d <<= 5; d |= c; /* Write the top bits before they disappear off the top of 'd' which is only a uint32_t */ if (i == 1) out[0] = d >> 2; } len = i; if (i < 8) { d <<= 5 * (8 - i); while (++i < 8) { if (in[i] != '=') return -EINVAL; } } store_be32(out + 1, d); switch(len) { case 8: return 5; case 7: return 4; case 5: return 3; case 4: return 2; case 2: return 1; default: return -EINVAL; } } static int decode_base32(struct openconnect_info *vpninfo, const char *b32, int len) { unsigned char *output = NULL; int inpos, outpos; int outlen; int ret; if (len % 8) { invalid: vpn_progress(vpninfo, PRG_ERR, _("Invalid base32 token string\n")); free(output); return -EINVAL; } outlen = len / 8 * 5; output = malloc(outlen); if (!output) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory to decode OATH secret\n")); return -ENOMEM; } outpos = inpos = 0; while (inpos < len) { ret = decode_b32_group(output + outpos, b32 + inpos); if (ret < 0) goto invalid; inpos += 8; if (ret != 5 && inpos != len) goto invalid; outpos += ret; } vpninfo->oath_secret = (void *)output; vpninfo->oath_secret_len = outpos; return 0; } static char *parse_hex(const char *tok, int len) { unsigned char *data, *p; data = malloc((len + 1) / 2); if (!data) return NULL; p = data; if (len & 1) { char b[2] = { '0', tok[0] }; if (!isxdigit((int)(unsigned char)tok[0])) { free(data); return NULL; } *(p++) = unhex(b); tok++; len--; } while (len) { if (!isxdigit((int)(unsigned char)tok[0]) || !isxdigit((int)(unsigned char)tok[1])) { free(data); return NULL; } *(p++) = unhex(tok); tok += 2; len -= 2; } return (char *)data; } static int pskc_decode(struct openconnect_info *vpninfo, const char *token_str, int toklen, int mode) { #ifdef HAVE_LIBPSKC pskc_t *container; pskc_key_t *key; const char *key_algo; const char *want_algo; size_t klen; if (pskc_global_init()) return -EIO; if (pskc_init(&container)) return -ENOMEM; if (pskc_parse_from_memory(container, toklen, token_str)) return -EINVAL; key = pskc_get_keypackage(container, 0); if (!key) { pskc_done(container); return -EINVAL; } if (mode == OC_TOKEN_MODE_HOTP) want_algo = "urn:ietf:params:xml:ns:keyprov:pskc:hotp"; else want_algo = "urn:ietf:params:xml:ns:keyprov:pskc:totp"; key_algo = pskc_get_key_algorithm(key); if (!key_algo || strcmp(key_algo, want_algo)) { pskc_done(container); return -EINVAL; } vpninfo->oath_secret = (char *)pskc_get_key_data_secret(key, &klen); vpninfo->oath_secret_len = klen; if (!vpninfo->oath_secret) { pskc_done(container); return -EINVAL; } vpninfo->token_time = pskc_get_key_data_counter(key, NULL); vpninfo->pskc = container; vpninfo->pskc_key = key; return 0; #else /* !HAVE_LIBPSKC */ vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PSKC support\n")); return -EINVAL; #endif /* HAVE_LIBPSKC */ } int set_totp_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret, toklen; if (!token_str) return -EINVAL; toklen = strlen(token_str); while (toklen && isspace((int)(unsigned char)token_str[toklen-1])) toklen--; if (strncmp(token_str, "hotp_secret_format = HOTP_SECRET_PSKC; ret = pskc_decode(vpninfo, token_str, toklen, OC_TOKEN_MODE_TOTP); if (ret) return -EINVAL; vpninfo->token_mode = OC_TOKEN_MODE_TOTP; return 0; } if (!strncasecmp(token_str, "sha1:", 5)) { token_str += 5; toklen -= 5; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; } else if (!strncasecmp(token_str, "sha256:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA256; } else if (!strncasecmp(token_str, "sha512:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA512; } else vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; if (strncasecmp(token_str, "base32:", strlen("base32:")) == 0) { ret = decode_base32(vpninfo, token_str + strlen("base32:"), toklen - strlen("base32:")); if (ret) return ret; } else if (strncmp(token_str, "0x", 2) == 0) { vpninfo->oath_secret_len = (toklen - 2) / 2; vpninfo->oath_secret = parse_hex(token_str + 2, toklen - 2); if (!vpninfo->oath_secret) return -EINVAL; } else { vpninfo->oath_secret = strdup(token_str); vpninfo->oath_secret_len = toklen; } vpninfo->token_mode = OC_TOKEN_MODE_TOTP; return 0; } int set_hotp_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret, toklen; char *p; if (!token_str) return -EINVAL; toklen = strlen(token_str); if (strncmp(token_str, "hotp_secret_format = HOTP_SECRET_PSKC; ret = pskc_decode(vpninfo, token_str, toklen, OC_TOKEN_MODE_HOTP); if (ret) return -EINVAL; vpninfo->token_mode = OC_TOKEN_MODE_HOTP; return 0; } if (!strncasecmp(token_str, "sha1:", 5)) { token_str += 5; toklen -= 5; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; } else if (!strncasecmp(token_str, "sha256:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA256; } else if (!strncasecmp(token_str, "sha512:", 7)) { toklen -= 7; token_str += 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA512; } else vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; p = strrchr(token_str, ','); if (p) { long counter; toklen = p - token_str; p++; counter = strtol(p, &p, 0); if (counter < 0) return -EINVAL; while (*p) { if (isspace((int)(unsigned char)*p)) p++; else return -EINVAL; } vpninfo->token_time = counter; } else { while (toklen && isspace((int)(unsigned char)token_str[toklen-1])) toklen--; } if (strncasecmp(token_str, "base32:", strlen("base32:")) == 0) { vpninfo->hotp_secret_format = HOTP_SECRET_BASE32; ret = decode_base32(vpninfo, token_str + strlen("base32:"), toklen - strlen("base32:")); if (ret) return ret; } else if (strncmp(token_str, "0x", 2) == 0) { vpninfo->hotp_secret_format = HOTP_SECRET_HEX; vpninfo->oath_secret_len = (toklen - 2) / 2; vpninfo->oath_secret = parse_hex(token_str + 2, toklen - 2); if (!vpninfo->oath_secret) return -EINVAL; } else { vpninfo->hotp_secret_format = HOTP_SECRET_RAW; vpninfo->oath_secret = strdup(token_str); vpninfo->oath_secret_len = toklen; } vpninfo->token_mode = OC_TOKEN_MODE_HOTP; return 0; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += 30; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } static int gen_hotp(struct openconnect_info *vpninfo, uint64_t data, char *output) { uint32_t data_be[2]; int digest; data_be[0] = htonl(data >> 32); data_be[1] = htonl(data); digest = hotp_hmac(vpninfo, data_be); if (digest < 0) return digest; digest %= 1000000; snprintf(output, 7, "%06d", digest); return 0; } int do_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[7]; uint64_t challenge; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating OATH TOTP token code\n")); /* XXX: Support non-standard start time and step size */ challenge = vpninfo->token_time / 30; if (gen_hotp(vpninfo, challenge, tokencode)) return -EIO; vpninfo->token_tries++; opt->_value = strdup(tokencode); return opt->_value ? 0 : -ENOMEM; } static void buf_append_base32(struct oc_text_buf *buf, void *data, int len) { static const char alphabet[] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567"; unsigned char *bytes = data; int i, j, b32_len = ((len + 4) / 5) * 8; uint32_t d; char b32[8]; if (buf_ensure_space(buf, b32_len + 1)) return; for (i = 0; i < (len - 4); i += 5) { /* Load low 4 input bytes into 'd' */ d = load_be32(&bytes[i + 1]); /* Loop backwardd over output group, emitting low * 5 bits of 'd' each time and shifting. */ for (j = 7; j >= 0; j--) { b32[j] = alphabet[d & 31]; d >>= 5; /* Mask in the last input byte when we can fit it */ if (j == 5) d |= bytes[i] << 17; } buf_append_bytes(buf, b32, 8); } if (i < len) { d = 0; /* This is basically load_be32(bytes + i) but substituting * zeroes instead of reading off the end. */ for (j = 0; j < 4; j++) { d <<= 8; if (i + j < len) d |= bytes[i + j]; } /* Now, work out how much '=' padding we need */ memset(b32, '=', 8); b32_len = (((len - i) * 8) + 4) / 5; memset(b32 + b32_len, '=', 8 - b32_len); /* If we need 7 characters of data then put the seventh * in manually because the LSB of 'd' is actually bit 3 * of the output character. */ if (b32_len == 7) { b32[6] = alphabet[(d & 3) << 3]; b32_len--; } /* Now shift bits into the right place and do the simple * loop emitting characters from the low 5 bits of 'd'. */ d >>= ((8 - b32_len) * 5) - 8; for (j = b32_len - 1; j >= 0; j--) { b32[j] = alphabet[d & 31]; d >>= 5; } buf_append_bytes(buf, b32, 8); } } static char *regen_hotp_secret(struct openconnect_info *vpninfo) { char *new_secret = NULL; struct oc_text_buf *buf; int i; switch (vpninfo->hotp_secret_format) { case HOTP_SECRET_BASE32: buf = buf_alloc(); buf_append(buf, "base32:"); buf_append_base32(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_HEX: buf = buf_alloc(); buf_append(buf, "0x"); for (i=0; i < vpninfo->oath_secret_len; i++) buf_append(buf, "%02x", (unsigned char)vpninfo->oath_secret[i]); break; case HOTP_SECRET_RAW: buf = buf_alloc(); buf_append_bytes(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_PSKC: #ifdef HAVE_LIBPSKC { size_t len; if (!vpninfo->pskc_key || !vpninfo->pskc) return NULL; pskc_set_key_data_counter(vpninfo->pskc_key, vpninfo->token_time); pskc_build_xml(vpninfo->pskc, &new_secret, &len); /* FFS #1: libpskc craps all over itself on pskc_build_xml(). https://bugzilla.redhat.com/show_bug.cgi?id=1129491 Hopefully this will be fixed by 2.4.2 but make it unconditional for now... */ if (1 || !pskc_check_version("2.4.2")) { pskc_done(vpninfo->pskc); vpninfo->pskc = NULL; vpninfo->pskc_key = NULL; if (pskc_init(&vpninfo->pskc) || pskc_parse_from_memory(vpninfo->pskc, len, new_secret)) { pskc_done(vpninfo->pskc); vpninfo->pskc = NULL; } else { vpninfo->pskc_key = pskc_get_keypackage(vpninfo->pskc, 0); vpninfo->oath_secret = (char *)pskc_get_key_data_secret(vpninfo->pskc_key, NULL); } } /* FFS #2: No terminating NUL byte */ realloc_inplace(new_secret, len + 1); if (new_secret) new_secret[len] = 0; return new_secret; } #endif default: return NULL; } buf_append(buf,",%ld", (long)vpninfo->token_time); if (!buf_error(buf)) { new_secret = buf->data; buf->data = NULL; } buf_free(buf); return new_secret; } int do_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[7]; int ret; vpn_progress(vpninfo, PRG_INFO, _("Generating OATH HOTP token code\n")); if (vpninfo->lock_token) { /* This may call openconnect_set_token_mode() again to update * the token if it's changed. */ ret = vpninfo->lock_token(vpninfo->tok_cbdata); if (ret) return ret; } if (gen_hotp(vpninfo, vpninfo->token_time, tokencode)) return -EIO; vpninfo->token_time++; vpninfo->token_tries++; opt->_value = strdup(tokencode); if (vpninfo->unlock_token) { char *new_tok = regen_hotp_secret(vpninfo); vpninfo->unlock_token(vpninfo->tok_cbdata, new_tok); free(new_tok); } return opt->_value ? 0 : -ENOMEM; } openconnect-7.06/openconnect.8.in0000664000076400007640000003775112474364513013753 00000000000000.TH OPENCONNECT 8 .SH NAME openconnect \- Connect to Cisco AnyConnect VPN .SH SYNOPSIS .SY openconnect .OP \-\-config configfile .OP \-b,\-\-background .OP \-\-pid\-file pidfile .OP \-c,\-\-certificate cert .OP \-e,\-\-cert\-expire\-warning days .OP \-k,\-\-sslkey key .OP \-C,\-\-cookie cookie .OP \-\-cookie\-on\-stdin .OP \-\-compression MODE .OP \-d,\-\-deflate .OP \-D,\-\-no\-deflate .OP \-\-force\-dpd interval .OP \-g,\-\-usergroup group .OP \-h,\-\-help .OP \-\-http\-auth methods .OP \-i,\-\-interface ifname .OP \-l,\-\-syslog .OP \-\-timestamp .OP \-U,\-\-setuid user .OP \-\-csd\-user user .OP \-m,\-\-mtu mtu .OP \-\-basemtu mtu .OP \-p,\-\-key\-password pass .OP \-P,\-\-proxy proxyurl .OP \-\-proxy\-auth methods .OP \-\-no\-proxy .OP \-\-libproxy .OP \-\-key\-password\-from\-fsid .OP \-q,\-\-quiet .OP \-Q,\-\-queue\-len len .OP \-s,\-\-script vpnc\-script .OP \-S,\-\-script\-tun .OP \-u,\-\-user name .OP \-V,\-\-version .OP \-v,\-\-verbose .OP \-x,\-\-xmlconfig config .OP \-\-authgroup group .OP \-\-authenticate .OP \-\-cookieonly .OP \-\-printcookie .OP \-\-cafile file .OP \-\-disable\-ipv6 .OP \-\-dtls\-ciphers list .OP \-\-dtls\-local\-port port .OP \-\-dump\-http\-traffic .OP \-\-no\-cert\-check .OP \-\-no\-system\-trust .OP \-\-pfs .OP \-\-no\-dtls .OP \-\-no\-http\-keepalive .OP \-\-no\-passwd .OP \-\-no\-xmlpost .OP \-\-non\-inter .OP \-\-passwd\-on\-stdin .OP \-\-token\-mode mode .OP \-\-token\-secret {secret\fR[\fI,counter\fR]|@\fIfile\fR} .OP \-\-reconnect\-timeout .OP \-\-servercert sha1 .OP \-\-useragent string .OP \-\-os string .B [https://]\fIserver\fB[:\fIport\fB][/\fIgroup\fB] .YS .SH DESCRIPTION The program .B openconnect connects to Cisco "AnyConnect" VPN servers, which use standard TLS and DTLS protocols for data transport. The connection happens in two phases. First there is a simple HTTPS connection over which the user authenticates somehow \- by using a certificate, or password or SecurID, etc. Having authenticated, the user is rewarded with an HTTP cookie which can be used to make the real VPN connection. The second phase uses that cookie in an HTTPS .I CONNECT request, and data packets can be passed over the resulting connection. In auxiliary headers exchanged with the .I CONNECT request, a Session\-ID and Master Secret for a DTLS connection are also exchanged, which allows data transport over UDP to occur. .SH OPTIONS .TP .B \-\-config=CONFIGFILE Read further options from .I CONFIGFILE before continuing to process options from the command line. The file should contain long-format options as would be accepted on the command line, but without the two leading \-\- dashes. Empty lines, or lines where the first non-space character is a # character, are ignored. Any option except the .B config option may be specified in the file. .TP .B \-b,\-\-background Continue in background after startup .TP .B \-\-pid\-file=PIDFILE Save the pid to .I PIDFILE when backgrounding .TP .B \-c,\-\-certificate=CERT Use SSL client certificate .I CERT which may be either a file name or, if OpenConnect has been built with an appropriate version of GnuTLS, a PKCS#11 URL. .TP .B \-e,\-\-cert\-expire\-warning=DAYS Give a warning when SSL client certificate has .I DAYS left before expiry .TP .B \-k,\-\-sslkey=KEY Use SSL private key .I KEY which may be either a file name or, if OpenConnect has been built with an appropriate version of GnuTLS, a PKCS#11 URL. .TP .B \-C,\-\-cookie=COOKIE Use WebVPN cookie. .I COOKIE .TP .B \-\-cookie\-on\-stdin Read cookie from standard input. .TP .B \-d,\-\-deflate Enable all compression, including stateful modes. By default, only stateless compression algorithms are enabled. .TP .B \-D,\-\-no\-deflate Disable all compression. .TP .B \-\-compression=MODE Set compression mode, where .I MODE is one of .I "stateless" , .I "none" , or .I "all". By default, only stateless compression algorithms which do not maintain state from one packet to the next (and which can be used on UDP transports) are enabled. By setting the mode to .I "all" stateful algorithms (currently only zlib deflate) can be enabled. Or all compression can be disabled by setting the mode to .I "none". .B \-\-force\-dpd=INTERVAL Use .I INTERVAL as minimum Dead Peer Detection interval for CSTP and DTLS, forcing use of DPD even when the server doesn't request it. .TP .B \-g,\-\-usergroup=GROUP Use .I GROUP as login UserGroup .TP .B \-h,\-\-help Display help text .TP .B \-\-http\-auth=METHODS Use only the specified methods for HTTP authentication to a server. By default, only Negotiate, NTLM and Digest authentication are enabled. Basic authentication is also supported but because it is insecure it must be explicitly enabled. The argument is a comma-separated list of methods to be enabled. Note that the order does not matter: OpenConnect will use Negotiate, NTLM, Digest and Basic authentication in that order, if each is enabled, regardless of the order specified in the METHODS string. .TP .B \-i,\-\-interface=IFNAME Use .I IFNAME for tunnel interface .TP .B \-l,\-\-syslog Use syslog for progress messages .TP .B \-\-timestamp Prepend a timestamp to each progress message .TP .B \-U,\-\-setuid=USER Drop privileges after connecting, to become user .I USER .TP .B \-\-csd\-user=USER Drop privileges during CSD (Cisco Secure Desktop) script execution. .TP .B \-\-csd\-wrapper=SCRIPT Run .I SCRIPT instead of the CSD (Cisco Secure Desktop) script. .TP .B \-m,\-\-mtu=MTU Request .I MTU from server as the MTU of the tunnel. .TP .B \-\-basemtu=MTU Indicate .I MTU as the path MTU between client and server on the unencrypted network. Newer servers will automatically calculate the MTU to be used on the tunnel from this value. .TP .B \-p,\-\-key\-password=PASS Provide passphrase for certificate file, or SRK (System Root Key) PIN for TPM .TP .B \-P,\-\-proxy=PROXYURL Use HTTP or SOCKS proxy for connection. A username and password can be provided in the given URL, and will be used for authentication. If authentication is required but no credentials are given, GSSAPI and automatic NTLM authentication using Samba's ntlm_auth helper tool may be attempted. .TP .B \-\-proxy\-auth=METHODS Use only the specified methods for HTTP authentication to a proxy. By default, only Negotiate, NTLM and Digest authentication are enabled. Basic authentication is also supported but because it is insecure it must be explicitly enabled. The argument is a comma-separated list of methods to be enabled. Note that the order does not matter: OpenConnect will use Negotiate, NTLM, Digest and Basic authentication in that order, if each is enabled, regardless of the order specified in the METHODS string. .TP .B \-\-no\-proxy Disable use of proxy .TP .B \-\-libproxy Use libproxy to configure proxy automatically (when built with libproxy support) .TP .B \-\-key\-password\-from\-fsid Passphrase for certificate file is automatically generated from the .I fsid of the file system on which it is stored. The .I fsid is obtained from the .BR statvfs (2) or .BR statfs (2) system call, depending on the operating system. On a Linux or similar system with GNU coreutils, the .I fsid used by this option should be equal to the output of the command: .EX stat \-\-file\-system \-\-printf=%i\e\en $CERTIFICATE .EE It is not the same as the 128\-bit UUID of the file system. .TP .B \-q,\-\-quiet Less output .TP .B \-Q,\-\-queue\-len=LEN Set packet queue limit to .I LEN pkts .TP .B \-s,\-\-script=SCRIPT Invoke .I SCRIPT to configure the network after connection. Without this, routing and name service are unlikely to work correctly. The script is expected to be compatible with the .B vpnc\-script which is shipped with the "vpnc" VPN client. See .I http://www.infradead.org/openconnect/vpnc-script.html for more information. This version of OpenConnect is configured to use \fB@DEFAULT_VPNCSCRIPT@\fR by default. On Windows, a relative directory for the default script will be handled as starting from the directory that the openconnect executable is running from, rather than the current directory. The script will be invoked with the command-based script host \fBcscript.exe\fR. .TP .B \-S,\-\-script\-tun Pass traffic to 'script' program over a UNIX socket, instead of to a kernel tun/tap device. This allows the VPN IP traffic to be handled entirely in userspace, for example by a program which uses lwIP to provide SOCKS access into the VPN. .TP .B \-u,\-\-user=NAME Set login username to .I NAME .TP .B \-V,\-\-version Report version number .TP .B \-v,\-\-verbose More output (may be specified multiple times for additional output) .TP .B \-x,\-\-xmlconfig=CONFIG XML config file .TP .B \-\-authgroup=GROUP Choose authentication login selection .TP .B \-\-authenticate Authenticate only, and output the information needed to make the connection a form which can be used to set shell environment variables. When invoked with this option, openconnect will not make the connection, but if successful will output something like the following to stdout: .nf .B COOKIE=3311180634@13561856@1339425499@B315A0E29D16C6FD92EE... .B HOST=10.0.0.1 .B FINGERPRINT=469bb424ec8835944d30bc77c77e8fc1d8e23a42 .fi Thus, you can invoke openconnect as a non-privileged user .I (with access to the user's PKCS#11 tokens, etc.) for authentication, and then invoke openconnect separately to make the actual connection as root: .nf .B eval `openconnect --authenticate https://vpnserver.example.com`; .B [ -n "$COOKIE" ] && echo "$COOKIE" | .B \ \ sudo openconnect --cookie-on-stdin $HOST --servercert $FINGERPRINT .fi .TP .B \-\-cookieonly Fetch webvpn cookie only; don't connect .TP .B \-\-printcookie Print webvpn cookie before connecting .TP .B \-\-cafile=FILE Cert file for server verification .TP .B \-\-disable\-ipv6 Do not advertise IPv6 capability to server .TP .B \-\-dtls\-ciphers=LIST Set OpenSSL ciphers to support for DTLS .TP .B \-\-dtls\-local\-port=PORT Use .I PORT as the local port for DTLS datagrams .TP .B \-\-dump\-http\-traffic Enable verbose output of all HTTP requests and the bodies of all responses received from the server. .TP .B \-\-no\-cert\-check Do not require server SSL certificate to be valid. Checks will still happen and failures will cause a warning message, but the connection will continue anyway. You should not need to use this option \- if your servers have SSL certificates which are not signed by a trusted Certificate Authority, you can still add them (or your private CA) to a local file and use that file with the .B \-\-cafile option. .TP .B \-\-no\-system\-trust Do not trust the system default certificate authorities. If this option is given, only certificate authorities given with the .B \-\-cafile option, if any, will be trusted automatically. .TP .B \-\-pfs Enforces Perfect Forward Secrecy (PFS). That ensures that if the server's long-term key is compromised, any session keys established before the compromise will be unaffected. If this option is provided and the server does not support PFS in the TLS channel the connection will fail. PFS is available in Cisco ASA releases 9.1(2) and higher; a suitable cipher suite may need to be manually enabled by the administrator using the .B ssl encryption setting. .TP .B \-\-no\-dtls Disable DTLS .TP .B \-\-no\-http\-keepalive Version 8.2.2.5 of the Cisco ASA software has a bug where it will forget the client's SSL certificate when HTTP connections are being re\-used for multiple requests. So far, this has only been seen on the initial connection, where the server gives an HTTP/1.0 redirect response with an explicit .B Connection: Keep\-Alive directive. OpenConnect as of v2.22 has an unconditional workaround for this, which is never to obey that directive after an HTTP/1.0 response. However, Cisco's support team has failed to give any competent response to the bug report and we don't know under what other circumstances their bug might manifest itself. So this option exists to disable ALL re\-use of HTTP sessions and cause a new connection to be made for each request. If your server seems not to be recognising your certificate, try this option. If it makes a difference, please report this information to the .B openconnect\-devel@lists.infradead.org mailing list. .TP .B \-\-no\-passwd Never attempt password (or SecurID) authentication. .TP .B \-\-no\-xmlpost Do not attempt to post an XML authentication/configuration request to the server; use the old style GET method which was used by older clients and servers instead. This option is a temporary safety net, to work around potential compatibility issues with the code which falls back to the old method automatically. It causes OpenConnect to behave more like older versions (4.08 and below) did. If you find that you need to use this option, then you have found a bug in OpenConnect. Please see http://www.infradead.org/openconnect/mail.html and report this to the developers. .TP .B \-\-non\-inter Do not expect user input; exit if it is required. .TP .B \-\-passwd\-on\-stdin Read password from standard input .TP .B \-\-token\-mode=MODE Enable one-time password generation using the .I MODE algorithm. .B \-\-token\-mode=rsa will call libstoken to generate an RSA SecurID tokencode, .B \-\-token\-mode=totp will call liboath to generate an RFC 6238 time-based password, and .B \-\-token\-mode=hotp will call liboath to generate an RFC 4226 HMAC-based password. Yubikey tokens which generate OATH codes in hardware are supported with .B \-\-token\-mode=yubioath .TP .B \-\-token\-secret={ SECRET[,COUNTER] | @FILENAME } The secret to use when generating one-time passwords/verification codes. Base 32-encoded TOTP/HOTP secrets can be used by specifying "base32:" at the beginning of the secret, and for HOTP secrets the token counter can be specified following a comma. RSA SecurID secrets can be specified as an Android/iPhone URI or a raw numeric CTF string (with or without dashes). For Yubikey OATH the token secret specifies the name of the credential to be used. If not provided, the first OATH credential found on the device will be used. .IR FILENAME , if specified, can contain any of the above strings. Or, it can contain a SecurID XML (SDTID) seed. If this option is omitted, and \-\-token\-mode is "rsa", libstoken will try to use the software token seed saved in .B ~/.stokenrc by the "stoken import" command. .TP .B \-\-reconnect\-timeout Keep reconnect attempts until so much seconds are elapsed. The default timeout is 300 seconds, which means that openconnect can recover VPN connection after a temporary network down time of 300 seconds. .TP .B \-\-servercert=SHA1 Accept server's SSL certificate only if its fingerprint matches .IR SHA1 . .TP .B \-\-useragent=STRING Use .I STRING as 'User\-Agent:' field value in HTTP header. (e.g. \-\-useragent 'Cisco AnyConnect VPN Agent for Windows 2.2.0133') .TP .B \-\-os=STRING OS type to report to gateway. Recognized values are: .BR linux , .BR linux\-64 , .BR win , .BR mac\-intel , .BR android , .BR apple\-ios . Reporting a different OS type may affect the dynamic access policy (DAP) applied to the VPN session. If the gateway requires CSD, it will also cause the corresponding CSD trojan binary to be downloaded, so you may need to use .B \-\-csd\-wrapper if this code is not executable on the local machine. .SH SIGNALS In the data phase of the connection, the following signals are handled: .TP .B SIGINT performs a clean shutdown by logging the session off, disconnecting from the gateway, and running the vpnc\-script to restore the network configuration. .TP .B SIGHUP disconnects from the gateway and runs the vpnc\-script, but does not log the session off; this allows for reconnection later using .BR \-\-cookie . .TP .B SIGUSR2 forces an immediate disconnection and reconnection; this can be used to quickly recover from LAN IP address changes. .TP .B SIGTERM exits immediately without logging off or running vpnc\-script. .SH LIMITATIONS Note that although IPv6 has been tested on all platforms on which .B openconnect is known to run, it depends on a suitable .B vpnc\-script to configure the network. The standard .B vpnc\-script shipped with vpnc 0.5.3 is not capable of setting up IPv6 routes; the one from .B git://git.infradead.org/users/dwmw2/vpnc\-scripts.git will be required. .SH AUTHORS David Woodhouse openconnect-7.06/sspi.c0000664000076400007640000003043712474364513012056 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include "openconnect-internal.h" static int sspi_setup(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, const char *service, int proxy) { SECURITY_STATUS status; struct oc_text_buf *buf = buf_alloc(); buf_append_utf16le(buf, service); buf_append_utf16le(buf, "/"); buf_append_utf16le(buf, proxy ? vpninfo->proxy : vpninfo->hostname); if (buf_error(buf)) return buf_free(buf); auth_state->sspi_target_name = (wchar_t *)buf->data; buf->data = NULL; buf_free(buf); status = AcquireCredentialsHandleW(NULL, (SEC_WCHAR *)L"Negotiate", SECPKG_CRED_OUTBOUND, NULL, NULL, NULL, NULL, &auth_state->sspi_cred, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("AcquireCredentialsHandle() failed: %lx\n"), status); free(auth_state->sspi_target_name); auth_state->sspi_target_name = NULL; return -EIO; } return 0; } int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; int first = 1; if (auth_state->state == AUTH_AVAILABLE && sspi_setup(vpninfo, auth_state, "HTTP", proxy)) { auth_state->state = AUTH_FAILED; return -EIO; } if (auth_state->challenge && *auth_state->challenge) { int token_len = -EINVAL; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; in_token.pvBuffer = openconnect_base64_decode(&token_len, auth_state->challenge); if (!in_token.pvBuffer) return token_len; in_token.cbBuffer = token_len; first = 0; } else if (auth_state->state > AUTH_AVAILABLE) { /* This indicates failure. We were trying, but got an empty 'Proxy-Authorization: Negotiate' header back from the server implying that we should start again... */ goto fail_gssapi; } auth_state->state = AUTH_IN_PROGRESS; output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; status = InitializeSecurityContextW(&auth_state->sspi_cred, first ? NULL : &auth_state->sspi_ctx, auth_state->sspi_target_name, ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, first ? NULL : &input_desc, 0, &auth_state->sspi_ctx, &output_desc, &ret_flags, NULL); if (status != SEC_E_OK && status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); fail_gssapi: cleanup_gssapi_auth(vpninfo, auth_state); auth_state->state = AUTH_FAILED; /* -EAGAIN to first a reconnect if we had been trying. Else -EIO */ return first ? -EIO : -EAGAIN; } buf_append(hdrbuf, "Proxy-Authorization: Negotiate "); buf_append_base64(hdrbuf, out_token.pvBuffer, out_token.cbBuffer); buf_append(hdrbuf, "\r\n"); FreeContextBuffer(out_token.pvBuffer); return 0; } void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state >= AUTH_IN_PROGRESS) { free(auth_state->sspi_target_name); auth_state->sspi_target_name = NULL; FreeCredentialsHandle(&auth_state->sspi_cred); DeleteSecurityContext(&auth_state->sspi_ctx); } } int socks_gssapi_auth(struct openconnect_info *vpninfo) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; unsigned char *pktbuf; int first = 1; int i; int ret = -EIO; struct http_auth_state *auth_state = &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]; if (sspi_setup(vpninfo, auth_state, "rcmd", 1)) return -EIO; vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state = AUTH_IN_PROGRESS; pktbuf = malloc(65538); if (!pktbuf) return -ENOMEM; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; while (1) { status = InitializeSecurityContextW(&auth_state->sspi_cred, first ? NULL : &auth_state->sspi_ctx, auth_state->sspi_target_name, ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, first ? NULL : &input_desc, 0, &auth_state->sspi_ctx, &output_desc, &ret_flags, NULL); if (status == SEC_E_OK) { /* If we still have a token to send, send it. */ if (!out_token.cbBuffer) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } } else if (status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); break; } if (out_token.cbBuffer > 65535) { vpn_progress(vpninfo, PRG_ERR, _("SSPI token too large (%ld bytes)\n"), out_token.cbBuffer); break; } pktbuf[0] = 1; /* ver */ pktbuf[1] = 1; /* mtyp */ store_be16(pktbuf + 2, out_token.cbBuffer); memcpy(pktbuf + 4, out_token.pvBuffer, out_token.cbBuffer); FreeContextBuffer(out_token.pvBuffer); vpn_progress(vpninfo, PRG_TRACE, _("Sending SSPI token of %lu bytes\n"), out_token.cbBuffer + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out_token.cbBuffer + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send SSPI authentication token to proxy: %s\n"), strerror(-i)); break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI authentication token from proxy: %s\n"), strerror(-i)); break; } if (pktbuf[1] == 0xff) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server reported SSPI context failure\n")); break; } else if (pktbuf[1] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unknown SSPI status response (0x%02x) from SOCKS server\n"), pktbuf[1]); break; } in_token.cbBuffer = load_be16(pktbuf + 2); in_token.pvBuffer = pktbuf; first = 0; if (!in_token.cbBuffer) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in_token.cbBuffer); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI authentication token from proxy: %s\n"), strerror(-i)); break; } vpn_progress(vpninfo, PRG_TRACE, _("Got SSPI token of %lu bytes: %02x %02x %02x %02x\n"), in_token.cbBuffer, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); } if (!ret) { SecPkgContext_Sizes sizes; SecBufferDesc enc_desc; SecBuffer enc_bufs[3]; int len; ret = -EIO; status = QueryContextAttributes(&auth_state->sspi_ctx, SECPKG_ATTR_SIZES, &sizes); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("QueryContextAttributes() failed: %lx\n"), status); goto err; } enc_desc.cBuffers = 3; enc_desc.pBuffers = enc_bufs; enc_desc.ulVersion = SECBUFFER_VERSION; enc_bufs[0].BufferType = SECBUFFER_TOKEN; enc_bufs[0].cbBuffer = sizes.cbSecurityTrailer; enc_bufs[0].pvBuffer = malloc(sizes.cbSecurityTrailer); if (!enc_bufs[0].pvBuffer) { ret = -ENOMEM; goto err; } memset(enc_bufs[0].pvBuffer, 0, enc_bufs[0].cbBuffer); enc_bufs[1].BufferType = SECBUFFER_DATA; enc_bufs[1].pvBuffer = pktbuf; enc_bufs[1].cbBuffer = 1; /* All this just to sign this single byte... */ pktbuf[0] = 0; enc_bufs[2].BufferType = SECBUFFER_PADDING; enc_bufs[2].cbBuffer = sizes.cbBlockSize; enc_bufs[2].pvBuffer = malloc(sizes.cbBlockSize); if (!enc_bufs[2].pvBuffer) { free(enc_bufs[0].pvBuffer); ret = -ENOMEM; goto err; } status = EncryptMessage(&auth_state->sspi_ctx, SECQOP_WRAP_NO_ENCRYPT, &enc_desc, 0); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("EncryptMessage() failed: %lx\n"), status); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); goto err; } len = enc_bufs[0].cbBuffer + enc_bufs[1].cbBuffer + enc_bufs[2].cbBuffer; /* Check each one to avoid the (utterly theoretical) overflow when calculated into an 'int' type. */ if (enc_bufs[1].cbBuffer != 1 || enc_bufs[0].cbBuffer > 65535 || enc_bufs[2].cbBuffer > 65535 || len > 65535) { vpn_progress(vpninfo, PRG_ERR, _("EncryptMessage() result too large (%lu + %lu + %lu)\n"), enc_bufs[0].cbBuffer, enc_bufs[1].cbBuffer, enc_bufs[2].cbBuffer); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); goto err; } /* Our single byte of payload was *supposed* to be unencrypted but Windows doesn't always manage to do as it's told... */ pktbuf[4 + enc_bufs[0].cbBuffer] = pktbuf[0]; pktbuf[0] = 1; pktbuf[1] = 2; store_be16(pktbuf + 2, len); if (enc_bufs[0].cbBuffer) memcpy(pktbuf + 4, enc_bufs[0].pvBuffer, enc_bufs[0].cbBuffer); if (enc_bufs[2].cbBuffer) memcpy(pktbuf + 5 + enc_bufs[0].cbBuffer, enc_bufs[2].pvBuffer, enc_bufs[2].cbBuffer); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); vpn_progress(vpninfo, PRG_TRACE, _("Sending SSPI protection negotiation of %u bytes\n"), len + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, len + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send SSPI protection response to proxy: %s\n"), strerror(-i)); goto err; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI protection response from proxy: %s\n"), strerror(-i)); goto err; } len = load_be16(pktbuf + 2); i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, len); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI protection response from proxy: %s\n"), strerror(-i)); goto err; } vpn_progress(vpninfo, PRG_TRACE, _("Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n"), len, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); enc_desc.cBuffers = 2; enc_bufs[0].BufferType = SECBUFFER_STREAM; enc_bufs[0].cbBuffer = len; enc_bufs[0].pvBuffer = pktbuf; enc_bufs[1].BufferType = SECBUFFER_DATA; enc_bufs[1].cbBuffer = 0; enc_bufs[1].pvBuffer = NULL; status = DecryptMessage(&auth_state->sspi_ctx, &enc_desc, 0, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("DecryptMessage failed: %lx\n"), status); goto err; } if (enc_bufs[1].cbBuffer != 1) { vpn_progress(vpninfo, PRG_ERR, _("Invalid SSPI protection response from proxy (%lu bytes)\n"), enc_bufs[1].cbBuffer); FreeContextBuffer(enc_bufs[1].pvBuffer); goto err; } i = *(char *)enc_bufs[1].pvBuffer; if (i == 1) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message integrity, which is not supported\n")); goto err; } else if (i == 2) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message confidentiality, which is not supported\n")); goto err; } else if (i) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands protection unknown type 0x%02x\n"), (unsigned char)i); goto err; } ret = 0; } err: cleanup_gssapi_auth(vpninfo, &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]); vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state = AUTH_UNSEEN; free(pktbuf); return ret; } openconnect-7.06/aclocal.m40000664000076400007640000014477512502026421012570 00000000000000# generated automatically by aclocal 1.14.1 -*- Autoconf -*- # Copyright (C) 1996-2013 Free Software Foundation, Inc. # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. m4_ifndef([AC_CONFIG_MACRO_DIRS], [m4_defun([_AM_CONFIG_MACRO_DIRS], [])m4_defun([AC_CONFIG_MACRO_DIRS], [_AM_CONFIG_MACRO_DIRS($@)])]) m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl m4_if(m4_defn([AC_AUTOCONF_VERSION]), [2.69],, [m4_warning([this file was generated for autoconf 2.69. You have another version of autoconf. It may work, but is not guaranteed to. If you have problems, you may need to regenerate the build system entirely. To do so, use the procedure documented by the package, typically 'autoreconf'.])]) # pkg.m4 - Macros to locate and utilise pkg-config. -*- Autoconf -*- # serial 1 (pkg-config-0.24) # # Copyright © 2004 Scott James Remnant . # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # PKG_PROG_PKG_CONFIG([MIN-VERSION]) # ---------------------------------- AC_DEFUN([PKG_PROG_PKG_CONFIG], [m4_pattern_forbid([^_?PKG_[A-Z_]+$]) m4_pattern_allow([^PKG_CONFIG(_(PATH|LIBDIR|SYSROOT_DIR|ALLOW_SYSTEM_(CFLAGS|LIBS)))?$]) m4_pattern_allow([^PKG_CONFIG_(DISABLE_UNINSTALLED|TOP_BUILD_DIR|DEBUG_SPEW)$]) AC_ARG_VAR([PKG_CONFIG], [path to pkg-config utility]) AC_ARG_VAR([PKG_CONFIG_PATH], [directories to add to pkg-config's search path]) AC_ARG_VAR([PKG_CONFIG_LIBDIR], [path overriding pkg-config's built-in search path]) if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then AC_PATH_TOOL([PKG_CONFIG], [pkg-config]) fi if test -n "$PKG_CONFIG"; then _pkg_min_version=m4_default([$1], [0.9.0]) AC_MSG_CHECKING([pkg-config is at least version $_pkg_min_version]) if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) PKG_CONFIG="" fi fi[]dnl ])# PKG_PROG_PKG_CONFIG # PKG_CHECK_EXISTS(MODULES, [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) # # Check to see whether a particular set of modules exists. Similar # to PKG_CHECK_MODULES(), but does not set variables or print errors. # # Please remember that m4 expands AC_REQUIRE([PKG_PROG_PKG_CONFIG]) # only at the first occurence in configure.ac, so if the first place # it's called might be skipped (such as if it is within an "if", you # have to call PKG_CHECK_EXISTS manually # -------------------------------------------------------------- AC_DEFUN([PKG_CHECK_EXISTS], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl if test -n "$PKG_CONFIG" && \ AC_RUN_LOG([$PKG_CONFIG --exists --print-errors "$1"]); then m4_default([$2], [:]) m4_ifvaln([$3], [else $3])dnl fi]) # _PKG_CONFIG([VARIABLE], [COMMAND], [MODULES]) # --------------------------------------------- m4_define([_PKG_CONFIG], [if test -n "$$1"; then pkg_cv_[]$1="$$1" elif test -n "$PKG_CONFIG"; then PKG_CHECK_EXISTS([$3], [pkg_cv_[]$1=`$PKG_CONFIG --[]$2 "$3" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes ], [pkg_failed=yes]) else pkg_failed=untried fi[]dnl ])# _PKG_CONFIG # _PKG_SHORT_ERRORS_SUPPORTED # ----------------------------- AC_DEFUN([_PKG_SHORT_ERRORS_SUPPORTED], [AC_REQUIRE([PKG_PROG_PKG_CONFIG]) if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi[]dnl ])# _PKG_SHORT_ERRORS_SUPPORTED # PKG_CHECK_MODULES(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], # [ACTION-IF-NOT-FOUND]) # # # Note that if there is a possibility the first call to # PKG_CHECK_MODULES might not happen, you should be sure to include an # explicit call to PKG_PROG_PKG_CONFIG in your configure.ac # # # -------------------------------------------------------------- AC_DEFUN([PKG_CHECK_MODULES], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1][_CFLAGS], [C compiler flags for $1, overriding pkg-config])dnl AC_ARG_VAR([$1][_LIBS], [linker flags for $1, overriding pkg-config])dnl pkg_failed=no AC_MSG_CHECKING([for $1]) _PKG_CONFIG([$1][_CFLAGS], [cflags], [$2]) _PKG_CONFIG([$1][_LIBS], [libs], [$2]) m4_define([_PKG_TEXT], [Alternatively, you may set the environment variables $1[]_CFLAGS and $1[]_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details.]) if test $pkg_failed = yes; then AC_MSG_RESULT([no]) _PKG_SHORT_ERRORS_SUPPORTED if test $_pkg_short_errors_supported = yes; then $1[]_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "$2" 2>&1` else $1[]_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "$2" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$$1[]_PKG_ERRORS" >&AS_MESSAGE_LOG_FD m4_default([$4], [AC_MSG_ERROR( [Package requirements ($2) were not met: $$1_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. _PKG_TEXT])[]dnl ]) elif test $pkg_failed = untried; then AC_MSG_RESULT([no]) m4_default([$4], [AC_MSG_FAILURE( [The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. _PKG_TEXT To get pkg-config, see .])[]dnl ]) else $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS $1[]_LIBS=$pkg_cv_[]$1[]_LIBS AC_MSG_RESULT([yes]) $3 fi[]dnl ])# PKG_CHECK_MODULES # PKG_INSTALLDIR(DIRECTORY) # ------------------------- # Substitutes the variable pkgconfigdir as the location where a module # should install pkg-config .pc files. By default the directory is # $libdir/pkgconfig, but the default can be changed by passing # DIRECTORY. The user can override through the --with-pkgconfigdir # parameter. AC_DEFUN([PKG_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${libdir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], pkg_description)],, [with_pkgconfigdir=]pkg_default) AC_SUBST([pkgconfigdir], [$with_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ]) dnl PKG_INSTALLDIR # PKG_NOARCH_INSTALLDIR(DIRECTORY) # ------------------------- # Substitutes the variable noarch_pkgconfigdir as the location where a # module should install arch-independent pkg-config .pc files. By # default the directory is $datadir/pkgconfig, but the default can be # changed by passing DIRECTORY. The user can override through the # --with-noarch-pkgconfigdir parameter. AC_DEFUN([PKG_NOARCH_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${datadir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config arch-independent installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([noarch-pkgconfigdir], [AS_HELP_STRING([--with-noarch-pkgconfigdir], pkg_description)],, [with_noarch_pkgconfigdir=]pkg_default) AC_SUBST([noarch_pkgconfigdir], [$with_noarch_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ]) dnl PKG_NOARCH_INSTALLDIR # PKG_CHECK_VAR(VARIABLE, MODULE, CONFIG-VARIABLE, # [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) # ------------------------------------------- # Retrieves the value of the pkg-config variable for the given module. AC_DEFUN([PKG_CHECK_VAR], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1], [value of $3 for $2, overriding pkg-config])dnl _PKG_CONFIG([$1], [variable="][$3]["], [$2]) AS_VAR_COPY([$1], [pkg_cv_][$1]) AS_VAR_IF([$1], [""], [$5], [$4])dnl ])# PKG_CHECK_VAR # Copyright (C) 2002-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_AUTOMAKE_VERSION(VERSION) # ---------------------------- # Automake X.Y traces this macro to ensure aclocal.m4 has been # generated from the m4 files accompanying Automake X.Y. # (This private macro should not be called outside this file.) AC_DEFUN([AM_AUTOMAKE_VERSION], [am__api_version='1.14' dnl Some users find AM_AUTOMAKE_VERSION and mistake it for a way to dnl require some minimum version. Point them to the right macro. m4_if([$1], [1.14.1], [], [AC_FATAL([Do not call $0, use AM_INIT_AUTOMAKE([$1]).])])dnl ]) # _AM_AUTOCONF_VERSION(VERSION) # ----------------------------- # aclocal traces this macro to find the Autoconf version. # This is a private macro too. Using m4_define simplifies # the logic in aclocal, which can simply ignore this definition. m4_define([_AM_AUTOCONF_VERSION], []) # AM_SET_CURRENT_AUTOMAKE_VERSION # ------------------------------- # Call AM_AUTOMAKE_VERSION and AM_AUTOMAKE_VERSION so they can be traced. # This function is AC_REQUIREd by AM_INIT_AUTOMAKE. AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION], [AM_AUTOMAKE_VERSION([1.14.1])dnl m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl _AM_AUTOCONF_VERSION(m4_defn([AC_AUTOCONF_VERSION]))]) # AM_AUX_DIR_EXPAND -*- Autoconf -*- # Copyright (C) 2001-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # For projects using AC_CONFIG_AUX_DIR([foo]), Autoconf sets # $ac_aux_dir to '$srcdir/foo'. In other projects, it is set to # '$srcdir', '$srcdir/..', or '$srcdir/../..'. # # Of course, Automake must honor this variable whenever it calls a # tool from the auxiliary directory. The problem is that $srcdir (and # therefore $ac_aux_dir as well) can be either absolute or relative, # depending on how configure is run. This is pretty annoying, since # it makes $ac_aux_dir quite unusable in subdirectories: in the top # source directory, any form will work fine, but in subdirectories a # relative path needs to be adjusted first. # # $ac_aux_dir/missing # fails when called from a subdirectory if $ac_aux_dir is relative # $top_srcdir/$ac_aux_dir/missing # fails if $ac_aux_dir is absolute, # fails when called from a subdirectory in a VPATH build with # a relative $ac_aux_dir # # The reason of the latter failure is that $top_srcdir and $ac_aux_dir # are both prefixed by $srcdir. In an in-source build this is usually # harmless because $srcdir is '.', but things will broke when you # start a VPATH build or use an absolute $srcdir. # # So we could use something similar to $top_srcdir/$ac_aux_dir/missing, # iff we strip the leading $srcdir from $ac_aux_dir. That would be: # am_aux_dir='\$(top_srcdir)/'`expr "$ac_aux_dir" : "$srcdir//*\(.*\)"` # and then we would define $MISSING as # MISSING="\${SHELL} $am_aux_dir/missing" # This will work as long as MISSING is not called from configure, because # unfortunately $(top_srcdir) has no meaning in configure. # However there are other variables, like CC, which are often used in # configure, and could therefore not use this "fixed" $ac_aux_dir. # # Another solution, used here, is to always expand $ac_aux_dir to an # absolute PATH. The drawback is that using absolute paths prevent a # configured tree to be moved without reconfiguration. AC_DEFUN([AM_AUX_DIR_EXPAND], [dnl Rely on autoconf to set up CDPATH properly. AC_PREREQ([2.50])dnl # expand $ac_aux_dir to an absolute path am_aux_dir=`cd $ac_aux_dir && pwd` ]) # AM_CONDITIONAL -*- Autoconf -*- # Copyright (C) 1997-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_CONDITIONAL(NAME, SHELL-CONDITION) # ------------------------------------- # Define a conditional. AC_DEFUN([AM_CONDITIONAL], [AC_PREREQ([2.52])dnl m4_if([$1], [TRUE], [AC_FATAL([$0: invalid condition: $1])], [$1], [FALSE], [AC_FATAL([$0: invalid condition: $1])])dnl AC_SUBST([$1_TRUE])dnl AC_SUBST([$1_FALSE])dnl _AM_SUBST_NOTMAKE([$1_TRUE])dnl _AM_SUBST_NOTMAKE([$1_FALSE])dnl m4_define([_AM_COND_VALUE_$1], [$2])dnl if $2; then $1_TRUE= $1_FALSE='#' else $1_TRUE='#' $1_FALSE= fi AC_CONFIG_COMMANDS_PRE( [if test -z "${$1_TRUE}" && test -z "${$1_FALSE}"; then AC_MSG_ERROR([[conditional "$1" was never defined. Usually this means the macro was only invoked conditionally.]]) fi])]) # Copyright (C) 1999-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # There are a few dirty hacks below to avoid letting 'AC_PROG_CC' be # written in clear, in which case automake, when reading aclocal.m4, # will think it sees a *use*, and therefore will trigger all it's # C support machinery. Also note that it means that autoscan, seeing # CC etc. in the Makefile, will ask for an AC_PROG_CC use... # _AM_DEPENDENCIES(NAME) # ---------------------- # See how the compiler implements dependency checking. # NAME is "CC", "CXX", "OBJC", "OBJCXX", "UPC", or "GJC". # We try a few techniques and use that to set a single cache variable. # # We don't AC_REQUIRE the corresponding AC_PROG_CC since the latter was # modified to invoke _AM_DEPENDENCIES(CC); we would have a circular # dependency, and given that the user is not expected to run this macro, # just rely on AC_PROG_CC. AC_DEFUN([_AM_DEPENDENCIES], [AC_REQUIRE([AM_SET_DEPDIR])dnl AC_REQUIRE([AM_OUTPUT_DEPENDENCY_COMMANDS])dnl AC_REQUIRE([AM_MAKE_INCLUDE])dnl AC_REQUIRE([AM_DEP_TRACK])dnl m4_if([$1], [CC], [depcc="$CC" am_compiler_list=], [$1], [CXX], [depcc="$CXX" am_compiler_list=], [$1], [OBJC], [depcc="$OBJC" am_compiler_list='gcc3 gcc'], [$1], [OBJCXX], [depcc="$OBJCXX" am_compiler_list='gcc3 gcc'], [$1], [UPC], [depcc="$UPC" am_compiler_list=], [$1], [GCJ], [depcc="$GCJ" am_compiler_list='gcc3 gcc'], [depcc="$$1" am_compiler_list=]) AC_CACHE_CHECK([dependency style of $depcc], [am_cv_$1_dependencies_compiler_type], [if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_$1_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n ['s/^#*\([a-zA-Z0-9]*\))$/\1/p'] < ./depcomp` fi am__universal=false m4_case([$1], [CC], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac], [CXX], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac]) for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_$1_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_$1_dependencies_compiler_type=none fi ]) AC_SUBST([$1DEPMODE], [depmode=$am_cv_$1_dependencies_compiler_type]) AM_CONDITIONAL([am__fastdep$1], [ test "x$enable_dependency_tracking" != xno \ && test "$am_cv_$1_dependencies_compiler_type" = gcc3]) ]) # AM_SET_DEPDIR # ------------- # Choose a directory name for dependency files. # This macro is AC_REQUIREd in _AM_DEPENDENCIES. AC_DEFUN([AM_SET_DEPDIR], [AC_REQUIRE([AM_SET_LEADING_DOT])dnl AC_SUBST([DEPDIR], ["${am__leading_dot}deps"])dnl ]) # AM_DEP_TRACK # ------------ AC_DEFUN([AM_DEP_TRACK], [AC_ARG_ENABLE([dependency-tracking], [dnl AS_HELP_STRING( [--enable-dependency-tracking], [do not reject slow dependency extractors]) AS_HELP_STRING( [--disable-dependency-tracking], [speeds up one-time build])]) if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi AM_CONDITIONAL([AMDEP], [test "x$enable_dependency_tracking" != xno]) AC_SUBST([AMDEPBACKSLASH])dnl _AM_SUBST_NOTMAKE([AMDEPBACKSLASH])dnl AC_SUBST([am__nodep])dnl _AM_SUBST_NOTMAKE([am__nodep])dnl ]) # Generate code to set up dependency tracking. -*- Autoconf -*- # Copyright (C) 1999-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_OUTPUT_DEPENDENCY_COMMANDS # ------------------------------ AC_DEFUN([_AM_OUTPUT_DEPENDENCY_COMMANDS], [{ # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. case $CONFIG_FILES in *\'*) eval set x "$CONFIG_FILES" ;; *) set x $CONFIG_FILES ;; esac shift for mf do # Strip MF so we end up with the name of the file. mf=`echo "$mf" | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile or not. # We used to match only the files named 'Makefile.in', but # some people rename them; so instead we look at the file content. # Grep'ing the first line is not enough: some people post-process # each Makefile.in and add a new line on top of each file to say so. # Grep'ing the whole file is not good either: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. if sed -n 's,^#.*generated by automake.*,X,p' "$mf" | grep X >/dev/null 2>&1; then dirpart=`AS_DIRNAME("$mf")` else continue fi # Extract the definition of DEPDIR, am__include, and am__quote # from the Makefile without running 'make'. DEPDIR=`sed -n 's/^DEPDIR = //p' < "$mf"` test -z "$DEPDIR" && continue am__include=`sed -n 's/^am__include = //p' < "$mf"` test -z "$am__include" && continue am__quote=`sed -n 's/^am__quote = //p' < "$mf"` # Find all dependency output files, they are included files with # $(DEPDIR) in their names. We invoke sed twice because it is the # simplest approach to changing $(DEPDIR) to its actual value in the # expansion. for file in `sed -n " s/^$am__include $am__quote\(.*(DEPDIR).*\)$am__quote"'$/\1/p' <"$mf" | \ sed -e 's/\$(DEPDIR)/'"$DEPDIR"'/g'`; do # Make sure the directory exists. test -f "$dirpart/$file" && continue fdir=`AS_DIRNAME(["$file"])` AS_MKDIR_P([$dirpart/$fdir]) # echo "creating $dirpart/$file" echo '# dummy' > "$dirpart/$file" done done } ])# _AM_OUTPUT_DEPENDENCY_COMMANDS # AM_OUTPUT_DEPENDENCY_COMMANDS # ----------------------------- # This macro should only be invoked once -- use via AC_REQUIRE. # # This code is only required when automatic dependency tracking # is enabled. FIXME. This creates each '.P' file that we will # need in order to bootstrap the dependency handling code. AC_DEFUN([AM_OUTPUT_DEPENDENCY_COMMANDS], [AC_CONFIG_COMMANDS([depfiles], [test x"$AMDEP_TRUE" != x"" || _AM_OUTPUT_DEPENDENCY_COMMANDS], [AMDEP_TRUE="$AMDEP_TRUE" ac_aux_dir="$ac_aux_dir"]) ]) # Do all the work for Automake. -*- Autoconf -*- # Copyright (C) 1996-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This macro actually does too much. Some checks are only needed if # your package does certain things. But this isn't really a big deal. dnl Redefine AC_PROG_CC to automatically invoke _AM_PROG_CC_C_O. m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC]) [_AM_PROG_CC_C_O ]) # AM_INIT_AUTOMAKE(PACKAGE, VERSION, [NO-DEFINE]) # AM_INIT_AUTOMAKE([OPTIONS]) # ----------------------------------------------- # The call with PACKAGE and VERSION arguments is the old style # call (pre autoconf-2.50), which is being phased out. PACKAGE # and VERSION should now be passed to AC_INIT and removed from # the call to AM_INIT_AUTOMAKE. # We support both call styles for the transition. After # the next Automake release, Autoconf can make the AC_INIT # arguments mandatory, and then we can depend on a new Autoconf # release and drop the old call support. AC_DEFUN([AM_INIT_AUTOMAKE], [AC_PREREQ([2.65])dnl dnl Autoconf wants to disallow AM_ names. We explicitly allow dnl the ones we care about. m4_pattern_allow([^AM_[A-Z]+FLAGS$])dnl AC_REQUIRE([AM_SET_CURRENT_AUTOMAKE_VERSION])dnl AC_REQUIRE([AC_PROG_INSTALL])dnl if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." AC_SUBST([am__isrc], [' -I$(srcdir)'])_AM_SUBST_NOTMAKE([am__isrc])dnl # test to see if srcdir already configured if test -f $srcdir/config.status; then AC_MSG_ERROR([source directory already configured; run "make distclean" there first]) fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi AC_SUBST([CYGPATH_W]) # Define the identity of the package. dnl Distinguish between old-style and new-style calls. m4_ifval([$2], [AC_DIAGNOSE([obsolete], [$0: two- and three-arguments forms are deprecated.]) m4_ifval([$3], [_AM_SET_OPTION([no-define])])dnl AC_SUBST([PACKAGE], [$1])dnl AC_SUBST([VERSION], [$2])], [_AM_SET_OPTIONS([$1])dnl dnl Diagnose old-style AC_INIT with new-style AM_AUTOMAKE_INIT. m4_if( m4_ifdef([AC_PACKAGE_NAME], [ok]):m4_ifdef([AC_PACKAGE_VERSION], [ok]), [ok:ok],, [m4_fatal([AC_INIT should be called with package and version arguments])])dnl AC_SUBST([PACKAGE], ['AC_PACKAGE_TARNAME'])dnl AC_SUBST([VERSION], ['AC_PACKAGE_VERSION'])])dnl _AM_IF_OPTION([no-define],, [AC_DEFINE_UNQUOTED([PACKAGE], ["$PACKAGE"], [Name of package]) AC_DEFINE_UNQUOTED([VERSION], ["$VERSION"], [Version number of package])])dnl # Some tools Automake needs. AC_REQUIRE([AM_SANITY_CHECK])dnl AC_REQUIRE([AC_ARG_PROGRAM])dnl AM_MISSING_PROG([ACLOCAL], [aclocal-${am__api_version}]) AM_MISSING_PROG([AUTOCONF], [autoconf]) AM_MISSING_PROG([AUTOMAKE], [automake-${am__api_version}]) AM_MISSING_PROG([AUTOHEADER], [autoheader]) AM_MISSING_PROG([MAKEINFO], [makeinfo]) AC_REQUIRE([AM_PROG_INSTALL_SH])dnl AC_REQUIRE([AM_PROG_INSTALL_STRIP])dnl AC_REQUIRE([AC_PROG_MKDIR_P])dnl # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # AC_SUBST([mkdir_p], ['$(MKDIR_P)']) # We need awk for the "check" target. The system "awk" is bad on # some platforms. AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([AC_PROG_MAKE_SET])dnl AC_REQUIRE([AM_SET_LEADING_DOT])dnl _AM_IF_OPTION([tar-ustar], [_AM_PROG_TAR([ustar])], [_AM_IF_OPTION([tar-pax], [_AM_PROG_TAR([pax])], [_AM_PROG_TAR([v7])])]) _AM_IF_OPTION([no-dependencies],, [AC_PROVIDE_IFELSE([AC_PROG_CC], [_AM_DEPENDENCIES([CC])], [m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC])[_AM_DEPENDENCIES([CC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_CXX], [_AM_DEPENDENCIES([CXX])], [m4_define([AC_PROG_CXX], m4_defn([AC_PROG_CXX])[_AM_DEPENDENCIES([CXX])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJC], [_AM_DEPENDENCIES([OBJC])], [m4_define([AC_PROG_OBJC], m4_defn([AC_PROG_OBJC])[_AM_DEPENDENCIES([OBJC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJCXX], [_AM_DEPENDENCIES([OBJCXX])], [m4_define([AC_PROG_OBJCXX], m4_defn([AC_PROG_OBJCXX])[_AM_DEPENDENCIES([OBJCXX])])])dnl ]) AC_REQUIRE([AM_SILENT_RULES])dnl dnl The testsuite driver may need to know about EXEEXT, so add the dnl 'am__EXEEXT' conditional if _AM_COMPILER_EXEEXT was seen. This dnl macro is hooked onto _AC_COMPILER_EXEEXT early, see below. AC_CONFIG_COMMANDS_PRE(dnl [m4_provide_if([_AM_COMPILER_EXEEXT], [AM_CONDITIONAL([am__EXEEXT], [test -n "$EXEEXT"])])])dnl # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END AC_MSG_ERROR([Your 'rm' program is bad, sorry.]) fi fi]) dnl Hook into '_AC_COMPILER_EXEEXT' early to learn its expansion. Do not dnl add the conditional right here, as _AC_COMPILER_EXEEXT may be further dnl mangled by Autoconf and run in a shell conditional statement. m4_define([_AC_COMPILER_EXEEXT], m4_defn([_AC_COMPILER_EXEEXT])[m4_provide([_AM_COMPILER_EXEEXT])]) # When config.status generates a header, we must update the stamp-h file. # This file resides in the same directory as the config header # that is generated. The stamp files are numbered to have different names. # Autoconf calls _AC_AM_CONFIG_HEADER_HOOK (when defined) in the # loop where config.status creates the headers, so we can generate # our stamp files there. AC_DEFUN([_AC_AM_CONFIG_HEADER_HOOK], [# Compute $1's index in $config_headers. _am_arg=$1 _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`AS_DIRNAME(["$_am_arg"])`/stamp-h[]$_am_stamp_count]) # Copyright (C) 2001-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_SH # ------------------ # Define $install_sh. AC_DEFUN([AM_PROG_INSTALL_SH], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl if test x"${install_sh}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi AC_SUBST([install_sh])]) # Copyright (C) 2003-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # Check whether the underlying file-system supports filenames # with a leading dot. For instance MS-DOS doesn't. AC_DEFUN([AM_SET_LEADING_DOT], [rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null AC_SUBST([am__leading_dot])]) # Add --enable-maintainer-mode option to configure. -*- Autoconf -*- # From Jim Meyering # Copyright (C) 1996-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAINTAINER_MODE([DEFAULT-MODE]) # ---------------------------------- # Control maintainer-specific portions of Makefiles. # Default is to disable them, unless 'enable' is passed literally. # For symmetry, 'disable' may be passed as well. Anyway, the user # can override the default with the --enable/--disable switch. AC_DEFUN([AM_MAINTAINER_MODE], [m4_case(m4_default([$1], [disable]), [enable], [m4_define([am_maintainer_other], [disable])], [disable], [m4_define([am_maintainer_other], [enable])], [m4_define([am_maintainer_other], [enable]) m4_warn([syntax], [unexpected argument to AM@&t@_MAINTAINER_MODE: $1])]) AC_MSG_CHECKING([whether to enable maintainer-specific portions of Makefiles]) dnl maintainer-mode's default is 'disable' unless 'enable' is passed AC_ARG_ENABLE([maintainer-mode], [AS_HELP_STRING([--]am_maintainer_other[-maintainer-mode], am_maintainer_other[ make rules and dependencies not useful (and sometimes confusing) to the casual installer])], [USE_MAINTAINER_MODE=$enableval], [USE_MAINTAINER_MODE=]m4_if(am_maintainer_other, [enable], [no], [yes])) AC_MSG_RESULT([$USE_MAINTAINER_MODE]) AM_CONDITIONAL([MAINTAINER_MODE], [test $USE_MAINTAINER_MODE = yes]) MAINT=$MAINTAINER_MODE_TRUE AC_SUBST([MAINT])dnl ] ) # Check to see how 'make' treats includes. -*- Autoconf -*- # Copyright (C) 2001-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAKE_INCLUDE() # ----------------- # Check to see how make treats includes. AC_DEFUN([AM_MAKE_INCLUDE], [am_make=${MAKE-make} cat > confinc << 'END' am__doit: @echo this is the am__doit target .PHONY: am__doit END # If we don't find an include directive, just comment out the code. AC_MSG_CHECKING([for style of include used by $am_make]) am__include="#" am__quote= _am_result=none # First try GNU make style include. echo "include confinc" > confmf # Ignore all kinds of additional output from 'make'. case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=include am__quote= _am_result=GNU ;; esac # Now try BSD make style include. if test "$am__include" = "#"; then echo '.include "confinc"' > confmf case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=.include am__quote="\"" _am_result=BSD ;; esac fi AC_SUBST([am__include]) AC_SUBST([am__quote]) AC_MSG_RESULT([$_am_result]) rm -f confinc confmf ]) # Fake the existence of programs that GNU maintainers use. -*- Autoconf -*- # Copyright (C) 1997-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MISSING_PROG(NAME, PROGRAM) # ------------------------------ AC_DEFUN([AM_MISSING_PROG], [AC_REQUIRE([AM_MISSING_HAS_RUN]) $1=${$1-"${am_missing_run}$2"} AC_SUBST($1)]) # AM_MISSING_HAS_RUN # ------------------ # Define MISSING if not defined so far and test if it is modern enough. # If it is, set am_missing_run to use it, otherwise, to nothing. AC_DEFUN([AM_MISSING_HAS_RUN], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([missing])dnl if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= AC_MSG_WARN(['missing' script is too old or missing]) fi ]) # Helper functions for option handling. -*- Autoconf -*- # Copyright (C) 2001-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_MANGLE_OPTION(NAME) # ----------------------- AC_DEFUN([_AM_MANGLE_OPTION], [[_AM_OPTION_]m4_bpatsubst($1, [[^a-zA-Z0-9_]], [_])]) # _AM_SET_OPTION(NAME) # -------------------- # Set option NAME. Presently that only means defining a flag for this option. AC_DEFUN([_AM_SET_OPTION], [m4_define(_AM_MANGLE_OPTION([$1]), [1])]) # _AM_SET_OPTIONS(OPTIONS) # ------------------------ # OPTIONS is a space-separated list of Automake options. AC_DEFUN([_AM_SET_OPTIONS], [m4_foreach_w([_AM_Option], [$1], [_AM_SET_OPTION(_AM_Option)])]) # _AM_IF_OPTION(OPTION, IF-SET, [IF-NOT-SET]) # ------------------------------------------- # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. AC_DEFUN([_AM_IF_OPTION], [m4_ifset(_AM_MANGLE_OPTION([$1]), [$2], [$3])]) # Copyright (C) 1999-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_CC_C_O # --------------- # Like AC_PROG_CC_C_O, but changed for automake. We rewrite AC_PROG_CC # to automatically call this. AC_DEFUN([_AM_PROG_CC_C_O], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([compile])dnl AC_LANG_PUSH([C])dnl AC_CACHE_CHECK( [whether $CC understands -c and -o together], [am_cv_prog_cc_c_o], [AC_LANG_CONFTEST([AC_LANG_PROGRAM([])]) # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if AM_RUN_LOG([$CC -c conftest.$ac_ext -o conftest2.$ac_objext]) \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i]) if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi AC_LANG_POP([C])]) # For backward compatibility. AC_DEFUN_ONCE([AM_PROG_CC_C_O], [AC_REQUIRE([AC_PROG_CC])]) # Copyright (C) 2001-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_RUN_LOG(COMMAND) # ------------------- # Run COMMAND, save the exit status in ac_status, and log it. # (This has been adapted from Autoconf's _AC_RUN_LOG macro.) AC_DEFUN([AM_RUN_LOG], [{ echo "$as_me:$LINENO: $1" >&AS_MESSAGE_LOG_FD ($1) >&AS_MESSAGE_LOG_FD 2>&AS_MESSAGE_LOG_FD ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD (exit $ac_status); }]) # Check to make sure that the build environment is sane. -*- Autoconf -*- # Copyright (C) 1996-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SANITY_CHECK # --------------- AC_DEFUN([AM_SANITY_CHECK], [AC_MSG_CHECKING([whether build environment is sane]) # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[[\\\"\#\$\&\'\`$am_lf]]*) AC_MSG_ERROR([unsafe absolute working directory name]);; esac case $srcdir in *[[\\\"\#\$\&\'\`$am_lf\ \ ]]*) AC_MSG_ERROR([unsafe srcdir value: '$srcdir']);; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$[*]" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$[*]" != "X $srcdir/configure conftest.file" \ && test "$[*]" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". AC_MSG_ERROR([ls -t appears to fail. Make sure there is not a broken alias in your environment]) fi if test "$[2]" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$[2]" = conftest.file ) then # Ok. : else AC_MSG_ERROR([newly created file is older than distributed files! Check your system clock]) fi AC_MSG_RESULT([yes]) # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi AC_CONFIG_COMMANDS_PRE( [AC_MSG_CHECKING([that generated files are newer than configure]) if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi AC_MSG_RESULT([done])]) rm -f conftest.file ]) # Copyright (C) 2009-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SILENT_RULES([DEFAULT]) # -------------------------- # Enable less verbose build rules; with the default set to DEFAULT # ("yes" being less verbose, "no" or empty being verbose). AC_DEFUN([AM_SILENT_RULES], [AC_ARG_ENABLE([silent-rules], [dnl AS_HELP_STRING( [--enable-silent-rules], [less verbose build output (undo: "make V=1")]) AS_HELP_STRING( [--disable-silent-rules], [verbose build output (undo: "make V=0")])dnl ]) case $enable_silent_rules in @%:@ ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=m4_if([$1], [yes], [0], [1]);; esac dnl dnl A few 'make' implementations (e.g., NonStop OS and NextStep) dnl do not support nested variable expansions. dnl See automake bug#9928 and bug#10237. am_make=${MAKE-make} AC_CACHE_CHECK([whether $am_make supports nested variables], [am_cv_make_support_nested_variables], [if AS_ECHO([['TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit']]) | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi]) if test $am_cv_make_support_nested_variables = yes; then dnl Using '$V' instead of '$(V)' breaks IRIX make. AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AC_SUBST([AM_V])dnl AM_SUBST_NOTMAKE([AM_V])dnl AC_SUBST([AM_DEFAULT_V])dnl AM_SUBST_NOTMAKE([AM_DEFAULT_V])dnl AC_SUBST([AM_DEFAULT_VERBOSITY])dnl AM_BACKSLASH='\' AC_SUBST([AM_BACKSLASH])dnl _AM_SUBST_NOTMAKE([AM_BACKSLASH])dnl ]) # Copyright (C) 2001-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_STRIP # --------------------- # One issue with vendor 'install' (even GNU) is that you can't # specify the program used to strip binaries. This is especially # annoying in cross-compiling environments, where the build's strip # is unlikely to handle the host's binaries. # Fortunately install-sh will honor a STRIPPROG variable, so we # always use install-sh in "make install-strip", and initialize # STRIPPROG with the value of the STRIP variable (set by the user). AC_DEFUN([AM_PROG_INSTALL_STRIP], [AC_REQUIRE([AM_PROG_INSTALL_SH])dnl # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. dnl Don't test for $cross_compiling = yes, because it might be 'maybe'. if test "$cross_compiling" != no; then AC_CHECK_TOOL([STRIP], [strip], :) fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" AC_SUBST([INSTALL_STRIP_PROGRAM])]) # Copyright (C) 2006-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_SUBST_NOTMAKE(VARIABLE) # --------------------------- # Prevent Automake from outputting VARIABLE = @VARIABLE@ in Makefile.in. # This macro is traced by Automake. AC_DEFUN([_AM_SUBST_NOTMAKE]) # AM_SUBST_NOTMAKE(VARIABLE) # -------------------------- # Public sister of _AM_SUBST_NOTMAKE. AC_DEFUN([AM_SUBST_NOTMAKE], [_AM_SUBST_NOTMAKE($@)]) # Check how to create a tarball. -*- Autoconf -*- # Copyright (C) 2004-2013 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_TAR(FORMAT) # -------------------- # Check how to create a tarball in format FORMAT. # FORMAT should be one of 'v7', 'ustar', or 'pax'. # # Substitute a variable $(am__tar) that is a command # writing to stdout a FORMAT-tarball containing the directory # $tardir. # tardir=directory && $(am__tar) > result.tar # # Substitute a variable $(am__untar) that extract such # a tarball read from stdin. # $(am__untar) < result.tar # AC_DEFUN([_AM_PROG_TAR], [# Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AC_SUBST([AMTAR], ['$${TAR-tar}']) # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar m4_if([$1], [ustar], [plaintar]) pax cpio none' m4_if([$1], [v7], [am__tar='$${TAR-tar} chof - "$$tardir"' am__untar='$${TAR-tar} xf -'], [m4_case([$1], [ustar], [# The POSIX 1988 'ustar' format is defined with fixed-size fields. # There is notably a 21 bits limit for the UID and the GID. In fact, # the 'pax' utility can hang on bigger UID/GID (see automake bug#8343 # and bug#13588). am_max_uid=2097151 # 2^21 - 1 am_max_gid=$am_max_uid # The $UID and $GID variables are not portable, so we need to resort # to the POSIX-mandated id(1) utility. Errors in the 'id' calls # below are definitely unexpected, so allow the users to see them # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` AC_MSG_CHECKING([whether UID '$am_uid' is supported by ustar format]) if test $am_uid -le $am_max_uid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi AC_MSG_CHECKING([whether GID '$am_gid' is supported by ustar format]) if test $am_gid -le $am_max_gid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi], [pax], [], [m4_fatal([Unknown tar format])]) AC_MSG_CHECKING([how to create a $1 tar archive]) # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. _am_tools=${am_cv_prog_tar_$1-$_am_tools} for _am_tool in $_am_tools; do case $_am_tool in gnutar) for _am_tar in tar gnutar gtar; do AM_RUN_LOG([$_am_tar --version]) && break done am__tar="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$$tardir"' am__tar_="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$tardir"' am__untar="$_am_tar -xf -" ;; plaintar) # Must skip GNU tar: if it does not support --format= it doesn't create # ustar tarball either. (tar --version) >/dev/null 2>&1 && continue am__tar='tar chf - "$$tardir"' am__tar_='tar chf - "$tardir"' am__untar='tar xf -' ;; pax) am__tar='pax -L -x $1 -w "$$tardir"' am__tar_='pax -L -x $1 -w "$tardir"' am__untar='pax -r' ;; cpio) am__tar='find "$$tardir" -print | cpio -o -H $1 -L' am__tar_='find "$tardir" -print | cpio -o -H $1 -L' am__untar='cpio -i -H $1 -d' ;; none) am__tar=false am__tar_=false am__untar=false ;; esac # If the value was cached, stop now. We just wanted to have am__tar # and am__untar set. test -n "${am_cv_prog_tar_$1}" && break # tar/untar a dummy directory, and stop if the command works. rm -rf conftest.dir mkdir conftest.dir echo GrepMe > conftest.dir/file AM_RUN_LOG([tardir=conftest.dir && eval $am__tar_ >conftest.tar]) rm -rf conftest.dir if test -s conftest.tar; then AM_RUN_LOG([$am__untar /dev/null 2>&1 && break fi done rm -rf conftest.dir AC_CACHE_VAL([am_cv_prog_tar_$1], [am_cv_prog_tar_$1=$_am_tool]) AC_MSG_RESULT([$am_cv_prog_tar_$1])]) AC_SUBST([am__tar]) AC_SUBST([am__untar]) ]) # _AM_PROG_TAR m4_include([m4/ax_check_vscript.m4]) m4_include([m4/iconv.m4]) m4_include([m4/lib-ld.m4]) m4_include([m4/lib-link.m4]) m4_include([m4/lib-prefix.m4]) m4_include([m4/libtool.m4]) m4_include([m4/ltoptions.m4]) m4_include([m4/ltsugar.m4]) m4_include([m4/ltversion.m4]) m4_include([m4/lt~obsolete.m4]) m4_include([acinclude.m4]) openconnect-7.06/depcomp0000755000076400007640000005601612404036304012273 00000000000000#! /bin/sh # depcomp - compile a program generating dependencies as side-effects scriptversion=2013-05-30.07; # UTC # Copyright (C) 1999-2013 Free Software Foundation, Inc. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # Originally written by Alexandre Oliva . case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: depcomp [--help] [--version] PROGRAM [ARGS] Run PROGRAMS ARGS to compile a file, generating dependencies as side-effects. Environment variables: depmode Dependency tracking mode. source Source file read by 'PROGRAMS ARGS'. object Object file output by 'PROGRAMS ARGS'. DEPDIR directory where to store dependencies. depfile Dependency file to output. tmpdepfile Temporary file to use when outputting dependencies. libtool Whether libtool is used (yes/no). Report bugs to . EOF exit $? ;; -v | --v*) echo "depcomp $scriptversion" exit $? ;; esac # Get the directory component of the given path, and save it in the # global variables '$dir'. Note that this directory component will # be either empty or ending with a '/' character. This is deliberate. set_dir_from () { case $1 in */*) dir=`echo "$1" | sed -e 's|/[^/]*$|/|'`;; *) dir=;; esac } # Get the suffix-stripped basename of the given path, and save it the # global variable '$base'. set_base_from () { base=`echo "$1" | sed -e 's|^.*/||' -e 's/\.[^.]*$//'` } # If no dependency file was actually created by the compiler invocation, # we still have to create a dummy depfile, to avoid errors with the # Makefile "include basename.Plo" scheme. make_dummy_depfile () { echo "#dummy" > "$depfile" } # Factor out some common post-processing of the generated depfile. # Requires the auxiliary global variable '$tmpdepfile' to be set. aix_post_process_depfile () { # If the compiler actually managed to produce a dependency file, # post-process it. if test -f "$tmpdepfile"; then # Each line is of the form 'foo.o: dependency.h'. # Do two passes, one to just change these to # $object: dependency.h # and one to simply output # dependency.h: # which is needed to avoid the deleted-header problem. { sed -e "s,^.*\.[$lower]*:,$object:," < "$tmpdepfile" sed -e "s,^.*\.[$lower]*:[$tab ]*,," -e 's,$,:,' < "$tmpdepfile" } > "$depfile" rm -f "$tmpdepfile" else make_dummy_depfile fi } # A tabulation character. tab=' ' # A newline character. nl=' ' # Character ranges might be problematic outside the C locale. # These definitions help. upper=ABCDEFGHIJKLMNOPQRSTUVWXYZ lower=abcdefghijklmnopqrstuvwxyz digits=0123456789 alpha=${upper}${lower} if test -z "$depmode" || test -z "$source" || test -z "$object"; then echo "depcomp: Variables source, object and depmode must be set" 1>&2 exit 1 fi # Dependencies for sub/bar.o or sub/bar.obj go into sub/.deps/bar.Po. depfile=${depfile-`echo "$object" | sed 's|[^\\/]*$|'${DEPDIR-.deps}'/&|;s|\.\([^.]*\)$|.P\1|;s|Pobj$|Po|'`} tmpdepfile=${tmpdepfile-`echo "$depfile" | sed 's/\.\([^.]*\)$/.T\1/'`} rm -f "$tmpdepfile" # Avoid interferences from the environment. gccflag= dashmflag= # Some modes work just like other modes, but use different flags. We # parameterize here, but still list the modes in the big case below, # to make depend.m4 easier to write. Note that we *cannot* use a case # here, because this file can only contain one case statement. if test "$depmode" = hp; then # HP compiler uses -M and no extra arg. gccflag=-M depmode=gcc fi if test "$depmode" = dashXmstdout; then # This is just like dashmstdout with a different argument. dashmflag=-xM depmode=dashmstdout fi cygpath_u="cygpath -u -f -" if test "$depmode" = msvcmsys; then # This is just like msvisualcpp but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvisualcpp fi if test "$depmode" = msvc7msys; then # This is just like msvc7 but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvc7 fi if test "$depmode" = xlc; then # IBM C/C++ Compilers xlc/xlC can output gcc-like dependency information. gccflag=-qmakedep=gcc,-MF depmode=gcc fi case "$depmode" in gcc3) ## gcc 3 implements dependency tracking that does exactly what ## we want. Yay! Note: for some reason libtool 1.4 doesn't like ## it if -MD -MP comes after the -MF stuff. Hmm. ## Unfortunately, FreeBSD c89 acceptance of flags depends upon ## the command line argument order; so add the flags where they ## appear in depend2.am. Note that the slowdown incurred here ## affects only configure: in makefiles, %FASTDEP% shortcuts this. for arg do case $arg in -c) set fnord "$@" -MT "$object" -MD -MP -MF "$tmpdepfile" "$arg" ;; *) set fnord "$@" "$arg" ;; esac shift # fnord shift # $arg done "$@" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi mv "$tmpdepfile" "$depfile" ;; gcc) ## Note that this doesn't just cater to obsosete pre-3.x GCC compilers. ## but also to in-use compilers like IMB xlc/xlC and the HP C compiler. ## (see the conditional assignment to $gccflag above). ## There are various ways to get dependency output from gcc. Here's ## why we pick this rather obscure method: ## - Don't want to use -MD because we'd like the dependencies to end ## up in a subdir. Having to rename by hand is ugly. ## (We might end up doing this anyway to support other compilers.) ## - The DEPENDENCIES_OUTPUT environment variable makes gcc act like ## -MM, not -M (despite what the docs say). Also, it might not be ## supported by the other compilers which use the 'gcc' depmode. ## - Using -M directly means running the compiler twice (even worse ## than renaming). if test -z "$gccflag"; then gccflag=-MD, fi "$@" -Wp,"$gccflag$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The second -e expression handles DOS-style file names with drive # letters. sed -e 's/^[^:]*: / /' \ -e 's/^['$alpha']:\/[^:]*: / /' < "$tmpdepfile" >> "$depfile" ## This next piece of magic avoids the "deleted header file" problem. ## The problem is that when a header file which appears in a .P file ## is deleted, the dependency causes make to die (because there is ## typically no way to rebuild the header). We avoid this by adding ## dummy dependencies for each header file. Too bad gcc doesn't do ## this for us directly. ## Some versions of gcc put a space before the ':'. On the theory ## that the space means something, we add a space to the output as ## well. hp depmode also adds that space, but also prefixes the VPATH ## to the object. Take care to not repeat it in the output. ## Some versions of the HPUX 10.20 sed can't process this invocation ## correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e "s|.*$object$||" -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; sgi) if test "$libtool" = yes; then "$@" "-Wp,-MDupdate,$tmpdepfile" else "$@" -MDupdate "$tmpdepfile" fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" if test -f "$tmpdepfile"; then # yes, the sourcefile depend on other files echo "$object : \\" > "$depfile" # Clip off the initial element (the dependent). Don't try to be # clever and replace this with sed code, as IRIX sed won't handle # lines with more than a fixed number of characters (4096 in # IRIX 6.2 sed, 8192 in IRIX 6.5). We also remove comment lines; # the IRIX cc adds comments like '#:fec' to the end of the # dependency line. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' \ | tr "$nl" ' ' >> "$depfile" echo >> "$depfile" # The second pass generates a dummy entry for each header file. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' -e 's/$/:/' \ >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" ;; xlc) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; aix) # The C for AIX Compiler uses -M and outputs the dependencies # in a .u file. In older versions, this file always lives in the # current directory. Also, the AIX compiler puts '$object:' at the # start of each line; $object doesn't have directory information. # Version 6 uses the directory in both cases. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.u tmpdepfile2=$base.u tmpdepfile3=$dir.libs/$base.u "$@" -Wc,-M else tmpdepfile1=$dir$base.u tmpdepfile2=$dir$base.u tmpdepfile3=$dir$base.u "$@" -M fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done aix_post_process_depfile ;; tcc) # tcc (Tiny C Compiler) understand '-MD -MF file' since version 0.9.26 # FIXME: That version still under development at the moment of writing. # Make that this statement remains true also for stable, released # versions. # It will wrap lines (doesn't matter whether long or short) with a # trailing '\', as in: # # foo.o : \ # foo.c \ # foo.h \ # # It will put a trailing '\' even on the last line, and will use leading # spaces rather than leading tabs (at least since its commit 0394caf7 # "Emit spaces for -MD"). "$@" -MD -MF "$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each non-empty line is of the form 'foo.o : \' or ' dep.h \'. # We have to change lines of the first kind to '$object: \'. sed -e "s|.*:|$object :|" < "$tmpdepfile" > "$depfile" # And for each line of the second kind, we have to emit a 'dep.h:' # dummy dependency, to avoid the deleted-header problem. sed -n -e 's|^ *\(.*\) *\\$|\1:|p' < "$tmpdepfile" >> "$depfile" rm -f "$tmpdepfile" ;; ## The order of this option in the case statement is important, since the ## shell code in configure will try each of these formats in the order ## listed in this file. A plain '-MD' option would be understood by many ## compilers, so we must ensure this comes after the gcc and icc options. pgcc) # Portland's C compiler understands '-MD'. # Will always output deps to 'file.d' where file is the root name of the # source file under compilation, even if file resides in a subdirectory. # The object file name does not affect the name of the '.d' file. # pgcc 10.2 will output # foo.o: sub/foo.c sub/foo.h # and will wrap long lines using '\' : # foo.o: sub/foo.c ... \ # sub/foo.h ... \ # ... set_dir_from "$object" # Use the source, not the object, to determine the base name, since # that's sadly what pgcc will do too. set_base_from "$source" tmpdepfile=$base.d # For projects that build the same source file twice into different object # files, the pgcc approach of using the *source* file root name can cause # problems in parallel builds. Use a locking strategy to avoid stomping on # the same $tmpdepfile. lockdir=$base.d-lock trap " echo '$0: caught signal, cleaning up...' >&2 rmdir '$lockdir' exit 1 " 1 2 13 15 numtries=100 i=$numtries while test $i -gt 0; do # mkdir is a portable test-and-set. if mkdir "$lockdir" 2>/dev/null; then # This process acquired the lock. "$@" -MD stat=$? # Release the lock. rmdir "$lockdir" break else # If the lock is being held by a different process, wait # until the winning process is done or we timeout. while test -d "$lockdir" && test $i -gt 0; do sleep 1 i=`expr $i - 1` done fi i=`expr $i - 1` done trap - 1 2 13 15 if test $i -le 0; then echo "$0: failed to acquire lock after $numtries attempts" >&2 echo "$0: check lockdir '$lockdir'" >&2 exit 1 fi if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each line is of the form `foo.o: dependent.h', # or `foo.o: dep1.h dep2.h \', or ` dep3.h dep4.h \'. # Do two passes, one to just change these to # `$object: dependent.h' and one to simply `dependent.h:'. sed "s,^[^:]*:,$object :," < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this invocation # correctly. Breaking it into two sed invocations is a workaround. sed 's,^[^:]*: \(.*\)$,\1,;s/^\\$//;/^$/d;/:$/d' < "$tmpdepfile" \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp2) # The "hp" stanza above does not work with aCC (C++) and HP's ia64 # compilers, which have integrated preprocessors. The correct option # to use with these is +Maked; it writes dependencies to a file named # 'foo.d', which lands next to the object file, wherever that # happens to be. # Much of this is similar to the tru64 case; see comments there. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.d tmpdepfile2=$dir.libs/$base.d "$@" -Wc,+Maked else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d "$@" +Maked fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" do test -f "$tmpdepfile" && break done if test -f "$tmpdepfile"; then sed -e "s,^.*\.[$lower]*:,$object:," "$tmpdepfile" > "$depfile" # Add 'dependent.h:' lines. sed -ne '2,${ s/^ *// s/ \\*$// s/$/:/ p }' "$tmpdepfile" >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" "$tmpdepfile2" ;; tru64) # The Tru64 compiler uses -MD to generate dependencies as a side # effect. 'cc -MD -o foo.o ...' puts the dependencies into 'foo.o.d'. # At least on Alpha/Redhat 6.1, Compaq CCC V6.2-504 seems to put # dependencies in 'foo.d' instead, so we check for that too. # Subdirectories are respected. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then # Libtool generates 2 separate objects for the 2 libraries. These # two compilations output dependencies in $dir.libs/$base.o.d and # in $dir$base.o.d. We have to check for both files, because # one of the two compilations can be disabled. We should prefer # $dir$base.o.d over $dir.libs/$base.o.d because the latter is # automatically cleaned when .libs/ is deleted, while ignoring # the former would cause a distcleancheck panic. tmpdepfile1=$dir$base.o.d # libtool 1.5 tmpdepfile2=$dir.libs/$base.o.d # Likewise. tmpdepfile3=$dir.libs/$base.d # Compaq CCC V6.2-504 "$@" -Wc,-MD else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d tmpdepfile3=$dir$base.d "$@" -MD fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done # Same post-processing that is required for AIX mode. aix_post_process_depfile ;; msvc7) if test "$libtool" = yes; then showIncludes=-Wc,-showIncludes else showIncludes=-showIncludes fi "$@" $showIncludes > "$tmpdepfile" stat=$? grep -v '^Note: including file: ' "$tmpdepfile" if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The first sed program below extracts the file names and escapes # backslashes for cygpath. The second sed program outputs the file # name when reading, but also accumulates all include files in the # hold buffer in order to output them again at the end. This only # works with sed implementations that can handle large buffers. sed < "$tmpdepfile" -n ' /^Note: including file: *\(.*\)/ { s//\1/ s/\\/\\\\/g p }' | $cygpath_u | sort -u | sed -n ' s/ /\\ /g s/\(.*\)/'"$tab"'\1 \\/p s/.\(.*\) \\/\1:/ H $ { s/.*/'"$tab"'/ G p }' >> "$depfile" echo >> "$depfile" # make sure the fragment doesn't end with a backslash rm -f "$tmpdepfile" ;; msvc7msys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; #nosideeffect) # This comment above is used by automake to tell side-effect # dependency tracking mechanisms from slower ones. dashmstdout) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout, regardless of -o. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done test -z "$dashmflag" && dashmflag=-M # Require at least two characters before searching for ':' # in the target name. This is to cope with DOS-style filenames: # a dependency such as 'c:/foo/bar' could be seen as target 'c' otherwise. "$@" $dashmflag | sed "s|^[$tab ]*[^:$tab ][^:][^:]*:[$tab ]*|$object: |" > "$tmpdepfile" rm -f "$depfile" cat < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this sed invocation # correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; dashXmstdout) # This case only exists to satisfy depend.m4. It is never actually # run, as this mode is specially recognized in the preamble. exit 1 ;; makedepend) "$@" || exit $? # Remove any Libtool call if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # X makedepend shift cleared=no eat=no for arg do case $cleared in no) set ""; shift cleared=yes ;; esac if test $eat = yes; then eat=no continue fi case "$arg" in -D*|-I*) set fnord "$@" "$arg"; shift ;; # Strip any option that makedepend may not understand. Remove # the object too, otherwise makedepend will parse it as a source file. -arch) eat=yes ;; -*|$object) ;; *) set fnord "$@" "$arg"; shift ;; esac done obj_suffix=`echo "$object" | sed 's/^.*\././'` touch "$tmpdepfile" ${MAKEDEPEND-makedepend} -o"$obj_suffix" -f"$tmpdepfile" "$@" rm -f "$depfile" # makedepend may prepend the VPATH from the source file name to the object. # No need to regex-escape $object, excess matching of '.' is harmless. sed "s|^.*\($object *:\)|\1|" "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process the last invocation # correctly. Breaking it into two sed invocations is a workaround. sed '1,2d' "$tmpdepfile" \ | tr ' ' "$nl" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" "$tmpdepfile".bak ;; cpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done "$@" -E \ | sed -n -e '/^# [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ -e '/^#line [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ | sed '$ s: \\$::' > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" cat < "$tmpdepfile" >> "$depfile" sed < "$tmpdepfile" '/^$/d;s/^ //;s/ \\$//;s/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; msvisualcpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi IFS=" " for arg do case "$arg" in -o) shift ;; $object) shift ;; "-Gm"|"/Gm"|"-Gi"|"/Gi"|"-ZI"|"/ZI") set fnord "$@" shift shift ;; *) set fnord "$@" "$arg" shift shift ;; esac done "$@" -E 2>/dev/null | sed -n '/^#line [0-9][0-9]* "\([^"]*\)"/ s::\1:p' | $cygpath_u | sort -u > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::'"$tab"'\1 \\:p' >> "$depfile" echo "$tab" >> "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::\1\::p' >> "$depfile" rm -f "$tmpdepfile" ;; msvcmsys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; none) exec "$@" ;; *) echo "Unknown depmode $depmode" 1>&2 exit 1 ;; esac exit 0 # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: openconnect-7.06/configure0000775000076400007640000217016312502026424012632 00000000000000#! /bin/sh # Guess values for system-dependent variables and create Makefiles. # Generated by GNU Autoconf 2.69 for openconnect 7.06. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. # # # This configure script is free software; the Free Software Foundation # gives unlimited permission to copy, distribute and modify it. ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Use a proper internal environment variable to ensure we don't fall # into an infinite loop, continuously re-executing ourselves. if test x"${_as_can_reexec}" != xno && test "x$CONFIG_SHELL" != x; then _as_can_reexec=no; export _as_can_reexec; # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 as_fn_exit 255 fi # We don't want this to propagate to other subprocesses. { _as_can_reexec=; unset _as_can_reexec;} if test "x$CONFIG_SHELL" = x; then as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi " as_required="as_fn_return () { (exit \$1); } as_fn_success () { as_fn_return 0; } as_fn_failure () { as_fn_return 1; } as_fn_ret_success () { return 0; } as_fn_ret_failure () { return 1; } exitcode=0 as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : else exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1 test -n \"\${ZSH_VERSION+set}\${BASH_VERSION+set}\" || ( ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO ECHO=\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO PATH=/empty FPATH=/empty; export PATH FPATH test \"X\`printf %s \$ECHO\`\" = \"X\$ECHO\" \\ || test \"X\`print -r -- \$ECHO\`\" = \"X\$ECHO\" ) || exit 1" if (eval "$as_required") 2>/dev/null; then : as_have_required=yes else as_have_required=no fi if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. as_shell=$as_dir/$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : CONFIG_SHELL=$as_shell as_have_required=yes if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : break 2 fi fi done;; esac as_found=false done $as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : CONFIG_SHELL=$SHELL as_have_required=yes fi; } IFS=$as_save_IFS if test "x$CONFIG_SHELL" != x; then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi if test x$as_have_required = xno; then : $as_echo "$0: This script requires a shell more modern than all" $as_echo "$0: the shells that I found on your system." if test x${ZSH_VERSION+set} = xset ; then $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" $as_echo "$0: be upgraded to zsh 4.3.4 or later." else $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." fi exit 1 fi fi fi SHELL=${CONFIG_SHELL-/bin/sh} export SHELL # Unset more variables known to interfere with behavior of common tools. CLICOLOR_FORCE= GREP_OPTIONS= unset CLICOLOR_FORCE GREP_OPTIONS ## --------------------- ## ## M4sh Shell Functions. ## ## --------------------- ## # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits as_lineno_1=$LINENO as_lineno_1a=$LINENO as_lineno_2=$LINENO as_lineno_2a=$LINENO eval 'test "x$as_lineno_1'$as_run'" != "x$as_lineno_2'$as_run'" && test "x`expr $as_lineno_1'$as_run' + 1`" = "x$as_lineno_2'$as_run'"' || { # Blame Lee E. McMahon (1931-1989) for sed's syntax. :-) sed -n ' p /[$]LINENO/= ' <$as_myself | sed ' s/[$]LINENO.*/&-/ t lineno b :lineno N :loop s/[$]LINENO\([^'$as_cr_alnum'_].*\n\)\(.*\)/\2\1\2/ t loop s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall # in an infinite loop. This has already happened in practice. _as_can_reexec=no; export _as_can_reexec # Don't try to exec as it changes $[0], causing all sort of problems # (the dirname of $[0] is not the place where we might find the # original and so on. Autoconf is especially sensitive to this). . "./$as_me.lineno" # Exit status is that of the last command. exit } ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" SHELL=${CONFIG_SHELL-/bin/sh} test -n "$DJDIR" || exec 7<&0 &1 # Name of the host. # hostname on some systems (SVR3.2, old GNU/Linux) returns a bogus exit status, # so uname gets run too. ac_hostname=`(hostname || uname -n) 2>/dev/null | sed 1q` # # Initializations. # ac_default_prefix=/usr/local ac_clean_files= ac_config_libobj_dir=. LIBOBJS= cross_compiling=no subdirs= MFLAGS= MAKEFLAGS= # Identity of this package. PACKAGE_NAME='openconnect' PACKAGE_TARNAME='openconnect' PACKAGE_VERSION='7.06' PACKAGE_STRING='openconnect 7.06' PACKAGE_BUGREPORT='' PACKAGE_URL='' # Factoring default headers for most tests. ac_includes_default="\ #include #ifdef HAVE_SYS_TYPES_H # include #endif #ifdef HAVE_SYS_STAT_H # include #endif #ifdef STDC_HEADERS # include # include #else # ifdef HAVE_STDLIB_H # include # endif #endif #ifdef HAVE_STRING_H # if !defined STDC_HEADERS && defined HAVE_MEMORY_H # include # endif # include #endif #ifdef HAVE_STRINGS_H # include #endif #ifdef HAVE_INTTYPES_H # include #endif #ifdef HAVE_STDINT_H # include #endif #ifdef HAVE_UNISTD_H # include #endif" ac_subst_vars='am__EXEEXT_FALSE am__EXEEXT_TRUE LTLIBOBJS LIBOBJS GITVERSIONDEPS APIMINOR APIMAJOR LINGUAS CONFIG_STATUS_DEPENDENCIES BUILD_WWW_FALSE BUILD_WWW_TRUE GROFF PYTHON SYMVER_JAVA JNI_STANDALONE_FALSE JNI_STANDALONE_TRUE OPENCONNECT_JNI_FALSE OPENCONNECT_JNI_TRUE JNI_CFLAGS _ACJNI_JAVAC OPENCONNECT_GSSAPI_FALSE OPENCONNECT_GSSAPI_TRUE GSSAPI_LIBS GSSAPI_CFLAGS KRB5_CONFIG LIBPSKC_PC LIBPSKC_LIBS LIBPSKC_CFLAGS OPENCONNECT_LIBPCSCLITE_FALSE OPENCONNECT_LIBPCSCLITE_TRUE LIBPCSCLITE_PC LIBPCSCLITE_LIBS LIBPCSCLITE_CFLAGS OPENCONNECT_STOKEN_FALSE OPENCONNECT_STOKEN_TRUE LIBSTOKEN_PC LIBSTOKEN_LIBS LIBSTOKEN_CFLAGS LIBPROXY_PC LIBPROXY_LIBS LIBPROXY_CFLAGS ZLIB_PC ZLIB_LIBS ZLIB_CFLAGS LIBXML2_LIBS LIBXML2_CFLAGS HAVE_VSCRIPT_COMPLEX_FALSE HAVE_VSCRIPT_COMPLEX_TRUE HAVE_VSCRIPT_FALSE HAVE_VSCRIPT_TRUE VSCRIPT_LDFLAGS OPENBSD_LIBTOOL_FALSE OPENBSD_LIBTOOL_TRUE OTOOL64 OTOOL LIPO NMEDIT DSYMUTIL MANIFEST_TOOL RANLIB ac_ct_AR AR DLLTOOL OBJDUMP LN_S NM ac_ct_DUMPBIN DUMPBIN LD FGREP SED LIBTOOL LIBLZ4_LIBS LIBLZ4_CFLAGS ESP_OPENSSL_FALSE ESP_OPENSSL_TRUE ESP_GNUTLS_FALSE ESP_GNUTLS_TRUE OPENCONNECT_OPENSSL_FALSE OPENCONNECT_OPENSSL_TRUE OPENCONNECT_GNUTLS_FALSE OPENCONNECT_GNUTLS_TRUE DTLS_SSL_CFLAGS DTLS_SSL_LIBS LIBP11_LIBS LIBP11_CFLAGS SSL_CFLAGS SSL_LIBS SSL_DTLS_PC OPENSSL_LIBS OPENSSL_CFLAGS TSS_CFLAGS TSS_LIBS P11KIT_PC P11KIT_LIBS P11KIT_CFLAGS GNUTLS_LIBS GNUTLS_CFLAGS USE_NLS_FALSE USE_NLS_TRUE INTL_CFLAGS INTL_LIBS MSGFMT BUILD_LZSTEST_FALSE BUILD_LZSTEST_TRUE OPENCONNECT_ICONV_FALSE OPENCONNECT_ICONV_TRUE ICONV_CFLAGS ICONV_LIBS LTLIBICONV LIBICONV EGREP GREP CPP WFLAGS SYMVER_WIN32_STRERROR SYMVER_VASPRINTF SYMVER_ASPRINTF SYMVER_GETLINE SYMVER_TIME am__fastdepCC_FALSE am__fastdepCC_TRUE CCDEPMODE am__nodep AMDEPBACKSLASH AMDEP_FALSE AMDEP_TRUE am__quote am__include DEPDIR OBJEXT EXEEXT ac_ct_CC CPPFLAGS LDFLAGS CFLAGS CC DEFAULT_VPNCSCRIPT OPENCONNECT_WIN32_FALSE OPENCONNECT_WIN32_TRUE pkgconfigdir AM_BACKSLASH AM_DEFAULT_VERBOSITY AM_DEFAULT_V AM_V am__untar am__tar AMTAR am__leading_dot SET_MAKE AWK mkdir_p MKDIR_P INSTALL_STRIP_PROGRAM STRIP install_sh MAKEINFO AUTOHEADER AUTOMAKE AUTOCONF ACLOCAL VERSION PACKAGE CYGPATH_W am__isrc INSTALL_DATA INSTALL_SCRIPT INSTALL_PROGRAM MAINT MAINTAINER_MODE_FALSE MAINTAINER_MODE_TRUE host_os host_vendor host_cpu host build_os build_vendor build_cpu build PKG_CONFIG_LIBDIR PKG_CONFIG_PATH PKG_CONFIG target_alias host_alias build_alias LIBS ECHO_T ECHO_N ECHO_C DEFS mandir localedir libdir psdir pdfdir dvidir htmldir infodir docdir oldincludedir includedir localstatedir sharedstatedir sysconfdir datadir datarootdir libexecdir sbindir bindir program_transform_name prefix exec_prefix PACKAGE_URL PACKAGE_BUGREPORT PACKAGE_STRING PACKAGE_VERSION PACKAGE_TARNAME PACKAGE_NAME PATH_SEPARATOR SHELL' ac_subst_files='' ac_user_opts=' enable_option_checking enable_maintainer_mode enable_silent_rules with_pkgconfigdir with_vpnc_script enable_dependency_tracking enable_shared enable_static with_gnu_ld enable_rpath with_libiconv_prefix enable_lzstest enable_nls with_libintl_prefix with_system_cafile with_gnutls with_openssl with_openssl_version_check with_lz4 with_pic enable_fast_install with_sysroot enable_libtool_lock enable_symvers with_libproxy with_stoken with_libpcsclite with_libpskc with_gssapi with_java enable_jni_standalone ' ac_precious_vars='build_alias host_alias target_alias PKG_CONFIG PKG_CONFIG_PATH PKG_CONFIG_LIBDIR CC CFLAGS LDFLAGS LIBS CPPFLAGS CPP GNUTLS_CFLAGS GNUTLS_LIBS P11KIT_CFLAGS P11KIT_LIBS OPENSSL_CFLAGS OPENSSL_LIBS LIBP11_CFLAGS LIBP11_LIBS LIBLZ4_CFLAGS LIBLZ4_LIBS LIBXML2_CFLAGS LIBXML2_LIBS ZLIB_CFLAGS ZLIB_LIBS LIBPROXY_CFLAGS LIBPROXY_LIBS LIBSTOKEN_CFLAGS LIBSTOKEN_LIBS LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS LIBPSKC_CFLAGS LIBPSKC_LIBS' # Initialize some variables set by options. ac_init_help= ac_init_version=false ac_unrecognized_opts= ac_unrecognized_sep= # The variables have the same names as the options, with # dashes changed to underlines. cache_file=/dev/null exec_prefix=NONE no_create= no_recursion= prefix=NONE program_prefix=NONE program_suffix=NONE program_transform_name=s,x,x, silent= site= srcdir= verbose= x_includes=NONE x_libraries=NONE # Installation directory options. # These are left unexpanded so users can "make install exec_prefix=/foo" # and all the variables that are supposed to be based on exec_prefix # by default will actually change. # Use braces instead of parens because sh, perl, etc. also accept them. # (The list follows the same order as the GNU Coding Standards.) bindir='${exec_prefix}/bin' sbindir='${exec_prefix}/sbin' libexecdir='${exec_prefix}/libexec' datarootdir='${prefix}/share' datadir='${datarootdir}' sysconfdir='${prefix}/etc' sharedstatedir='${prefix}/com' localstatedir='${prefix}/var' includedir='${prefix}/include' oldincludedir='/usr/include' docdir='${datarootdir}/doc/${PACKAGE_TARNAME}' infodir='${datarootdir}/info' htmldir='${docdir}' dvidir='${docdir}' pdfdir='${docdir}' psdir='${docdir}' libdir='${exec_prefix}/lib' localedir='${datarootdir}/locale' mandir='${datarootdir}/man' ac_prev= ac_dashdash= for ac_option do # If the previous option needs an argument, assign it. if test -n "$ac_prev"; then eval $ac_prev=\$ac_option ac_prev= continue fi case $ac_option in *=?*) ac_optarg=`expr "X$ac_option" : '[^=]*=\(.*\)'` ;; *=) ac_optarg= ;; *) ac_optarg=yes ;; esac # Accept the important Cygnus configure options, so we can diagnose typos. case $ac_dashdash$ac_option in --) ac_dashdash=yes ;; -bindir | --bindir | --bindi | --bind | --bin | --bi) ac_prev=bindir ;; -bindir=* | --bindir=* | --bindi=* | --bind=* | --bin=* | --bi=*) bindir=$ac_optarg ;; -build | --build | --buil | --bui | --bu) ac_prev=build_alias ;; -build=* | --build=* | --buil=* | --bui=* | --bu=*) build_alias=$ac_optarg ;; -cache-file | --cache-file | --cache-fil | --cache-fi \ | --cache-f | --cache- | --cache | --cach | --cac | --ca | --c) ac_prev=cache_file ;; -cache-file=* | --cache-file=* | --cache-fil=* | --cache-fi=* \ | --cache-f=* | --cache-=* | --cache=* | --cach=* | --cac=* | --ca=* | --c=*) cache_file=$ac_optarg ;; --config-cache | -C) cache_file=config.cache ;; -datadir | --datadir | --datadi | --datad) ac_prev=datadir ;; -datadir=* | --datadir=* | --datadi=* | --datad=*) datadir=$ac_optarg ;; -datarootdir | --datarootdir | --datarootdi | --datarootd | --dataroot \ | --dataroo | --dataro | --datar) ac_prev=datarootdir ;; -datarootdir=* | --datarootdir=* | --datarootdi=* | --datarootd=* \ | --dataroot=* | --dataroo=* | --dataro=* | --datar=*) datarootdir=$ac_optarg ;; -disable-* | --disable-*) ac_useropt=`expr "x$ac_option" : 'x-*disable-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--disable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=no ;; -docdir | --docdir | --docdi | --doc | --do) ac_prev=docdir ;; -docdir=* | --docdir=* | --docdi=* | --doc=* | --do=*) docdir=$ac_optarg ;; -dvidir | --dvidir | --dvidi | --dvid | --dvi | --dv) ac_prev=dvidir ;; -dvidir=* | --dvidir=* | --dvidi=* | --dvid=* | --dvi=* | --dv=*) dvidir=$ac_optarg ;; -enable-* | --enable-*) ac_useropt=`expr "x$ac_option" : 'x-*enable-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--enable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=\$ac_optarg ;; -exec-prefix | --exec_prefix | --exec-prefix | --exec-prefi \ | --exec-pref | --exec-pre | --exec-pr | --exec-p | --exec- \ | --exec | --exe | --ex) ac_prev=exec_prefix ;; -exec-prefix=* | --exec_prefix=* | --exec-prefix=* | --exec-prefi=* \ | --exec-pref=* | --exec-pre=* | --exec-pr=* | --exec-p=* | --exec-=* \ | --exec=* | --exe=* | --ex=*) exec_prefix=$ac_optarg ;; -gas | --gas | --ga | --g) # Obsolete; use --with-gas. with_gas=yes ;; -help | --help | --hel | --he | -h) ac_init_help=long ;; -help=r* | --help=r* | --hel=r* | --he=r* | -hr*) ac_init_help=recursive ;; -help=s* | --help=s* | --hel=s* | --he=s* | -hs*) ac_init_help=short ;; -host | --host | --hos | --ho) ac_prev=host_alias ;; -host=* | --host=* | --hos=* | --ho=*) host_alias=$ac_optarg ;; -htmldir | --htmldir | --htmldi | --htmld | --html | --htm | --ht) ac_prev=htmldir ;; -htmldir=* | --htmldir=* | --htmldi=* | --htmld=* | --html=* | --htm=* \ | --ht=*) htmldir=$ac_optarg ;; -includedir | --includedir | --includedi | --included | --include \ | --includ | --inclu | --incl | --inc) ac_prev=includedir ;; -includedir=* | --includedir=* | --includedi=* | --included=* | --include=* \ | --includ=* | --inclu=* | --incl=* | --inc=*) includedir=$ac_optarg ;; -infodir | --infodir | --infodi | --infod | --info | --inf) ac_prev=infodir ;; -infodir=* | --infodir=* | --infodi=* | --infod=* | --info=* | --inf=*) infodir=$ac_optarg ;; -libdir | --libdir | --libdi | --libd) ac_prev=libdir ;; -libdir=* | --libdir=* | --libdi=* | --libd=*) libdir=$ac_optarg ;; -libexecdir | --libexecdir | --libexecdi | --libexecd | --libexec \ | --libexe | --libex | --libe) ac_prev=libexecdir ;; -libexecdir=* | --libexecdir=* | --libexecdi=* | --libexecd=* | --libexec=* \ | --libexe=* | --libex=* | --libe=*) libexecdir=$ac_optarg ;; -localedir | --localedir | --localedi | --localed | --locale) ac_prev=localedir ;; -localedir=* | --localedir=* | --localedi=* | --localed=* | --locale=*) localedir=$ac_optarg ;; -localstatedir | --localstatedir | --localstatedi | --localstated \ | --localstate | --localstat | --localsta | --localst | --locals) ac_prev=localstatedir ;; -localstatedir=* | --localstatedir=* | --localstatedi=* | --localstated=* \ | --localstate=* | --localstat=* | --localsta=* | --localst=* | --locals=*) localstatedir=$ac_optarg ;; -mandir | --mandir | --mandi | --mand | --man | --ma | --m) ac_prev=mandir ;; -mandir=* | --mandir=* | --mandi=* | --mand=* | --man=* | --ma=* | --m=*) mandir=$ac_optarg ;; -nfp | --nfp | --nf) # Obsolete; use --without-fp. with_fp=no ;; -no-create | --no-create | --no-creat | --no-crea | --no-cre \ | --no-cr | --no-c | -n) no_create=yes ;; -no-recursion | --no-recursion | --no-recursio | --no-recursi \ | --no-recurs | --no-recur | --no-recu | --no-rec | --no-re | --no-r) no_recursion=yes ;; -oldincludedir | --oldincludedir | --oldincludedi | --oldincluded \ | --oldinclude | --oldinclud | --oldinclu | --oldincl | --oldinc \ | --oldin | --oldi | --old | --ol | --o) ac_prev=oldincludedir ;; -oldincludedir=* | --oldincludedir=* | --oldincludedi=* | --oldincluded=* \ | --oldinclude=* | --oldinclud=* | --oldinclu=* | --oldincl=* | --oldinc=* \ | --oldin=* | --oldi=* | --old=* | --ol=* | --o=*) oldincludedir=$ac_optarg ;; -prefix | --prefix | --prefi | --pref | --pre | --pr | --p) ac_prev=prefix ;; -prefix=* | --prefix=* | --prefi=* | --pref=* | --pre=* | --pr=* | --p=*) prefix=$ac_optarg ;; -program-prefix | --program-prefix | --program-prefi | --program-pref \ | --program-pre | --program-pr | --program-p) ac_prev=program_prefix ;; -program-prefix=* | --program-prefix=* | --program-prefi=* \ | --program-pref=* | --program-pre=* | --program-pr=* | --program-p=*) program_prefix=$ac_optarg ;; -program-suffix | --program-suffix | --program-suffi | --program-suff \ | --program-suf | --program-su | --program-s) ac_prev=program_suffix ;; -program-suffix=* | --program-suffix=* | --program-suffi=* \ | --program-suff=* | --program-suf=* | --program-su=* | --program-s=*) program_suffix=$ac_optarg ;; -program-transform-name | --program-transform-name \ | --program-transform-nam | --program-transform-na \ | --program-transform-n | --program-transform- \ | --program-transform | --program-transfor \ | --program-transfo | --program-transf \ | --program-trans | --program-tran \ | --progr-tra | --program-tr | --program-t) ac_prev=program_transform_name ;; -program-transform-name=* | --program-transform-name=* \ | --program-transform-nam=* | --program-transform-na=* \ | --program-transform-n=* | --program-transform-=* \ | --program-transform=* | --program-transfor=* \ | --program-transfo=* | --program-transf=* \ | --program-trans=* | --program-tran=* \ | --progr-tra=* | --program-tr=* | --program-t=*) program_transform_name=$ac_optarg ;; -pdfdir | --pdfdir | --pdfdi | --pdfd | --pdf | --pd) ac_prev=pdfdir ;; -pdfdir=* | --pdfdir=* | --pdfdi=* | --pdfd=* | --pdf=* | --pd=*) pdfdir=$ac_optarg ;; -psdir | --psdir | --psdi | --psd | --ps) ac_prev=psdir ;; -psdir=* | --psdir=* | --psdi=* | --psd=* | --ps=*) psdir=$ac_optarg ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) silent=yes ;; -sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb) ac_prev=sbindir ;; -sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \ | --sbi=* | --sb=*) sbindir=$ac_optarg ;; -sharedstatedir | --sharedstatedir | --sharedstatedi \ | --sharedstated | --sharedstate | --sharedstat | --sharedsta \ | --sharedst | --shareds | --shared | --share | --shar \ | --sha | --sh) ac_prev=sharedstatedir ;; -sharedstatedir=* | --sharedstatedir=* | --sharedstatedi=* \ | --sharedstated=* | --sharedstate=* | --sharedstat=* | --sharedsta=* \ | --sharedst=* | --shareds=* | --shared=* | --share=* | --shar=* \ | --sha=* | --sh=*) sharedstatedir=$ac_optarg ;; -site | --site | --sit) ac_prev=site ;; -site=* | --site=* | --sit=*) site=$ac_optarg ;; -srcdir | --srcdir | --srcdi | --srcd | --src | --sr) ac_prev=srcdir ;; -srcdir=* | --srcdir=* | --srcdi=* | --srcd=* | --src=* | --sr=*) srcdir=$ac_optarg ;; -sysconfdir | --sysconfdir | --sysconfdi | --sysconfd | --sysconf \ | --syscon | --sysco | --sysc | --sys | --sy) ac_prev=sysconfdir ;; -sysconfdir=* | --sysconfdir=* | --sysconfdi=* | --sysconfd=* | --sysconf=* \ | --syscon=* | --sysco=* | --sysc=* | --sys=* | --sy=*) sysconfdir=$ac_optarg ;; -target | --target | --targe | --targ | --tar | --ta | --t) ac_prev=target_alias ;; -target=* | --target=* | --targe=* | --targ=* | --tar=* | --ta=* | --t=*) target_alias=$ac_optarg ;; -v | -verbose | --verbose | --verbos | --verbo | --verb) verbose=yes ;; -version | --version | --versio | --versi | --vers | -V) ac_init_version=: ;; -with-* | --with-*) ac_useropt=`expr "x$ac_option" : 'x-*with-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--with-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=\$ac_optarg ;; -without-* | --without-*) ac_useropt=`expr "x$ac_option" : 'x-*without-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--without-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=no ;; --x) # Obsolete; use --with-x. with_x=yes ;; -x-includes | --x-includes | --x-include | --x-includ | --x-inclu \ | --x-incl | --x-inc | --x-in | --x-i) ac_prev=x_includes ;; -x-includes=* | --x-includes=* | --x-include=* | --x-includ=* | --x-inclu=* \ | --x-incl=* | --x-inc=* | --x-in=* | --x-i=*) x_includes=$ac_optarg ;; -x-libraries | --x-libraries | --x-librarie | --x-librari \ | --x-librar | --x-libra | --x-libr | --x-lib | --x-li | --x-l) ac_prev=x_libraries ;; -x-libraries=* | --x-libraries=* | --x-librarie=* | --x-librari=* \ | --x-librar=* | --x-libra=* | --x-libr=* | --x-lib=* | --x-li=* | --x-l=*) x_libraries=$ac_optarg ;; -*) as_fn_error $? "unrecognized option: \`$ac_option' Try \`$0 --help' for more information" ;; *=*) ac_envvar=`expr "x$ac_option" : 'x\([^=]*\)='` # Reject names that are not valid shell variable names. case $ac_envvar in #( '' | [0-9]* | *[!_$as_cr_alnum]* ) as_fn_error $? "invalid variable name: \`$ac_envvar'" ;; esac eval $ac_envvar=\$ac_optarg export $ac_envvar ;; *) # FIXME: should be removed in autoconf 3.0. $as_echo "$as_me: WARNING: you should use --build, --host, --target" >&2 expr "x$ac_option" : ".*[^-._$as_cr_alnum]" >/dev/null && $as_echo "$as_me: WARNING: invalid host type: $ac_option" >&2 : "${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option}" ;; esac done if test -n "$ac_prev"; then ac_option=--`echo $ac_prev | sed 's/_/-/g'` as_fn_error $? "missing argument to $ac_option" fi if test -n "$ac_unrecognized_opts"; then case $enable_option_checking in no) ;; fatal) as_fn_error $? "unrecognized options: $ac_unrecognized_opts" ;; *) $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2 ;; esac fi # Check all directory arguments for consistency. for ac_var in exec_prefix prefix bindir sbindir libexecdir datarootdir \ datadir sysconfdir sharedstatedir localstatedir includedir \ oldincludedir docdir infodir htmldir dvidir pdfdir psdir \ libdir localedir mandir do eval ac_val=\$$ac_var # Remove trailing slashes. case $ac_val in */ ) ac_val=`expr "X$ac_val" : 'X\(.*[^/]\)' \| "X$ac_val" : 'X\(.*\)'` eval $ac_var=\$ac_val;; esac # Be sure to have absolute directory names. case $ac_val in [\\/$]* | ?:[\\/]* ) continue;; NONE | '' ) case $ac_var in *prefix ) continue;; esac;; esac as_fn_error $? "expected an absolute directory name for --$ac_var: $ac_val" done # There might be people who depend on the old broken behavior: `$host' # used to hold the argument of --host etc. # FIXME: To remove some day. build=$build_alias host=$host_alias target=$target_alias # FIXME: To remove some day. if test "x$host_alias" != x; then if test "x$build_alias" = x; then cross_compiling=maybe elif test "x$build_alias" != "x$host_alias"; then cross_compiling=yes fi fi ac_tool_prefix= test -n "$host_alias" && ac_tool_prefix=$host_alias- test "$silent" = yes && exec 6>/dev/null ac_pwd=`pwd` && test -n "$ac_pwd" && ac_ls_di=`ls -di .` && ac_pwd_ls_di=`cd "$ac_pwd" && ls -di .` || as_fn_error $? "working directory cannot be determined" test "X$ac_ls_di" = "X$ac_pwd_ls_di" || as_fn_error $? "pwd does not report name of working directory" # Find the source files, if location was not specified. if test -z "$srcdir"; then ac_srcdir_defaulted=yes # Try the directory containing this script, then the parent directory. ac_confdir=`$as_dirname -- "$as_myself" || $as_expr X"$as_myself" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_myself" : 'X\(//\)[^/]' \| \ X"$as_myself" : 'X\(//\)$' \| \ X"$as_myself" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_myself" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` srcdir=$ac_confdir if test ! -r "$srcdir/$ac_unique_file"; then srcdir=.. fi else ac_srcdir_defaulted=no fi if test ! -r "$srcdir/$ac_unique_file"; then test "$ac_srcdir_defaulted" = yes && srcdir="$ac_confdir or .." as_fn_error $? "cannot find sources ($ac_unique_file) in $srcdir" fi ac_msg="sources are in $srcdir, but \`cd $srcdir' does not work" ac_abs_confdir=`( cd "$srcdir" && test -r "./$ac_unique_file" || as_fn_error $? "$ac_msg" pwd)` # When building in place, set srcdir=. if test "$ac_abs_confdir" = "$ac_pwd"; then srcdir=. fi # Remove unnecessary trailing slashes from srcdir. # Double slashes in file names in object file debugging info # mess up M-x gdb in Emacs. case $srcdir in */) srcdir=`expr "X$srcdir" : 'X\(.*[^/]\)' \| "X$srcdir" : 'X\(.*\)'`;; esac for ac_var in $ac_precious_vars; do eval ac_env_${ac_var}_set=\${${ac_var}+set} eval ac_env_${ac_var}_value=\$${ac_var} eval ac_cv_env_${ac_var}_set=\${${ac_var}+set} eval ac_cv_env_${ac_var}_value=\$${ac_var} done # # Report the --help message. # if test "$ac_init_help" = "long"; then # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF \`configure' configures openconnect 7.06 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... To assign environment variables (e.g., CC, CFLAGS...), specify them as VAR=VALUE. See below for descriptions of some of the useful variables. Defaults for the options are specified in brackets. Configuration: -h, --help display this help and exit --help=short display options specific to this package --help=recursive display the short help of all the included packages -V, --version display version information and exit -q, --quiet, --silent do not print \`checking ...' messages --cache-file=FILE cache test results in FILE [disabled] -C, --config-cache alias for \`--cache-file=config.cache' -n, --no-create do not create output files --srcdir=DIR find the sources in DIR [configure dir or \`..'] Installation directories: --prefix=PREFIX install architecture-independent files in PREFIX [$ac_default_prefix] --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX [PREFIX] By default, \`make install' will install all the files in \`$ac_default_prefix/bin', \`$ac_default_prefix/lib' etc. You can specify an installation prefix other than \`$ac_default_prefix' using \`--prefix', for instance \`--prefix=\$HOME'. For better control, use the options below. Fine tuning of the installation directories: --bindir=DIR user executables [EPREFIX/bin] --sbindir=DIR system admin executables [EPREFIX/sbin] --libexecdir=DIR program executables [EPREFIX/libexec] --sysconfdir=DIR read-only single-machine data [PREFIX/etc] --sharedstatedir=DIR modifiable architecture-independent data [PREFIX/com] --localstatedir=DIR modifiable single-machine data [PREFIX/var] --libdir=DIR object code libraries [EPREFIX/lib] --includedir=DIR C header files [PREFIX/include] --oldincludedir=DIR C header files for non-gcc [/usr/include] --datarootdir=DIR read-only arch.-independent data root [PREFIX/share] --datadir=DIR read-only architecture-independent data [DATAROOTDIR] --infodir=DIR info documentation [DATAROOTDIR/info] --localedir=DIR locale-dependent data [DATAROOTDIR/locale] --mandir=DIR man documentation [DATAROOTDIR/man] --docdir=DIR documentation root [DATAROOTDIR/doc/openconnect] --htmldir=DIR html documentation [DOCDIR] --dvidir=DIR dvi documentation [DOCDIR] --pdfdir=DIR pdf documentation [DOCDIR] --psdir=DIR ps documentation [DOCDIR] _ACEOF cat <<\_ACEOF Program names: --program-prefix=PREFIX prepend PREFIX to installed program names --program-suffix=SUFFIX append SUFFIX to installed program names --program-transform-name=PROGRAM run sed PROGRAM on installed program names System types: --build=BUILD configure for building on BUILD [guessed] --host=HOST cross-compile to build programs to run on HOST [BUILD] _ACEOF fi if test -n "$ac_init_help"; then case $ac_init_help in short | recursive ) echo "Configuration of openconnect 7.06:";; esac cat <<\_ACEOF Optional Features: --disable-option-checking ignore unrecognized --enable/--with options --disable-FEATURE do not include FEATURE (same as --enable-FEATURE=no) --enable-FEATURE[=ARG] include FEATURE [ARG=yes] --disable-maintainer-mode disable make rules and dependencies not useful (and sometimes confusing) to the casual installer --enable-silent-rules less verbose build output (undo: "make V=1") --disable-silent-rules verbose build output (undo: "make V=0") --enable-dependency-tracking do not reject slow dependency extractors --disable-dependency-tracking speeds up one-time build --enable-shared[=PKGS] build shared libraries [default=yes] --enable-static[=PKGS] build static libraries [default=no] --disable-rpath do not hardcode runtime library paths --enable-lzstest build LZS test harness --disable-nls do not use Native Language Support --enable-fast-install[=PKGS] optimize for fast installation [default=yes] --disable-libtool-lock avoid locking (might break parallel builds) --disable-symvers disable library symbol versioning [default=auto] --enable-jni-standalone build JNI stubs directly into libopenconnect.so [default=no] Optional Packages: --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) --with-pkgconfigdir pkg-config installation directory ['${libdir}/pkgconfig'] --with-vpnc-script default location of vpnc-script helper --with-gnu-ld assume the C compiler uses GNU ld [default=no] --with-libiconv-prefix[=DIR] search for libiconv in DIR/include and DIR/lib --without-libiconv-prefix don't search for libiconv in includedir and libdir --with-libintl-prefix[=DIR] search for libintl in DIR/include and DIR/lib --without-libintl-prefix don't search for libintl in includedir and libdir --with-system-cafile Location of the default system CA certificate file for old (<3.0.20) GnuTLS versions --without-gnutls Do not attempt to use GnuTLS; use OpenSSL instead --with-openssl Location of OpenSSL build dir --without-openssl-version-check Do not check for known-broken OpenSSL versions --without-lz4 disable support for LZ4 compression --with-pic[=PKGS] try to use only PIC/non-PIC objects [default=use both] --with-gnu-ld assume the C compiler uses GNU ld [default=no] --with-sysroot=DIR Search for dependent libraries within DIR (or the compiler's sysroot if not specified). --without-libproxy Build without libproxy library [default=auto] --without-stoken Build without libstoken library [default=auto] --without-libpcsclite Build without libpcsclite library (for Yubikey support) [default=auto] --without-libpskc Build without libpskc library [default=auto] --without-gssapi Build without GSSAPI support [default=auto] --with-java(=DIR) Build JNI bindings using jni.h from DIR [default=no] Some influential environment variables: PKG_CONFIG path to pkg-config utility PKG_CONFIG_PATH directories to add to pkg-config's search path PKG_CONFIG_LIBDIR path overriding pkg-config's built-in search path CC C compiler command CFLAGS C compiler flags LDFLAGS linker flags, e.g. -L if you have libraries in a nonstandard directory LIBS libraries to pass to the linker, e.g. -l CPPFLAGS (Objective) C/C++ preprocessor flags, e.g. -I if you have headers in a nonstandard directory CPP C preprocessor GNUTLS_CFLAGS C compiler flags for GNUTLS, overriding pkg-config GNUTLS_LIBS linker flags for GNUTLS, overriding pkg-config P11KIT_CFLAGS C compiler flags for P11KIT, overriding pkg-config P11KIT_LIBS linker flags for P11KIT, overriding pkg-config OPENSSL_CFLAGS C compiler flags for OPENSSL, overriding pkg-config OPENSSL_LIBS linker flags for OPENSSL, overriding pkg-config LIBP11_CFLAGS C compiler flags for LIBP11, overriding pkg-config LIBP11_LIBS linker flags for LIBP11, overriding pkg-config LIBLZ4_CFLAGS C compiler flags for LIBLZ4, overriding pkg-config LIBLZ4_LIBS linker flags for LIBLZ4, overriding pkg-config LIBXML2_CFLAGS C compiler flags for LIBXML2, overriding pkg-config LIBXML2_LIBS linker flags for LIBXML2, overriding pkg-config ZLIB_CFLAGS C compiler flags for ZLIB, overriding pkg-config ZLIB_LIBS linker flags for ZLIB, overriding pkg-config LIBPROXY_CFLAGS C compiler flags for LIBPROXY, overriding pkg-config LIBPROXY_LIBS linker flags for LIBPROXY, overriding pkg-config LIBSTOKEN_CFLAGS C compiler flags for LIBSTOKEN, overriding pkg-config LIBSTOKEN_LIBS linker flags for LIBSTOKEN, overriding pkg-config LIBPCSCLITE_CFLAGS C compiler flags for LIBPCSCLITE, overriding pkg-config LIBPCSCLITE_LIBS linker flags for LIBPCSCLITE, overriding pkg-config LIBPSKC_CFLAGS C compiler flags for LIBPSKC, overriding pkg-config LIBPSKC_LIBS linker flags for LIBPSKC, overriding pkg-config Use these variables to override the choices made by `configure' or to help it to find libraries and programs with nonstandard names/locations. Report bugs to the package provider. _ACEOF ac_status=$? fi if test "$ac_init_help" = "recursive"; then # If there are subdirs, report their specific --help. for ac_dir in : $ac_subdirs_all; do test "x$ac_dir" = x: && continue test -d "$ac_dir" || { cd "$srcdir" && ac_pwd=`pwd` && srcdir=. && test -d "$ac_dir"; } || continue ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix cd "$ac_dir" || { ac_status=$?; continue; } # Check for guested configure. if test -f "$ac_srcdir/configure.gnu"; then echo && $SHELL "$ac_srcdir/configure.gnu" --help=recursive elif test -f "$ac_srcdir/configure"; then echo && $SHELL "$ac_srcdir/configure" --help=recursive else $as_echo "$as_me: WARNING: no configuration information is in $ac_dir" >&2 fi || ac_status=$? cd "$ac_pwd" || { ac_status=$?; break; } done fi test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF openconnect configure 7.06 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. This configure script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ACEOF exit fi ## ------------------------ ## ## Autoconf initialization. ## ## ------------------------ ## # ac_fn_c_try_compile LINENO # -------------------------- # Try to compile conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest.$ac_objext; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_compile # ac_fn_c_try_link LINENO # ----------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_link () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext conftest$ac_exeext if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest$ac_exeext && { test "$cross_compiling" = yes || test -x conftest$ac_exeext }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi # Delete the IPA/IPO (Inter Procedural Analysis/Optimization) information # created by the PGI compiler (conftest_ipa8_conftest.oo), as it would # interfere with the next link command; also delete a directory that is # left behind by Apple's compiler. We do this before executing the actions. rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_link # ac_fn_c_check_func LINENO FUNC VAR # ---------------------------------- # Tests whether FUNC exists, setting the cache variable VAR accordingly ac_fn_c_check_func () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Define $2 to an innocuous variant, in case declares $2. For example, HP-UX 11i declares gettimeofday. */ #define $2 innocuous_$2 /* System header to define __stub macros and hopefully few prototypes, which can conflict with char $2 (); below. Prefer to if __STDC__ is defined, since exists even on freestanding compilers. */ #ifdef __STDC__ # include #else # include #endif #undef $2 /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char $2 (); /* The GNU C library defines this for functions which it implements to always fail with ENOSYS. Some functions are actually named something starting with __ and the normal name is an alias. */ #if defined __stub_$2 || defined __stub___$2 choke me #endif int main () { return $2 (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_func # ac_fn_c_try_cpp LINENO # ---------------------- # Try to preprocess conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_cpp () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_cpp conftest.$ac_ext" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_cpp conftest.$ac_ext") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } > conftest.i && { test -z "$ac_c_preproc_warn_flag$ac_c_werror_flag" || test ! -s conftest.err }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_cpp # ac_fn_c_try_run LINENO # ---------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. Assumes # that executables *can* be run. ac_fn_c_try_run () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { ac_try='./conftest$ac_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then : ac_retval=0 else $as_echo "$as_me: program exited with status $ac_status" >&5 $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=$ac_status fi rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_run # ac_fn_c_check_header_compile LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists and can be compiled using the include files in # INCLUDES, setting the cache variable VAR accordingly. ac_fn_c_check_header_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_compile # ac_fn_c_check_header_mongrel LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists, giving a warning if it cannot be compiled using # the include files in INCLUDES and setting the cache variable VAR # accordingly. ac_fn_c_check_header_mongrel () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if eval \${$3+:} false; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } else # Is the header compilable? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 usability" >&5 $as_echo_n "checking $2 usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_header_compiler=yes else ac_header_compiler=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_compiler" >&5 $as_echo "$ac_header_compiler" >&6; } # Is the header present? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 presence" >&5 $as_echo_n "checking $2 presence... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include <$2> _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : ac_header_preproc=yes else ac_header_preproc=no fi rm -f conftest.err conftest.i conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_preproc" >&5 $as_echo "$ac_header_preproc" >&6; } # So? What about this header? case $ac_header_compiler:$ac_header_preproc:$ac_c_preproc_warn_flag in #(( yes:no: ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&5 $as_echo "$as_me: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; no:yes:* ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: present but cannot be compiled" >&5 $as_echo "$as_me: WARNING: $2: present but cannot be compiled" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: check for missing prerequisite headers?" >&5 $as_echo "$as_me: WARNING: $2: check for missing prerequisite headers?" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: see the Autoconf documentation" >&5 $as_echo "$as_me: WARNING: $2: see the Autoconf documentation" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&5 $as_echo "$as_me: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else eval "$3=\$ac_header_compiler" fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_mongrel cat >config.log <<_ACEOF This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. It was created by openconnect $as_me 7.06, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ _ACEOF exec 5>>config.log { cat <<_ASUNAME ## --------- ## ## Platform. ## ## --------- ## hostname = `(hostname || uname -n) 2>/dev/null | sed 1q` uname -m = `(uname -m) 2>/dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null || echo unknown` /bin/uname -X = `(/bin/uname -X) 2>/dev/null || echo unknown` /bin/arch = `(/bin/arch) 2>/dev/null || echo unknown` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null || echo unknown` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null || echo unknown` /usr/bin/hostinfo = `(/usr/bin/hostinfo) 2>/dev/null || echo unknown` /bin/machine = `(/bin/machine) 2>/dev/null || echo unknown` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null || echo unknown` /bin/universe = `(/bin/universe) 2>/dev/null || echo unknown` _ASUNAME as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. $as_echo "PATH: $as_dir" done IFS=$as_save_IFS } >&5 cat >&5 <<_ACEOF ## ----------- ## ## Core tests. ## ## ----------- ## _ACEOF # Keep a trace of the command line. # Strip out --no-create and --no-recursion so they do not pile up. # Strip out --silent because we don't want to record it for future runs. # Also quote any args containing shell meta-characters. # Make two passes to allow for proper duplicate-argument suppression. ac_configure_args= ac_configure_args0= ac_configure_args1= ac_must_keep_next=false for ac_pass in 1 2 do for ac_arg do case $ac_arg in -no-create | --no-c* | -n | -no-recursion | --no-r*) continue ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) continue ;; *\'*) ac_arg=`$as_echo "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; esac case $ac_pass in 1) as_fn_append ac_configure_args0 " '$ac_arg'" ;; 2) as_fn_append ac_configure_args1 " '$ac_arg'" if test $ac_must_keep_next = true; then ac_must_keep_next=false # Got value, back to normal. else case $ac_arg in *=* | --config-cache | -C | -disable-* | --disable-* \ | -enable-* | --enable-* | -gas | --g* | -nfp | --nf* \ | -q | -quiet | --q* | -silent | --sil* | -v | -verb* \ | -with-* | --with-* | -without-* | --without-* | --x) case "$ac_configure_args0 " in "$ac_configure_args1"*" '$ac_arg' "* ) continue ;; esac ;; -* ) ac_must_keep_next=true ;; esac fi as_fn_append ac_configure_args " '$ac_arg'" ;; esac done done { ac_configure_args0=; unset ac_configure_args0;} { ac_configure_args1=; unset ac_configure_args1;} # When interrupted or exit'd, cleanup temporary files, and complete # config.log. We remove comments because anyway the quotes in there # would cause problems or look ugly. # WARNING: Use '\'' to represent an apostrophe within the trap. # WARNING: Do not start the trap code with a newline, due to a FreeBSD 4.0 bug. trap 'exit_status=$? # Save into config.log some information that might help in debugging. { echo $as_echo "## ---------------- ## ## Cache variables. ## ## ---------------- ##" echo # The following way of writing the cache mishandles newlines in values, ( for ac_var in `(set) 2>&1 | sed -n '\''s/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'\''`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space='\'' '\''; set) 2>&1` in #( *${as_nl}ac_space=\ *) sed -n \ "s/'\''/'\''\\\\'\'''\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\''\\2'\''/p" ;; #( *) sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) echo $as_echo "## ----------------- ## ## Output variables. ## ## ----------------- ##" echo for ac_var in $ac_subst_vars do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo if test -n "$ac_subst_files"; then $as_echo "## ------------------- ## ## File substitutions. ## ## ------------------- ##" echo for ac_var in $ac_subst_files do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo fi if test -s confdefs.h; then $as_echo "## ----------- ## ## confdefs.h. ## ## ----------- ##" echo cat confdefs.h echo fi test "$ac_signal" != 0 && $as_echo "$as_me: caught signal $ac_signal" $as_echo "$as_me: exit $exit_status" } >&5 rm -f core *.core core.conftest.* && rm -f -r conftest* confdefs* conf$$* $ac_clean_files && exit $exit_status ' 0 for ac_signal in 1 2 13 15; do trap 'ac_signal='$ac_signal'; as_fn_exit 1' $ac_signal done ac_signal=0 # confdefs.h avoids OS command line length limits that DEFS can exceed. rm -f -r conftest* confdefs.h $as_echo "/* confdefs.h */" > confdefs.h # Predefined preprocessor variables. cat >>confdefs.h <<_ACEOF #define PACKAGE_NAME "$PACKAGE_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_TARNAME "$PACKAGE_TARNAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_VERSION "$PACKAGE_VERSION" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_STRING "$PACKAGE_STRING" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_BUGREPORT "$PACKAGE_BUGREPORT" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_URL "$PACKAGE_URL" _ACEOF # Let the site file select an alternate cache file if it wants to. # Prefer an explicitly selected file to automatically selected ones. ac_site_file1=NONE ac_site_file2=NONE if test -n "$CONFIG_SITE"; then # We do not want a PATH search for config.site. case $CONFIG_SITE in #(( -*) ac_site_file1=./$CONFIG_SITE;; */*) ac_site_file1=$CONFIG_SITE;; *) ac_site_file1=./$CONFIG_SITE;; esac elif test "x$prefix" != xNONE; then ac_site_file1=$prefix/share/config.site ac_site_file2=$prefix/etc/config.site else ac_site_file1=$ac_default_prefix/share/config.site ac_site_file2=$ac_default_prefix/etc/config.site fi for ac_site_file in "$ac_site_file1" "$ac_site_file2" do test "x$ac_site_file" = xNONE && continue if test /dev/null != "$ac_site_file" && test -r "$ac_site_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading site script $ac_site_file" >&5 $as_echo "$as_me: loading site script $ac_site_file" >&6;} sed 's/^/| /' "$ac_site_file" >&5 . "$ac_site_file" \ || { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "failed to load site script $ac_site_file See \`config.log' for more details" "$LINENO" 5; } fi done if test -r "$cache_file"; then # Some versions of bash will fail to source /dev/null (special files # actually), so we avoid doing that. DJGPP emulates it as a regular file. if test /dev/null != "$cache_file" && test -f "$cache_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading cache $cache_file" >&5 $as_echo "$as_me: loading cache $cache_file" >&6;} case $cache_file in [\\/]* | ?:[\\/]* ) . "$cache_file";; *) . "./$cache_file";; esac fi else { $as_echo "$as_me:${as_lineno-$LINENO}: creating cache $cache_file" >&5 $as_echo "$as_me: creating cache $cache_file" >&6;} >$cache_file fi # Check that the precious variables saved in the cache have kept the same # value. ac_cache_corrupted=false for ac_var in $ac_precious_vars; do eval ac_old_set=\$ac_cv_env_${ac_var}_set eval ac_new_set=\$ac_env_${ac_var}_set eval ac_old_val=\$ac_cv_env_${ac_var}_value eval ac_new_val=\$ac_env_${ac_var}_value case $ac_old_set,$ac_new_set in set,) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&2;} ac_cache_corrupted=: ;; ,set) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was not set in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} ac_cache_corrupted=: ;; ,);; *) if test "x$ac_old_val" != "x$ac_new_val"; then # differences in whitespace do not lead to failure. ac_old_val_w=`echo x $ac_old_val` ac_new_val_w=`echo x $ac_new_val` if test "$ac_old_val_w" != "$ac_new_val_w"; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' has changed since the previous run:" >&5 $as_echo "$as_me: error: \`$ac_var' has changed since the previous run:" >&2;} ac_cache_corrupted=: else { $as_echo "$as_me:${as_lineno-$LINENO}: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&5 $as_echo "$as_me: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&2;} eval $ac_var=\$ac_old_val fi { $as_echo "$as_me:${as_lineno-$LINENO}: former value: \`$ac_old_val'" >&5 $as_echo "$as_me: former value: \`$ac_old_val'" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: current value: \`$ac_new_val'" >&5 $as_echo "$as_me: current value: \`$ac_new_val'" >&2;} fi;; esac # Pass precious variables to config.status. if test "$ac_new_set" = set; then case $ac_new_val in *\'*) ac_arg=$ac_var=`$as_echo "$ac_new_val" | sed "s/'/'\\\\\\\\''/g"` ;; *) ac_arg=$ac_var=$ac_new_val ;; esac case " $ac_configure_args " in *" '$ac_arg' "*) ;; # Avoid dups. Use of quotes ensures accuracy. *) as_fn_append ac_configure_args " '$ac_arg'" ;; esac fi done if $ac_cache_corrupted; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: error: changes in the environment can compromise the build" >&5 $as_echo "$as_me: error: changes in the environment can compromise the build" >&2;} as_fn_error $? "run \`make distclean' and/or \`rm $cache_file' and start over" "$LINENO" 5 fi ## -------------------- ## ## Main body of script. ## ## -------------------- ## ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_config_headers="$ac_config_headers config.h" if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}pkg-config", so it can be a program name with args. set dummy ${ac_tool_prefix}pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_PKG_CONFIG="$PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PKG_CONFIG=$ac_cv_path_PKG_CONFIG if test -n "$PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PKG_CONFIG" >&5 $as_echo "$PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_path_PKG_CONFIG"; then ac_pt_PKG_CONFIG=$PKG_CONFIG # Extract the first word of "pkg-config", so it can be a program name with args. set dummy pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_ac_pt_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $ac_pt_PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_ac_pt_PKG_CONFIG="$ac_pt_PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_ac_pt_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi ac_pt_PKG_CONFIG=$ac_cv_path_ac_pt_PKG_CONFIG if test -n "$ac_pt_PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_pt_PKG_CONFIG" >&5 $as_echo "$ac_pt_PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_pt_PKG_CONFIG" = x; then PKG_CONFIG="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac PKG_CONFIG=$ac_pt_PKG_CONFIG fi else PKG_CONFIG="$ac_cv_path_PKG_CONFIG" fi fi if test -n "$PKG_CONFIG"; then _pkg_min_version=0.9.0 { $as_echo "$as_me:${as_lineno-$LINENO}: checking pkg-config is at least version $_pkg_min_version" >&5 $as_echo_n "checking pkg-config is at least version $_pkg_min_version... " >&6; } if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } PKG_CONFIG="" fi fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_aux_dir= for ac_dir in "$srcdir" "$srcdir/.." "$srcdir/../.."; do if test -f "$ac_dir/install-sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install-sh -c" break elif test -f "$ac_dir/install.sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install.sh -c" break elif test -f "$ac_dir/shtool"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/shtool install -c" break fi done if test -z "$ac_aux_dir"; then as_fn_error $? "cannot find install-sh, install.sh, or shtool in \"$srcdir\" \"$srcdir/..\" \"$srcdir/../..\"" "$LINENO" 5 fi # These three variables are undocumented and unsupported, # and are intended to be withdrawn in a future Autoconf release. # They can cause serious problems if a builder's source tree is in a directory # whose full name contains unusual characters. ac_config_guess="$SHELL $ac_aux_dir/config.guess" # Please don't use this var. ac_config_sub="$SHELL $ac_aux_dir/config.sub" # Please don't use this var. ac_configure="$SHELL $ac_aux_dir/configure" # Please don't use this var. # Make sure we can run config.sub. $SHELL "$ac_aux_dir/config.sub" sun4 >/dev/null 2>&1 || as_fn_error $? "cannot run $SHELL $ac_aux_dir/config.sub" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking build system type" >&5 $as_echo_n "checking build system type... " >&6; } if ${ac_cv_build+:} false; then : $as_echo_n "(cached) " >&6 else ac_build_alias=$build_alias test "x$ac_build_alias" = x && ac_build_alias=`$SHELL "$ac_aux_dir/config.guess"` test "x$ac_build_alias" = x && as_fn_error $? "cannot guess build type; you must specify one" "$LINENO" 5 ac_cv_build=`$SHELL "$ac_aux_dir/config.sub" $ac_build_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $ac_build_alias failed" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_build" >&5 $as_echo "$ac_cv_build" >&6; } case $ac_cv_build in *-*-*) ;; *) as_fn_error $? "invalid value of canonical build" "$LINENO" 5;; esac build=$ac_cv_build ac_save_IFS=$IFS; IFS='-' set x $ac_cv_build shift build_cpu=$1 build_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: build_os=$* IFS=$ac_save_IFS case $build_os in *\ *) build_os=`echo "$build_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking host system type" >&5 $as_echo_n "checking host system type... " >&6; } if ${ac_cv_host+:} false; then : $as_echo_n "(cached) " >&6 else if test "x$host_alias" = x; then ac_cv_host=$ac_cv_build else ac_cv_host=`$SHELL "$ac_aux_dir/config.sub" $host_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $host_alias failed" "$LINENO" 5 fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_host" >&5 $as_echo "$ac_cv_host" >&6; } case $ac_cv_host in *-*-*) ;; *) as_fn_error $? "invalid value of canonical host" "$LINENO" 5;; esac host=$ac_cv_host ac_save_IFS=$IFS; IFS='-' set x $ac_cv_host shift host_cpu=$1 host_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: host_os=$* IFS=$ac_save_IFS case $host_os in *\ *) host_os=`echo "$host_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to enable maintainer-specific portions of Makefiles" >&5 $as_echo_n "checking whether to enable maintainer-specific portions of Makefiles... " >&6; } # Check whether --enable-maintainer-mode was given. if test "${enable_maintainer_mode+set}" = set; then : enableval=$enable_maintainer_mode; USE_MAINTAINER_MODE=$enableval else USE_MAINTAINER_MODE=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_MAINTAINER_MODE" >&5 $as_echo "$USE_MAINTAINER_MODE" >&6; } if test $USE_MAINTAINER_MODE = yes; then MAINTAINER_MODE_TRUE= MAINTAINER_MODE_FALSE='#' else MAINTAINER_MODE_TRUE='#' MAINTAINER_MODE_FALSE= fi MAINT=$MAINTAINER_MODE_TRUE am__api_version='1.14' # Find a good install program. We prefer a C program (faster), # so one script is as good as another. But avoid the broken or # incompatible versions: # SysV /etc/install, /usr/sbin/install # SunOS /usr/etc/install # IRIX /sbin/install # AIX /bin/install # AmigaOS /C/install, which installs bootblocks on floppy discs # AIX 4 /usr/bin/installbsd, which doesn't work without a -g flag # AFS /usr/afsws/bin/install, which mishandles nonexistent args # SVR4 /usr/ucb/install, which tries to use the nonexistent group "staff" # OS/2's system install, which has a completely different semantic # ./install, which can be erroneously created by make from ./install.sh. # Reject install programs that cannot install multiple files. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a BSD-compatible install" >&5 $as_echo_n "checking for a BSD-compatible install... " >&6; } if test -z "$INSTALL"; then if ${ac_cv_path_install+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. # Account for people who put trailing slashes in PATH elements. case $as_dir/ in #(( ./ | .// | /[cC]/* | \ /etc/* | /usr/sbin/* | /usr/etc/* | /sbin/* | /usr/afsws/bin/* | \ ?:[\\/]os2[\\/]install[\\/]* | ?:[\\/]OS2[\\/]INSTALL[\\/]* | \ /usr/ucb/* ) ;; *) # OSF1 and SCO ODT 3.0 have their own names for install. # Don't use installbsd from OSF since it installs stuff as root # by default. for ac_prog in ginstall scoinst install; do for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext"; then if test $ac_prog = install && grep dspmsg "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # AIX install. It has an incompatible calling convention. : elif test $ac_prog = install && grep pwplus "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # program-specific install script used by HP pwplus--don't use. : else rm -rf conftest.one conftest.two conftest.dir echo one > conftest.one echo two > conftest.two mkdir conftest.dir if "$as_dir/$ac_prog$ac_exec_ext" -c conftest.one conftest.two "`pwd`/conftest.dir" && test -s conftest.one && test -s conftest.two && test -s conftest.dir/conftest.one && test -s conftest.dir/conftest.two then ac_cv_path_install="$as_dir/$ac_prog$ac_exec_ext -c" break 3 fi fi fi done done ;; esac done IFS=$as_save_IFS rm -rf conftest.one conftest.two conftest.dir fi if test "${ac_cv_path_install+set}" = set; then INSTALL=$ac_cv_path_install else # As a last resort, use the slow shell script. Don't cache a # value for INSTALL within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. INSTALL=$ac_install_sh fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INSTALL" >&5 $as_echo "$INSTALL" >&6; } # Use test -z because SunOS4 sh mishandles braces in ${var-val}. # It thinks the first close brace ends the variable substitution. test -z "$INSTALL_PROGRAM" && INSTALL_PROGRAM='${INSTALL}' test -z "$INSTALL_SCRIPT" && INSTALL_SCRIPT='${INSTALL}' test -z "$INSTALL_DATA" && INSTALL_DATA='${INSTALL} -m 644' { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether build environment is sane" >&5 $as_echo_n "checking whether build environment is sane... " >&6; } # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[\\\"\#\$\&\'\`$am_lf]*) as_fn_error $? "unsafe absolute working directory name" "$LINENO" 5;; esac case $srcdir in *[\\\"\#\$\&\'\`$am_lf\ \ ]*) as_fn_error $? "unsafe srcdir value: '$srcdir'" "$LINENO" 5;; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$*" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$*" != "X $srcdir/configure conftest.file" \ && test "$*" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". as_fn_error $? "ls -t appears to fail. Make sure there is not a broken alias in your environment" "$LINENO" 5 fi if test "$2" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$2" = conftest.file ) then # Ok. : else as_fn_error $? "newly created file is older than distributed files! Check your system clock" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi rm -f conftest.file test "$program_prefix" != NONE && program_transform_name="s&^&$program_prefix&;$program_transform_name" # Use a double $ so make ignores it. test "$program_suffix" != NONE && program_transform_name="s&\$&$program_suffix&;$program_transform_name" # Double any \ or $. # By default was `s,x,x', remove it if useless. ac_script='s/[\\$]/&&/g;s/;s,x,x,$//' program_transform_name=`$as_echo "$program_transform_name" | sed "$ac_script"` # expand $ac_aux_dir to an absolute path am_aux_dir=`cd $ac_aux_dir && pwd` if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: 'missing' script is too old or missing" >&5 $as_echo "$as_me: WARNING: 'missing' script is too old or missing" >&2;} fi if test x"${install_sh}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. if test "$cross_compiling" != no; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a thread-safe mkdir -p" >&5 $as_echo_n "checking for a thread-safe mkdir -p... " >&6; } if test -z "$MKDIR_P"; then if ${ac_cv_path_mkdir+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/opt/sfw/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in mkdir gmkdir; do for ac_exec_ext in '' $ac_executable_extensions; do as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext" || continue case `"$as_dir/$ac_prog$ac_exec_ext" --version 2>&1` in #( 'mkdir (GNU coreutils) '* | \ 'mkdir (coreutils) '* | \ 'mkdir (fileutils) '4.1*) ac_cv_path_mkdir=$as_dir/$ac_prog$ac_exec_ext break 3;; esac done done done IFS=$as_save_IFS fi test -d ./--version && rmdir ./--version if test "${ac_cv_path_mkdir+set}" = set; then MKDIR_P="$ac_cv_path_mkdir -p" else # As a last resort, use the slow shell script. Don't cache a # value for MKDIR_P within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. MKDIR_P="$ac_install_sh -d" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MKDIR_P" >&5 $as_echo "$MKDIR_P" >&6; } for ac_prog in gawk mawk nawk awk do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AWK+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AWK"; then ac_cv_prog_AWK="$AWK" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AWK="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AWK=$ac_cv_prog_AWK if test -n "$AWK"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 $as_echo "$AWK" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AWK" && break done { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 $as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } set x ${MAKE-make} ac_make=`$as_echo "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` if eval \${ac_cv_prog_make_${ac_make}_set+:} false; then : $as_echo_n "(cached) " >&6 else cat >conftest.make <<\_ACEOF SHELL = /bin/sh all: @echo '@@@%%%=$(MAKE)=@@@%%%' _ACEOF # GNU make sometimes prints "make[1]: Entering ...", which would confuse us. case `${MAKE-make} -f conftest.make 2>/dev/null` in *@@@%%%=?*=@@@%%%*) eval ac_cv_prog_make_${ac_make}_set=yes;; *) eval ac_cv_prog_make_${ac_make}_set=no;; esac rm -f conftest.make fi if eval test \$ac_cv_prog_make_${ac_make}_set = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } SET_MAKE= else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } SET_MAKE="MAKE=${MAKE-make}" fi rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=1;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." am__isrc=' -I$(srcdir)' # test to see if srcdir already configured if test -f $srcdir/config.status; then as_fn_error $? "source directory already configured; run \"make distclean\" there first" "$LINENO" 5 fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi # Define the identity of the package. PACKAGE='openconnect' VERSION='7.06' cat >>confdefs.h <<_ACEOF #define PACKAGE "$PACKAGE" _ACEOF cat >>confdefs.h <<_ACEOF #define VERSION "$VERSION" _ACEOF # Some tools Automake needs. ACLOCAL=${ACLOCAL-"${am_missing_run}aclocal-${am__api_version}"} AUTOCONF=${AUTOCONF-"${am_missing_run}autoconf"} AUTOMAKE=${AUTOMAKE-"${am_missing_run}automake-${am__api_version}"} AUTOHEADER=${AUTOHEADER-"${am_missing_run}autoheader"} MAKEINFO=${MAKEINFO-"${am_missing_run}makeinfo"} # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # mkdir_p='$(MKDIR_P)' # We need awk for the "check" target. The system "awk" is bad on # some platforms. # Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AMTAR='$${TAR-tar}' # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar pax cpio none' am__tar='$${TAR-tar} chof - "$$tardir"' am__untar='$${TAR-tar} xf -' # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END as_fn_error $? "Your 'rm' program is bad, sorry." "$LINENO" 5 fi fi # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=0;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' # Upstream's pkg.m4 (since 0.27) offers this now, but define our own # compatible version in case the local version of pkgconfig isn't new enough. # https://bugs.freedesktop.org/show_bug.cgi?id=48743 # Check whether --with-pkgconfigdir was given. if test "${with_pkgconfigdir+set}" = set; then : withval=$with_pkgconfigdir; else with_pkgconfigdir='${libdir}/pkgconfig' fi pkgconfigdir=$with_pkgconfigdir use_openbsd_libtool= symver_time= symver_getline= symver_asprintf= symver_vasprintf= symver_win32_strerror= case $host_os in *linux* | *gnu*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for GNU build" >&5 $as_echo "$as_me: Applying feature macros for GNU build" >&6;} $as_echo "#define _POSIX_C_SOURCE 200112L" >>confdefs.h # For asprintf() $as_echo "#define _GNU_SOURCE 1" >>confdefs.h ;; *netbsd*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for NetBSD build" >&5 $as_echo "$as_me: Applying feature macros for NetBSD build" >&6;} $as_echo "#define _POSIX_C_SOURCE 200112L" >>confdefs.h $as_echo "#define _NETBSD_SOURCE 1" >>confdefs.h ;; *openbsd*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for OpenBSD build" >&5 $as_echo "$as_me: Applying feature macros for OpenBSD build" >&6;} use_openbsd_libtool=true ;; *solaris*|*sunos*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying workaround for broken SunOS time() function" >&5 $as_echo "$as_me: Applying workaround for broken SunOS time() function" >&6;} $as_echo "#define HAVE_SUNOS_BROKEN_TIME 1" >>confdefs.h symver_time="openconnect__time;" ;; *mingw32*|*mingw64*|*msys*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for MinGW/Windows build" >&5 $as_echo "$as_me: Applying feature macros for MinGW/Windows build" >&6;} # For GetVolumeInformationByHandleW() which is Vista+ $as_echo "#define _WIN32_WINNT 0x600" >>confdefs.h have_win=yes # For asprintf() $as_echo "#define _GNU_SOURCE 1" >>confdefs.h symver_win32_strerror="openconnect__win32_strerror;" # Win32 does have the SCard API LIBPCSCLITE_LIBS=-lwinscard LIBPCSCLITE_CFLAGS=" " ;; *darwin*) LIBPCSCLITE_LIBS="-Wl,-framework -Wl,PCSC" LIBPCSCLITE_CFLAGS=" " ;; *) # On FreeBSD the only way to get vsyslog() visible is to define # *nothing*, which makes absolutely everything visible. # On Darwin enabling _POSIX_C_SOURCE breaks because # u_long and other types don't get defined. OpenBSD is similar. ;; esac if test "$have_win" = "yes" ; then OPENCONNECT_WIN32_TRUE= OPENCONNECT_WIN32_FALSE='#' else OPENCONNECT_WIN32_TRUE='#' OPENCONNECT_WIN32_FALSE= fi # Check whether --with-vpnc-script was given. if test "${with_vpnc_script+set}" = set; then : withval=$with_vpnc_script; fi if test "$with_vpnc_script" = "yes" || test "$with_vpnc_script" = ""; then if test "$have_win" = "yes"; then with_vpnc_script=vpnc-script-win.js else with_vpnc_script=/etc/vpnc/vpnc-script if ! test -x "$with_vpnc_script"; then as_fn_error $? "${with_vpnc_script} does not seem to be executable. OpenConnect will not function correctly without a vpnc-script. See http://www.infradead.org/openconnect/vpnc-script.html for more details. If you are building a distribution package, please ensure that your packaging is correct, and that a vpnc-script will be installed when the user installs your package. You should provide a --with-vpnc-script= argument to this configure script, giving the full path where the script will be installed. The standard location is ${with_vpnc_script}. To bypass this error and build OpenConnect to use the script from this location, even though it is not present at the time you are building OpenConnect, pass the argument \"--with-vpnc-script=${with_vpnc_script}\"" "$LINENO" 5 fi fi elif test "$with_vpnc_script" = "no"; then as_fn_error $? "You cannot disable vpnc-script. OpenConnect will not function correctly without it. See http://www.infradead.org/openconnect/vpnc-script.html" "$LINENO" 5 elif test "$have_win" = "yes"; then # Oh Windows how we hate thee. If user specifies a vpnc-script and it contains # backslashes, double them all up to survive escaping. with_vpnc_script="$(echo "${with_vpnc_script}" | sed s/\\\\/\\\\\\\\/g)" fi cat >>confdefs.h <<_ACEOF #define DEFAULT_VPNCSCRIPT "${with_vpnc_script}" _ACEOF DEFAULT_VPNCSCRIPT="${with_vpnc_script}" DEPDIR="${am__leading_dot}deps" ac_config_commands="$ac_config_commands depfiles" am_make=${MAKE-make} cat > confinc << 'END' am__doit: @echo this is the am__doit target .PHONY: am__doit END # If we don't find an include directive, just comment out the code. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for style of include used by $am_make" >&5 $as_echo_n "checking for style of include used by $am_make... " >&6; } am__include="#" am__quote= _am_result=none # First try GNU make style include. echo "include confinc" > confmf # Ignore all kinds of additional output from 'make'. case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=include am__quote= _am_result=GNU ;; esac # Now try BSD make style include. if test "$am__include" = "#"; then echo '.include "confinc"' > confmf case `$am_make -s -f confmf 2> /dev/null` in #( *the\ am__doit\ target*) am__include=.include am__quote="\"" _am_result=BSD ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_am_result" >&5 $as_echo "$_am_result" >&6; } rm -f confinc confmf # Check whether --enable-dependency-tracking was given. if test "${enable_dependency_tracking+set}" = set; then : enableval=$enable_dependency_tracking; fi if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi if test "x$enable_dependency_tracking" != xno; then AMDEP_TRUE= AMDEP_FALSE='#' else AMDEP_TRUE='#' AMDEP_FALSE= fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}gcc", so it can be a program name with args. set dummy ${ac_tool_prefix}gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_CC"; then ac_ct_CC=$CC # Extract the first word of "gcc", so it can be a program name with args. set dummy gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi else CC="$ac_cv_prog_CC" fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}cc", so it can be a program name with args. set dummy ${ac_tool_prefix}cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi if test -z "$CC"; then # Extract the first word of "cc", so it can be a program name with args. set dummy cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else ac_prog_rejected=no as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then if test "$as_dir/$ac_word$ac_exec_ext" = "/usr/ucb/cc"; then ac_prog_rejected=yes continue fi ac_cv_prog_CC="cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS if test $ac_prog_rejected = yes; then # We found a bogon in the path, so make sure we never use it. set dummy $ac_cv_prog_CC shift if test $# != 0; then # We chose a different compiler from the bogus one. # However, it has the same basename, so the bogon will be chosen # first if we set CC to just the basename; use the full file name. shift ac_cv_prog_CC="$as_dir/$ac_word${1+' '}$@" fi fi fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then for ac_prog in cl.exe do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$CC" && break done fi if test -z "$CC"; then ac_ct_CC=$CC for ac_prog in cl.exe do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_CC" && break done if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi fi fi test -z "$CC" && { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "no acceptable C compiler found in \$PATH See \`config.log' for more details" "$LINENO" 5; } # Provide some information about the compiler. $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler version" >&5 set X $ac_compile ac_compiler=$2 for ac_option in --version -v -V -qversion; do { { ac_try="$ac_compiler $ac_option >&5" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compiler $ac_option >&5") 2>conftest.err ac_status=$? if test -s conftest.err; then sed '10a\ ... rest of stderr output deleted ... 10q' conftest.err >conftest.er1 cat conftest.er1 >&5 fi rm -f conftest.er1 conftest.err $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } done cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files a.out a.out.dSYM a.exe b.out" # Try to create an executable without -o first, disregard a.out. # It will help us diagnose broken compilers, and finding out an intuition # of exeext. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler works" >&5 $as_echo_n "checking whether the C compiler works... " >&6; } ac_link_default=`$as_echo "$ac_link" | sed 's/ -o *conftest[^ ]*//'` # The possible output files: ac_files="a.out conftest.exe conftest a.exe a_out.exe b.out conftest.*" ac_rmfiles= for ac_file in $ac_files do case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; * ) ac_rmfiles="$ac_rmfiles $ac_file";; esac done rm -f $ac_rmfiles if { { ac_try="$ac_link_default" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link_default") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # Autoconf-2.13 could set the ac_cv_exeext variable to `no'. # So ignore a value of `no', otherwise this would lead to `EXEEXT = no' # in a Makefile. We should not override ac_cv_exeext if it was cached, # so that the user can short-circuit this test for compilers unknown to # Autoconf. for ac_file in $ac_files '' do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; [ab].out ) # We found the default executable, but exeext='' is most # certainly right. break;; *.* ) if test "${ac_cv_exeext+set}" = set && test "$ac_cv_exeext" != no; then :; else ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` fi # We set ac_cv_exeext here because the later test for it is not # safe: cross compilers may not add the suffix if given an `-o' # argument, so we may need to know it at that point already. # Even if this section looks crufty: it has the advantage of # actually working. break;; * ) break;; esac done test "$ac_cv_exeext" = no && ac_cv_exeext= else ac_file='' fi if test -z "$ac_file"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error 77 "C compiler cannot create executables See \`config.log' for more details" "$LINENO" 5; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler default output file name" >&5 $as_echo_n "checking for C compiler default output file name... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_file" >&5 $as_echo "$ac_file" >&6; } ac_exeext=$ac_cv_exeext rm -f -r a.out a.out.dSYM a.exe conftest$ac_cv_exeext b.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of executables" >&5 $as_echo_n "checking for suffix of executables... " >&6; } if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # If both `conftest.exe' and `conftest' are `present' (well, observable) # catch `conftest.exe'. For instance with Cygwin, `ls conftest' will # work properly (i.e., refer to `conftest.exe'), while it won't with # `rm'. for ac_file in conftest.exe conftest conftest.*; do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; *.* ) ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` break;; * ) break;; esac done else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of executables: cannot compile and link See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest conftest$ac_cv_exeext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_exeext" >&5 $as_echo "$ac_cv_exeext" >&6; } rm -f conftest.$ac_ext EXEEXT=$ac_cv_exeext ac_exeext=$EXEEXT cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { FILE *f = fopen ("conftest.out", "w"); return ferror (f) || fclose (f) != 0; ; return 0; } _ACEOF ac_clean_files="$ac_clean_files conftest.out" # Check that the compiler produces executables we can run. If not, either # the compiler is broken, or we cross compile. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are cross compiling" >&5 $as_echo_n "checking whether we are cross compiling... " >&6; } if test "$cross_compiling" != yes; then { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if { ac_try='./conftest$ac_cv_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then cross_compiling=no else if test "$cross_compiling" = maybe; then cross_compiling=yes else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot run C compiled programs. If you meant to cross compile, use \`--host'. See \`config.log' for more details" "$LINENO" 5; } fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $cross_compiling" >&5 $as_echo "$cross_compiling" >&6; } rm -f conftest.$ac_ext conftest$ac_cv_exeext conftest.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of object files" >&5 $as_echo_n "checking for suffix of object files... " >&6; } if ${ac_cv_objext+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF rm -f conftest.o conftest.obj if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : for ac_file in conftest.o conftest.obj conftest.*; do test -f "$ac_file" || continue; case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM ) ;; *) ac_cv_objext=`expr "$ac_file" : '.*\.\(.*\)'` break;; esac done else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of object files: cannot compile See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest.$ac_cv_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_objext" >&5 $as_echo "$ac_cv_objext" >&6; } OBJEXT=$ac_cv_objext ac_objext=$OBJEXT { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are using the GNU C compiler" >&5 $as_echo_n "checking whether we are using the GNU C compiler... " >&6; } if ${ac_cv_c_compiler_gnu+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { #ifndef __GNUC__ choke me #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_compiler_gnu=yes else ac_compiler_gnu=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_cv_c_compiler_gnu=$ac_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_c_compiler_gnu" >&5 $as_echo "$ac_cv_c_compiler_gnu" >&6; } if test $ac_compiler_gnu = yes; then GCC=yes else GCC= fi ac_test_CFLAGS=${CFLAGS+set} ac_save_CFLAGS=$CFLAGS { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC accepts -g" >&5 $as_echo_n "checking whether $CC accepts -g... " >&6; } if ${ac_cv_prog_cc_g+:} false; then : $as_echo_n "(cached) " >&6 else ac_save_c_werror_flag=$ac_c_werror_flag ac_c_werror_flag=yes ac_cv_prog_cc_g=no CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes else CFLAGS="" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else ac_c_werror_flag=$ac_save_c_werror_flag CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_c_werror_flag=$ac_save_c_werror_flag fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_g" >&5 $as_echo "$ac_cv_prog_cc_g" >&6; } if test "$ac_test_CFLAGS" = set; then CFLAGS=$ac_save_CFLAGS elif test $ac_cv_prog_cc_g = yes; then if test "$GCC" = yes; then CFLAGS="-g -O2" else CFLAGS="-g" fi else if test "$GCC" = yes; then CFLAGS="-O2" else CFLAGS= fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $CC option to accept ISO C89" >&5 $as_echo_n "checking for $CC option to accept ISO C89... " >&6; } if ${ac_cv_prog_cc_c89+:} false; then : $as_echo_n "(cached) " >&6 else ac_cv_prog_cc_c89=no ac_save_CC=$CC cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include struct stat; /* Most of the following tests are stolen from RCS 5.7's src/conf.sh. */ struct buf { int x; }; FILE * (*rcsopen) (struct buf *, struct stat *, int); static char *e (p, i) char **p; int i; { return p[i]; } static char *f (char * (*g) (char **, int), char **p, ...) { char *s; va_list v; va_start (v,p); s = g (p, va_arg (v,int)); va_end (v); return s; } /* OSF 4.0 Compaq cc is some sort of almost-ANSI by default. It has function prototypes and stuff, but not '\xHH' hex character constants. These don't provoke an error unfortunately, instead are silently treated as 'x'. The following induces an error, until -std is added to get proper ANSI mode. Curiously '\x00'!='x' always comes out true, for an array size at least. It's necessary to write '\x00'==0 to get something that's true only with -std. */ int osf4_cc_array ['\x00' == 0 ? 1 : -1]; /* IBM C 6 for AIX is almost-ANSI by default, but it replaces macro parameters inside strings and character constants. */ #define FOO(x) 'x' int xlc6_cc_array[FOO(a) == 'x' ? 1 : -1]; int test (int i, double x); struct s1 {int (*f) (int a);}; struct s2 {int (*f) (double a);}; int pairnames (int, char **, FILE *(*)(struct buf *, struct stat *, int), int, int); int argc; char **argv; int main () { return f (e, argv, 0) != argv[0] || f (e, argv, 1) != argv[1]; ; return 0; } _ACEOF for ac_arg in '' -qlanglvl=extc89 -qlanglvl=ansi -std \ -Ae "-Aa -D_HPUX_SOURCE" "-Xc -D__EXTENSIONS__" do CC="$ac_save_CC $ac_arg" if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_c89=$ac_arg fi rm -f core conftest.err conftest.$ac_objext test "x$ac_cv_prog_cc_c89" != "xno" && break done rm -f conftest.$ac_ext CC=$ac_save_CC fi # AC_CACHE_VAL case "x$ac_cv_prog_cc_c89" in x) { $as_echo "$as_me:${as_lineno-$LINENO}: result: none needed" >&5 $as_echo "none needed" >&6; } ;; xno) { $as_echo "$as_me:${as_lineno-$LINENO}: result: unsupported" >&5 $as_echo "unsupported" >&6; } ;; *) CC="$CC $ac_cv_prog_cc_c89" { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_c89" >&5 $as_echo "$ac_cv_prog_cc_c89" >&6; } ;; esac if test "x$ac_cv_prog_cc_c89" != xno; then : fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC understands -c and -o together" >&5 $as_echo_n "checking whether $CC understands -c and -o together... " >&6; } if ${am_cv_prog_cc_c_o+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if { echo "$as_me:$LINENO: $CC -c conftest.$ac_ext -o conftest2.$ac_objext" >&5 ($CC -c conftest.$ac_ext -o conftest2.$ac_objext) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_cc_c_o" >&5 $as_echo "$am_cv_prog_cc_c_o" >&6; } if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu depcc="$CC" am_compiler_list= { $as_echo "$as_me:${as_lineno-$LINENO}: checking dependency style of $depcc" >&5 $as_echo_n "checking dependency style of $depcc... " >&6; } if ${am_cv_CC_dependencies_compiler_type+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_CC_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n 's/^#*\([a-zA-Z0-9]*\))$/\1/p' < ./depcomp` fi am__universal=false case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_CC_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_CC_dependencies_compiler_type=none fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_CC_dependencies_compiler_type" >&5 $as_echo "$am_cv_CC_dependencies_compiler_type" >&6; } CCDEPMODE=depmode=$am_cv_CC_dependencies_compiler_type if test "x$enable_dependency_tracking" != xno \ && test "$am_cv_CC_dependencies_compiler_type" = gcc3; then am__fastdepCC_TRUE= am__fastdepCC_FALSE='#' else am__fastdepCC_TRUE='#' am__fastdepCC_FALSE= fi ac_fn_c_check_func "$LINENO" "fdevname_r" "ac_cv_func_fdevname_r" if test "x$ac_cv_func_fdevname_r" = xyes; then : $as_echo "#define HAVE_FDEVNAME_R 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "getline" "ac_cv_func_getline" if test "x$ac_cv_func_getline" = xyes; then : $as_echo "#define HAVE_GETLINE 1" >>confdefs.h else symver_getline="openconnect__getline;" fi ac_fn_c_check_func "$LINENO" "strcasestr" "ac_cv_func_strcasestr" if test "x$ac_cv_func_strcasestr" = xyes; then : $as_echo "#define HAVE_STRCASESTR 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "strndup" "ac_cv_func_strndup" if test "x$ac_cv_func_strndup" = xyes; then : $as_echo "#define HAVE_STRNDUP 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "asprintf" "ac_cv_func_asprintf" if test "x$ac_cv_func_asprintf" = xyes; then : $as_echo "#define HAVE_ASPRINTF 1" >>confdefs.h else symver_asprintf="openconnect__asprintf;" fi ac_fn_c_check_func "$LINENO" "vasprintf" "ac_cv_func_vasprintf" if test "x$ac_cv_func_vasprintf" = xyes; then : $as_echo "#define HAVE_VASPRINTF 1" >>confdefs.h else symver_vasprintf="openconnect__vasprintf;" fi if test -n "$symver_vasprintf"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for va_copy" >&5 $as_echo_n "checking for va_copy... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include va_list a; int main () { va_list b; va_copy(b,a); va_end(b); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : $as_echo "#define HAVE_VA_COPY 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: va_copy" >&5 $as_echo "va_copy" >&6; } else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include va_list a; int main () { va_list b; __va_copy(b,a); va_end(b); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : $as_echo "#define HAVE___VA_COPY 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: __va_copy" >&5 $as_echo "__va_copy" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Your system lacks vasprintf() and va_copy()" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi SYMVER_TIME=$symver_time SYMVER_GETLINE=$symver_getline SYMVER_ASPRINTF=$symver_asprintf SYMVER_VASPRINTF=$symver_vasprintf SYMVER_WIN32_STRERROR=$symver_win32_strerror list="-Wall -Wextra -Wno-missing-field-initializers -Wno-sign-compare -Wno-unused-parameter -Werror=pointer-to-int-cast -Wdeclaration-after-statement -Werror-implicit-function-declaration -Wformat-nonliteral -Wformat-security -Winit-self -Wmissing-declarations -Wmissing-include-dirs -Wnested-externs -Wpointer-arith -Wwrite-strings" flags_supported="" flags_unsupported="" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for supported compiler flags" >&5 $as_echo_n "checking for supported compiler flags... " >&6; } for each in $list do save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $each" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : flag_ok=yes else flag_ok=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then flags_supported="$flags_supported $each" else flags_unsupported="$flags_unsupported $each" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: result: $flags_supported" >&5 $as_echo "$flags_supported" >&6; } if test "X$flags_unsupported" != X ; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unsupported compiler flags: $flags_unsupported" >&5 $as_echo "$as_me: WARNING: unsupported compiler flags: $flags_unsupported" >&2;} fi WFLAGS="$WFLAGS $flags_supported" WFLAGS=$WFLAGS if test "$have_win" = yes; then # Checking "properly" for __attribute__((dllimport,stdcall)) functions is non-trivial LIBS="$LIBS -lws2_32 -lshlwapi -lsecur32" else ac_fn_c_check_func "$LINENO" "socket" "ac_cv_func_socket" if test "x$ac_cv_func_socket" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for socket in -lsocket" >&5 $as_echo_n "checking for socket in -lsocket... " >&6; } if ${ac_cv_lib_socket_socket+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lsocket $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char socket (); int main () { return socket (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_socket_socket=yes else ac_cv_lib_socket_socket=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_socket_socket" >&5 $as_echo "$ac_cv_lib_socket_socket" >&6; } if test "x$ac_cv_lib_socket_socket" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBSOCKET 1 _ACEOF LIBS="-lsocket $LIBS" else as_fn_error $? "Cannot find socket() function" "$LINENO" 5 fi fi fi have_inet_aton=yes ac_fn_c_check_func "$LINENO" "inet_aton" "ac_cv_func_inet_aton" if test "x$ac_cv_func_inet_aton" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for inet_aton in -lnsl" >&5 $as_echo_n "checking for inet_aton in -lnsl... " >&6; } if ${ac_cv_lib_nsl_inet_aton+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lnsl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char inet_aton (); int main () { return inet_aton (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_nsl_inet_aton=yes else ac_cv_lib_nsl_inet_aton=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_nsl_inet_aton" >&5 $as_echo "$ac_cv_lib_nsl_inet_aton" >&6; } if test "x$ac_cv_lib_nsl_inet_aton" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBNSL 1 _ACEOF LIBS="-lnsl $LIBS" else have_inet_aton=no fi fi if test "$have_inet_aton" = "yes"; then $as_echo "#define HAVE_INET_ATON 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "__android_log_vprint" "ac_cv_func___android_log_vprint" if test "x$ac_cv_func___android_log_vprint" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for __android_log_vprint in -llog" >&5 $as_echo_n "checking for __android_log_vprint in -llog... " >&6; } if ${ac_cv_lib_log___android_log_vprint+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-llog $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char __android_log_vprint (); int main () { return __android_log_vprint (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_log___android_log_vprint=yes else ac_cv_lib_log___android_log_vprint=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_log___android_log_vprint" >&5 $as_echo "$ac_cv_lib_log___android_log_vprint" >&6; } if test "x$ac_cv_lib_log___android_log_vprint" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBLOG 1 _ACEOF LIBS="-llog $LIBS" fi fi # Check whether --enable-shared was given. if test "${enable_shared+set}" = set; then : enableval=$enable_shared; p=${PACKAGE-default} case $enableval in yes) enable_shared=yes ;; no) enable_shared=no ;; *) enable_shared=no # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for pkg in $enableval; do IFS="$lt_save_ifs" if test "X$pkg" = "X$p"; then enable_shared=yes fi done IFS="$lt_save_ifs" ;; esac else enable_shared=yes fi # Check whether --enable-static was given. if test "${enable_static+set}" = set; then : enableval=$enable_static; p=${PACKAGE-default} case $enableval in yes) enable_static=yes ;; no) enable_static=no ;; *) enable_static=no # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for pkg in $enableval; do IFS="$lt_save_ifs" if test "X$pkg" = "X$p"; then enable_static=yes fi done IFS="$lt_save_ifs" ;; esac else enable_static=no fi ac_fn_c_check_func "$LINENO" "nl_langinfo" "ac_cv_func_nl_langinfo" if test "x$ac_cv_func_nl_langinfo" = xyes; then : $as_echo "#define HAVE_NL_LANGINFO 1" >>confdefs.h fi if test "$ac_cv_func_nl_langinfo" = "yes"; then if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test "$withval" = no || with_gnu_ld=yes else with_gnu_ld=no fi # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then # Determine PATH_SEPARATOR by trying to find /bin/sh in a PATH which # contains only /bin. Note that ksh looks also at the FPATH variable, # so we have to set that as well for the test. PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ || PATH_SEPARATOR=';' } fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by $CC" >&5 $as_echo_n "checking for ld used by $CC... " >&6; } case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [\\/]* | ?:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the pathname of ld ac_prog=`echo "$ac_prog"| sed 's%\\\\%/%g'` while echo "$ac_prog" | grep "$re_direlt" > /dev/null 2>&1; do ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if ${acl_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$LD"; then acl_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$acl_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 &5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -z "$LD" && as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${acl_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 &5 $as_echo "$acl_cv_prog_gnu_ld" >&6; } with_gnu_ld=$acl_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shared library run path origin" >&5 $as_echo_n "checking for shared library run path origin... " >&6; } if ${acl_cv_rpath+:} false; then : $as_echo_n "(cached) " >&6 else CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $acl_cv_rpath" >&5 $as_echo "$acl_cv_rpath" >&6; } wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" # Check whether --enable-rpath was given. if test "${enable_rpath+set}" = set; then : enableval=$enable_rpath; : else enable_rpath=yes fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to run the C preprocessor" >&5 $as_echo_n "checking how to run the C preprocessor... " >&6; } # On Suns, sometimes $CPP names a directory. if test -n "$CPP" && test -d "$CPP"; then CPP= fi if test -z "$CPP"; then if ${ac_cv_prog_CPP+:} false; then : $as_echo_n "(cached) " >&6 else # Double quotes because CPP needs to be expanded for CPP in "$CC -E" "$CC -E -traditional-cpp" "/lib/cpp" do ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : break fi done ac_cv_prog_CPP=$CPP fi CPP=$ac_cv_prog_CPP else ac_cv_prog_CPP=$CPP fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CPP" >&5 $as_echo "$CPP" >&6; } ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "C preprocessor \"$CPP\" fails sanity check See \`config.log' for more details" "$LINENO" 5; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking for grep that handles long lines and -e" >&5 $as_echo_n "checking for grep that handles long lines and -e... " >&6; } if ${ac_cv_path_GREP+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$GREP"; then ac_path_GREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in grep ggrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GREP" || continue # Check for GNU ac_path_GREP and select it if it is found. # Check for GNU $ac_path_GREP case `"$ac_path_GREP" --version 2>&1` in *GNU*) ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'GREP' >> "conftest.nl" "$ac_path_GREP" -e 'GREP$' -e '-(cannot match)-' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_GREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_GREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GREP"; then as_fn_error $? "no acceptable grep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_GREP=$GREP fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_GREP" >&5 $as_echo "$ac_cv_path_GREP" >&6; } GREP="$ac_cv_path_GREP" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" acl_libdirstem=lib acl_libdirstem2= case "$host_os" in solaris*) { $as_echo "$as_me:${as_lineno-$LINENO}: checking for 64-bit host" >&5 $as_echo_n "checking for 64-bit host... " >&6; } if ${gl_cv_solaris_64bit+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef _LP64 sixtyfour bits #endif _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "sixtyfour bits" >/dev/null 2>&1; then : gl_cv_solaris_64bit=yes else gl_cv_solaris_64bit=no fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gl_cv_solaris_64bit" >&5 $as_echo "$gl_cv_solaris_64bit" >&6; } if test $gl_cv_solaris_64bit = yes; then acl_libdirstem=lib/64 case "$host_cpu" in sparc*) acl_libdirstem2=lib/sparcv9 ;; i*86 | x86_64) acl_libdirstem2=lib/amd64 ;; esac fi ;; *) searchpath=`(LC_ALL=C $CC -print-search-dirs) 2>/dev/null | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib64/ | */lib64 ) acl_libdirstem=lib64 ;; */../ | */.. ) # Better ignore directories of this form. They are misleading. ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib64 ) acl_libdirstem=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" fi ;; esac test -n "$acl_libdirstem2" || acl_libdirstem2="$acl_libdirstem" use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libiconv-prefix was given. if test "${with_libiconv_prefix+set}" = set; then : withval=$with_libiconv_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" if test "$acl_libdirstem2" != "$acl_libdirstem" \ && ! test -d "$withval/$acl_libdirstem"; then additional_libdir="$withval/$acl_libdirstem2" fi fi fi fi LIBICONV= LTLIBICONV= INCICONV= LIBICONV_PREFIX= HAVE_LIBICONV= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='iconv ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBICONV="${LIBICONV}${LIBICONV:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_a" else LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCICONV="${INCICONV}${INCICONV:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$additional_libdir" != "X/usr/$acl_libdirstem" \ && test "X$additional_libdir" != "X/usr/$acl_libdirstem2"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$additional_libdir" = "X/usr/local/$acl_libdirstem2"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBICONV="${LIBICONV}${LIBICONV:+ }$dep" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$dep" ;; esac done fi else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-R$found_dir" done fi am_save_CPPFLAGS="$CPPFLAGS" for element in $INCICONV; do haveit= for x in $CPPFLAGS; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }$element" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv" >&5 $as_echo_n "checking for iconv... " >&6; } if ${am_cv_func_iconv+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_lib_iconv=yes am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$am_save_LIBS" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv" >&5 $as_echo "$am_cv_func_iconv" >&6; } if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for working iconv" >&5 $as_echo_n "checking for working iconv... " >&6; } if ${am_cv_func_iconv_works+:} false; then : $as_echo_n "(cached) " >&6 else am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi if test "$cross_compiling" = yes; then : case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { int result = 0; /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 1; iconv_close (cd_utf8_to_88591); } } /* Test against Solaris 10 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_ascii_to_88591 = iconv_open ("ISO8859-1", "646"); if (cd_ascii_to_88591 != (iconv_t)(-1)) { static const char input[] = "\263"; char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_ascii_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 2; iconv_close (cd_ascii_to_88591); } } /* Test against AIX 6.1..7.1 bug: Buffer overrun. */ { iconv_t cd_88591_to_utf8 = iconv_open ("UTF-8", "ISO-8859-1"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304"; static char buf[2] = { (char)0xDE, (char)0xAD }; const char *inptr = input; size_t inbytesleft = 1; char *outptr = buf; size_t outbytesleft = 1; size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res != (size_t)(-1) || outptr - buf > 1 || buf[1] != (char)0xAD) result |= 4; iconv_close (cd_88591_to_utf8); } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) result |= 8; iconv_close (cd_88591_to_utf8); } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) result |= 16; return result; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : am_cv_func_iconv_works=yes else am_cv_func_iconv_works=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi LIBS="$am_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv_works" >&5 $as_echo "$am_cv_func_iconv_works" >&6; } case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi if test "$am_cv_lib_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to link with libiconv" >&5 $as_echo_n "checking how to link with libiconv... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIBICONV" >&5 $as_echo "$LIBICONV" >&6; } else CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv declaration" >&5 $as_echo_n "checking for iconv declaration... " >&6; } if ${am_cv_proto_iconv+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(_MSC_VER) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : am_cv_proto_iconv_arg1="" else am_cv_proto_iconv_arg1="const" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);" fi am_cv_proto_iconv=`echo "$am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_proto_iconv" >&5 $as_echo " $am_cv_proto_iconv" >&6; } cat >>confdefs.h <<_ACEOF #define ICONV_CONST $am_cv_proto_iconv_arg1 _ACEOF fi if test "$am_cv_func_iconv" = "yes"; then ICONV_LIBS=$LTLIBICONV ICONV_CFLAGS=$INCICONV $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi fi if test "$am_cv_func_iconv" = "yes"; then OPENCONNECT_ICONV_TRUE= OPENCONNECT_ICONV_FALSE='#' else OPENCONNECT_ICONV_TRUE='#' OPENCONNECT_ICONV_FALSE= fi # Check whether --enable-lzstest was given. if test "${enable_lzstest+set}" = set; then : enableval=$enable_lzstest; BUILD_LZSTEST=$enableval else BUILD_LZSTEST=no fi if test "$BUILD_LZSTEST" = "yes"; then BUILD_LZSTEST_TRUE= BUILD_LZSTEST_FALSE='#' else BUILD_LZSTEST_TRUE='#' BUILD_LZSTEST_FALSE= fi # Check whether --enable-nls was given. if test "${enable_nls+set}" = set; then : enableval=$enable_nls; USE_NLS=$enableval else USE_NLS=yes fi LIBINTL= if test "$USE_NLS" = "yes"; then # Extract the first word of "msgfmt", so it can be a program name with args. set dummy msgfmt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_MSGFMT+:} false; then : $as_echo_n "(cached) " >&6 else case $MSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_MSGFMT="$MSGFMT" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_MSGFMT="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi MSGFMT=$ac_cv_path_MSGFMT if test -n "$MSGFMT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 $as_echo "$MSGFMT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "$MSGFMT" = ""; then as_fn_error $? "msgfmt could not be found. Try configuring with --disable-nls" "$LINENO" 5 fi fi LIBINTL= if test "$USE_NLS" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for functional NLS support" >&5 $as_echo_n "checking for functional NLS support... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libintl-prefix was given. if test "${with_libintl_prefix+set}" = set; then : withval=$with_libintl_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" if test "$acl_libdirstem2" != "$acl_libdirstem" \ && ! test -d "$withval/$acl_libdirstem"; then additional_libdir="$withval/$acl_libdirstem2" fi fi fi fi LIBINTL= LTLIBINTL= INCINTL= LIBINTL_PREFIX= HAVE_LIBINTL= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='intl ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBINTL="${LIBINTL}${LIBINTL:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_a" else LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCINTL="${INCINTL}${INCINTL:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$additional_libdir" != "X/usr/$acl_libdirstem" \ && test "X$additional_libdir" != "X/usr/$acl_libdirstem2"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$additional_libdir" = "X/usr/local/$acl_libdirstem2"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBINTL="${LIBINTL}${LIBINTL:+ }$dep" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$dep" ;; esac done fi else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-R$found_dir" done fi oldLIBS="$LIBS" LIBS="$LIBS $LIBINTL" oldCFLAGS="$LIBS" CFLAGS="$CFLAGS $INCINTL" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with $INCINTL $LIBINTL)" >&5 $as_echo "yes (with $INCINTL $LIBINTL)" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } USE_NLS=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi if test "$USE_NLS" = "yes"; then INTL_LIBS=$LTLIBINTL INTL_CFLAGS=$INCINTL $as_echo "#define ENABLE_NLS 1" >>confdefs.h fi if test "$USE_NLS" = "yes"; then USE_NLS_TRUE= USE_NLS_FALSE='#' else USE_NLS_TRUE='#' USE_NLS_FALSE= fi # Check whether --with-system-cafile was given. if test "${with_system_cafile+set}" = set; then : withval=$with_system_cafile; fi # We will use GnuTLS by default if it's present, and if GnuTLS doesn't # have DTLS support then we'll *also* use OpenSSL for that, but it # appears *only* only in the openconnect executable and not the # library (hence shouldn't be a problem for GPL'd programs using # libopenconnect). # # If built with --without-openssl then we'll even eschew OpenSSL for # DTLS support and will build without any DTLS support at all if # GnuTLS cannot manage. # # You can build without GnuTLS, even if its pkg-config file is present # on the system, by using '--without-gnutls' # Check whether --with-gnutls was given. if test "${with_gnutls+set}" = set; then : withval=$with_gnutls; fi # Check whether --with-openssl was given. if test "${with_openssl+set}" = set; then : withval=$with_openssl; fi ssl_library= if test "$with_gnutls" = "yes" || test "$with_gnutls" = ""; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNUTLS" >&5 $as_echo_n "checking for GNUTLS... " >&6; } if test -n "$GNUTLS_CFLAGS"; then pkg_cv_GNUTLS_CFLAGS="$GNUTLS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gnutls\""; } >&5 ($PKG_CONFIG --exists --print-errors "gnutls") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GNUTLS_CFLAGS=`$PKG_CONFIG --cflags "gnutls" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$GNUTLS_LIBS"; then pkg_cv_GNUTLS_LIBS="$GNUTLS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gnutls\""; } >&5 ($PKG_CONFIG --exists --print-errors "gnutls") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GNUTLS_LIBS=`$PKG_CONFIG --libs "gnutls" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then GNUTLS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "gnutls" 2>&1` else GNUTLS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "gnutls" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$GNUTLS_PKG_ERRORS" >&5 found_gnutls=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } found_gnutls=no else GNUTLS_CFLAGS=$pkg_cv_GNUTLS_CFLAGS GNUTLS_LIBS=$pkg_cv_GNUTLS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } found_gnutls=yes fi if test "$found_gnutls" = "yes"; then if ! $PKG_CONFIG --atleast-version=2.12.16 gnutls; then found_gnutls=old fi if test "$have_win" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for broken GnuTLS Windows versions" >&5 $as_echo_n "checking for broken GnuTLS Windows versions... " >&6; } if $PKG_CONFIG --atleast-version=3.2.0 gnutls && ! $PKG_CONFIG --atleast-version=3.2.10 gnutls; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } found_gnutls=winbroken else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi case $with_gnutls$found_gnutls in yeswinbroken) as_fn_error $? "GnuTLS v3.2.0-v3.2.9 are not functional on Windows" "$LINENO" 5 ;; yesold) as_fn_error $? "Your GnuTLS is too old. At least v2.12.16 is required" "$LINENO" 5 ;; yesno) as_fn_error $? "GnuTLS requested but no package 'gnutls' found" "$LINENO" 5 ;; old) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: GnuTLS is too old. At least v2.12.16 is required. Falling back to OpenSSL" >&5 $as_echo "$as_me: WARNING: GnuTLS is too old. At least v2.12.16 is required. Falling back to OpenSSL" >&2;} ;; yes) with_gnutls=yes ;; esac elif test "$with_gnutls" != "no"; then as_fn_error $? "Values other than 'yes' or 'no' for --with-gnutls are not supported" "$LINENO" 5 fi if test "$with_gnutls" = "yes"; then oldlibs="$LIBS" LIBS="$LIBS $GNUTLS_LIBS" oldcflags="$CFLAGS" CFLAGS="$CFLAGS $GNUTLS_CFLAGS" ac_fn_c_check_func "$LINENO" "gnutls_dtls_set_data_mtu" "ac_cv_func_gnutls_dtls_set_data_mtu" if test "x$ac_cv_func_gnutls_dtls_set_data_mtu" = xyes; then : $as_echo "#define HAVE_GNUTLS_DTLS_SET_DATA_MTU 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_pkcs11_get_raw_issuer" "ac_cv_func_gnutls_pkcs11_get_raw_issuer" if test "x$ac_cv_func_gnutls_pkcs11_get_raw_issuer" = xyes; then : $as_echo "#define HAVE_GNUTLS_PKCS11_GET_RAW_ISSUER 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_certificate_set_x509_system_trust" "ac_cv_func_gnutls_certificate_set_x509_system_trust" if test "x$ac_cv_func_gnutls_certificate_set_x509_system_trust" = xyes; then : $as_echo "#define HAVE_GNUTLS_CERTIFICATE_SET_X509_SYSTEM_TRUST 1" >>confdefs.h fi if test "$ac_cv_func_gnutls_certificate_set_x509_system_trust" != "yes"; then # We will need to tell GnuTLS the path to the system CA file. if test "$with_system_cafile" = "yes" || test "$with_system_cafile" = ""; then unset with_system_cafile { $as_echo "$as_me:${as_lineno-$LINENO}: checking For location of system CA trust file" >&5 $as_echo_n "checking For location of system CA trust file... " >&6; } for file in /etc/ssl/certs/ca-certificates.crt \ /etc/pki/tls/cert.pem \ /usr/local/share/certs/ca-root-nss.crt \ /etc/ssl/cert.pem \ /etc/ssl/ca-bundle.pem \ ; do if grep 'BEGIN CERTIFICATE-----' $file >/dev/null 2>&1; then with_system_cafile=${file} break fi done { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${with_system_cafile-NOT FOUND}" >&5 $as_echo "${with_system_cafile-NOT FOUND}" >&6; } elif test "$with_system_cafile" = "no"; then as_fn_error $? "You cannot disable the system CA certificate file." "$LINENO" 5 fi if test "$with_system_cafile" = ""; then as_fn_error $? "Unable to find a standard system CA certificate file. Your GnuTLS requires a path to a CA certificate store. This is a file which contains a list of the Certificate Authorities which are trusted. Most distributions ship with this file in a standard location, but none the known standard locations exist on your system. You should provide a --with-system-cafile= argument to this configure script, giving the full path to a default CA certificate file for GnuTLS to use. Also, please send full details of your system, including 'uname -a' output and the location of the system CA certificate store on your system, to the openconnect-devel@lists.infradead.org mailing list." "$LINENO" 5 fi cat >>confdefs.h <<_ACEOF #define DEFAULT_SYSTEM_CAFILE "$with_system_cafile" _ACEOF fi ac_fn_c_check_func "$LINENO" "gnutls_cipher_set_iv" "ac_cv_func_gnutls_cipher_set_iv" if test "x$ac_cv_func_gnutls_cipher_set_iv" = xyes; then : have_gnutls_esp=yes else have_gnutls_esp=no fi ac_fn_c_check_func "$LINENO" "gnutls_pkcs12_simple_parse" "ac_cv_func_gnutls_pkcs12_simple_parse" if test "x$ac_cv_func_gnutls_pkcs12_simple_parse" = xyes; then : $as_echo "#define HAVE_GNUTLS_PKCS12_SIMPLE_PARSE 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_certificate_set_key" "ac_cv_func_gnutls_certificate_set_key" if test "x$ac_cv_func_gnutls_certificate_set_key" = xyes; then : $as_echo "#define HAVE_GNUTLS_CERTIFICATE_SET_KEY 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_pk_to_sign" "ac_cv_func_gnutls_pk_to_sign" if test "x$ac_cv_func_gnutls_pk_to_sign" = xyes; then : $as_echo "#define HAVE_GNUTLS_PK_TO_SIGN 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_pubkey_export2" "ac_cv_func_gnutls_pubkey_export2" if test "x$ac_cv_func_gnutls_pubkey_export2" = xyes; then : $as_echo "#define HAVE_GNUTLS_PUBKEY_EXPORT2 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_x509_crt_set_pin_function" "ac_cv_func_gnutls_x509_crt_set_pin_function" if test "x$ac_cv_func_gnutls_x509_crt_set_pin_function" = xyes; then : $as_echo "#define HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_system_key_add_x509" "ac_cv_func_gnutls_system_key_add_x509" if test "x$ac_cv_func_gnutls_system_key_add_x509" = xyes; then : $as_echo "#define HAVE_GNUTLS_SYSTEM_KEYS 1" >>confdefs.h fi if test "$with_openssl" = "" || test "$with_openssl" = "no"; then ac_fn_c_check_func "$LINENO" "gnutls_session_set_premaster" "ac_cv_func_gnutls_session_set_premaster" if test "x$ac_cv_func_gnutls_session_set_premaster" = xyes; then : have_gnutls_dtls=yes else have_gnutls_dtls=no fi else have_gnutls_dtls=no fi if test "$have_gnutls_dtls" = "yes"; then if test "$with_openssl" = "" || test "$with_openssl" = "no"; then # They either said no OpenSSL or didn't specify, and GnuTLS can # do DTLS, so just use GnuTLS. $as_echo "#define HAVE_GNUTLS_SESSION_SET_PREMASTER 1" >>confdefs.h ssl_library=gnutls with_openssl=no else # They specifically asked for OpenSSL, so use it for DTLS even # though GnuTLS could manage. ssl_library=both fi else if test "$with_openssl" = "no"; then # GnuTLS doesn't have DTLS, but they don't want OpenSSL. So build # without DTLS support at all. ssl_library=gnutls else # GnuTLS doesn't have DTLS so use OpenSSL for it, but GnuTLS for # the TCP connection (and thus in the library). ssl_library=both fi fi ac_fn_c_check_func "$LINENO" "gnutls_pkcs11_add_provider" "ac_cv_func_gnutls_pkcs11_add_provider" if test "x$ac_cv_func_gnutls_pkcs11_add_provider" = xyes; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for P11KIT" >&5 $as_echo_n "checking for P11KIT... " >&6; } if test -n "$P11KIT_CFLAGS"; then pkg_cv_P11KIT_CFLAGS="$P11KIT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_CFLAGS=`$PKG_CONFIG --cflags "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$P11KIT_LIBS"; then pkg_cv_P11KIT_LIBS="$P11KIT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_LIBS=`$PKG_CONFIG --libs "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then P11KIT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "p11-kit-1" 2>&1` else P11KIT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "p11-kit-1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$P11KIT_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else P11KIT_CFLAGS=$pkg_cv_P11KIT_CFLAGS P11KIT_LIBS=$pkg_cv_P11KIT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_P11KIT 1" >>confdefs.h P11KIT_PC=p11-kit-1 fi fi LIBS="$oldlibs -ltspi" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for tss library" >&5 $as_echo_n "checking for tss library... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { int err = Tspi_Context_Create((void *)0); Trspi_Error_String(err); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } TSS_LIBS=-ltspi $as_echo "#define HAVE_TROUSERS 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldlibs" CFLAGS="$oldcflags" fi if test "$with_openssl" = "yes" || test "$with_openssl" = "" || test "$ssl_library" = "both"; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL" >&5 $as_echo_n "checking for OPENSSL... " >&6; } if test -n "$OPENSSL_CFLAGS"; then pkg_cv_OPENSSL_CFLAGS="$OPENSSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_CFLAGS=`$PKG_CONFIG --cflags "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_LIBS"; then pkg_cv_OPENSSL_LIBS="$OPENSSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_LIBS=`$PKG_CONFIG --libs "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "openssl" 2>&1` else OPENSSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "openssl" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_PKG_ERRORS" >&5 oldLIBS="$LIBS" LIBS="$LIBS -lssl -lcrypto" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL without pkg-config" >&5 $as_echo_n "checking for OpenSSL without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } OPENSSL_LIBS="-lssl -lcrypto" else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if test "$ssl_library" = "both"; then ssl_library="gnutls"; else as_fn_error $? "Could not build against OpenSSL" "$LINENO" 5; fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } oldLIBS="$LIBS" LIBS="$LIBS -lssl -lcrypto" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL without pkg-config" >&5 $as_echo_n "checking for OpenSSL without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } OPENSSL_LIBS="-lssl -lcrypto" else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if test "$ssl_library" = "both"; then ssl_library="gnutls"; else as_fn_error $? "Could not build against OpenSSL" "$LINENO" 5; fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" else OPENSSL_CFLAGS=$pkg_cv_OPENSSL_CFLAGS OPENSSL_LIBS=$pkg_cv_OPENSSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi if test "$ssl_library" != "both" && test "$ssl_library" != "gnutls"; then ssl_library=openssl fi elif test "$with_openssl" != "no" ; then OPENSSL_CFLAGS="-I${with_openssl}/include" OPENSSL_LIBS="${with_openssl}/libssl.a ${with_openssl}/libcrypto.a -ldl -lz" enable_static=yes enable_shared=no $as_echo "#define DTLS_OPENSSL 1" >>confdefs.h if test "$ssl_library" != "both"; then ssl_library=openssl fi fi esp=none case "$ssl_library" in gnutls) $as_echo "#define OPENCONNECT_GNUTLS 1" >>confdefs.h $as_echo "#define DTLS_GNUTLS 1" >>confdefs.h SSL_DTLS_PC=gnutls SSL_LIBS='$(GNUTLS_LIBS)' SSL_CFLAGS='$(GNUTLS_CFLAGS)' check_openssl_dtls=no if test "$have_gnutls_dtls" = "yes"; then esp=gnutls fi ;; openssl) pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for P11KIT" >&5 $as_echo_n "checking for P11KIT... " >&6; } if test -n "$P11KIT_CFLAGS"; then pkg_cv_P11KIT_CFLAGS="$P11KIT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_CFLAGS=`$PKG_CONFIG --cflags "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$P11KIT_LIBS"; then pkg_cv_P11KIT_LIBS="$P11KIT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_LIBS=`$PKG_CONFIG --libs "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then P11KIT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "p11-kit-1" 2>&1` else P11KIT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "p11-kit-1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$P11KIT_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else P11KIT_CFLAGS=$pkg_cv_P11KIT_CFLAGS P11KIT_LIBS=$pkg_cv_P11KIT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBP11" >&5 $as_echo_n "checking for LIBP11... " >&6; } if test -n "$LIBP11_CFLAGS"; then pkg_cv_LIBP11_CFLAGS="$LIBP11_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libp11\""; } >&5 ($PKG_CONFIG --exists --print-errors "libp11") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBP11_CFLAGS=`$PKG_CONFIG --cflags "libp11" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBP11_LIBS"; then pkg_cv_LIBP11_LIBS="$LIBP11_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libp11\""; } >&5 ($PKG_CONFIG --exists --print-errors "libp11") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBP11_LIBS=`$PKG_CONFIG --libs "libp11" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBP11_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libp11" 2>&1` else LIBP11_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libp11" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBP11_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else LIBP11_CFLAGS=$pkg_cv_LIBP11_CFLAGS LIBP11_LIBS=$pkg_cv_LIBP11_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LIBP11 1" >>confdefs.h P11KIT_PC="libp11 p11-kit-1" proxy_module="`$PKG_CONFIG --variable=proxy_module p11-kit-1`" cat >>confdefs.h <<_ACEOF #define DEFAULT_PKCS11_MODULE "${proxy_module}" _ACEOF fi fi $as_echo "#define OPENCONNECT_OPENSSL 1" >>confdefs.h $as_echo "#define DTLS_OPENSSL 1" >>confdefs.h SSL_DTLS_PC=openssl SSL_LIBS='$(OPENSSL_LIBS)' SSL_CFLAGS='$(OPENSSL_CFLAGS)' check_openssl_dtls=yes esp=openssl ;; both) # GnuTLS for TCP, OpenSSL for DTLS $as_echo "#define OPENCONNECT_GNUTLS 1" >>confdefs.h $as_echo "#define DTLS_OPENSSL 1" >>confdefs.h SSL_DTLS_PC=gnutls openssl SSL_LIBS='$(GNUTLS_LIBS)' SSL_CFLAGS='$(GNUTLS_CFLAGS)' DTLS_SSL_LIBS='$(OPENSSL_LIBS)' DTLS_SSL_CFLAGS='$(OPENSSL_CFLAGS)' check_openssl_dtls=yes if test "$have_gnutls_dtls" = "yes"; then esp=gnutls else esp=openssl fi ;; *) as_fn_error $? "Neither OpenSSL nor GnuTLS selected for SSL." "$LINENO" 5 ;; esac # Check whether --with-openssl-version-check was given. if test "${with_openssl_version_check+set}" = set; then : withval=$with_openssl_version_check; fi if test "$with_openssl_version_check" = "no"; then check_openssl_dtls=no fi oldLIBS="${LIBS}" oldCFLAGS="${CFLAGS}" LIBS="${LIBS} ${OPENSSL_LIBS}" CFLAGS="${CFLAGS} ${OPENSSL_CFLAGS}" if test "$check_openssl_dtls" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for known-broken versions of OpenSSL" >&5 $as_echo_n "checking for known-broken versions of OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ (OPENSSL_VERSION_NUMBER == 0x10002000L || \ (OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L)) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ (OPENSSL_VERSION_NUMBER == 0x1000200fL) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=3703&user=guest&pass=guest and http://rt.openssl.org/Ticket/Display.html?id=3711&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi if test "$esp" = "openssl"; then ac_fn_c_check_func "$LINENO" "HMAC_CTX_copy" "ac_cv_func_HMAC_CTX_copy" if test "x$ac_cv_func_HMAC_CTX_copy" = xyes; then : else esp=none echo set ESP to $esp { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: ESP support will be disabled" >&5 $as_echo "$as_me: WARNING: ESP support will be disabled" >&2;} fi fi LIBS="${oldLIBS}" CFLAGS="${oldCFLAGS}" if test "$ssl_library" != "openssl" ; then OPENCONNECT_GNUTLS_TRUE= OPENCONNECT_GNUTLS_FALSE='#' else OPENCONNECT_GNUTLS_TRUE='#' OPENCONNECT_GNUTLS_FALSE= fi if test "$ssl_library" = "openssl" ; then OPENCONNECT_OPENSSL_TRUE= OPENCONNECT_OPENSSL_FALSE='#' else OPENCONNECT_OPENSSL_TRUE='#' OPENCONNECT_OPENSSL_FALSE= fi if test "$esp" = "gnutls" ; then ESP_GNUTLS_TRUE= ESP_GNUTLS_FALSE='#' else ESP_GNUTLS_TRUE='#' ESP_GNUTLS_FALSE= fi if test "$esp" = "openssl" ; then ESP_OPENSSL_TRUE= ESP_OPENSSL_FALSE='#' else ESP_OPENSSL_TRUE='#' ESP_OPENSSL_FALSE= fi if test "$esp" = "gnutls"; then $as_echo "#define ESP_GNUTLS 1" >>confdefs.h elif test "$esp" = "openssl"; then $as_echo "#define ESP_OPENSSL 1" >>confdefs.h fi # Check whether --with-lz4 was given. if test "${with_lz4+set}" = set; then : withval=$with_lz4; test_for_lz4=$withval else test_for_lz4=yes fi enable_lz4=no if test "$test_for_lz4" = yes;then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBLZ4" >&5 $as_echo_n "checking for LIBLZ4... " >&6; } if test -n "$LIBLZ4_CFLAGS"; then pkg_cv_LIBLZ4_CFLAGS="$LIBLZ4_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"liblz4\""; } >&5 ($PKG_CONFIG --exists --print-errors "liblz4") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBLZ4_CFLAGS=`$PKG_CONFIG --cflags "liblz4" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBLZ4_LIBS"; then pkg_cv_LIBLZ4_LIBS="$LIBLZ4_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"liblz4\""; } >&5 ($PKG_CONFIG --exists --print-errors "liblz4") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBLZ4_LIBS=`$PKG_CONFIG --libs "liblz4" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBLZ4_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "liblz4" 2>&1` else LIBLZ4_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "liblz4" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBLZ4_PKG_ERRORS" >&5 { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** lz4 not found. *** " >&5 $as_echo "$as_me: WARNING: *** *** lz4 not found. *** " >&2;} elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** lz4 not found. *** " >&5 $as_echo "$as_me: WARNING: *** *** lz4 not found. *** " >&2;} else LIBLZ4_CFLAGS=$pkg_cv_LIBLZ4_CFLAGS LIBLZ4_LIBS=$pkg_cv_LIBLZ4_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } enable_lz4=yes $as_echo "#define HAVE_LZ4 /**/" >>confdefs.h fi fi # For some bizarre reason now that we use AM_ICONV, the mingw32 build doesn't # manage to set EGREP properly in the created ./libtool script. Make sure it's # found. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" # Needs to happen after we default to static/shared libraries based on OpenSSL case `pwd` in *\ * | *\ *) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Libtool does not cope well with whitespace in \`pwd\`" >&5 $as_echo "$as_me: WARNING: Libtool does not cope well with whitespace in \`pwd\`" >&2;} ;; esac macro_version='2.4.2' macro_revision='1.3337' ltmain="$ac_aux_dir/ltmain.sh" # Backslashify metacharacters that are still active within # double-quoted strings. sed_quote_subst='s/\(["`$\\]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\(["`\\]\)/\\\1/g' # Sed substitution to delay expansion of an escaped shell variable in a # double_quote_subst'ed string. delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' # Sed substitution to delay expansion of an escaped single quote. delay_single_quote_subst='s/'\''/'\'\\\\\\\'\''/g' # Sed substitution to avoid accidental globbing in evaled expressions no_glob_subst='s/\*/\\\*/g' ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to print strings" >&5 $as_echo_n "checking how to print strings... " >&6; } # Test print first, because it will be a builtin if present. if test "X`( print -r -- -n ) 2>/dev/null`" = X-n && \ test "X`print -r -- $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='print -r --' elif test "X`printf %s $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='printf %s\n' else # Use this function as a fallback that always works. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $1 _LTECHO_EOF' } ECHO='func_fallback_echo' fi # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "" } case "$ECHO" in printf*) { $as_echo "$as_me:${as_lineno-$LINENO}: result: printf" >&5 $as_echo "printf" >&6; } ;; print*) { $as_echo "$as_me:${as_lineno-$LINENO}: result: print -r" >&5 $as_echo "print -r" >&6; } ;; *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: cat" >&5 $as_echo "cat" >&6; } ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a sed that does not truncate output" >&5 $as_echo_n "checking for a sed that does not truncate output... " >&6; } if ${ac_cv_path_SED+:} false; then : $as_echo_n "(cached) " >&6 else ac_script=s/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb/ for ac_i in 1 2 3 4 5 6 7; do ac_script="$ac_script$as_nl$ac_script" done echo "$ac_script" 2>/dev/null | sed 99q >conftest.sed { ac_script=; unset ac_script;} if test -z "$SED"; then ac_path_SED_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in sed gsed; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_SED="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_SED" || continue # Check for GNU ac_path_SED and select it if it is found. # Check for GNU $ac_path_SED case `"$ac_path_SED" --version 2>&1` in *GNU*) ac_cv_path_SED="$ac_path_SED" ac_path_SED_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo '' >> "conftest.nl" "$ac_path_SED" -f conftest.sed < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_SED_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_SED="$ac_path_SED" ac_path_SED_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_SED_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_SED"; then as_fn_error $? "no acceptable sed could be found in \$PATH" "$LINENO" 5 fi else ac_cv_path_SED=$SED fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_SED" >&5 $as_echo "$ac_cv_path_SED" >&6; } SED="$ac_cv_path_SED" rm -f conftest.sed test -z "$SED" && SED=sed Xsed="$SED -e 1s/^X//" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for fgrep" >&5 $as_echo_n "checking for fgrep... " >&6; } if ${ac_cv_path_FGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo 'ab*c' | $GREP -F 'ab*c' >/dev/null 2>&1 then ac_cv_path_FGREP="$GREP -F" else if test -z "$FGREP"; then ac_path_FGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in fgrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_FGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_FGREP" || continue # Check for GNU ac_path_FGREP and select it if it is found. # Check for GNU $ac_path_FGREP case `"$ac_path_FGREP" --version 2>&1` in *GNU*) ac_cv_path_FGREP="$ac_path_FGREP" ac_path_FGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'FGREP' >> "conftest.nl" "$ac_path_FGREP" FGREP < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_FGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_FGREP="$ac_path_FGREP" ac_path_FGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_FGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_FGREP"; then as_fn_error $? "no acceptable fgrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_FGREP=$FGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_FGREP" >&5 $as_echo "$ac_cv_path_FGREP" >&6; } FGREP="$ac_cv_path_FGREP" test -z "$GREP" && GREP=grep # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test "$withval" = no || with_gnu_ld=yes else with_gnu_ld=no fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by $CC" >&5 $as_echo_n "checking for ld used by $CC... " >&6; } case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [\\/]* | ?:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the pathname of ld ac_prog=`$ECHO "$ac_prog"| $SED 's%\\\\%/%g'` while $ECHO "$ac_prog" | $GREP "$re_direlt" > /dev/null 2>&1; do ac_prog=`$ECHO $ac_prog| $SED "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if ${lt_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$LD"; then lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then lt_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$lt_cv_path_LD" -v 2>&1 &5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -z "$LD" && as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${lt_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 &5 $as_echo "$lt_cv_prog_gnu_ld" >&6; } with_gnu_ld=$lt_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for BSD- or MS-compatible name lister (nm)" >&5 $as_echo_n "checking for BSD- or MS-compatible name lister (nm)... " >&6; } if ${lt_cv_path_NM+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$NM"; then # Let the user override the test. lt_cv_path_NM="$NM" else lt_nm_to_check="${ac_tool_prefix}nm" if test -n "$ac_tool_prefix" && test "$build" = "$host"; then lt_nm_to_check="$lt_nm_to_check nm" fi for lt_tmp_nm in $lt_nm_to_check; do lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH /usr/ccs/bin/elf /usr/ccs/bin /usr/ucb /bin; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. tmp_nm="$ac_dir/$lt_tmp_nm" if test -f "$tmp_nm" || test -f "$tmp_nm$ac_exeext" ; then # Check to see if the nm accepts a BSD-compat flag. # Adding the `sed 1q' prevents false positives on HP-UX, which says: # nm: unknown option "B" ignored # Tru64's nm complains that /dev/null is an invalid object file case `"$tmp_nm" -B /dev/null 2>&1 | sed '1q'` in */dev/null* | *'Invalid file or object type'*) lt_cv_path_NM="$tmp_nm -B" break ;; *) case `"$tmp_nm" -p /dev/null 2>&1 | sed '1q'` in */dev/null*) lt_cv_path_NM="$tmp_nm -p" break ;; *) lt_cv_path_NM=${lt_cv_path_NM="$tmp_nm"} # keep the first match, but continue # so that we can try to find one that supports BSD flags ;; esac ;; esac fi done IFS="$lt_save_ifs" done : ${lt_cv_path_NM=no} fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_path_NM" >&5 $as_echo "$lt_cv_path_NM" >&6; } if test "$lt_cv_path_NM" != "no"; then NM="$lt_cv_path_NM" else # Didn't find any BSD compatible name lister, look for dumpbin. if test -n "$DUMPBIN"; then : # Let the user override the test. else if test -n "$ac_tool_prefix"; then for ac_prog in dumpbin "link -dump" do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DUMPBIN+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DUMPBIN"; then ac_cv_prog_DUMPBIN="$DUMPBIN" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DUMPBIN="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DUMPBIN=$ac_cv_prog_DUMPBIN if test -n "$DUMPBIN"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DUMPBIN" >&5 $as_echo "$DUMPBIN" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$DUMPBIN" && break done fi if test -z "$DUMPBIN"; then ac_ct_DUMPBIN=$DUMPBIN for ac_prog in dumpbin "link -dump" do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DUMPBIN+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DUMPBIN"; then ac_cv_prog_ac_ct_DUMPBIN="$ac_ct_DUMPBIN" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DUMPBIN="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DUMPBIN=$ac_cv_prog_ac_ct_DUMPBIN if test -n "$ac_ct_DUMPBIN"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DUMPBIN" >&5 $as_echo "$ac_ct_DUMPBIN" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_DUMPBIN" && break done if test "x$ac_ct_DUMPBIN" = x; then DUMPBIN=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DUMPBIN=$ac_ct_DUMPBIN fi fi case `$DUMPBIN -symbols /dev/null 2>&1 | sed '1q'` in *COFF*) DUMPBIN="$DUMPBIN -symbols" ;; *) DUMPBIN=: ;; esac fi if test "$DUMPBIN" != ":"; then NM="$DUMPBIN" fi fi test -z "$NM" && NM=nm { $as_echo "$as_me:${as_lineno-$LINENO}: checking the name lister ($NM) interface" >&5 $as_echo_n "checking the name lister ($NM) interface... " >&6; } if ${lt_cv_nm_interface+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_nm_interface="BSD nm" echo "int some_variable = 0;" > conftest.$ac_ext (eval echo "\"\$as_me:$LINENO: $ac_compile\"" >&5) (eval "$ac_compile" 2>conftest.err) cat conftest.err >&5 (eval echo "\"\$as_me:$LINENO: $NM \\\"conftest.$ac_objext\\\"\"" >&5) (eval "$NM \"conftest.$ac_objext\"" 2>conftest.err > conftest.out) cat conftest.err >&5 (eval echo "\"\$as_me:$LINENO: output\"" >&5) cat conftest.out >&5 if $GREP 'External.*some_variable' conftest.out > /dev/null; then lt_cv_nm_interface="MS dumpbin" fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_nm_interface" >&5 $as_echo "$lt_cv_nm_interface" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ln -s works" >&5 $as_echo_n "checking whether ln -s works... " >&6; } LN_S=$as_ln_s if test "$LN_S" = "ln -s"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no, using $LN_S" >&5 $as_echo "no, using $LN_S" >&6; } fi # find the maximum length of command line arguments { $as_echo "$as_me:${as_lineno-$LINENO}: checking the maximum length of command line arguments" >&5 $as_echo_n "checking the maximum length of command line arguments... " >&6; } if ${lt_cv_sys_max_cmd_len+:} false; then : $as_echo_n "(cached) " >&6 else i=0 teststring="ABCD" case $build_os in msdosdjgpp*) # On DJGPP, this test can blow up pretty badly due to problems in libc # (any single argument exceeding 2000 bytes causes a buffer overrun # during glob expansion). Even if it were fixed, the result of this # check would be larger than it should be. lt_cv_sys_max_cmd_len=12288; # 12K is about right ;; gnu*) # Under GNU Hurd, this test is not required because there is # no limit to the length of command line arguments. # Libtool will interpret -1 as no limit whatsoever lt_cv_sys_max_cmd_len=-1; ;; cygwin* | mingw* | cegcc*) # On Win9x/ME, this test blows up -- it succeeds, but takes # about 5 minutes as the teststring grows exponentially. # Worse, since 9x/ME are not pre-emptively multitasking, # you end up with a "frozen" computer, even though with patience # the test eventually succeeds (with a max line length of 256k). # Instead, let's just punt: use the minimum linelength reported by # all of the supported platforms: 8192 (on NT/2K/XP). lt_cv_sys_max_cmd_len=8192; ;; mint*) # On MiNT this can take a long time and run out of memory. lt_cv_sys_max_cmd_len=8192; ;; amigaos*) # On AmigaOS with pdksh, this test takes hours, literally. # So we just punt and use a minimum line length of 8192. lt_cv_sys_max_cmd_len=8192; ;; netbsd* | freebsd* | openbsd* | darwin* | dragonfly*) # This has been around since 386BSD, at least. Likely further. if test -x /sbin/sysctl; then lt_cv_sys_max_cmd_len=`/sbin/sysctl -n kern.argmax` elif test -x /usr/sbin/sysctl; then lt_cv_sys_max_cmd_len=`/usr/sbin/sysctl -n kern.argmax` else lt_cv_sys_max_cmd_len=65536 # usable default for all BSDs fi # And add a safety zone lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` ;; interix*) # We know the value 262144 and hardcode it with a safety zone (like BSD) lt_cv_sys_max_cmd_len=196608 ;; os2*) # The test takes a long time on OS/2. lt_cv_sys_max_cmd_len=8192 ;; osf*) # Dr. Hans Ekkehard Plesser reports seeing a kernel panic running configure # due to this test when exec_disable_arg_limit is 1 on Tru64. It is not # nice to cause kernel panics so lets avoid the loop below. # First set a reasonable default. lt_cv_sys_max_cmd_len=16384 # if test -x /sbin/sysconfig; then case `/sbin/sysconfig -q proc exec_disable_arg_limit` in *1*) lt_cv_sys_max_cmd_len=-1 ;; esac fi ;; sco3.2v5*) lt_cv_sys_max_cmd_len=102400 ;; sysv5* | sco5v6* | sysv4.2uw2*) kargmax=`grep ARG_MAX /etc/conf/cf.d/stune 2>/dev/null` if test -n "$kargmax"; then lt_cv_sys_max_cmd_len=`echo $kargmax | sed 's/.*[ ]//'` else lt_cv_sys_max_cmd_len=32768 fi ;; *) lt_cv_sys_max_cmd_len=`(getconf ARG_MAX) 2> /dev/null` if test -n "$lt_cv_sys_max_cmd_len"; then lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` else # Make teststring a little bigger before we do anything with it. # a 1K string should be a reasonable start. for i in 1 2 3 4 5 6 7 8 ; do teststring=$teststring$teststring done SHELL=${SHELL-${CONFIG_SHELL-/bin/sh}} # If test is not a shell built-in, we'll probably end up computing a # maximum length that is only half of the actual maximum length, but # we can't tell. while { test "X"`env echo "$teststring$teststring" 2>/dev/null` \ = "X$teststring$teststring"; } >/dev/null 2>&1 && test $i != 17 # 1/2 MB should be enough do i=`expr $i + 1` teststring=$teststring$teststring done # Only check the string length outside the loop. lt_cv_sys_max_cmd_len=`expr "X$teststring" : ".*" 2>&1` teststring= # Add a significant safety factor because C++ compilers can tack on # massive amounts of additional arguments before passing them to the # linker. It appears as though 1/2 is a usable value. lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 2` fi ;; esac fi if test -n $lt_cv_sys_max_cmd_len ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_sys_max_cmd_len" >&5 $as_echo "$lt_cv_sys_max_cmd_len" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: none" >&5 $as_echo "none" >&6; } fi max_cmd_len=$lt_cv_sys_max_cmd_len : ${CP="cp -f"} : ${MV="mv -f"} : ${RM="rm -f"} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the shell understands some XSI constructs" >&5 $as_echo_n "checking whether the shell understands some XSI constructs... " >&6; } # Try some XSI features xsi_shell=no ( _lt_dummy="a/b/c" test "${_lt_dummy##*/},${_lt_dummy%/*},${_lt_dummy#??}"${_lt_dummy%"$_lt_dummy"}, \ = c,a/b,b/c, \ && eval 'test $(( 1 + 1 )) -eq 2 \ && test "${#_lt_dummy}" -eq 5' ) >/dev/null 2>&1 \ && xsi_shell=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: $xsi_shell" >&5 $as_echo "$xsi_shell" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the shell understands \"+=\"" >&5 $as_echo_n "checking whether the shell understands \"+=\"... " >&6; } lt_shell_append=no ( foo=bar; set foo baz; eval "$1+=\$2" && test "$foo" = barbaz ) \ >/dev/null 2>&1 \ && lt_shell_append=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_shell_append" >&5 $as_echo "$lt_shell_append" >&6; } if ( (MAIL=60; unset MAIL) || exit) >/dev/null 2>&1; then lt_unset=unset else lt_unset=false fi # test EBCDIC or ASCII case `echo X|tr X '\101'` in A) # ASCII based system # \n is not interpreted correctly by Solaris 8 /usr/ucb/tr lt_SP2NL='tr \040 \012' lt_NL2SP='tr \015\012 \040\040' ;; *) # EBCDIC based system lt_SP2NL='tr \100 \n' lt_NL2SP='tr \r\n \100\100' ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to convert $build file names to $host format" >&5 $as_echo_n "checking how to convert $build file names to $host format... " >&6; } if ${lt_cv_to_host_file_cmd+:} false; then : $as_echo_n "(cached) " >&6 else case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_w32 ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_cygwin_to_w32 ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_w32 ;; esac ;; *-*-cygwin* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_cygwin ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_noop ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_cygwin ;; esac ;; * ) # unhandled hosts (and "normal" native builds) lt_cv_to_host_file_cmd=func_convert_file_noop ;; esac fi to_host_file_cmd=$lt_cv_to_host_file_cmd { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_to_host_file_cmd" >&5 $as_echo "$lt_cv_to_host_file_cmd" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to convert $build file names to toolchain format" >&5 $as_echo_n "checking how to convert $build file names to toolchain format... " >&6; } if ${lt_cv_to_tool_file_cmd+:} false; then : $as_echo_n "(cached) " >&6 else #assume ordinary cross tools, or native build. lt_cv_to_tool_file_cmd=func_convert_file_noop case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_tool_file_cmd=func_convert_file_msys_to_w32 ;; esac ;; esac fi to_tool_file_cmd=$lt_cv_to_tool_file_cmd { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_to_tool_file_cmd" >&5 $as_echo "$lt_cv_to_tool_file_cmd" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $LD option to reload object files" >&5 $as_echo_n "checking for $LD option to reload object files... " >&6; } if ${lt_cv_ld_reload_flag+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_reload_flag='-r' fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_reload_flag" >&5 $as_echo "$lt_cv_ld_reload_flag" >&6; } reload_flag=$lt_cv_ld_reload_flag case $reload_flag in "" | " "*) ;; *) reload_flag=" $reload_flag" ;; esac reload_cmds='$LD$reload_flag -o $output$reload_objs' case $host_os in cygwin* | mingw* | pw32* | cegcc*) if test "$GCC" != yes; then reload_cmds=false fi ;; darwin*) if test "$GCC" = yes; then reload_cmds='$LTCC $LTCFLAGS -nostdlib ${wl}-r -o $output$reload_objs' else reload_cmds='$LD$reload_flag -o $output$reload_objs' fi ;; esac if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}objdump", so it can be a program name with args. set dummy ${ac_tool_prefix}objdump; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OBJDUMP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OBJDUMP"; then ac_cv_prog_OBJDUMP="$OBJDUMP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OBJDUMP="${ac_tool_prefix}objdump" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OBJDUMP=$ac_cv_prog_OBJDUMP if test -n "$OBJDUMP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OBJDUMP" >&5 $as_echo "$OBJDUMP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OBJDUMP"; then ac_ct_OBJDUMP=$OBJDUMP # Extract the first word of "objdump", so it can be a program name with args. set dummy objdump; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OBJDUMP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OBJDUMP"; then ac_cv_prog_ac_ct_OBJDUMP="$ac_ct_OBJDUMP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OBJDUMP="objdump" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OBJDUMP=$ac_cv_prog_ac_ct_OBJDUMP if test -n "$ac_ct_OBJDUMP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OBJDUMP" >&5 $as_echo "$ac_ct_OBJDUMP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OBJDUMP" = x; then OBJDUMP="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OBJDUMP=$ac_ct_OBJDUMP fi else OBJDUMP="$ac_cv_prog_OBJDUMP" fi test -z "$OBJDUMP" && OBJDUMP=objdump { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to recognize dependent libraries" >&5 $as_echo_n "checking how to recognize dependent libraries... " >&6; } if ${lt_cv_deplibs_check_method+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_file_magic_cmd='$MAGIC_CMD' lt_cv_file_magic_test_file= lt_cv_deplibs_check_method='unknown' # Need to set the preceding variable on all platforms that support # interlibrary dependencies. # 'none' -- dependencies not supported. # `unknown' -- same as none, but documents that we really don't know. # 'pass_all' -- all dependencies passed with no checks. # 'test_compile' -- check by making test program. # 'file_magic [[regex]]' -- check by looking for files in library path # which responds to the $file_magic_cmd with a given extended regex. # If you have `file' or equivalent on your system and you're not sure # whether `pass_all' will *always* work, you probably want this one. case $host_os in aix[4-9]*) lt_cv_deplibs_check_method=pass_all ;; beos*) lt_cv_deplibs_check_method=pass_all ;; bsdi[45]*) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib)' lt_cv_file_magic_cmd='/usr/bin/file -L' lt_cv_file_magic_test_file=/shlib/libc.so ;; cygwin*) # func_win32_libid is a shell function defined in ltmain.sh lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' ;; mingw* | pw32*) # Base MSYS/MinGW do not provide the 'file' command needed by # func_win32_libid shell function, so use a weaker test based on 'objdump', # unless we find 'file', for example because we are cross-compiling. # func_win32_libid assumes BSD nm, so disallow it if using MS dumpbin. if ( test "$lt_cv_nm_interface" = "BSD nm" && file / ) >/dev/null 2>&1; then lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' else # Keep this pattern in sync with the one in func_win32_libid. lt_cv_deplibs_check_method='file_magic file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' lt_cv_file_magic_cmd='$OBJDUMP -f' fi ;; cegcc*) # use the weaker test based on 'objdump'. See mingw*. lt_cv_deplibs_check_method='file_magic file format pe-arm-.*little(.*architecture: arm)?' lt_cv_file_magic_cmd='$OBJDUMP -f' ;; darwin* | rhapsody*) lt_cv_deplibs_check_method=pass_all ;; freebsd* | dragonfly*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then case $host_cpu in i*86 ) # Not sure whether the presence of OpenBSD here was a mistake. # Let's accept both of them until this is cleared up. lt_cv_deplibs_check_method='file_magic (FreeBSD|OpenBSD|DragonFly)/i[3-9]86 (compact )?demand paged shared library' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=`echo /usr/lib/libc.so.*` ;; esac else lt_cv_deplibs_check_method=pass_all fi ;; gnu*) lt_cv_deplibs_check_method=pass_all ;; haiku*) lt_cv_deplibs_check_method=pass_all ;; hpux10.20* | hpux11*) lt_cv_file_magic_cmd=/usr/bin/file case $host_cpu in ia64*) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF-[0-9][0-9]) shared object file - IA64' lt_cv_file_magic_test_file=/usr/lib/hpux32/libc.so ;; hppa*64*) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF[ -][0-9][0-9])(-bit)?( [LM]SB)? shared object( file)?[, -]* PA-RISC [0-9]\.[0-9]' lt_cv_file_magic_test_file=/usr/lib/pa20_64/libc.sl ;; *) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|PA-RISC[0-9]\.[0-9]) shared library' lt_cv_file_magic_test_file=/usr/lib/libc.sl ;; esac ;; interix[3-9]*) # PIC code is broken on Interix 3.x, that's why |\.a not |_pic\.a here lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so|\.a)$' ;; irix5* | irix6* | nonstopux*) case $LD in *-32|*"-32 ") libmagic=32-bit;; *-n32|*"-n32 ") libmagic=N32;; *-64|*"-64 ") libmagic=64-bit;; *) libmagic=never-match;; esac lt_cv_deplibs_check_method=pass_all ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu) lt_cv_deplibs_check_method=pass_all ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so|_pic\.a)$' fi ;; newos6*) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (executable|dynamic lib)' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=/usr/lib/libnls.so ;; *nto* | *qnx*) lt_cv_deplibs_check_method=pass_all ;; openbsd*) if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|\.so|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|_pic\.a)$' fi ;; osf3* | osf4* | osf5*) lt_cv_deplibs_check_method=pass_all ;; rdos*) lt_cv_deplibs_check_method=pass_all ;; solaris*) lt_cv_deplibs_check_method=pass_all ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) lt_cv_deplibs_check_method=pass_all ;; sysv4 | sysv4.3*) case $host_vendor in motorola) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib) M[0-9][0-9]* Version [0-9]' lt_cv_file_magic_test_file=`echo /usr/lib/libc.so*` ;; ncr) lt_cv_deplibs_check_method=pass_all ;; sequent) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [LM]SB (shared object|dynamic lib )' ;; sni) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method="file_magic ELF [0-9][0-9]*-bit [LM]SB dynamic lib" lt_cv_file_magic_test_file=/lib/libc.so ;; siemens) lt_cv_deplibs_check_method=pass_all ;; pc) lt_cv_deplibs_check_method=pass_all ;; esac ;; tpf*) lt_cv_deplibs_check_method=pass_all ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_deplibs_check_method" >&5 $as_echo "$lt_cv_deplibs_check_method" >&6; } file_magic_glob= want_nocaseglob=no if test "$build" = "$host"; then case $host_os in mingw* | pw32*) if ( shopt | grep nocaseglob ) >/dev/null 2>&1; then want_nocaseglob=yes else file_magic_glob=`echo aAbBcCdDeEfFgGhHiIjJkKlLmMnNoOpPqQrRsStTuUvVwWxXyYzZ | $SED -e "s/\(..\)/s\/[\1]\/[\1]\/g;/g"` fi ;; esac fi file_magic_cmd=$lt_cv_file_magic_cmd deplibs_check_method=$lt_cv_deplibs_check_method test -z "$deplibs_check_method" && deplibs_check_method=unknown if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}dlltool", so it can be a program name with args. set dummy ${ac_tool_prefix}dlltool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DLLTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DLLTOOL"; then ac_cv_prog_DLLTOOL="$DLLTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DLLTOOL="${ac_tool_prefix}dlltool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DLLTOOL=$ac_cv_prog_DLLTOOL if test -n "$DLLTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DLLTOOL" >&5 $as_echo "$DLLTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_DLLTOOL"; then ac_ct_DLLTOOL=$DLLTOOL # Extract the first word of "dlltool", so it can be a program name with args. set dummy dlltool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DLLTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DLLTOOL"; then ac_cv_prog_ac_ct_DLLTOOL="$ac_ct_DLLTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DLLTOOL="dlltool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DLLTOOL=$ac_cv_prog_ac_ct_DLLTOOL if test -n "$ac_ct_DLLTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DLLTOOL" >&5 $as_echo "$ac_ct_DLLTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_DLLTOOL" = x; then DLLTOOL="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DLLTOOL=$ac_ct_DLLTOOL fi else DLLTOOL="$ac_cv_prog_DLLTOOL" fi test -z "$DLLTOOL" && DLLTOOL=dlltool { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to associate runtime and link libraries" >&5 $as_echo_n "checking how to associate runtime and link libraries... " >&6; } if ${lt_cv_sharedlib_from_linklib_cmd+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_sharedlib_from_linklib_cmd='unknown' case $host_os in cygwin* | mingw* | pw32* | cegcc*) # two different shell functions defined in ltmain.sh # decide which to use based on capabilities of $DLLTOOL case `$DLLTOOL --help 2>&1` in *--identify-strict*) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib ;; *) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib_fallback ;; esac ;; *) # fallback: assume linklib IS sharedlib lt_cv_sharedlib_from_linklib_cmd="$ECHO" ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_sharedlib_from_linklib_cmd" >&5 $as_echo "$lt_cv_sharedlib_from_linklib_cmd" >&6; } sharedlib_from_linklib_cmd=$lt_cv_sharedlib_from_linklib_cmd test -z "$sharedlib_from_linklib_cmd" && sharedlib_from_linklib_cmd=$ECHO if test -n "$ac_tool_prefix"; then for ac_prog in ar do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AR+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AR"; then ac_cv_prog_AR="$AR" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AR="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AR=$ac_cv_prog_AR if test -n "$AR"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AR" >&5 $as_echo "$AR" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AR" && break done fi if test -z "$AR"; then ac_ct_AR=$AR for ac_prog in ar do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_AR+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_AR"; then ac_cv_prog_ac_ct_AR="$ac_ct_AR" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_AR="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_AR=$ac_cv_prog_ac_ct_AR if test -n "$ac_ct_AR"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_AR" >&5 $as_echo "$ac_ct_AR" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_AR" && break done if test "x$ac_ct_AR" = x; then AR="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac AR=$ac_ct_AR fi fi : ${AR=ar} : ${AR_FLAGS=cru} { $as_echo "$as_me:${as_lineno-$LINENO}: checking for archiver @FILE support" >&5 $as_echo_n "checking for archiver @FILE support... " >&6; } if ${lt_cv_ar_at_file+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ar_at_file=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : echo conftest.$ac_objext > conftest.lst lt_ar_try='$AR $AR_FLAGS libconftest.a @conftest.lst >&5' { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$lt_ar_try\""; } >&5 (eval $lt_ar_try) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if test "$ac_status" -eq 0; then # Ensure the archiver fails upon bogus file names. rm -f conftest.$ac_objext libconftest.a { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$lt_ar_try\""; } >&5 (eval $lt_ar_try) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if test "$ac_status" -ne 0; then lt_cv_ar_at_file=@ fi fi rm -f conftest.* libconftest.a fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ar_at_file" >&5 $as_echo "$lt_cv_ar_at_file" >&6; } if test "x$lt_cv_ar_at_file" = xno; then archiver_list_spec= else archiver_list_spec=$lt_cv_ar_at_file fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi test -z "$STRIP" && STRIP=: if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}ranlib", so it can be a program name with args. set dummy ${ac_tool_prefix}ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$RANLIB"; then ac_cv_prog_RANLIB="$RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_RANLIB="${ac_tool_prefix}ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi RANLIB=$ac_cv_prog_RANLIB if test -n "$RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $RANLIB" >&5 $as_echo "$RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_RANLIB"; then ac_ct_RANLIB=$RANLIB # Extract the first word of "ranlib", so it can be a program name with args. set dummy ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_RANLIB"; then ac_cv_prog_ac_ct_RANLIB="$ac_ct_RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_RANLIB="ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_RANLIB=$ac_cv_prog_ac_ct_RANLIB if test -n "$ac_ct_RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_RANLIB" >&5 $as_echo "$ac_ct_RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_RANLIB" = x; then RANLIB=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac RANLIB=$ac_ct_RANLIB fi else RANLIB="$ac_cv_prog_RANLIB" fi test -z "$RANLIB" && RANLIB=: # Determine commands to create old-style static archives. old_archive_cmds='$AR $AR_FLAGS $oldlib$oldobjs' old_postinstall_cmds='chmod 644 $oldlib' old_postuninstall_cmds= if test -n "$RANLIB"; then case $host_os in openbsd*) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB -t \$tool_oldlib" ;; *) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB \$tool_oldlib" ;; esac old_archive_cmds="$old_archive_cmds~\$RANLIB \$tool_oldlib" fi case $host_os in darwin*) lock_old_archive_extraction=yes ;; *) lock_old_archive_extraction=no ;; esac # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC # Check for command to grab the raw symbol name followed by C symbol from nm. { $as_echo "$as_me:${as_lineno-$LINENO}: checking command to parse $NM output from $compiler object" >&5 $as_echo_n "checking command to parse $NM output from $compiler object... " >&6; } if ${lt_cv_sys_global_symbol_pipe+:} false; then : $as_echo_n "(cached) " >&6 else # These are sane defaults that work on at least a few old systems. # [They come from Ultrix. What could be older than Ultrix?!! ;)] # Character class describing NM global symbol codes. symcode='[BCDEGRST]' # Regexp to match symbols that can be accessed directly from C. sympat='\([_A-Za-z][_A-Za-z0-9]*\)' # Define system-specific variables. case $host_os in aix*) symcode='[BCDT]' ;; cygwin* | mingw* | pw32* | cegcc*) symcode='[ABCDGISTW]' ;; hpux*) if test "$host_cpu" = ia64; then symcode='[ABCDEGRST]' fi ;; irix* | nonstopux*) symcode='[BCDEGRST]' ;; osf*) symcode='[BCDEGQRST]' ;; solaris*) symcode='[BDRT]' ;; sco3.2v5*) symcode='[DT]' ;; sysv4.2uw2*) symcode='[DT]' ;; sysv5* | sco5v6* | unixware* | OpenUNIX*) symcode='[ABDT]' ;; sysv4) symcode='[DFNSTU]' ;; esac # If we're using GNU nm, then use its standard symbol codes. case `$NM -V 2>&1` in *GNU* | *'with BFD'*) symcode='[ABCDGIRSTW]' ;; esac # Transform an extracted symbol line into a proper C declaration. # Some systems (esp. on ia64) link data and code symbols differently, # so use this general approach. lt_cv_sys_global_symbol_to_cdecl="sed -n -e 's/^T .* \(.*\)$/extern int \1();/p' -e 's/^$symcode* .* \(.*\)$/extern char \1;/p'" # Transform an extracted symbol line into symbol name and symbol address lt_cv_sys_global_symbol_to_c_name_address="sed -n -e 's/^: \([^ ]*\)[ ]*$/ {\\\"\1\\\", (void *) 0},/p' -e 's/^$symcode* \([^ ]*\) \([^ ]*\)$/ {\"\2\", (void *) \&\2},/p'" lt_cv_sys_global_symbol_to_c_name_address_lib_prefix="sed -n -e 's/^: \([^ ]*\)[ ]*$/ {\\\"\1\\\", (void *) 0},/p' -e 's/^$symcode* \([^ ]*\) \(lib[^ ]*\)$/ {\"\2\", (void *) \&\2},/p' -e 's/^$symcode* \([^ ]*\) \([^ ]*\)$/ {\"lib\2\", (void *) \&\2},/p'" # Handle CRLF in mingw tool chain opt_cr= case $build_os in mingw*) opt_cr=`$ECHO 'x\{0,1\}' | tr x '\015'` # option cr in regexp ;; esac # Try without a prefix underscore, then with it. for ac_symprfx in "" "_"; do # Transform symcode, sympat, and symprfx into a raw symbol and a C symbol. symxfrm="\\1 $ac_symprfx\\2 \\2" # Write the raw and C identifiers. if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Fake it for dumpbin and say T for any non-static function # and D for any global variable. # Also find C++ and __fastcall symbols from MSVC++, # which start with @ or ?. lt_cv_sys_global_symbol_pipe="$AWK '"\ " {last_section=section; section=\$ 3};"\ " /^COFF SYMBOL TABLE/{for(i in hide) delete hide[i]};"\ " /Section length .*#relocs.*(pick any)/{hide[last_section]=1};"\ " \$ 0!~/External *\|/{next};"\ " / 0+ UNDEF /{next}; / UNDEF \([^|]\)*()/{next};"\ " {if(hide[section]) next};"\ " {f=0}; \$ 0~/\(\).*\|/{f=1}; {printf f ? \"T \" : \"D \"};"\ " {split(\$ 0, a, /\||\r/); split(a[2], s)};"\ " s[1]~/^[@?]/{print s[1], s[1]; next};"\ " s[1]~prfx {split(s[1],t,\"@\"); print t[1], substr(t[1],length(prfx))}"\ " ' prfx=^$ac_symprfx" else lt_cv_sys_global_symbol_pipe="sed -n -e 's/^.*[ ]\($symcode$symcode*\)[ ][ ]*$ac_symprfx$sympat$opt_cr$/$symxfrm/p'" fi lt_cv_sys_global_symbol_pipe="$lt_cv_sys_global_symbol_pipe | sed '/ __gnu_lto/d'" # Check to see that the pipe works correctly. pipe_works=no rm -f conftest* cat > conftest.$ac_ext <<_LT_EOF #ifdef __cplusplus extern "C" { #endif char nm_test_var; void nm_test_func(void); void nm_test_func(void){} #ifdef __cplusplus } #endif int main(){nm_test_var='a';nm_test_func();return(0);} _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then # Now try to grab the symbols. nlist=conftest.nm if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist\""; } >&5 (eval $NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "$nlist"; then # Try sorting and uniquifying the output. if sort "$nlist" | uniq > "$nlist"T; then mv -f "$nlist"T "$nlist" else rm -f "$nlist"T fi # Make sure that we snagged all the symbols we need. if $GREP ' nm_test_var$' "$nlist" >/dev/null; then if $GREP ' nm_test_func$' "$nlist" >/dev/null; then cat <<_LT_EOF > conftest.$ac_ext /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined(_WIN32) || defined(__CYGWIN__) || defined(_WIN32_WCE) /* DATA imports from DLLs on WIN32 con't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT_DLSYM_CONST #elif defined(__osf__) /* This system does not cope well with relocations in const data. */ # define LT_DLSYM_CONST #else # define LT_DLSYM_CONST const #endif #ifdef __cplusplus extern "C" { #endif _LT_EOF # Now generate the symbol file. eval "$lt_cv_sys_global_symbol_to_cdecl"' < "$nlist" | $GREP -v main >> conftest.$ac_ext' cat <<_LT_EOF >> conftest.$ac_ext /* The mapping between symbol names and symbols. */ LT_DLSYM_CONST struct { const char *name; void *address; } lt__PROGRAM__LTX_preloaded_symbols[] = { { "@PROGRAM@", (void *) 0 }, _LT_EOF $SED "s/^$symcode$symcode* \(.*\) \(.*\)$/ {\"\2\", (void *) \&\2},/" < "$nlist" | $GREP -v main >> conftest.$ac_ext cat <<\_LT_EOF >> conftest.$ac_ext {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt__PROGRAM__LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif _LT_EOF # Now try linking the two files. mv conftest.$ac_objext conftstm.$ac_objext lt_globsym_save_LIBS=$LIBS lt_globsym_save_CFLAGS=$CFLAGS LIBS="conftstm.$ac_objext" CFLAGS="$CFLAGS$lt_prog_compiler_no_builtin_flag" if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s conftest${ac_exeext}; then pipe_works=yes fi LIBS=$lt_globsym_save_LIBS CFLAGS=$lt_globsym_save_CFLAGS else echo "cannot find nm_test_func in $nlist" >&5 fi else echo "cannot find nm_test_var in $nlist" >&5 fi else echo "cannot run $lt_cv_sys_global_symbol_pipe" >&5 fi else echo "$progname: failed program was:" >&5 cat conftest.$ac_ext >&5 fi rm -rf conftest* conftst* # Do not use the global_symbol_pipe unless it works. if test "$pipe_works" = yes; then break else lt_cv_sys_global_symbol_pipe= fi done fi if test -z "$lt_cv_sys_global_symbol_pipe"; then lt_cv_sys_global_symbol_to_cdecl= fi if test -z "$lt_cv_sys_global_symbol_pipe$lt_cv_sys_global_symbol_to_cdecl"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: failed" >&5 $as_echo "failed" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: ok" >&5 $as_echo "ok" >&6; } fi # Response file support. if test "$lt_cv_nm_interface" = "MS dumpbin"; then nm_file_list_spec='@' elif $NM --help 2>/dev/null | grep '[@]FILE' >/dev/null; then nm_file_list_spec='@' fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for sysroot" >&5 $as_echo_n "checking for sysroot... " >&6; } # Check whether --with-sysroot was given. if test "${with_sysroot+set}" = set; then : withval=$with_sysroot; else with_sysroot=no fi lt_sysroot= case ${with_sysroot} in #( yes) if test "$GCC" = yes; then lt_sysroot=`$CC --print-sysroot 2>/dev/null` fi ;; #( /*) lt_sysroot=`echo "$with_sysroot" | sed -e "$sed_quote_subst"` ;; #( no|'') ;; #( *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${with_sysroot}" >&5 $as_echo "${with_sysroot}" >&6; } as_fn_error $? "The sysroot must be an absolute path." "$LINENO" 5 ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${lt_sysroot:-no}" >&5 $as_echo "${lt_sysroot:-no}" >&6; } # Check whether --enable-libtool-lock was given. if test "${enable_libtool_lock+set}" = set; then : enableval=$enable_libtool_lock; fi test "x$enable_libtool_lock" != xno && enable_libtool_lock=yes # Some flags need to be propagated to the compiler or linker for good # libtool support. case $host in ia64-*-hpux*) # Find out which ABI we are using. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.$ac_objext` in *ELF-32*) HPUX_IA64_MODE="32" ;; *ELF-64*) HPUX_IA64_MODE="64" ;; esac fi rm -rf conftest* ;; *-*-irix6*) # Find out which ABI we are using. echo '#line '$LINENO' "configure"' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then if test "$lt_cv_prog_gnu_ld" = yes; then case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -melf32bsmip" ;; *N32*) LD="${LD-ld} -melf32bmipn32" ;; *64-bit*) LD="${LD-ld} -melf64bmip" ;; esac else case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -32" ;; *N32*) LD="${LD-ld} -n32" ;; *64-bit*) LD="${LD-ld} -64" ;; esac fi fi rm -rf conftest* ;; x86_64-*kfreebsd*-gnu|x86_64-*linux*|powerpc*-*linux*| \ s390*-*linux*|s390*-*tpf*|sparc*-*linux*) # Find out which ABI we are using. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.o` in *32-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_i386_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_i386" ;; powerpc64le-*linux*) LD="${LD-ld} -m elf32lppclinux" ;; powerpc64-*linux*) LD="${LD-ld} -m elf32ppclinux" ;; s390x-*linux*) LD="${LD-ld} -m elf_s390" ;; sparc64-*linux*) LD="${LD-ld} -m elf32_sparc" ;; esac ;; *64-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_x86_64_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_x86_64" ;; powerpcle-*linux*) LD="${LD-ld} -m elf64lppc" ;; powerpc-*linux*) LD="${LD-ld} -m elf64ppc" ;; s390*-*linux*|s390*-*tpf*) LD="${LD-ld} -m elf64_s390" ;; sparc*-*linux*) LD="${LD-ld} -m elf64_sparc" ;; esac ;; esac fi rm -rf conftest* ;; *-*-sco3.2v5*) # On SCO OpenServer 5, we need -belf to get full-featured binaries. SAVE_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS -belf" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler needs -belf" >&5 $as_echo_n "checking whether the C compiler needs -belf... " >&6; } if ${lt_cv_cc_needs_belf+:} false; then : $as_echo_n "(cached) " >&6 else ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_cc_needs_belf=yes else lt_cv_cc_needs_belf=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_cc_needs_belf" >&5 $as_echo "$lt_cv_cc_needs_belf" >&6; } if test x"$lt_cv_cc_needs_belf" != x"yes"; then # this is probably gcc 2.8.0, egcs 1.0 or newer; no need for -belf CFLAGS="$SAVE_CFLAGS" fi ;; *-*solaris*) # Find out which ABI we are using. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.o` in *64-bit*) case $lt_cv_prog_gnu_ld in yes*) case $host in i?86-*-solaris*) LD="${LD-ld} -m elf_x86_64" ;; sparc*-*-solaris*) LD="${LD-ld} -m elf64_sparc" ;; esac # GNU ld 2.21 introduced _sol2 emulations. Use them if available. if ${LD-ld} -V | grep _sol2 >/dev/null 2>&1; then LD="${LD-ld}_sol2" fi ;; *) if ${LD-ld} -64 -r -o conftest2.o conftest.o >/dev/null 2>&1; then LD="${LD-ld} -64" fi ;; esac ;; esac fi rm -rf conftest* ;; esac need_locks="$enable_libtool_lock" if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}mt", so it can be a program name with args. set dummy ${ac_tool_prefix}mt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_MANIFEST_TOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$MANIFEST_TOOL"; then ac_cv_prog_MANIFEST_TOOL="$MANIFEST_TOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_MANIFEST_TOOL="${ac_tool_prefix}mt" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi MANIFEST_TOOL=$ac_cv_prog_MANIFEST_TOOL if test -n "$MANIFEST_TOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MANIFEST_TOOL" >&5 $as_echo "$MANIFEST_TOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_MANIFEST_TOOL"; then ac_ct_MANIFEST_TOOL=$MANIFEST_TOOL # Extract the first word of "mt", so it can be a program name with args. set dummy mt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_MANIFEST_TOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_MANIFEST_TOOL"; then ac_cv_prog_ac_ct_MANIFEST_TOOL="$ac_ct_MANIFEST_TOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_MANIFEST_TOOL="mt" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_MANIFEST_TOOL=$ac_cv_prog_ac_ct_MANIFEST_TOOL if test -n "$ac_ct_MANIFEST_TOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_MANIFEST_TOOL" >&5 $as_echo "$ac_ct_MANIFEST_TOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_MANIFEST_TOOL" = x; then MANIFEST_TOOL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac MANIFEST_TOOL=$ac_ct_MANIFEST_TOOL fi else MANIFEST_TOOL="$ac_cv_prog_MANIFEST_TOOL" fi test -z "$MANIFEST_TOOL" && MANIFEST_TOOL=mt { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $MANIFEST_TOOL is a manifest tool" >&5 $as_echo_n "checking if $MANIFEST_TOOL is a manifest tool... " >&6; } if ${lt_cv_path_mainfest_tool+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_path_mainfest_tool=no echo "$as_me:$LINENO: $MANIFEST_TOOL '-?'" >&5 $MANIFEST_TOOL '-?' 2>conftest.err > conftest.out cat conftest.err >&5 if $GREP 'Manifest Tool' conftest.out > /dev/null; then lt_cv_path_mainfest_tool=yes fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_path_mainfest_tool" >&5 $as_echo "$lt_cv_path_mainfest_tool" >&6; } if test "x$lt_cv_path_mainfest_tool" != xyes; then MANIFEST_TOOL=: fi case $host_os in rhapsody* | darwin*) if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}dsymutil", so it can be a program name with args. set dummy ${ac_tool_prefix}dsymutil; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DSYMUTIL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DSYMUTIL"; then ac_cv_prog_DSYMUTIL="$DSYMUTIL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DSYMUTIL="${ac_tool_prefix}dsymutil" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DSYMUTIL=$ac_cv_prog_DSYMUTIL if test -n "$DSYMUTIL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DSYMUTIL" >&5 $as_echo "$DSYMUTIL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_DSYMUTIL"; then ac_ct_DSYMUTIL=$DSYMUTIL # Extract the first word of "dsymutil", so it can be a program name with args. set dummy dsymutil; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DSYMUTIL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DSYMUTIL"; then ac_cv_prog_ac_ct_DSYMUTIL="$ac_ct_DSYMUTIL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DSYMUTIL="dsymutil" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DSYMUTIL=$ac_cv_prog_ac_ct_DSYMUTIL if test -n "$ac_ct_DSYMUTIL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DSYMUTIL" >&5 $as_echo "$ac_ct_DSYMUTIL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_DSYMUTIL" = x; then DSYMUTIL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DSYMUTIL=$ac_ct_DSYMUTIL fi else DSYMUTIL="$ac_cv_prog_DSYMUTIL" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}nmedit", so it can be a program name with args. set dummy ${ac_tool_prefix}nmedit; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_NMEDIT+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$NMEDIT"; then ac_cv_prog_NMEDIT="$NMEDIT" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_NMEDIT="${ac_tool_prefix}nmedit" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi NMEDIT=$ac_cv_prog_NMEDIT if test -n "$NMEDIT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $NMEDIT" >&5 $as_echo "$NMEDIT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_NMEDIT"; then ac_ct_NMEDIT=$NMEDIT # Extract the first word of "nmedit", so it can be a program name with args. set dummy nmedit; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_NMEDIT+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_NMEDIT"; then ac_cv_prog_ac_ct_NMEDIT="$ac_ct_NMEDIT" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_NMEDIT="nmedit" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_NMEDIT=$ac_cv_prog_ac_ct_NMEDIT if test -n "$ac_ct_NMEDIT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_NMEDIT" >&5 $as_echo "$ac_ct_NMEDIT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_NMEDIT" = x; then NMEDIT=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac NMEDIT=$ac_ct_NMEDIT fi else NMEDIT="$ac_cv_prog_NMEDIT" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}lipo", so it can be a program name with args. set dummy ${ac_tool_prefix}lipo; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_LIPO+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$LIPO"; then ac_cv_prog_LIPO="$LIPO" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_LIPO="${ac_tool_prefix}lipo" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi LIPO=$ac_cv_prog_LIPO if test -n "$LIPO"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIPO" >&5 $as_echo "$LIPO" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_LIPO"; then ac_ct_LIPO=$LIPO # Extract the first word of "lipo", so it can be a program name with args. set dummy lipo; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_LIPO+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_LIPO"; then ac_cv_prog_ac_ct_LIPO="$ac_ct_LIPO" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_LIPO="lipo" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_LIPO=$ac_cv_prog_ac_ct_LIPO if test -n "$ac_ct_LIPO"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_LIPO" >&5 $as_echo "$ac_ct_LIPO" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_LIPO" = x; then LIPO=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac LIPO=$ac_ct_LIPO fi else LIPO="$ac_cv_prog_LIPO" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}otool", so it can be a program name with args. set dummy ${ac_tool_prefix}otool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OTOOL"; then ac_cv_prog_OTOOL="$OTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OTOOL="${ac_tool_prefix}otool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OTOOL=$ac_cv_prog_OTOOL if test -n "$OTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OTOOL" >&5 $as_echo "$OTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OTOOL"; then ac_ct_OTOOL=$OTOOL # Extract the first word of "otool", so it can be a program name with args. set dummy otool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OTOOL"; then ac_cv_prog_ac_ct_OTOOL="$ac_ct_OTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OTOOL="otool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OTOOL=$ac_cv_prog_ac_ct_OTOOL if test -n "$ac_ct_OTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OTOOL" >&5 $as_echo "$ac_ct_OTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OTOOL" = x; then OTOOL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OTOOL=$ac_ct_OTOOL fi else OTOOL="$ac_cv_prog_OTOOL" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}otool64", so it can be a program name with args. set dummy ${ac_tool_prefix}otool64; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OTOOL64+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OTOOL64"; then ac_cv_prog_OTOOL64="$OTOOL64" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OTOOL64="${ac_tool_prefix}otool64" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OTOOL64=$ac_cv_prog_OTOOL64 if test -n "$OTOOL64"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OTOOL64" >&5 $as_echo "$OTOOL64" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OTOOL64"; then ac_ct_OTOOL64=$OTOOL64 # Extract the first word of "otool64", so it can be a program name with args. set dummy otool64; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OTOOL64+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OTOOL64"; then ac_cv_prog_ac_ct_OTOOL64="$ac_ct_OTOOL64" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OTOOL64="otool64" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OTOOL64=$ac_cv_prog_ac_ct_OTOOL64 if test -n "$ac_ct_OTOOL64"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OTOOL64" >&5 $as_echo "$ac_ct_OTOOL64" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OTOOL64" = x; then OTOOL64=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OTOOL64=$ac_ct_OTOOL64 fi else OTOOL64="$ac_cv_prog_OTOOL64" fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -single_module linker flag" >&5 $as_echo_n "checking for -single_module linker flag... " >&6; } if ${lt_cv_apple_cc_single_mod+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_apple_cc_single_mod=no if test -z "${LT_MULTI_MODULE}"; then # By default we will add the -single_module flag. You can override # by either setting the environment variable LT_MULTI_MODULE # non-empty at configure time, or by adding -multi_module to the # link flags. rm -rf libconftest.dylib* echo "int foo(void){return 1;}" > conftest.c echo "$LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c" >&5 $LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c 2>conftest.err _lt_result=$? # If there is a non-empty error log, and "single_module" # appears in it, assume the flag caused a linker warning if test -s conftest.err && $GREP single_module conftest.err; then cat conftest.err >&5 # Otherwise, if the output was created with a 0 exit code from # the compiler, it worked. elif test -f libconftest.dylib && test $_lt_result -eq 0; then lt_cv_apple_cc_single_mod=yes else cat conftest.err >&5 fi rm -rf libconftest.dylib* rm -f conftest.* fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_apple_cc_single_mod" >&5 $as_echo "$lt_cv_apple_cc_single_mod" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -exported_symbols_list linker flag" >&5 $as_echo_n "checking for -exported_symbols_list linker flag... " >&6; } if ${lt_cv_ld_exported_symbols_list+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_exported_symbols_list=no save_LDFLAGS=$LDFLAGS echo "_main" > conftest.sym LDFLAGS="$LDFLAGS -Wl,-exported_symbols_list,conftest.sym" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_ld_exported_symbols_list=yes else lt_cv_ld_exported_symbols_list=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$save_LDFLAGS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_exported_symbols_list" >&5 $as_echo "$lt_cv_ld_exported_symbols_list" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -force_load linker flag" >&5 $as_echo_n "checking for -force_load linker flag... " >&6; } if ${lt_cv_ld_force_load+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_force_load=no cat > conftest.c << _LT_EOF int forced_loaded() { return 2;} _LT_EOF echo "$LTCC $LTCFLAGS -c -o conftest.o conftest.c" >&5 $LTCC $LTCFLAGS -c -o conftest.o conftest.c 2>&5 echo "$AR cru libconftest.a conftest.o" >&5 $AR cru libconftest.a conftest.o 2>&5 echo "$RANLIB libconftest.a" >&5 $RANLIB libconftest.a 2>&5 cat > conftest.c << _LT_EOF int main() { return 0;} _LT_EOF echo "$LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a" >&5 $LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a 2>conftest.err _lt_result=$? if test -s conftest.err && $GREP force_load conftest.err; then cat conftest.err >&5 elif test -f conftest && test $_lt_result -eq 0 && $GREP forced_load conftest >/dev/null 2>&1 ; then lt_cv_ld_force_load=yes else cat conftest.err >&5 fi rm -f conftest.err libconftest.a conftest conftest.c rm -rf conftest.dSYM fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_force_load" >&5 $as_echo "$lt_cv_ld_force_load" >&6; } case $host_os in rhapsody* | darwin1.[012]) _lt_dar_allow_undefined='${wl}-undefined ${wl}suppress' ;; darwin1.*) _lt_dar_allow_undefined='${wl}-flat_namespace ${wl}-undefined ${wl}suppress' ;; darwin*) # darwin 5.x on # if running on 10.5 or later, the deployment target defaults # to the OS version, if on x86, and 10.4, the deployment # target defaults to 10.4. Don't you love it? case ${MACOSX_DEPLOYMENT_TARGET-10.0},$host in 10.0,*86*-darwin8*|10.0,*-darwin[91]*) _lt_dar_allow_undefined='${wl}-undefined ${wl}dynamic_lookup' ;; 10.[012]*) _lt_dar_allow_undefined='${wl}-flat_namespace ${wl}-undefined ${wl}suppress' ;; 10.*) _lt_dar_allow_undefined='${wl}-undefined ${wl}dynamic_lookup' ;; esac ;; esac if test "$lt_cv_apple_cc_single_mod" = "yes"; then _lt_dar_single_mod='$single_module' fi if test "$lt_cv_ld_exported_symbols_list" = "yes"; then _lt_dar_export_syms=' ${wl}-exported_symbols_list,$output_objdir/${libname}-symbols.expsym' else _lt_dar_export_syms='~$NMEDIT -s $output_objdir/${libname}-symbols.expsym ${lib}' fi if test "$DSYMUTIL" != ":" && test "$lt_cv_ld_force_load" = "no"; then _lt_dsymutil='~$DSYMUTIL $lib || :' else _lt_dsymutil= fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ANSI C header files" >&5 $as_echo_n "checking for ANSI C header files... " >&6; } if ${ac_cv_header_stdc+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include #include int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_header_stdc=yes else ac_cv_header_stdc=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext if test $ac_cv_header_stdc = yes; then # SunOS 4.x string.h does not declare mem*, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "memchr" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # ISC 2.0.2 stdlib.h does not declare free, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "free" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # /bin/cc in Irix-4.0.5 gets non-ANSI ctype macros unless using -ansi. if test "$cross_compiling" = yes; then : : else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #if ((' ' & 0x0FF) == 0x020) # define ISLOWER(c) ('a' <= (c) && (c) <= 'z') # define TOUPPER(c) (ISLOWER(c) ? 'A' + ((c) - 'a') : (c)) #else # define ISLOWER(c) \ (('a' <= (c) && (c) <= 'i') \ || ('j' <= (c) && (c) <= 'r') \ || ('s' <= (c) && (c) <= 'z')) # define TOUPPER(c) (ISLOWER(c) ? ((c) | 0x40) : (c)) #endif #define XOR(e, f) (((e) && !(f)) || (!(e) && (f))) int main () { int i; for (i = 0; i < 256; i++) if (XOR (islower (i), ISLOWER (i)) || toupper (i) != TOUPPER (i)) return 2; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : else ac_cv_header_stdc=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_header_stdc" >&5 $as_echo "$ac_cv_header_stdc" >&6; } if test $ac_cv_header_stdc = yes; then $as_echo "#define STDC_HEADERS 1" >>confdefs.h fi # On IRIX 5.3, sys/types and inttypes.h are conflicting. for ac_header in sys/types.h sys/stat.h stdlib.h string.h memory.h strings.h \ inttypes.h stdint.h unistd.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_compile "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default " if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done for ac_header in dlfcn.h do : ac_fn_c_check_header_compile "$LINENO" "dlfcn.h" "ac_cv_header_dlfcn_h" "$ac_includes_default " if test "x$ac_cv_header_dlfcn_h" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_DLFCN_H 1 _ACEOF fi done # Set options enable_dlopen=no enable_win32_dll=no # Check whether --with-pic was given. if test "${with_pic+set}" = set; then : withval=$with_pic; lt_p=${PACKAGE-default} case $withval in yes|no) pic_mode=$withval ;; *) pic_mode=default # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for lt_pkg in $withval; do IFS="$lt_save_ifs" if test "X$lt_pkg" = "X$lt_p"; then pic_mode=yes fi done IFS="$lt_save_ifs" ;; esac else pic_mode=default fi test -z "$pic_mode" && pic_mode=default # Check whether --enable-fast-install was given. if test "${enable_fast_install+set}" = set; then : enableval=$enable_fast_install; p=${PACKAGE-default} case $enableval in yes) enable_fast_install=yes ;; no) enable_fast_install=no ;; *) enable_fast_install=no # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for pkg in $enableval; do IFS="$lt_save_ifs" if test "X$pkg" = "X$p"; then enable_fast_install=yes fi done IFS="$lt_save_ifs" ;; esac else enable_fast_install=yes fi # This can be used to rebuild libtool when needed LIBTOOL_DEPS="$ltmain" # Always use our own libtool. LIBTOOL='$(SHELL) $(top_builddir)/libtool' test -z "$LN_S" && LN_S="ln -s" if test -n "${ZSH_VERSION+set}" ; then setopt NO_GLOB_SUBST fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for objdir" >&5 $as_echo_n "checking for objdir... " >&6; } if ${lt_cv_objdir+:} false; then : $as_echo_n "(cached) " >&6 else rm -f .libs 2>/dev/null mkdir .libs 2>/dev/null if test -d .libs; then lt_cv_objdir=.libs else # MS-DOS does not allow filenames that begin with a dot. lt_cv_objdir=_libs fi rmdir .libs 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_objdir" >&5 $as_echo "$lt_cv_objdir" >&6; } objdir=$lt_cv_objdir cat >>confdefs.h <<_ACEOF #define LT_OBJDIR "$lt_cv_objdir/" _ACEOF case $host_os in aix3*) # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test "X${COLLECT_NAMES+set}" != Xset; then COLLECT_NAMES= export COLLECT_NAMES fi ;; esac # Global variables: ofile=libtool can_build_shared=yes # All known linkers require a `.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a with_gnu_ld="$lt_cv_prog_gnu_ld" old_CC="$CC" old_CFLAGS="$CFLAGS" # Set sane defaults for various variables test -z "$CC" && CC=cc test -z "$LTCC" && LTCC=$CC test -z "$LTCFLAGS" && LTCFLAGS=$CFLAGS test -z "$LD" && LD=ld test -z "$ac_objext" && ac_objext=o for cc_temp in $compiler""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done cc_basename=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` # Only perform the check for file, if the check method requires it test -z "$MAGIC_CMD" && MAGIC_CMD=file case $deplibs_check_method in file_magic*) if test "$file_magic_cmd" = '$MAGIC_CMD'; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ${ac_tool_prefix}file" >&5 $as_echo_n "checking for ${ac_tool_prefix}file... " >&6; } if ${lt_cv_path_MAGIC_CMD+:} false; then : $as_echo_n "(cached) " >&6 else case $MAGIC_CMD in [\\/*] | ?:[\\/]*) lt_cv_path_MAGIC_CMD="$MAGIC_CMD" # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD="$MAGIC_CMD" lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR ac_dummy="/usr/bin$PATH_SEPARATOR$PATH" for ac_dir in $ac_dummy; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f $ac_dir/${ac_tool_prefix}file; then lt_cv_path_MAGIC_CMD="$ac_dir/${ac_tool_prefix}file" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD="$lt_cv_path_MAGIC_CMD" if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS="$lt_save_ifs" MAGIC_CMD="$lt_save_MAGIC_CMD" ;; esac fi MAGIC_CMD="$lt_cv_path_MAGIC_CMD" if test -n "$MAGIC_CMD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAGIC_CMD" >&5 $as_echo "$MAGIC_CMD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -z "$lt_cv_path_MAGIC_CMD"; then if test -n "$ac_tool_prefix"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for file" >&5 $as_echo_n "checking for file... " >&6; } if ${lt_cv_path_MAGIC_CMD+:} false; then : $as_echo_n "(cached) " >&6 else case $MAGIC_CMD in [\\/*] | ?:[\\/]*) lt_cv_path_MAGIC_CMD="$MAGIC_CMD" # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD="$MAGIC_CMD" lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR ac_dummy="/usr/bin$PATH_SEPARATOR$PATH" for ac_dir in $ac_dummy; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f $ac_dir/file; then lt_cv_path_MAGIC_CMD="$ac_dir/file" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD="$lt_cv_path_MAGIC_CMD" if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS="$lt_save_ifs" MAGIC_CMD="$lt_save_MAGIC_CMD" ;; esac fi MAGIC_CMD="$lt_cv_path_MAGIC_CMD" if test -n "$MAGIC_CMD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAGIC_CMD" >&5 $as_echo "$MAGIC_CMD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi else MAGIC_CMD=: fi fi fi ;; esac # Use C for the default configuration in the libtool script lt_save_CC="$CC" ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu # Source file extension for C test sources. ac_ext=c # Object file extension for compiled C test sources. objext=o objext=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(){return(0);}' # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC # Save the default compiler, since it gets overwritten when the other # tags are being tested, and _LT_TAGVAR(compiler, []) is a NOP. compiler_DEFAULT=$CC # save warnings/boilerplate of simple test code ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" >conftest.$ac_ext eval "$ac_compile" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_compiler_boilerplate=`cat conftest.err` $RM conftest* ac_outfile=conftest.$ac_objext echo "$lt_simple_link_test_code" >conftest.$ac_ext eval "$ac_link" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_linker_boilerplate=`cat conftest.err` $RM -r conftest* ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then lt_prog_compiler_no_builtin_flag= if test "$GCC" = yes; then case $cc_basename in nvcc*) lt_prog_compiler_no_builtin_flag=' -Xcompiler -fno-builtin' ;; *) lt_prog_compiler_no_builtin_flag=' -fno-builtin' ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -fno-rtti -fno-exceptions" >&5 $as_echo_n "checking if $compiler supports -fno-rtti -fno-exceptions... " >&6; } if ${lt_cv_prog_compiler_rtti_exceptions+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_rtti_exceptions=no ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-fno-rtti -fno-exceptions" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_rtti_exceptions=yes fi fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_rtti_exceptions" >&5 $as_echo "$lt_cv_prog_compiler_rtti_exceptions" >&6; } if test x"$lt_cv_prog_compiler_rtti_exceptions" = xyes; then lt_prog_compiler_no_builtin_flag="$lt_prog_compiler_no_builtin_flag -fno-rtti -fno-exceptions" else : fi fi lt_prog_compiler_wl= lt_prog_compiler_pic= lt_prog_compiler_static= if test "$GCC" = yes; then lt_prog_compiler_wl='-Wl,' lt_prog_compiler_static='-static' case $host_os in aix*) # All AIX code is PIC. if test "$host_cpu" = ia64; then # AIX 5 now supports IA64 processor lt_prog_compiler_static='-Bstatic' fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support lt_prog_compiler_pic='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the `-m68020' flag to GCC prevents building anything better, # like `-m68040'. lt_prog_compiler_pic='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries lt_prog_compiler_pic='-DDLL_EXPORT' ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files lt_prog_compiler_pic='-fno-common' ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. lt_prog_compiler_static= ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) # +Z the default ;; *) lt_prog_compiler_pic='-fPIC' ;; esac ;; interix[3-9]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; msdosdjgpp*) # Just because we use GCC doesn't mean we suddenly get shared libraries # on systems that don't support them. lt_prog_compiler_can_build_shared=no enable_shared=no ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. lt_prog_compiler_pic='-fPIC -shared' ;; sysv4*MP*) if test -d /usr/nec; then lt_prog_compiler_pic=-Kconform_pic fi ;; *) lt_prog_compiler_pic='-fPIC' ;; esac case $cc_basename in nvcc*) # Cuda Compiler Driver 2.2 lt_prog_compiler_wl='-Xlinker ' if test -n "$lt_prog_compiler_pic"; then lt_prog_compiler_pic="-Xcompiler $lt_prog_compiler_pic" fi ;; esac else # PORTME Check for flag to pass linker flags through the system compiler. case $host_os in aix*) lt_prog_compiler_wl='-Wl,' if test "$host_cpu" = ia64; then # AIX 5 now supports IA64 processor lt_prog_compiler_static='-Bstatic' else lt_prog_compiler_static='-bnso -bI:/lib/syscalls.exp' fi ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). lt_prog_compiler_pic='-DDLL_EXPORT' ;; hpux9* | hpux10* | hpux11*) lt_prog_compiler_wl='-Wl,' # PIC is the default for IA64 HP-UX and 64-bit HP-UX, but # not for PA HP-UX. case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) lt_prog_compiler_pic='+Z' ;; esac # Is there a better lt_prog_compiler_static that works with the bundled CC? lt_prog_compiler_static='${wl}-a ${wl}archive' ;; irix5* | irix6* | nonstopux*) lt_prog_compiler_wl='-Wl,' # PIC (with -KPIC) is the default. lt_prog_compiler_static='-non_shared' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in # old Intel for x86_64 which still supported -KPIC. ecc*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-static' ;; # icc used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. icc* | ifort*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; # Lahey Fortran 8.1. lf95*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='--shared' lt_prog_compiler_static='--static' ;; nagfor*) # NAG Fortran compiler lt_prog_compiler_wl='-Wl,-Wl,,' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group compilers (*not* the Pentium gcc compiler, # which looks to be a dead project) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fpic' lt_prog_compiler_static='-Bstatic' ;; ccc*) lt_prog_compiler_wl='-Wl,' # All Alpha code is PIC. lt_prog_compiler_static='-non_shared' ;; xl* | bgxl* | bgf* | mpixl*) # IBM XL C 8.0/Fortran 10.1, 11.1 on PPC and BlueGene lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-qpic' lt_prog_compiler_static='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ Ceres\ Fortran* | *Sun*Fortran*\ [1-7].* | *Sun*Fortran*\ 8.[0-3]*) # Sun Fortran 8.3 passes all unrecognized flags to the linker lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='' ;; *Sun\ F* | *Sun*Fortran*) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='-Qoption ld ' ;; *Sun\ C*) # Sun C 5.9 lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='-Wl,' ;; *Intel*\ [CF]*Compiler*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; *Portland\ Group*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fpic' lt_prog_compiler_static='-Bstatic' ;; esac ;; esac ;; newsos6) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. lt_prog_compiler_pic='-fPIC -shared' ;; osf3* | osf4* | osf5*) lt_prog_compiler_wl='-Wl,' # All OSF/1 code is PIC. lt_prog_compiler_static='-non_shared' ;; rdos*) lt_prog_compiler_static='-non_shared' ;; solaris*) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) lt_prog_compiler_wl='-Qoption ld ';; *) lt_prog_compiler_wl='-Wl,';; esac ;; sunos4*) lt_prog_compiler_wl='-Qoption ld ' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; sysv4 | sysv4.2uw2* | sysv4.3*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; sysv4*MP*) if test -d /usr/nec ;then lt_prog_compiler_pic='-Kconform_pic' lt_prog_compiler_static='-Bstatic' fi ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; unicos*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_can_build_shared=no ;; uts4*) lt_prog_compiler_pic='-pic' lt_prog_compiler_static='-Bstatic' ;; *) lt_prog_compiler_can_build_shared=no ;; esac fi case $host_os in # For platforms which do not support PIC, -DPIC is meaningless: *djgpp*) lt_prog_compiler_pic= ;; *) lt_prog_compiler_pic="$lt_prog_compiler_pic -DPIC" ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $compiler option to produce PIC" >&5 $as_echo_n "checking for $compiler option to produce PIC... " >&6; } if ${lt_cv_prog_compiler_pic+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_pic=$lt_prog_compiler_pic fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_pic" >&5 $as_echo "$lt_cv_prog_compiler_pic" >&6; } lt_prog_compiler_pic=$lt_cv_prog_compiler_pic # # Check to make sure the PIC flag actually works. # if test -n "$lt_prog_compiler_pic"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler PIC flag $lt_prog_compiler_pic works" >&5 $as_echo_n "checking if $compiler PIC flag $lt_prog_compiler_pic works... " >&6; } if ${lt_cv_prog_compiler_pic_works+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_pic_works=no ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="$lt_prog_compiler_pic -DPIC" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_pic_works=yes fi fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_pic_works" >&5 $as_echo "$lt_cv_prog_compiler_pic_works" >&6; } if test x"$lt_cv_prog_compiler_pic_works" = xyes; then case $lt_prog_compiler_pic in "" | " "*) ;; *) lt_prog_compiler_pic=" $lt_prog_compiler_pic" ;; esac else lt_prog_compiler_pic= lt_prog_compiler_can_build_shared=no fi fi # # Check to make sure the static flag actually works. # wl=$lt_prog_compiler_wl eval lt_tmp_static_flag=\"$lt_prog_compiler_static\" { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler static flag $lt_tmp_static_flag works" >&5 $as_echo_n "checking if $compiler static flag $lt_tmp_static_flag works... " >&6; } if ${lt_cv_prog_compiler_static_works+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_static_works=no save_LDFLAGS="$LDFLAGS" LDFLAGS="$LDFLAGS $lt_tmp_static_flag" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&5 $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_static_works=yes fi else lt_cv_prog_compiler_static_works=yes fi fi $RM -r conftest* LDFLAGS="$save_LDFLAGS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_static_works" >&5 $as_echo "$lt_cv_prog_compiler_static_works" >&6; } if test x"$lt_cv_prog_compiler_static_works" = xyes; then : else lt_prog_compiler_static= fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -c -o file.$ac_objext" >&5 $as_echo_n "checking if $compiler supports -c -o file.$ac_objext... " >&6; } if ${lt_cv_prog_compiler_c_o+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_c_o=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then lt_cv_prog_compiler_c_o=yes fi fi chmod u+w . 2>&5 $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_c_o" >&5 $as_echo "$lt_cv_prog_compiler_c_o" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -c -o file.$ac_objext" >&5 $as_echo_n "checking if $compiler supports -c -o file.$ac_objext... " >&6; } if ${lt_cv_prog_compiler_c_o+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_c_o=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then lt_cv_prog_compiler_c_o=yes fi fi chmod u+w . 2>&5 $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_c_o" >&5 $as_echo "$lt_cv_prog_compiler_c_o" >&6; } hard_links="nottested" if test "$lt_cv_prog_compiler_c_o" = no && test "$need_locks" != no; then # do not overwrite the value of need_locks provided by the user { $as_echo "$as_me:${as_lineno-$LINENO}: checking if we can lock with hard links" >&5 $as_echo_n "checking if we can lock with hard links... " >&6; } hard_links=yes $RM conftest* ln conftest.a conftest.b 2>/dev/null && hard_links=no touch conftest.a ln conftest.a conftest.b 2>&5 || hard_links=no ln conftest.a conftest.b 2>/dev/null && hard_links=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: $hard_links" >&5 $as_echo "$hard_links" >&6; } if test "$hard_links" = no; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: \`$CC' does not support \`-c -o', so \`make -j' may be unsafe" >&5 $as_echo "$as_me: WARNING: \`$CC' does not support \`-c -o', so \`make -j' may be unsafe" >&2;} need_locks=warn fi else need_locks=no fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the $compiler linker ($LD) supports shared libraries" >&5 $as_echo_n "checking whether the $compiler linker ($LD) supports shared libraries... " >&6; } runpath_var= allow_undefined_flag= always_export_symbols=no archive_cmds= archive_expsym_cmds= compiler_needs_object=no enable_shared_with_static_runtimes=no export_dynamic_flag_spec= export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' hardcode_automatic=no hardcode_direct=no hardcode_direct_absolute=no hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_minus_L=no hardcode_shlibpath_var=unsupported inherit_rpath=no link_all_deplibs=unknown module_cmds= module_expsym_cmds= old_archive_from_new_cmds= old_archive_from_expsyms_cmds= thread_safe_flag_spec= whole_archive_flag_spec= # include_expsyms should be a list of space-separated symbols to be *always* # included in the symbol list include_expsyms= # exclude_expsyms can be an extended regexp of symbols to exclude # it will be wrapped by ` (' and `)$', so one must not match beginning or # end of line. Example: `a|bc|.*d.*' will exclude the symbols `a' and `bc', # as well as any symbol that contains `d'. exclude_expsyms='_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*' # Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out # platforms (ab)use it in PIC code, but their linkers get confused if # the symbol is explicitly referenced. Since portable code cannot # rely on this symbol name, it's probably fine to never include it in # preloaded symbol tables. # Exclude shared library initialization/finalization symbols. extract_expsyms_cmds= case $host_os in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test "$GCC" != yes; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd*) with_gnu_ld=no ;; esac ld_shlibs=yes # On some targets, GNU ld is compatible enough with the native linker # that we're better off using the native interface for both. lt_use_gnu_ld_interface=no if test "$with_gnu_ld" = yes; then case $host_os in aix*) # The AIX port of GNU ld has always aspired to compatibility # with the native linker. However, as the warning in the GNU ld # block says, versions before 2.19.5* couldn't really create working # shared libraries, regardless of the interface used. case `$LD -v 2>&1` in *\ \(GNU\ Binutils\)\ 2.19.5*) ;; *\ \(GNU\ Binutils\)\ 2.[2-9]*) ;; *\ \(GNU\ Binutils\)\ [3-9]*) ;; *) lt_use_gnu_ld_interface=yes ;; esac ;; *) lt_use_gnu_ld_interface=yes ;; esac fi if test "$lt_use_gnu_ld_interface" = yes; then # If archive_cmds runs LD, not CC, wlarc should be empty wlarc='${wl}' # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. runpath_var=LD_RUN_PATH hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' export_dynamic_flag_spec='${wl}--export-dynamic' # ancient GNU ld didn't support --whole-archive et. al. if $LD --help 2>&1 | $GREP 'no-whole-archive' > /dev/null; then whole_archive_flag_spec="$wlarc"'--whole-archive$convenience '"$wlarc"'--no-whole-archive' else whole_archive_flag_spec= fi supports_anon_versioning=no case `$LD -v 2>&1` in *GNU\ gold*) supports_anon_versioning=yes ;; *\ [01].* | *\ 2.[0-9].* | *\ 2.10.*) ;; # catch versions < 2.11 *\ 2.11.93.0.2\ *) supports_anon_versioning=yes ;; # RH7.3 ... *\ 2.11.92.0.12\ *) supports_anon_versioning=yes ;; # Mandrake 8.2 ... *\ 2.11.*) ;; # other 2.11 versions *) supports_anon_versioning=yes ;; esac # See if GNU ld supports shared libraries. case $host_os in aix[3-9]*) # On AIX/PPC, the GNU linker is very broken if test "$host_cpu" != ia64; then ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: the GNU linker, at least up to release 2.19, is reported *** to be unable to reliably create shared libraries on AIX. *** Therefore, libtool is disabling shared libraries support. If you *** really care for shared libraries, you may want to install binutils *** 2.20 or above, or modify your PATH so that a non-GNU linker is found. *** You will then need to restart the configuration process. _LT_EOF fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' archive_expsym_cmds='' ;; m68k) archive_cmds='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then allow_undefined_flag=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME archive_cmds='$CC -nostart $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' else ld_shlibs=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # _LT_TAGVAR(hardcode_libdir_flag_spec, ) is actually meaningless, # as there is no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' export_dynamic_flag_spec='${wl}--export-all-symbols' allow_undefined_flag=unsupported always_export_symbols=no enable_shared_with_static_runtimes=yes export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[BCDGRS][ ]/s/.*[ ]\([^ ]*\)/\1 DATA/;s/^.*[ ]__nm__\([^ ]*\)[ ][^ ]*/\1 DATA/;/^I[ ]/d;/^[AITW][ ]/s/.* //'\'' | sort | uniq > $export_symbols' exclude_expsyms='[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname' if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags -o $output_objdir/$soname ${wl}--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file (1st line # is EXPORTS), use it as is; otherwise, prepend... archive_expsym_cmds='if test "x`$SED 1q $export_symbols`" = xEXPORTS; then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared $output_objdir/$soname.def $libobjs $deplibs $compiler_flags -o $output_objdir/$soname ${wl}--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else ld_shlibs=no fi ;; haiku*) archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' link_all_deplibs=yes ;; interix[3-9]*) hardcode_direct=no hardcode_shlibpath_var=no hardcode_libdir_flag_spec='${wl}-rpath,$libdir' export_dynamic_flag_spec='${wl}-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-h,$soname ${wl}--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' archive_expsym_cmds='sed "s,^,_," $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-h,$soname ${wl}--retain-symbols-file,$output_objdir/$soname.expsym ${wl}--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) tmp_diet=no if test "$host_os" = linux-dietlibc; then case $cc_basename in diet\ *) tmp_diet=yes;; # linux-dietlibc with static linking (!diet-dyn) esac fi if $LD --help 2>&1 | $EGREP ': supported targets:.* elf' > /dev/null \ && test "$tmp_diet" = no then tmp_addflag=' $pic_flag' tmp_sharedflag='-shared' case $cc_basename,$host_cpu in pgcc*) # Portland Group C compiler whole_archive_flag_spec='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' tmp_addflag=' $pic_flag' ;; pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group f77 and f90 compilers whole_archive_flag_spec='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' tmp_addflag=' $pic_flag -Mnomain' ;; ecc*,ia64* | icc*,ia64*) # Intel C compiler on ia64 tmp_addflag=' -i_dynamic' ;; efc*,ia64* | ifort*,ia64*) # Intel Fortran compiler on ia64 tmp_addflag=' -i_dynamic -nofor_main' ;; ifc* | ifort*) # Intel Fortran compiler tmp_addflag=' -nofor_main' ;; lf95*) # Lahey Fortran 8.1 whole_archive_flag_spec= tmp_sharedflag='--shared' ;; xl[cC]* | bgxl[cC]* | mpixl[cC]*) # IBM XL C 8.0 on PPC (deal with xlf below) tmp_sharedflag='-qmkshrobj' tmp_addflag= ;; nvcc*) # Cuda Compiler Driver 2.2 whole_archive_flag_spec='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' compiler_needs_object=yes ;; esac case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C 5.9 whole_archive_flag_spec='${wl}--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' compiler_needs_object=yes tmp_sharedflag='-G' ;; *Sun\ F*) # Sun Fortran 8.3 tmp_sharedflag='-G' ;; esac archive_cmds='$CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' if test "x$supports_anon_versioning" = xyes; then archive_expsym_cmds='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-version-script ${wl}$output_objdir/$libname.ver -o $lib' fi case $cc_basename in xlf* | bgf* | bgxlf* | mpixlf*) # IBM XL Fortran 10.1 on PPC cannot create shared libs itself whole_archive_flag_spec='--whole-archive$convenience --no-whole-archive' hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' archive_cmds='$LD -shared $libobjs $deplibs $linker_flags -soname $soname -o $lib' if test "x$supports_anon_versioning" = xyes; then archive_expsym_cmds='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $LD -shared $libobjs $deplibs $linker_flags -soname $soname -version-script $output_objdir/$libname.ver -o $lib' fi ;; esac else ld_shlibs=no fi ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then archive_cmds='$LD -Bshareable $libobjs $deplibs $linker_flags -o $lib' wlarc= else archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' fi ;; solaris*) if $LD -v 2>&1 | $GREP 'BFD 2\.8' > /dev/null; then ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: The releases 2.8.* of the GNU linker cannot reliably *** create shared libraries on Solaris systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.9.1 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF elif $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: Releases of the GNU linker prior to 2.16.91.0.3 can not *** reliably create shared libraries on SCO systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.16.91.0.3 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF ;; *) # For security reasons, it is highly recommended that you always # use absolute paths for naming shared libraries, and exclude the # DT_RUNPATH tag from executables and libraries. But doing so # requires that you compile everything twice, which is a pain. if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; esac ;; sunos4*) archive_cmds='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linker_flags' wlarc= hardcode_direct=yes hardcode_shlibpath_var=no ;; *) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; esac if test "$ld_shlibs" = no; then runpath_var= hardcode_libdir_flag_spec= export_dynamic_flag_spec= whole_archive_flag_spec= fi else # PORTME fill in a description of your system's linker (not GNU ld) case $host_os in aix3*) allow_undefined_flag=unsupported always_export_symbols=yes archive_expsym_cmds='$LD -o $output_objdir/$soname $libobjs $deplibs $linker_flags -bE:$export_symbols -T512 -H512 -bM:SRE~$AR $AR_FLAGS $lib $output_objdir/$soname' # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test "$GCC" = yes && test -z "$lt_prog_compiler_static"; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix[4-9]*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag="" else # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to AIX nm, but means don't demangle with GNU nm # Also, AIX nm treats weak defined symbols like other global # defined symbols, whereas GNU nm marks them as "W". if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then export_symbols_cmds='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && (substr(\$ 3,1,1) != ".")) { print \$ 3 } }'\'' | sort -u > $export_symbols' else export_symbols_cmds='$NM -BCpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B")) && (substr(\$ 3,1,1) != ".")) { print \$ 3 } }'\'' | sort -u > $export_symbols' fi aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[23]|aix4.[23].*|aix[5-9]*) for ld_flag in $LDFLAGS; do if (test $ld_flag = "-brtl" || test $ld_flag = "-Wl,-brtl"); then aix_use_runtimelinking=yes break fi done ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. archive_cmds='' hardcode_direct=yes hardcode_direct_absolute=yes hardcode_libdir_separator=':' link_all_deplibs=yes file_list_spec='${wl}-f,' if test "$GCC" = yes; then case $host_os in aix4.[012]|aix4.[012].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac shared_flag='-shared' if test "$aix_use_runtimelinking" = yes; then shared_flag="$shared_flag "'${wl}-G' fi else # not using gcc if test "$host_cpu" = ia64; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test "$aix_use_runtimelinking" = yes; then shared_flag='${wl}-G' else shared_flag='${wl}-bM:SRE' fi fi fi export_dynamic_flag_spec='${wl}-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to export. always_export_symbols=yes if test "$aix_use_runtimelinking" = yes; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. allow_undefined_flag='-berok' # Determine the default libpath from the value encoded in an # empty executable. if test "${lt_cv_aix_libpath+set}" = set; then aix_libpath=$lt_cv_aix_libpath else if ${lt_cv_aix_libpath_+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_aix_libpath_sed=' /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }' lt_cv_aix_libpath_=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_="/usr/lib:/lib" fi fi aix_libpath=$lt_cv_aix_libpath_ fi hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" archive_expsym_cmds='$CC -o $output_objdir/$soname $libobjs $deplibs '"\${wl}$no_entry_flag"' $compiler_flags `if test "x${allow_undefined_flag}" != "x"; then func_echo_all "${wl}${allow_undefined_flag}"; else :; fi` '"\${wl}$exp_sym_flag:\$export_symbols $shared_flag" else if test "$host_cpu" = ia64; then hardcode_libdir_flag_spec='${wl}-R $libdir:/usr/lib:/lib' allow_undefined_flag="-z nodefs" archive_expsym_cmds="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\${wl}$no_entry_flag"' $compiler_flags ${wl}${allow_undefined_flag} '"\${wl}$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. if test "${lt_cv_aix_libpath+set}" = set; then aix_libpath=$lt_cv_aix_libpath else if ${lt_cv_aix_libpath_+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_aix_libpath_sed=' /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }' lt_cv_aix_libpath_=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_="/usr/lib:/lib" fi fi aix_libpath=$lt_cv_aix_libpath_ fi hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. no_undefined_flag=' ${wl}-bernotok' allow_undefined_flag=' ${wl}-berok' if test "$with_gnu_ld" = yes; then # We only use this code for GNU lds that support --whole-archive. whole_archive_flag_spec='${wl}--whole-archive$convenience ${wl}--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives whole_archive_flag_spec='$convenience' fi archive_cmds_need_lc=yes # This is similar to how AIX traditionally builds its shared libraries. archive_expsym_cmds="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs ${wl}-bnoentry $compiler_flags ${wl}-bE:$export_symbols${allow_undefined_flag}~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$soname' fi fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' archive_expsym_cmds='' ;; m68k) archive_cmds='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; bsdi[45]*) export_dynamic_flag_spec=-rdynamic ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. case $cc_basename in cl*) # Native MSVC hardcode_libdir_flag_spec=' ' allow_undefined_flag=unsupported always_export_symbols=yes file_list_spec='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=".dll" # FIXME: Setting linknames here is a bad hack. archive_cmds='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-dll~linknames=' archive_expsym_cmds='if test "x`$SED 1q $export_symbols`" = xEXPORTS; then sed -n -e 's/\\\\\\\(.*\\\\\\\)/-link\\\ -EXPORT:\\\\\\\1/' -e '1\\\!p' < $export_symbols > $output_objdir/$soname.exp; else sed -e 's/\\\\\\\(.*\\\\\\\)/-link\\\ -EXPORT:\\\\\\\1/' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, )='true' enable_shared_with_static_runtimes=yes exclude_expsyms='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[BCDGRS][ ]/s/.*[ ]\([^ ]*\)/\1,DATA/'\'' | $SED -e '\''/^[AITW][ ]/s/.*[ ]//'\'' | sort | uniq > $export_symbols' # Don't use ranlib old_postinstall_cmds='chmod 644 $oldlib' postlink_cmds='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile="$lt_outputfile.exe" lt_tool_outputfile="$lt_tool_outputfile.exe" ;; esac~ if test "$MANIFEST_TOOL" != ":" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # Assume MSVC wrapper hardcode_libdir_flag_spec=' ' allow_undefined_flag=unsupported # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=".dll" # FIXME: Setting linknames here is a bad hack. archive_cmds='$CC -o $lib $libobjs $compiler_flags `func_echo_all "$deplibs" | $SED '\''s/ -lc$//'\''` -link -dll~linknames=' # The linker will automatically build a .lib file if we build a DLL. old_archive_from_new_cmds='true' # FIXME: Should let the user specify the lib program. old_archive_cmds='lib -OUT:$oldlib$oldobjs$old_deplibs' enable_shared_with_static_runtimes=yes ;; esac ;; darwin* | rhapsody*) archive_cmds_need_lc=no hardcode_direct=no hardcode_automatic=yes hardcode_shlibpath_var=unsupported if test "$lt_cv_ld_force_load" = "yes"; then whole_archive_flag_spec='`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience ${wl}-force_load,$conv\"; done; func_echo_all \"$new_convenience\"`' else whole_archive_flag_spec='' fi link_all_deplibs=yes allow_undefined_flag="$_lt_dar_allow_undefined" case $cc_basename in ifort*) _lt_dar_can_shared=yes ;; *) _lt_dar_can_shared=$GCC ;; esac if test "$_lt_dar_can_shared" = "yes"; then output_verbose_link_cmd=func_echo_all archive_cmds="\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod${_lt_dsymutil}" module_cmds="\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags${_lt_dsymutil}" archive_expsym_cmds="sed 's,^,_,' < \$export_symbols > \$output_objdir/\${libname}-symbols.expsym~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring ${_lt_dar_single_mod}${_lt_dar_export_syms}${_lt_dsymutil}" module_expsym_cmds="sed -e 's,^,_,' < \$export_symbols > \$output_objdir/\${libname}-symbols.expsym~\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags${_lt_dar_export_syms}${_lt_dsymutil}" else ld_shlibs=no fi ;; dgux*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-L$libdir' hardcode_shlibpath_var=no ;; # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor # support. Future versions do this automatically, but an explicit c++rt0.o # does not break anything, and helps significantly (at the cost of a little # extra space). freebsd2.2*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags /usr/lib/c++rt0.o' hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; # Unfortunately, older versions of FreeBSD 2 do not have this feature. freebsd2.*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes hardcode_minus_L=yes hardcode_shlibpath_var=no ;; # FreeBSD 3 and greater uses gcc -shared to do shared libraries. freebsd* | dragonfly*) archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; hpux9*) if test "$GCC" = yes; then archive_cmds='$RM $output_objdir/$soname~$CC -shared $pic_flag ${wl}+b ${wl}$install_libdir -o $output_objdir/$soname $libobjs $deplibs $compiler_flags~test $output_objdir/$soname = $lib || mv $output_objdir/$soname $lib' else archive_cmds='$RM $output_objdir/$soname~$LD -b +b $install_libdir -o $output_objdir/$soname $libobjs $deplibs $linker_flags~test $output_objdir/$soname = $lib || mv $output_objdir/$soname $lib' fi hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes export_dynamic_flag_spec='${wl}-E' ;; hpux10*) if test "$GCC" = yes && test "$with_gnu_ld" = no; then archive_cmds='$CC -shared $pic_flag ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes hardcode_direct_absolute=yes export_dynamic_flag_spec='${wl}-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test "$GCC" = yes && test "$with_gnu_ld" = no; then case $host_cpu in hppa*64*) archive_cmds='$CC -shared ${wl}+h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) archive_cmds='$CC -shared $pic_flag ${wl}+h ${wl}$soname ${wl}+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) archive_cmds='$CC -shared $pic_flag ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags' ;; esac else case $host_cpu in hppa*64*) archive_cmds='$CC -b ${wl}+h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) archive_cmds='$CC -b ${wl}+h ${wl}$soname ${wl}+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) # Older versions of the 11.00 compiler do not understand -b yet # (HP92453-01 A.11.01.20 doesn't, HP92453-01 B.11.X.35175-35176.GP does) { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $CC understands -b" >&5 $as_echo_n "checking if $CC understands -b... " >&6; } if ${lt_cv_prog_compiler__b+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler__b=no save_LDFLAGS="$LDFLAGS" LDFLAGS="$LDFLAGS -b" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&5 $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler__b=yes fi else lt_cv_prog_compiler__b=yes fi fi $RM -r conftest* LDFLAGS="$save_LDFLAGS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler__b" >&5 $as_echo "$lt_cv_prog_compiler__b" >&6; } if test x"$lt_cv_prog_compiler__b" = xyes; then archive_cmds='$CC -b ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi ;; esac fi if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no hardcode_shlibpath_var=no ;; *) hardcode_direct=yes hardcode_direct_absolute=yes export_dynamic_flag_spec='${wl}-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) if test "$GCC" = yes; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' # Try to use the -exported_symbol ld option, if it does not # work, assume that -exports_file does not work either and # implicitly export all symbols. # This should be the same for all languages, so no per-tag cache variable. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the $host_os linker accepts -exported_symbol" >&5 $as_echo_n "checking whether the $host_os linker accepts -exported_symbol... " >&6; } if ${lt_cv_irix_exported_symbol+:} false; then : $as_echo_n "(cached) " >&6 else save_LDFLAGS="$LDFLAGS" LDFLAGS="$LDFLAGS -shared ${wl}-exported_symbol ${wl}foo ${wl}-update_registry ${wl}/dev/null" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int foo (void) { return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_irix_exported_symbol=yes else lt_cv_irix_exported_symbol=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$save_LDFLAGS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_irix_exported_symbol" >&5 $as_echo "$lt_cv_irix_exported_symbol" >&6; } if test "$lt_cv_irix_exported_symbol" = yes; then archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations ${wl}-exports_file ${wl}$export_symbols -o $lib' fi else archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' archive_expsym_cmds='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -exports_file $export_symbols -o $lib' fi archive_cmds_need_lc='no' hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: inherit_rpath=yes link_all_deplibs=yes ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' # a.out else archive_cmds='$LD -shared -o $lib $libobjs $deplibs $linker_flags' # ELF fi hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; newsos6) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: hardcode_shlibpath_var=no ;; *nto* | *qnx*) ;; openbsd*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes hardcode_shlibpath_var=no hardcode_direct_absolute=yes if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags ${wl}-retain-symbols-file,$export_symbols' hardcode_libdir_flag_spec='${wl}-rpath,$libdir' export_dynamic_flag_spec='${wl}-E' else case $host_os in openbsd[01].* | openbsd2.[0-7] | openbsd2.[0-7].*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-R$libdir' ;; *) archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; esac fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes allow_undefined_flag=unsupported archive_cmds='$ECHO "LIBRARY $libname INITINSTANCE" > $output_objdir/$libname.def~$ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~echo DATA >> $output_objdir/$libname.def~echo " SINGLE NONSHARED" >> $output_objdir/$libname.def~echo EXPORTS >> $output_objdir/$libname.def~emxexp $libobjs >> $output_objdir/$libname.def~$CC -Zdll -Zcrtdll -o $lib $libobjs $deplibs $compiler_flags $output_objdir/$libname.def' old_archive_from_new_cmds='emximp -o $output_objdir/$libname.a $output_objdir/$libname.def' ;; osf3*) if test "$GCC" = yes; then allow_undefined_flag=' ${wl}-expect_unresolved ${wl}\*' archive_cmds='$CC -shared${allow_undefined_flag} $libobjs $deplibs $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' else allow_undefined_flag=' -expect_unresolved \*' archive_cmds='$CC -shared${allow_undefined_flag} $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' fi archive_cmds_need_lc='no' hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) # as osf3* with the addition of -msym flag if test "$GCC" = yes; then allow_undefined_flag=' ${wl}-expect_unresolved ${wl}\*' archive_cmds='$CC -shared${allow_undefined_flag} $pic_flag $libobjs $deplibs $compiler_flags ${wl}-msym ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' else allow_undefined_flag=' -expect_unresolved \*' archive_cmds='$CC -shared${allow_undefined_flag} $libobjs $deplibs $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' archive_expsym_cmds='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done; printf "%s\\n" "-hidden">> $lib.exp~ $CC -shared${allow_undefined_flag} ${wl}-input ${wl}$lib.exp $compiler_flags $libobjs $deplibs -soname $soname `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib~$RM $lib.exp' # Both c and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi archive_cmds_need_lc='no' hardcode_libdir_separator=: ;; solaris*) no_undefined_flag=' -z defs' if test "$GCC" = yes; then wlarc='${wl}' archive_cmds='$CC -shared $pic_flag ${wl}-z ${wl}text ${wl}-h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag ${wl}-z ${wl}text ${wl}-M ${wl}$lib.exp ${wl}-h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' else case `$CC -V 2>&1` in *"Compilers 5.0"*) wlarc='' archive_cmds='$LD -G${allow_undefined_flag} -h $soname -o $lib $libobjs $deplibs $linker_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $LD -G${allow_undefined_flag} -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linker_flags~$RM $lib.exp' ;; *) wlarc='${wl}' archive_cmds='$CC -G${allow_undefined_flag} -h $soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G${allow_undefined_flag} -M $lib.exp -h $soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' ;; esac fi hardcode_libdir_flag_spec='-R$libdir' hardcode_shlibpath_var=no case $host_os in solaris2.[0-5] | solaris2.[0-5].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands `-z linker_flag'. GCC discards it without `$wl', # but is careful enough not to reorder. # Supported since Solaris 2.6 (maybe 2.5.1?) if test "$GCC" = yes; then whole_archive_flag_spec='${wl}-z ${wl}allextract$convenience ${wl}-z ${wl}defaultextract' else whole_archive_flag_spec='-z allextract$convenience -z defaultextract' fi ;; esac link_all_deplibs=yes ;; sunos4*) if test "x$host_vendor" = xsequent; then # Use $CC to link under sequent, because it throws in some extra .o # files that make .init and .fini sections work. archive_cmds='$CC -G ${wl}-h $soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linker_flags' fi hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes hardcode_shlibpath_var=no ;; sysv4) case $host_vendor in sni) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes # is this really true??? ;; siemens) ## LD is ld it makes a PLAMLIB ## CC just makes a GrossModule. archive_cmds='$LD -G -o $lib $libobjs $deplibs $linker_flags' reload_cmds='$CC -r -o $output$reload_objs' hardcode_direct=no ;; motorola) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac runpath_var='LD_RUN_PATH' hardcode_shlibpath_var=no ;; sysv4.3*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_shlibpath_var=no export_dynamic_flag_spec='-Bexport' ;; sysv4*MP*) if test -d /usr/nec; then archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_shlibpath_var=no runpath_var=LD_RUN_PATH hardcode_runpath_var=yes ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) no_undefined_flag='${wl}-z,text' archive_cmds_need_lc=no hardcode_shlibpath_var=no runpath_var='LD_RUN_PATH' if test "$GCC" = yes; then archive_cmds='$CC -shared ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$CC -G ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -G ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We can NOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. no_undefined_flag='${wl}-z,text' allow_undefined_flag='${wl}-z,nodefs' archive_cmds_need_lc=no hardcode_shlibpath_var=no hardcode_libdir_flag_spec='${wl}-R,$libdir' hardcode_libdir_separator=':' link_all_deplibs=yes export_dynamic_flag_spec='${wl}-Bexport' runpath_var='LD_RUN_PATH' if test "$GCC" = yes; then archive_cmds='$CC -shared ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$CC -G ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -G ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; uts4*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-L$libdir' hardcode_shlibpath_var=no ;; *) ld_shlibs=no ;; esac if test x$host_vendor = xsni; then case $host in sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) export_dynamic_flag_spec='${wl}-Blargedynsym' ;; esac fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ld_shlibs" >&5 $as_echo "$ld_shlibs" >&6; } test "$ld_shlibs" = no && can_build_shared=no with_gnu_ld=$with_gnu_ld # # Do we need to explicitly link libc? # case "x$archive_cmds_need_lc" in x|xyes) # Assume -lc should be added archive_cmds_need_lc=yes if test "$enable_shared" = yes && test "$GCC" = yes; then case $archive_cmds in *'~'*) # FIXME: we may have to deal with multi-command sequences. ;; '$CC '*) # Test whether the compiler implicitly links with -lc since on some # systems, -lgcc has to come before -lc. If gcc already passes -lc # to ld, don't add -lc before -lgcc. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether -lc should be explicitly linked in" >&5 $as_echo_n "checking whether -lc should be explicitly linked in... " >&6; } if ${lt_cv_archive_cmds_need_lc+:} false; then : $as_echo_n "(cached) " >&6 else $RM conftest* echo "$lt_simple_compile_test_code" > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } 2>conftest.err; then soname=conftest lib=conftest libobjs=conftest.$ac_objext deplibs= wl=$lt_prog_compiler_wl pic_flag=$lt_prog_compiler_pic compiler_flags=-v linker_flags=-v verstring= output_objdir=. libname=conftest lt_save_allow_undefined_flag=$allow_undefined_flag allow_undefined_flag= if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$archive_cmds 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1\""; } >&5 (eval $archive_cmds 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } then lt_cv_archive_cmds_need_lc=no else lt_cv_archive_cmds_need_lc=yes fi allow_undefined_flag=$lt_save_allow_undefined_flag else cat conftest.err 1>&5 fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_archive_cmds_need_lc" >&5 $as_echo "$lt_cv_archive_cmds_need_lc" >&6; } archive_cmds_need_lc=$lt_cv_archive_cmds_need_lc ;; esac fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking dynamic linker characteristics" >&5 $as_echo_n "checking dynamic linker characteristics... " >&6; } if test "$GCC" = yes; then case $host_os in darwin*) lt_awk_arg="/^libraries:/,/LR/" ;; *) lt_awk_arg="/^libraries:/" ;; esac case $host_os in mingw* | cegcc*) lt_sed_strip_eq="s,=\([A-Za-z]:\),\1,g" ;; *) lt_sed_strip_eq="s,=/,/,g" ;; esac lt_search_path_spec=`$CC -print-search-dirs | awk $lt_awk_arg | $SED -e "s/^libraries://" -e $lt_sed_strip_eq` case $lt_search_path_spec in *\;*) # if the path contains ";" then we assume it to be the separator # otherwise default to the standard path separator (i.e. ":") - it is # assumed that no part of a normal pathname contains ";" but that should # okay in the real world where ";" in dirpaths is itself problematic. lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED 's/;/ /g'` ;; *) lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED "s/$PATH_SEPARATOR/ /g"` ;; esac # Ok, now we have the path, separated by spaces, we can step through it # and add multilib dir if necessary. lt_tmp_lt_search_path_spec= lt_multi_os_dir=`$CC $CPPFLAGS $CFLAGS $LDFLAGS -print-multi-os-directory 2>/dev/null` for lt_sys_path in $lt_search_path_spec; do if test -d "$lt_sys_path/$lt_multi_os_dir"; then lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path/$lt_multi_os_dir" else test -d "$lt_sys_path" && \ lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path" fi done lt_search_path_spec=`$ECHO "$lt_tmp_lt_search_path_spec" | awk ' BEGIN {RS=" "; FS="/|\n";} { lt_foo=""; lt_count=0; for (lt_i = NF; lt_i > 0; lt_i--) { if ($lt_i != "" && $lt_i != ".") { if ($lt_i == "..") { lt_count++; } else { if (lt_count == 0) { lt_foo="/" $lt_i lt_foo; } else { lt_count--; } } } } if (lt_foo != "") { lt_freq[lt_foo]++; } if (lt_freq[lt_foo] == 1) { print lt_foo; } }'` # AWK program above erroneously prepends '/' to C:/dos/paths # for these hosts. case $host_os in mingw* | cegcc*) lt_search_path_spec=`$ECHO "$lt_search_path_spec" |\ $SED 's,/\([A-Za-z]:\),\1,g'` ;; esac sys_lib_search_path_spec=`$ECHO "$lt_search_path_spec" | $lt_NL2SP` else sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" fi library_names_spec= libname_spec='lib$name' soname_spec= shrext_cmds=".so" postinstall_cmds= postuninstall_cmds= finish_cmds= finish_eval= shlibpath_var= shlibpath_overrides_runpath=unknown version_type=none dynamic_linker="$host_os ld.so" sys_lib_dlsearch_path_spec="/lib /usr/lib" need_lib_prefix=unknown hardcode_into_libs=no # when you set need_version to no, make sure it does not cause -set_version # flags to be left without arguments need_version=unknown case $host_os in aix3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix $libname.a' shlibpath_var=LIBPATH # AIX 3 has no versioning support, so we append a major version to the name. soname_spec='${libname}${release}${shared_ext}$major' ;; aix[4-9]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no hardcode_into_libs=yes if test "$host_cpu" = ia64; then # AIX 5 supports IA64 library_names_spec='${libname}${release}${shared_ext}$major ${libname}${release}${shared_ext}$versuffix $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH else # With GCC up to 2.95.x, collect2 would create an import file # for dependence libraries. The import file would start with # the line `#! .'. This would cause the generated library to # depend on `.', always an invalid library. This was fixed in # development snapshots of GCC prior to 3.0. case $host_os in aix4 | aix4.[01] | aix4.[01].*) if { echo '#if __GNUC__ > 2 || (__GNUC__ == 2 && __GNUC_MINOR__ >= 97)' echo ' yes ' echo '#endif'; } | ${CC} -E - | $GREP yes > /dev/null; then : else can_build_shared=no fi ;; esac # AIX (on Power*) has no versioning support, so currently we can not hardcode correct # soname into executable. Probably we can add versioning support to # collect2, so additional links can be useful in future. if test "$aix_use_runtimelinking" = yes; then # If using run time linking (on AIX 4.2 or later) use lib.so # instead of lib.a to let people know that these are not # typical AIX shared libraries. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' else # We preserve .a as extension for shared libraries through AIX4.2 # and later when we are not doing run time linking. library_names_spec='${libname}${release}.a $libname.a' soname_spec='${libname}${release}${shared_ext}$major' fi shlibpath_var=LIBPATH fi ;; amigaos*) case $host_cpu in powerpc) # Since July 2007 AmigaOS4 officially supports .so libraries. # When compiling the executable, add -use-dynld -Lsobjs: to the compileline. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' ;; m68k) library_names_spec='$libname.ixlibrary $libname.a' # Create ${libname}_ixlibrary.a entries in /sys/libs. finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`func_echo_all "$lib" | $SED '\''s%^.*/\([^/]*\)\.ixlibrary$%\1%'\''`; test $RM /sys/libs/${libname}_ixlibrary.a; $show "cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a"; cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a || exit 1; done' ;; esac ;; beos*) library_names_spec='${libname}${shared_ext}' dynamic_linker="$host_os ld.so" shlibpath_var=LIBRARY_PATH ;; bsdi[45]*) version_type=linux # correct to gnu/linux during the next big refactor need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" # the default ld.so.conf also contains /usr/contrib/lib and # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow # libtool to hard-code these into programs ;; cygwin* | mingw* | pw32* | cegcc*) version_type=windows shrext_cmds=".dll" need_version=no need_lib_prefix=no case $GCC,$cc_basename in yes,*) # gcc library_names_spec='$libname.dll.a' # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \${file}`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\${base_file}'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes case $host_os in cygwin*) # Cygwin DLLs use 'cyg' prefix rather than 'lib' soname_spec='`echo ${libname} | sed -e 's/^lib/cyg/'``echo ${release} | $SED -e 's/[.]/-/g'`${versuffix}${shared_ext}' sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/lib/w32api" ;; mingw* | cegcc*) # MinGW DLLs use traditional 'lib' prefix soname_spec='${libname}`echo ${release} | $SED -e 's/[.]/-/g'`${versuffix}${shared_ext}' ;; pw32*) # pw32 DLLs use 'pw' prefix rather than 'lib' library_names_spec='`echo ${libname} | sed -e 's/^lib/pw/'``echo ${release} | $SED -e 's/[.]/-/g'`${versuffix}${shared_ext}' ;; esac dynamic_linker='Win32 ld.exe' ;; *,cl*) # Native MSVC libname_spec='$name' soname_spec='${libname}`echo ${release} | $SED -e 's/[.]/-/g'`${versuffix}${shared_ext}' library_names_spec='${libname}.dll.lib' case $build_os in mingw*) sys_lib_search_path_spec= lt_save_ifs=$IFS IFS=';' for lt_path in $LIB do IFS=$lt_save_ifs # Let DOS variable expansion print the short 8.3 style file name. lt_path=`cd "$lt_path" 2>/dev/null && cmd //C "for %i in (".") do @echo %~si"` sys_lib_search_path_spec="$sys_lib_search_path_spec $lt_path" done IFS=$lt_save_ifs # Convert to MSYS style. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | sed -e 's|\\\\|/|g' -e 's| \\([a-zA-Z]\\):| /\\1|g' -e 's|^ ||'` ;; cygwin*) # Convert to unix form, then to dos form, then back to unix form # but this time dos style (no spaces!) so that the unix form looks # like /cygdrive/c/PROGRA~1:/cygdr... sys_lib_search_path_spec=`cygpath --path --unix "$LIB"` sys_lib_search_path_spec=`cygpath --path --dos "$sys_lib_search_path_spec" 2>/dev/null` sys_lib_search_path_spec=`cygpath --path --unix "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` ;; *) sys_lib_search_path_spec="$LIB" if $ECHO "$sys_lib_search_path_spec" | $GREP ';[c-zC-Z]:/' >/dev/null; then # It is most probably a Windows format PATH. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e 's/;/ /g'` else sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` fi # FIXME: find the short name or the path components, as spaces are # common. (e.g. "Program Files" -> "PROGRA~1") ;; esac # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \${file}`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\${base_file}'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes dynamic_linker='Win32 link.exe' ;; *) # Assume MSVC wrapper library_names_spec='${libname}`echo ${release} | $SED -e 's/[.]/-/g'`${versuffix}${shared_ext} $libname.lib' dynamic_linker='Win32 ld.exe' ;; esac # FIXME: first we should search . and the directory the executable is in shlibpath_var=PATH ;; darwin* | rhapsody*) dynamic_linker="$host_os dyld" version_type=darwin need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${major}$shared_ext ${libname}$shared_ext' soname_spec='${libname}${release}${major}$shared_ext' shlibpath_overrides_runpath=yes shlibpath_var=DYLD_LIBRARY_PATH shrext_cmds='`test .$module = .yes && echo .so || echo .dylib`' sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/local/lib" sys_lib_dlsearch_path_spec='/usr/local/lib /lib /usr/lib' ;; dgux*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname$shared_ext' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH ;; freebsd* | dragonfly*) # DragonFly does not have aout. When/if they implement a new # versioning mechanism, adjust this. if test -x /usr/bin/objformat; then objformat=`/usr/bin/objformat` else case $host_os in freebsd[23].*) objformat=aout ;; *) objformat=elf ;; esac fi version_type=freebsd-$objformat case $version_type in freebsd-elf*) library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext} $libname${shared_ext}' need_version=no need_lib_prefix=no ;; freebsd-*) library_names_spec='${libname}${release}${shared_ext}$versuffix $libname${shared_ext}$versuffix' need_version=yes ;; esac shlibpath_var=LD_LIBRARY_PATH case $host_os in freebsd2.*) shlibpath_overrides_runpath=yes ;; freebsd3.[01]* | freebsdelf3.[01]*) shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; freebsd3.[2-9]* | freebsdelf3.[2-9]* | \ freebsd4.[0-5] | freebsdelf4.[0-5] | freebsd4.1.1 | freebsdelf4.1.1) shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; *) # from 4.6 on, and DragonFly shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; esac ;; gnu*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}${major} ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; haiku*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no dynamic_linker="$host_os runtime_loader" library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}${major} ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LIBRARY_PATH shlibpath_overrides_runpath=yes sys_lib_dlsearch_path_spec='/boot/home/config/lib /boot/common/lib /boot/system/lib' hardcode_into_libs=yes ;; hpux9* | hpux10* | hpux11*) # Give a soname corresponding to the major version so that dld.sl refuses to # link against other versions. version_type=sunos need_lib_prefix=no need_version=no case $host_cpu in ia64*) shrext_cmds='.so' hardcode_into_libs=yes dynamic_linker="$host_os dld.so" shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' if test "X$HPUX_IA64_MODE" = X32; then sys_lib_search_path_spec="/usr/lib/hpux32 /usr/local/lib/hpux32 /usr/local/lib" else sys_lib_search_path_spec="/usr/lib/hpux64 /usr/local/lib/hpux64" fi sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; hppa*64*) shrext_cmds='.sl' hardcode_into_libs=yes dynamic_linker="$host_os dld.sl" shlibpath_var=LD_LIBRARY_PATH # How should we handle SHLIB_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' sys_lib_search_path_spec="/usr/lib/pa20_64 /usr/ccs/lib/pa20_64" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; *) shrext_cmds='.sl' dynamic_linker="$host_os dld.sl" shlibpath_var=SHLIB_PATH shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' ;; esac # HP-UX runs *really* slowly unless shared libraries are mode 555, ... postinstall_cmds='chmod 555 $lib' # or fails outright, so override atomically: install_override_mode=555 ;; interix[3-9]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' dynamic_linker='Interix 3.x ld.so.1 (PE, like ELF)' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; irix5* | irix6* | nonstopux*) case $host_os in nonstopux*) version_type=nonstopux ;; *) if test "$lt_cv_prog_gnu_ld" = yes; then version_type=linux # correct to gnu/linux during the next big refactor else version_type=irix fi ;; esac need_lib_prefix=no need_version=no soname_spec='${libname}${release}${shared_ext}$major' library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major ${libname}${release}${shared_ext} $libname${shared_ext}' case $host_os in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in # libtool.m4 will add one of these switches to LD *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= libmagic=32-bit;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 libmagic=64-bit;; *) libsuff= shlibsuff= libmagic=never-match;; esac ;; esac shlibpath_var=LD_LIBRARY${shlibsuff}_PATH shlibpath_overrides_runpath=no sys_lib_search_path_spec="/usr/lib${libsuff} /lib${libsuff} /usr/local/lib${libsuff}" sys_lib_dlsearch_path_spec="/usr/lib${libsuff} /lib${libsuff}" hardcode_into_libs=yes ;; # No shared lib support for Linux oldld, aout, or coff. linux*oldld* | linux*aout* | linux*coff*) dynamic_linker=no ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no # Some binutils ld are patched to set DT_RUNPATH if ${lt_cv_shlibpath_overrides_runpath+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_shlibpath_overrides_runpath=no save_LDFLAGS=$LDFLAGS save_libdir=$libdir eval "libdir=/foo; wl=\"$lt_prog_compiler_wl\"; \ LDFLAGS=\"\$LDFLAGS $hardcode_libdir_flag_spec\"" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : if ($OBJDUMP -p conftest$ac_exeext) 2>/dev/null | grep "RUNPATH.*$libdir" >/dev/null; then : lt_cv_shlibpath_overrides_runpath=yes fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS libdir=$save_libdir fi shlibpath_overrides_runpath=$lt_cv_shlibpath_overrides_runpath # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes # Add ABI-specific directories to the system library path. sys_lib_dlsearch_path_spec="/lib64 /usr/lib64 /lib /usr/lib" # Append ld.so.conf contents to the search path if test -f /etc/ld.so.conf; then lt_ld_extra=`awk '/^include / { system(sprintf("cd /etc; cat %s 2>/dev/null", \$2)); skip = 1; } { if (!skip) print \$0; skip = 0; }' < /etc/ld.so.conf | $SED -e 's/#.*//;/^[ ]*hwcap[ ]/d;s/[:, ]/ /g;s/=[^=]*$//;s/=[^= ]* / /g;s/"//g;/^$/d' | tr '\n' ' '` sys_lib_dlsearch_path_spec="$sys_lib_dlsearch_path_spec $lt_ld_extra" fi # We used to test for /lib/ld.so.1 and disable shared libraries on # powerpc, because MkLinux only supported shared libraries with the # GNU dynamic linker. Since this was broken with cross compilers, # most powerpc-linux boxes support dynamic linking these days and # people can always --disable-shared, the test was removed, and we # assume the GNU/Linux dynamic linker is in use. dynamic_linker='GNU/Linux ld.so' ;; netbsd*) version_type=sunos need_lib_prefix=no need_version=no if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${shared_ext}$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' dynamic_linker='NetBSD (a.out) ld.so' else library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' dynamic_linker='NetBSD ld.elf_so' fi shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; newsos6) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; *nto* | *qnx*) version_type=qnx need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes dynamic_linker='ldqnx.so' ;; openbsd*) version_type=sunos sys_lib_dlsearch_path_spec="/usr/lib" need_lib_prefix=no # Some older versions of OpenBSD (3.3 at least) *do* need versioned libs. case $host_os in openbsd3.3 | openbsd3.3.*) need_version=yes ;; *) need_version=no ;; esac library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${shared_ext}$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' shlibpath_var=LD_LIBRARY_PATH if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then case $host_os in openbsd2.[89] | openbsd2.[89].*) shlibpath_overrides_runpath=no ;; *) shlibpath_overrides_runpath=yes ;; esac else shlibpath_overrides_runpath=yes fi ;; os2*) libname_spec='$name' shrext_cmds=".dll" need_lib_prefix=no library_names_spec='$libname${shared_ext} $libname.a' dynamic_linker='OS/2 ld.exe' shlibpath_var=LIBPATH ;; osf3* | osf4* | osf5*) version_type=osf need_lib_prefix=no need_version=no soname_spec='${libname}${release}${shared_ext}$major' library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" sys_lib_dlsearch_path_spec="$sys_lib_search_path_spec" ;; rdos*) dynamic_linker=no ;; solaris*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes # ldd complains unless libraries are executable postinstall_cmds='chmod +x $lib' ;; sunos4*) version_type=sunos library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${shared_ext}$versuffix' finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes if test "$with_gnu_ld" = yes; then need_lib_prefix=no fi need_version=yes ;; sysv4 | sysv4.3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH case $host_vendor in sni) shlibpath_overrides_runpath=no need_lib_prefix=no runpath_var=LD_RUN_PATH ;; siemens) need_lib_prefix=no ;; motorola) need_lib_prefix=no need_version=no shlibpath_overrides_runpath=no sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' ;; esac ;; sysv4*MP*) if test -d /usr/nec ;then version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname${shared_ext}.$versuffix $libname${shared_ext}.$major $libname${shared_ext}' soname_spec='$libname${shared_ext}.$major' shlibpath_var=LD_LIBRARY_PATH fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) version_type=freebsd-elf need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext} $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes if test "$with_gnu_ld" = yes; then sys_lib_search_path_spec='/usr/local/lib /usr/gnu/lib /usr/ccs/lib /usr/lib /lib' else sys_lib_search_path_spec='/usr/ccs/lib /usr/lib' case $host_os in sco3.2v5*) sys_lib_search_path_spec="$sys_lib_search_path_spec /lib" ;; esac fi sys_lib_dlsearch_path_spec='/usr/lib' ;; tpf*) # TPF is a cross-target only. Preferred cross-host = GNU/Linux. version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; uts4*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH ;; *) dynamic_linker=no ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $dynamic_linker" >&5 $as_echo "$dynamic_linker" >&6; } test "$dynamic_linker" = no && can_build_shared=no variables_saved_for_relink="PATH $shlibpath_var $runpath_var" if test "$GCC" = yes; then variables_saved_for_relink="$variables_saved_for_relink GCC_EXEC_PREFIX COMPILER_PATH LIBRARY_PATH" fi if test "${lt_cv_sys_lib_search_path_spec+set}" = set; then sys_lib_search_path_spec="$lt_cv_sys_lib_search_path_spec" fi if test "${lt_cv_sys_lib_dlsearch_path_spec+set}" = set; then sys_lib_dlsearch_path_spec="$lt_cv_sys_lib_dlsearch_path_spec" fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to hardcode library paths into programs" >&5 $as_echo_n "checking how to hardcode library paths into programs... " >&6; } hardcode_action= if test -n "$hardcode_libdir_flag_spec" || test -n "$runpath_var" || test "X$hardcode_automatic" = "Xyes" ; then # We can hardcode non-existent directories. if test "$hardcode_direct" != no && # If the only mechanism to avoid hardcoding is shlibpath_var, we # have to relink, otherwise we might link with an installed library # when we should be linking with a yet-to-be-installed one ## test "$_LT_TAGVAR(hardcode_shlibpath_var, )" != no && test "$hardcode_minus_L" != no; then # Linking always hardcodes the temporary library directory. hardcode_action=relink else # We can link without hardcoding, and we can hardcode nonexisting dirs. hardcode_action=immediate fi else # We cannot hardcode anything, or else we can only hardcode existing # directories. hardcode_action=unsupported fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $hardcode_action" >&5 $as_echo "$hardcode_action" >&6; } if test "$hardcode_action" = relink || test "$inherit_rpath" = yes; then # Fast installation is not supported enable_fast_install=no elif test "$shlibpath_overrides_runpath" = yes || test "$enable_shared" = no; then # Fast installation is not necessary enable_fast_install=needless fi if test "x$enable_dlopen" != xyes; then enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown else lt_cv_dlopen=no lt_cv_dlopen_libs= case $host_os in beos*) lt_cv_dlopen="load_add_on" lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ;; mingw* | pw32* | cegcc*) lt_cv_dlopen="LoadLibrary" lt_cv_dlopen_libs= ;; cygwin*) lt_cv_dlopen="dlopen" lt_cv_dlopen_libs= ;; darwin*) # if libdl is installed we need to link against it { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -ldl" >&5 $as_echo_n "checking for dlopen in -ldl... " >&6; } if ${ac_cv_lib_dl_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dl_dlopen=yes else ac_cv_lib_dl_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dl_dlopen" >&5 $as_echo "$ac_cv_lib_dl_dlopen" >&6; } if test "x$ac_cv_lib_dl_dlopen" = xyes; then : lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-ldl" else lt_cv_dlopen="dyld" lt_cv_dlopen_libs= lt_cv_dlopen_self=yes fi ;; *) ac_fn_c_check_func "$LINENO" "shl_load" "ac_cv_func_shl_load" if test "x$ac_cv_func_shl_load" = xyes; then : lt_cv_dlopen="shl_load" else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shl_load in -ldld" >&5 $as_echo_n "checking for shl_load in -ldld... " >&6; } if ${ac_cv_lib_dld_shl_load+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char shl_load (); int main () { return shl_load (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dld_shl_load=yes else ac_cv_lib_dld_shl_load=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dld_shl_load" >&5 $as_echo "$ac_cv_lib_dld_shl_load" >&6; } if test "x$ac_cv_lib_dld_shl_load" = xyes; then : lt_cv_dlopen="shl_load" lt_cv_dlopen_libs="-ldld" else ac_fn_c_check_func "$LINENO" "dlopen" "ac_cv_func_dlopen" if test "x$ac_cv_func_dlopen" = xyes; then : lt_cv_dlopen="dlopen" else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -ldl" >&5 $as_echo_n "checking for dlopen in -ldl... " >&6; } if ${ac_cv_lib_dl_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dl_dlopen=yes else ac_cv_lib_dl_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dl_dlopen" >&5 $as_echo "$ac_cv_lib_dl_dlopen" >&6; } if test "x$ac_cv_lib_dl_dlopen" = xyes; then : lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-ldl" else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -lsvld" >&5 $as_echo_n "checking for dlopen in -lsvld... " >&6; } if ${ac_cv_lib_svld_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lsvld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_svld_dlopen=yes else ac_cv_lib_svld_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_svld_dlopen" >&5 $as_echo "$ac_cv_lib_svld_dlopen" >&6; } if test "x$ac_cv_lib_svld_dlopen" = xyes; then : lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-lsvld" else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dld_link in -ldld" >&5 $as_echo_n "checking for dld_link in -ldld... " >&6; } if ${ac_cv_lib_dld_dld_link+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dld_link (); int main () { return dld_link (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dld_dld_link=yes else ac_cv_lib_dld_dld_link=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dld_dld_link" >&5 $as_echo "$ac_cv_lib_dld_dld_link" >&6; } if test "x$ac_cv_lib_dld_dld_link" = xyes; then : lt_cv_dlopen="dld_link" lt_cv_dlopen_libs="-ldld" fi fi fi fi fi fi ;; esac if test "x$lt_cv_dlopen" != xno; then enable_dlopen=yes else enable_dlopen=no fi case $lt_cv_dlopen in dlopen) save_CPPFLAGS="$CPPFLAGS" test "x$ac_cv_header_dlfcn_h" = xyes && CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" save_LDFLAGS="$LDFLAGS" wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" save_LIBS="$LIBS" LIBS="$lt_cv_dlopen_libs $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether a program can dlopen itself" >&5 $as_echo_n "checking whether a program can dlopen itself... " >&6; } if ${lt_cv_dlopen_self+:} false; then : $as_echo_n "(cached) " >&6 else if test "$cross_compiling" = yes; then : lt_cv_dlopen_self=cross else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF #line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisbility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined(__GNUC__) && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; } _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s conftest${ac_exeext} 2>/dev/null; then (./conftest; exit; ) >&5 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) lt_cv_dlopen_self=yes ;; x$lt_dlneed_uscore) lt_cv_dlopen_self=yes ;; x$lt_dlunknown|x*) lt_cv_dlopen_self=no ;; esac else : # compilation failed lt_cv_dlopen_self=no fi fi rm -fr conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_dlopen_self" >&5 $as_echo "$lt_cv_dlopen_self" >&6; } if test "x$lt_cv_dlopen_self" = xyes; then wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $lt_prog_compiler_static\" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether a statically linked program can dlopen itself" >&5 $as_echo_n "checking whether a statically linked program can dlopen itself... " >&6; } if ${lt_cv_dlopen_self_static+:} false; then : $as_echo_n "(cached) " >&6 else if test "$cross_compiling" = yes; then : lt_cv_dlopen_self_static=cross else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF #line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisbility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined(__GNUC__) && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; } _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s conftest${ac_exeext} 2>/dev/null; then (./conftest; exit; ) >&5 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) lt_cv_dlopen_self_static=yes ;; x$lt_dlneed_uscore) lt_cv_dlopen_self_static=yes ;; x$lt_dlunknown|x*) lt_cv_dlopen_self_static=no ;; esac else : # compilation failed lt_cv_dlopen_self_static=no fi fi rm -fr conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_dlopen_self_static" >&5 $as_echo "$lt_cv_dlopen_self_static" >&6; } fi CPPFLAGS="$save_CPPFLAGS" LDFLAGS="$save_LDFLAGS" LIBS="$save_LIBS" ;; esac case $lt_cv_dlopen_self in yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; *) enable_dlopen_self=unknown ;; esac case $lt_cv_dlopen_self_static in yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; *) enable_dlopen_self_static=unknown ;; esac fi striplib= old_striplib= { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether stripping libraries is possible" >&5 $as_echo_n "checking whether stripping libraries is possible... " >&6; } if test -n "$STRIP" && $STRIP -V 2>&1 | $GREP "GNU strip" >/dev/null; then test -z "$old_striplib" && old_striplib="$STRIP --strip-debug" test -z "$striplib" && striplib="$STRIP --strip-unneeded" { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else # FIXME - insert some real tests, host_os isn't really good enough case $host_os in darwin*) if test -n "$STRIP" ; then striplib="$STRIP -x" old_striplib="$STRIP -S" { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi ;; *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } ;; esac fi # Report which library types will actually be built { $as_echo "$as_me:${as_lineno-$LINENO}: checking if libtool supports shared libraries" >&5 $as_echo_n "checking if libtool supports shared libraries... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $can_build_shared" >&5 $as_echo "$can_build_shared" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to build shared libraries" >&5 $as_echo_n "checking whether to build shared libraries... " >&6; } test "$can_build_shared" = "no" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test "$enable_shared" = yes && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[4-9]*) if test "$host_cpu" != ia64 && test "$aix_use_runtimelinking" = no ; then test "$enable_shared" = yes && enable_static=no fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $enable_shared" >&5 $as_echo "$enable_shared" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to build static libraries" >&5 $as_echo_n "checking whether to build static libraries... " >&6; } # Make sure either enable_shared or enable_static is yes. test "$enable_shared" = yes || enable_static=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: $enable_static" >&5 $as_echo "$enable_static" >&6; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu CC="$lt_save_CC" ac_config_commands="$ac_config_commands libtool" # Only expand once: if test "$use_openbsd_libtool" = "true" && test -x /usr/bin/libtool; then echo using OpenBSD libtool LIBTOOL=/usr/bin/libtool fi if test "$use_openbsd_libtool" = "true" ; then OPENBSD_LIBTOOL_TRUE= OPENBSD_LIBTOOL_FALSE='#' else OPENBSD_LIBTOOL_TRUE='#' OPENBSD_LIBTOOL_FALSE= fi # Check whether --enable-symvers was given. if test "${enable_symvers+set}" = set; then : enableval=$enable_symvers; want_symvers=$enableval else want_symvers=yes fi if test x$want_symvers = xyes; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking linker version script flag" >&5 $as_echo_n "checking linker version script flag... " >&6; } if ${ax_cv_check_vscript_flag+:} false; then : $as_echo_n "(cached) " >&6 else ax_cv_check_vscript_flag=unsupported ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,--version-script,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=--version-script fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test x$ax_cv_check_vscript_flag = xunsupported; then : ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,-M,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=-M fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi if test x$ax_cv_check_vscript_flag != xunsupported; then : ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test xyes = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,$ax_cv_check_vscript_flag,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=unsupported fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ax_cv_check_vscript_flag" >&5 $as_echo "$ax_cv_check_vscript_flag" >&6; } if test x$ax_cv_check_vscript_flag != xunsupported; then : ax_check_vscript_flag=$ax_cv_check_vscript_flag { $as_echo "$as_me:${as_lineno-$LINENO}: checking if version scripts can use complex wildcards" >&5 $as_echo_n "checking if version scripts can use complex wildcards... " >&6; } if ${ax_cv_check_vscript_complex_wildcards+:} false; then : $as_echo_n "(cached) " >&6 else ax_cv_check_vscript_complex_wildcards=no ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: sh*; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,$ax_cv_check_vscript_flag,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_complex_wildcards=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ax_cv_check_vscript_complex_wildcards" >&5 $as_echo "$ax_cv_check_vscript_complex_wildcards" >&6; } ax_check_vscript_complex_wildcards="$ax_cv_check_vscript_complex_wildcards" else ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no fi else { $as_echo "$as_me:${as_lineno-$LINENO}: checking linker version script flag" >&5 $as_echo_n "checking linker version script flag... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: disabled" >&5 $as_echo "disabled" >&6; } ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no fi if test x$ax_check_vscript_flag != x; then : VSCRIPT_LDFLAGS="-Wl,$ax_check_vscript_flag" fi if test x$ax_check_vscript_flag != x; then HAVE_VSCRIPT_TRUE= HAVE_VSCRIPT_FALSE='#' else HAVE_VSCRIPT_TRUE='#' HAVE_VSCRIPT_FALSE= fi if test x$ax_check_vscript_complex_wildcards = xyes; then HAVE_VSCRIPT_COMPLEX_TRUE= HAVE_VSCRIPT_COMPLEX_FALSE='#' else HAVE_VSCRIPT_COMPLEX_TRUE='#' HAVE_VSCRIPT_COMPLEX_FALSE= fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBXML2" >&5 $as_echo_n "checking for LIBXML2... " >&6; } if test -n "$LIBXML2_CFLAGS"; then pkg_cv_LIBXML2_CFLAGS="$LIBXML2_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBXML2_CFLAGS=`$PKG_CONFIG --cflags "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBXML2_LIBS"; then pkg_cv_LIBXML2_LIBS="$LIBXML2_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBXML2_LIBS=`$PKG_CONFIG --libs "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBXML2_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libxml-2.0" 2>&1` else LIBXML2_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libxml-2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBXML2_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libxml-2.0) were not met: $LIBXML2_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables LIBXML2_CFLAGS and LIBXML2_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables LIBXML2_CFLAGS and LIBXML2_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else LIBXML2_CFLAGS=$pkg_cv_LIBXML2_CFLAGS LIBXML2_LIBS=$pkg_cv_LIBXML2_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ZLIB" >&5 $as_echo_n "checking for ZLIB... " >&6; } if test -n "$ZLIB_CFLAGS"; then pkg_cv_ZLIB_CFLAGS="$ZLIB_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"zlib\""; } >&5 ($PKG_CONFIG --exists --print-errors "zlib") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_ZLIB_CFLAGS=`$PKG_CONFIG --cflags "zlib" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$ZLIB_LIBS"; then pkg_cv_ZLIB_LIBS="$ZLIB_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"zlib\""; } >&5 ($PKG_CONFIG --exists --print-errors "zlib") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_ZLIB_LIBS=`$PKG_CONFIG --libs "zlib" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then ZLIB_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "zlib" 2>&1` else ZLIB_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "zlib" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$ZLIB_PKG_ERRORS" >&5 oldLIBS="$LIBS" LIBS="$LIBS -lz" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for zlib without pkg-config" >&5 $as_echo_n "checking for zlib without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_LIBS=-lz else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against zlib" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } oldLIBS="$LIBS" LIBS="$LIBS -lz" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for zlib without pkg-config" >&5 $as_echo_n "checking for zlib without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_LIBS=-lz else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against zlib" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" else ZLIB_CFLAGS=$pkg_cv_ZLIB_CFLAGS ZLIB_LIBS=$pkg_cv_ZLIB_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_PC=zlib fi # Check whether --with-libproxy was given. if test "${with_libproxy+set}" = set; then : withval=$with_libproxy; fi if test "x$with_libproxy" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPROXY" >&5 $as_echo_n "checking for LIBPROXY... " >&6; } if test -n "$LIBPROXY_CFLAGS"; then pkg_cv_LIBPROXY_CFLAGS="$LIBPROXY_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libproxy-1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libproxy-1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPROXY_CFLAGS=`$PKG_CONFIG --cflags "libproxy-1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPROXY_LIBS"; then pkg_cv_LIBPROXY_LIBS="$LIBPROXY_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libproxy-1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libproxy-1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPROXY_LIBS=`$PKG_CONFIG --libs "libproxy-1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPROXY_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libproxy-1.0" 2>&1` else LIBPROXY_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libproxy-1.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPROXY_PKG_ERRORS" >&5 libproxy_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libproxy_pkg=no else LIBPROXY_CFLAGS=$pkg_cv_LIBPROXY_CFLAGS LIBPROXY_LIBS=$pkg_cv_LIBPROXY_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPROXY_PC=libproxy-1.0 $as_echo "#define LIBPROXY_HDR \"proxy.h\"" >>confdefs.h libproxy_pkg=yes fi else libproxy_pkg=disabled fi if (test "$libproxy_pkg" = "no"); then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for libproxy" >&5 $as_echo_n "checking for libproxy... " >&6; } oldLIBS="$LIBS" LIBS="$LIBS -lproxy" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { (void)px_proxy_factory_new(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with libproxy.h)" >&5 $as_echo "yes (with libproxy.h)" >&6; } $as_echo "#define LIBPROXY_HDR \"libproxy.h\"" >>confdefs.h LIBPROXY_LIBS=-lproxy else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { (void)px_proxy_factory_new(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with proxy.h)" >&5 $as_echo "yes (with proxy.h)" >&6; } $as_echo "#define LIBPROXY_HDR \"proxy.h\"" >>confdefs.h LIBPROXY_LIBS=-lproxy else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" fi # Check whether --with-stoken was given. if test "${with_stoken+set}" = set; then : withval=$with_stoken; fi if test "x$with_stoken" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBSTOKEN" >&5 $as_echo_n "checking for LIBSTOKEN... " >&6; } if test -n "$LIBSTOKEN_CFLAGS"; then pkg_cv_LIBSTOKEN_CFLAGS="$LIBSTOKEN_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"stoken\""; } >&5 ($PKG_CONFIG --exists --print-errors "stoken") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBSTOKEN_CFLAGS=`$PKG_CONFIG --cflags "stoken" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBSTOKEN_LIBS"; then pkg_cv_LIBSTOKEN_LIBS="$LIBSTOKEN_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"stoken\""; } >&5 ($PKG_CONFIG --exists --print-errors "stoken") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBSTOKEN_LIBS=`$PKG_CONFIG --libs "stoken" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBSTOKEN_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "stoken" 2>&1` else LIBSTOKEN_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "stoken" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBSTOKEN_PKG_ERRORS" >&5 libstoken_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libstoken_pkg=no else LIBSTOKEN_CFLAGS=$pkg_cv_LIBSTOKEN_CFLAGS LIBSTOKEN_LIBS=$pkg_cv_LIBSTOKEN_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBSTOKEN_PC=stoken $as_echo "#define HAVE_LIBSTOKEN 1" >>confdefs.h libstoken_pkg=yes fi else libstoken_pkg=disabled fi if test "$libstoken_pkg" = "yes"; then OPENCONNECT_STOKEN_TRUE= OPENCONNECT_STOKEN_FALSE='#' else OPENCONNECT_STOKEN_TRUE='#' OPENCONNECT_STOKEN_FALSE= fi # Check whether --with-libpcsclite was given. if test "${with_libpcsclite+set}" = set; then : withval=$with_libpcsclite; fi if test "x$with_libpcsclite" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPCSCLITE" >&5 $as_echo_n "checking for LIBPCSCLITE... " >&6; } if test -n "$LIBPCSCLITE_CFLAGS"; then pkg_cv_LIBPCSCLITE_CFLAGS="$LIBPCSCLITE_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpcsclite\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpcsclite") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPCSCLITE_CFLAGS=`$PKG_CONFIG --cflags "libpcsclite" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPCSCLITE_LIBS"; then pkg_cv_LIBPCSCLITE_LIBS="$LIBPCSCLITE_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpcsclite\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpcsclite") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPCSCLITE_LIBS=`$PKG_CONFIG --libs "libpcsclite" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPCSCLITE_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libpcsclite" 2>&1` else LIBPCSCLITE_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libpcsclite" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPCSCLITE_PKG_ERRORS" >&5 libpcsclite_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libpcsclite_pkg=no else LIBPCSCLITE_CFLAGS=$pkg_cv_LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS=$pkg_cv_LIBPCSCLITE_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPCSCLITE_PC=libpcsclite $as_echo "#define HAVE_LIBPCSCLITE 1" >>confdefs.h libpcsclite_pkg=yes fi else libpcsclite_pkg=disabled fi if test "$libpcsclite_pkg" = "yes"; then OPENCONNECT_LIBPCSCLITE_TRUE= OPENCONNECT_LIBPCSCLITE_FALSE='#' else OPENCONNECT_LIBPCSCLITE_TRUE='#' OPENCONNECT_LIBPCSCLITE_FALSE= fi # Check whether --with-libpskc was given. if test "${with_libpskc+set}" = set; then : withval=$with_libpskc; fi if test "x$with_libpskc" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPSKC" >&5 $as_echo_n "checking for LIBPSKC... " >&6; } if test -n "$LIBPSKC_CFLAGS"; then pkg_cv_LIBPSKC_CFLAGS="$LIBPSKC_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpskc >= 2.2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpskc >= 2.2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPSKC_CFLAGS=`$PKG_CONFIG --cflags "libpskc >= 2.2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPSKC_LIBS"; then pkg_cv_LIBPSKC_LIBS="$LIBPSKC_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpskc >= 2.2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpskc >= 2.2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPSKC_LIBS=`$PKG_CONFIG --libs "libpskc >= 2.2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPSKC_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libpskc >= 2.2.0" 2>&1` else LIBPSKC_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libpskc >= 2.2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPSKC_PKG_ERRORS" >&5 libpskc_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libpskc_pkg=no else LIBPSKC_CFLAGS=$pkg_cv_LIBPSKC_CFLAGS LIBPSKC_LIBS=$pkg_cv_LIBPSKC_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPSKC_PC=libpskc $as_echo "#define HAVE_LIBPSKC 1" >>confdefs.h libpskc_pkg=yes fi fi linked_gssapi=no # Check whether --with-gssapi was given. if test "${with_gssapi+set}" = set; then : withval=$with_gssapi; fi # Attempt to work out how to build with GSSAPI. Mostly, krb5-config will # exist and work. Tested on FreeBSD 9, OpenBSD 5.5, NetBSD 6.1.4. Solaris # has krb5-config but it doesn't do GSSAPI so hard-code the results there. # Older OpenBSD (I tested 5.2) lacks krb5-config so leave that as an example. if test "$with_gssapi" != "no"; then found_gssapi=no if test "${with_gssapi}" != "yes" -a "${with_gssapi}" != "" ; then gssapi_root="${with_gssapi}" else gssapi_root="" fi # First: if they specify GSSAPI_LIBS and/or GSSAPI_CFLAGS then use them. if test "$GSSAPI_LIBS$GSSAPI_CFLAGS" != ""; then found_gssapi=yes fi # Second: try finding a viable krb5-config that supports gssapi if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then krb5path="${gssapi_root}/bin:$PATH" else krb5path="/usr/kerberos/bin:$PATH" fi if test -n "$host_alias"; then # Extract the first word of "${host_alias}-krb5-config", so it can be a program name with args. set dummy ${host_alias}-krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $krb5path do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$KRB5_CONFIG" = ""; then # Extract the first word of "krb5-config", so it can be a program name with args. set dummy krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $krb5path do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$KRB5_CONFIG" != ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $KRB5_CONFIG supports gssapi" >&5 $as_echo_n "checking whether $KRB5_CONFIG supports gssapi... " >&6; } if "${KRB5_CONFIG}" --cflags gssapi > /dev/null 2>/dev/null; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } found_gssapi=yes GSSAPI_LIBS="`"${KRB5_CONFIG}" --libs gssapi`" GSSAPI_CFLAGS="`"${KRB5_CONFIG}" --cflags gssapi`" else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi # Third: look for or in some likely places, # and we'll worry about how to *link* it in a moment... if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then if test -r "${with_gssapi}/include/gssapi.h" -o \ -r "${with_gssapi}/include/gssapi/gssapi.h"; then GSSAPI_CFLAGS="-I\"${with_gssapi}/include\"" fi else if test -r /usr/kerberos/include/gssapi.h -o \ -r /usr/kerberos/include/gssapi/gssapi.h; then GSSAPI_CFLAGS=-I/usr/kerberos/include elif test -r /usr/include/kerberosV/gssapi.h -o \ -r /usr/include/kerberosV/gssapi/gssapi.h; then # OpenBSD 5.2 puts it here GSSAPI_CFLAGS=-I/usr/include/kerberosV else # Maybe it'll Just Work GSSAPI_CFLAGS= fi fi fi oldcflags="$CFLAGS" CFLAGS="$CFLAGS ${GSSAPI_CFLAGS}" # OK, now see if we've correctly managed to find gssapi.h at least... gssapi_hdr= ac_fn_c_check_header_mongrel "$LINENO" "gssapi/gssapi.h" "ac_cv_header_gssapi_gssapi_h" "$ac_includes_default" if test "x$ac_cv_header_gssapi_gssapi_h" = xyes; then : gssapi_hdr="" else ac_fn_c_check_header_mongrel "$LINENO" "gssapi.h" "ac_cv_header_gssapi_h" "$ac_includes_default" if test "x$ac_cv_header_gssapi_h" = xyes; then : gssapi_hdr="" else { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Cannot find or " >&5 $as_echo "$as_me: WARNING: Cannot find or " >&2;} fi fi # Finally, unless we've already failed, see if we can link it. linked_gssapi=no if test -n "${gssapi_hdr}"; then cat >>confdefs.h <<_ACEOF #define GSSAPI_HDR $gssapi_hdr _ACEOF if test "$found_gssapi" = "yes"; then # We think we have GSSAPI_LIBS already so try it... gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" else LFLAG= if test -n "$gssapi_root"; then LFLAG="-L\"${gssapi_root}/lib$libsuff\"" fi # Solaris, HPUX, etc. GSSAPI_LIBS="$LFLAG -lgss" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi_krb5" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # OpenBSD 5.2 at least GSSAPI_LIBS="$LFLAG -lgssapi -lkrb5 -lcrypto" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # MIT GSSAPI_LIBS="$LFLAG -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # Heimdal GSSAPI_LIBS="$LFLAG -lkrb5 -lcrypto -lasn1 -lcom_err -lroken -lgssapi" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually" >&5 $as_echo "$as_me: WARNING: Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually" >&2;} fi fi fi CFLAGS="$oldcflags" if test "$linked_gssapi" = "yes"; then $as_echo "#define HAVE_GSSAPI 1" >>confdefs.h elif test "$with_gssapi" = ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Building without GSSAPI support" >&5 $as_echo "$as_me: WARNING: Building without GSSAPI support" >&2;}; unset GSSAPI_CFLAGS unset GSSAPI_LIBS else as_fn_error $? "GSSAPI support requested but not found. Try setting GSSAPI_LIBS/GSSAPI_CFLAGS" "$LINENO" 5 fi fi if test "$linked_gssapi" = "yes"; then OPENCONNECT_GSSAPI_TRUE= OPENCONNECT_GSSAPI_FALSE='#' else OPENCONNECT_GSSAPI_TRUE='#' OPENCONNECT_GSSAPI_FALSE= fi # Check whether --with-java was given. if test "${with_java+set}" = set; then : withval=$with_java; else with_java=no fi if test "$with_java" = "yes"; then JNI_INCLUDE_DIRS="" if test "x$JAVA_HOME" != x; then _JTOPDIR="$JAVA_HOME" else if test "x$JAVAC" = x; then JAVAC=javac fi # Extract the first word of "$JAVAC", so it can be a program name with args. set dummy $JAVAC; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path__ACJNI_JAVAC+:} false; then : $as_echo_n "(cached) " >&6 else case $_ACJNI_JAVAC in [\\/]* | ?:[\\/]*) ac_cv_path__ACJNI_JAVAC="$_ACJNI_JAVAC" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path__ACJNI_JAVAC="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS test -z "$ac_cv_path__ACJNI_JAVAC" && ac_cv_path__ACJNI_JAVAC="no" ;; esac fi _ACJNI_JAVAC=$ac_cv_path__ACJNI_JAVAC if test -n "$_ACJNI_JAVAC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_ACJNI_JAVAC" >&5 $as_echo "$_ACJNI_JAVAC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$_ACJNI_JAVAC" = xno; then as_fn_error $? "cannot find JDK; try setting \$JAVAC or \$JAVA_HOME" "$LINENO" 5 fi # find the include directory relative to the javac executable _cur=""$_ACJNI_JAVAC"" while ls -ld "$_cur" 2>/dev/null | grep " -> " >/dev/null; do { $as_echo "$as_me:${as_lineno-$LINENO}: checking symlink for $_cur" >&5 $as_echo_n "checking symlink for $_cur... " >&6; } _slink=`ls -ld "$_cur" | sed 's/.* -> //'` case "$_slink" in /*) _cur="$_slink";; # 'X' avoids triggering unwanted echo options. *) _cur=`echo "X$_cur" | sed -e 's/^X//' -e 's:[^/]*$::'`"$_slink";; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_cur" >&5 $as_echo "$_cur" >&6; } done _ACJNI_FOLLOWED="$_cur" _JTOPDIR=`echo "$_ACJNI_FOLLOWED" | sed -e 's://*:/:g' -e 's:/[^/]*$::'` fi case "$host_os" in darwin*) _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[^/]*$::'` _JINC="$_JTOPDIR/Headers";; *) _JINC="$_JTOPDIR/include";; esac $as_echo "$as_me:${as_lineno-$LINENO}: _JTOPDIR=$_JTOPDIR" >&5 $as_echo "$as_me:${as_lineno-$LINENO}: _JINC=$_JINC" >&5 # On Mac OS X 10.6.4, jni.h is a symlink: # /System/Library/Frameworks/JavaVM.framework/Versions/Current/Headers/jni.h # -> ../../CurrentJDK/Headers/jni.h. as_ac_File=`$as_echo "ac_cv_file_$_JINC/jni.h" | $as_tr_sh` { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $_JINC/jni.h" >&5 $as_echo_n "checking for $_JINC/jni.h... " >&6; } if eval \${$as_ac_File+:} false; then : $as_echo_n "(cached) " >&6 else test "$cross_compiling" = yes && as_fn_error $? "cannot check for file existence when cross compiling" "$LINENO" 5 if test -r "$_JINC/jni.h"; then eval "$as_ac_File=yes" else eval "$as_ac_File=no" fi fi eval ac_res=\$$as_ac_File { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if eval test \"x\$"$as_ac_File"\" = x"yes"; then : JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JINC" else _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[^/]*$::'` as_ac_File=`$as_echo "ac_cv_file_$_JTOPDIR/include/jni.h" | $as_tr_sh` { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $_JTOPDIR/include/jni.h" >&5 $as_echo_n "checking for $_JTOPDIR/include/jni.h... " >&6; } if eval \${$as_ac_File+:} false; then : $as_echo_n "(cached) " >&6 else test "$cross_compiling" = yes && as_fn_error $? "cannot check for file existence when cross compiling" "$LINENO" 5 if test -r "$_JTOPDIR/include/jni.h"; then eval "$as_ac_File=yes" else eval "$as_ac_File=no" fi fi eval ac_res=\$$as_ac_File { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if eval test \"x\$"$as_ac_File"\" = x"yes"; then : JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include" else as_fn_error $? "cannot find JDK header files" "$LINENO" 5 fi fi # get the likely subdirectories for system specific java includes case "$host_os" in bsdi*) _JNI_INC_SUBDIRS="bsdos";; freebsd*) _JNI_INC_SUBDIRS="freebsd";; linux*) _JNI_INC_SUBDIRS="linux genunix";; osf*) _JNI_INC_SUBDIRS="alpha";; solaris*) _JNI_INC_SUBDIRS="solaris";; mingw*) _JNI_INC_SUBDIRS="win32";; cygwin*) _JNI_INC_SUBDIRS="win32";; *) _JNI_INC_SUBDIRS="genunix";; esac # add any subdirectories that are present for JINCSUBDIR in $_JNI_INC_SUBDIRS do if test -d "$_JTOPDIR/include/$JINCSUBDIR"; then JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include/$JINCSUBDIR" fi done for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS; do JNI_CFLAGS="$JNI_CFLAGS -I$JNI_INCLUDE_DIR" done elif test "$with_java" = "no"; then JNI_CFLAGS="" else JNI_CFLAGS="-I$with_java" fi if test "x$JNI_CFLAGS" != "x"; then oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $JNI_CFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking jni.h usability" >&5 $as_echo_n "checking jni.h usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { jint foo = 0; (void)foo; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "unable to compile JNI test program" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext CFLAGS="$oldCFLAGS" JNI_CFLAGS=$JNI_CFLAGS fi if test "$JNI_CFLAGS" != ""; then OPENCONNECT_JNI_TRUE= OPENCONNECT_JNI_FALSE='#' else OPENCONNECT_JNI_TRUE='#' OPENCONNECT_JNI_FALSE= fi # Check whether --enable-jni-standalone was given. if test "${enable_jni_standalone+set}" = set; then : enableval=$enable_jni_standalone; jni_standalone=$enableval else jni_standalone=no fi if test $jni_standalone = yes; then JNI_STANDALONE_TRUE= JNI_STANDALONE_FALSE='#' else JNI_STANDALONE_TRUE='#' JNI_STANDALONE_FALSE= fi symver_java= if test "$jni_standalone" = "yes" ; then symver_java=$(sed -n '/JNIEXPORT/{s/^JNIEXPORT.*\(Java_.*\) *(/\1;/ p}' ${srcdir}/jni.c) # Remove the newlines between each item. symver_java=$(echo $symver_java) fi SYMVER_JAVA=$symver_java ac_fn_c_check_header_mongrel "$LINENO" "if_tun.h" "ac_cv_header_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "linux/if_tun.h" "ac_cv_header_linux_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_linux_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"linux/if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "net/if_tun.h" "ac_cv_header_net_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_net_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"net/if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "net/tun/if_tun.h" "ac_cv_header_net_tun_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_net_tun_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"net/tun/if_tun.h\"" >>confdefs.h fi fi fi fi ac_fn_c_check_header_mongrel "$LINENO" "net/if_utun.h" "ac_cv_header_net_if_utun_h" "$ac_includes_default" if test "x$ac_cv_header_net_if_utun_h" = xyes; then : $as_echo "#define HAVE_NET_UTUN_H 1" >>confdefs.h fi ac_fn_c_check_header_mongrel "$LINENO" "alloca.h" "ac_cv_header_alloca_h" "$ac_includes_default" if test "x$ac_cv_header_alloca_h" = xyes; then : $as_echo "#define HAVE_ALLOCA_H 1" >>confdefs.h fi ac_fn_c_check_header_mongrel "$LINENO" "endian.h" "ac_cv_header_endian_h" "$ac_includes_default" if test "x$ac_cv_header_endian_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "sys/endian.h" "ac_cv_header_sys_endian_h" "$ac_includes_default" if test "x$ac_cv_header_sys_endian_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "sys/isa_defs.h" "ac_cv_header_sys_isa_defs_h" "$ac_includes_default" if test "x$ac_cv_header_sys_isa_defs_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h fi fi fi if test "$ssl_library" = "openssl" || test "$ssl_library" = "both"; then oldLIBS="$LIBS" LIBS="$LIBS $OPENSSL_LIBS" oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $OPENSSL_CFLAGS" if test "$ssl_library" = "openssl"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ENGINE_by_id() in OpenSSL" >&5 $as_echo_n "checking for ENGINE_by_id() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { ENGINE_by_id("foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_ENGINE 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: Building without OpenSSL TPM ENGINE support" >&5 $as_echo "$as_me: Building without OpenSSL TPM ENGINE support" >&6;} fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dtls1_stop_timer() in OpenSSL" >&5 $as_echo_n "checking for dtls1_stop_timer() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern void dtls1_stop_timer(SSL *); int main () { dtls1_stop_timer(NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_DTLS1_STOP_TIMER 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DTLSv1_2_client_method() in OpenSSL" >&5 $as_echo_n "checking for DTLSv1_2_client_method() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { DTLSv1_2_client_method(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_DTLS12 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" CFLAGS="$oldCFLAGS" fi build_www=yes for ac_prog in python2 python do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PYTHON+:} false; then : $as_echo_n "(cached) " >&6 else case $PYTHON in [\\/]* | ?:[\\/]*) ac_cv_path_PYTHON="$PYTHON" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/bin:/usr/bin" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PYTHON="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PYTHON=$ac_cv_path_PYTHON if test -n "$PYTHON"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PYTHON" >&5 $as_echo "$PYTHON" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$PYTHON" && break done if (test -n "${ac_cv_path_PYTHON}"); then { $as_echo "$as_me:${as_lineno-$LINENO}: checking that python is version 2.x" >&5 $as_echo_n "checking that python is version 2.x... " >&6; } if $PYTHON --version 2>&1 | grep "Python 2\." > /dev/null; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } PYTHON=${ac_cv_path_PYTHON} else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: Python is not v2.x; not building HTML pages" >&5 $as_echo "$as_me: Python is not v2.x; not building HTML pages" >&6;} build_www=no fi else { $as_echo "$as_me:${as_lineno-$LINENO}: Python not found; not building HTML pages" >&5 $as_echo "$as_me: Python not found; not building HTML pages" >&6;} build_www=no fi if test "${build_www}" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking if groff can create UTF-8 XHTML" >&5 $as_echo_n "checking if groff can create UTF-8 XHTML... " >&6; } if test -z "$GROFF"; then ac_path_GROFF_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in groff; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GROFF="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GROFF" || continue $ac_path_GROFF -t -K UTF-8 -mandoc -Txhtml /dev/null > /dev/null 2>&1 && ac_cv_path_GROFF=$ac_path_GROFF $ac_path_GROFF_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GROFF"; then : fi else ac_cv_path_GROFF=$GROFF fi if test -n "$ac_cv_path_GROFF"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } GROFF=${ac_cv_path_GROFF} else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no. Not building HTML pages" >&5 $as_echo "no. Not building HTML pages" >&6; } build_www=no fi fi if test "${build_www}" = "yes"; then BUILD_WWW_TRUE= BUILD_WWW_FALSE='#' else BUILD_WWW_TRUE='#' BUILD_WWW_FALSE= fi CONFIG_STATUS_DEPENDENCIES='$(top_srcdir)/po/LINGUAS $(top_srcdir)/openconnect.h ${top_srcdir}/libopenconnect.map.in' RAWLINGUAS=`sed -e "/^#/d" -e "s/#.*//" "${srcdir}/po/LINGUAS"` # Remove newlines LINGUAS=`echo $RAWLINGUAS` APIMAJOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MAJOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" APIMINOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MINOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" # We want version.c to depend on the files that would affect the # output of version.sh. But we cannot assume that they'll exist, # and we cannot use $(wildcard) in a non-GNU makefile. So we just # depend on the files which happen to exist at configure time. GITVERSIONDEPS= for a in ${srcdir}/.git/index ${srcdir}/.git/packed-refs \ ${srcdir}/.git/refs/tags ${srcdir}/.git/HEAD; do if test -r $a ; then GITVERSIONDEPS="$GITVERSIONDEPS $a" fi done ac_config_files="$ac_config_files Makefile openconnect.pc po/Makefile www/Makefile libopenconnect.map openconnect.8 www/styles/Makefile www/inc/Makefile www/images/Makefile" cat >confcache <<\_ACEOF # This file is a shell script that caches the results of configure # tests run on this system so they can be shared between configure # scripts and configure runs, see configure's option --config-cache. # It is not useful on other systems. If it contains results you don't # want to keep, you may remove or edit it. # # config.status only pays attention to the cache file if you give it # the --recheck option to rerun configure. # # `ac_cv_env_foo' variables (set or unset) will be overridden when # loading this file, other *unset* `ac_cv_foo' will be assigned the # following values. _ACEOF # The following way of writing the cache mishandles newlines in values, # but we know of no workaround that is simple, portable, and efficient. # So, we kill variables containing newlines. # Ultrix sh set writes to stderr and can't be redirected directly, # and sets the high bit in the cache file unless we assign to the vars. ( for ac_var in `(set) 2>&1 | sed -n 's/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space=' '; set) 2>&1` in #( *${as_nl}ac_space=\ *) # `set' does not quote correctly, so add quotes: double-quote # substitution turns \\\\ into \\, and sed turns \\ into \. sed -n \ "s/'/'\\\\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\\2'/p" ;; #( *) # `set' quotes correctly as required by POSIX, so do not add quotes. sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) | sed ' /^ac_cv_env_/b end t clear :clear s/^\([^=]*\)=\(.*[{}].*\)$/test "${\1+set}" = set || &/ t end s/^\([^=]*\)=\(.*\)$/\1=${\1=\2}/ :end' >>confcache if diff "$cache_file" confcache >/dev/null 2>&1; then :; else if test -w "$cache_file"; then if test "x$cache_file" != "x/dev/null"; then { $as_echo "$as_me:${as_lineno-$LINENO}: updating cache $cache_file" >&5 $as_echo "$as_me: updating cache $cache_file" >&6;} if test ! -f "$cache_file" || test -h "$cache_file"; then cat confcache >"$cache_file" else case $cache_file in #( */* | ?:*) mv -f confcache "$cache_file"$$ && mv -f "$cache_file"$$ "$cache_file" ;; #( *) mv -f confcache "$cache_file" ;; esac fi fi else { $as_echo "$as_me:${as_lineno-$LINENO}: not updating unwritable cache $cache_file" >&5 $as_echo "$as_me: not updating unwritable cache $cache_file" >&6;} fi fi rm -f confcache test "x$prefix" = xNONE && prefix=$ac_default_prefix # Let make expand exec_prefix. test "x$exec_prefix" = xNONE && exec_prefix='${prefix}' DEFS=-DHAVE_CONFIG_H ac_libobjs= ac_ltlibobjs= U= for ac_i in : $LIBOBJS; do test "x$ac_i" = x: && continue # 1. Remove the extension, and $U if already installed. ac_script='s/\$U\././;s/\.o$//;s/\.obj$//' ac_i=`$as_echo "$ac_i" | sed "$ac_script"` # 2. Prepend LIBOBJDIR. When used with automake>=1.10 LIBOBJDIR # will be set to the directory where LIBOBJS objects are built. as_fn_append ac_libobjs " \${LIBOBJDIR}$ac_i\$U.$ac_objext" as_fn_append ac_ltlibobjs " \${LIBOBJDIR}$ac_i"'$U.lo' done LIBOBJS=$ac_libobjs LTLIBOBJS=$ac_ltlibobjs if test -z "${MAINTAINER_MODE_TRUE}" && test -z "${MAINTAINER_MODE_FALSE}"; then as_fn_error $? "conditional \"MAINTAINER_MODE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking that generated files are newer than configure" >&5 $as_echo_n "checking that generated files are newer than configure... " >&6; } if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: done" >&5 $as_echo "done" >&6; } if test -n "$EXEEXT"; then am__EXEEXT_TRUE= am__EXEEXT_FALSE='#' else am__EXEEXT_TRUE='#' am__EXEEXT_FALSE= fi if test -z "${OPENCONNECT_WIN32_TRUE}" && test -z "${OPENCONNECT_WIN32_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_WIN32\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${AMDEP_TRUE}" && test -z "${AMDEP_FALSE}"; then as_fn_error $? "conditional \"AMDEP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${am__fastdepCC_TRUE}" && test -z "${am__fastdepCC_FALSE}"; then as_fn_error $? "conditional \"am__fastdepCC\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_ICONV_TRUE}" && test -z "${OPENCONNECT_ICONV_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_ICONV\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${BUILD_LZSTEST_TRUE}" && test -z "${BUILD_LZSTEST_FALSE}"; then as_fn_error $? "conditional \"BUILD_LZSTEST\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${USE_NLS_TRUE}" && test -z "${USE_NLS_FALSE}"; then as_fn_error $? "conditional \"USE_NLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_GNUTLS_TRUE}" && test -z "${OPENCONNECT_GNUTLS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_GNUTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_OPENSSL_TRUE}" && test -z "${OPENCONNECT_OPENSSL_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_OPENSSL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${ESP_GNUTLS_TRUE}" && test -z "${ESP_GNUTLS_FALSE}"; then as_fn_error $? "conditional \"ESP_GNUTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${ESP_OPENSSL_TRUE}" && test -z "${ESP_OPENSSL_FALSE}"; then as_fn_error $? "conditional \"ESP_OPENSSL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENBSD_LIBTOOL_TRUE}" && test -z "${OPENBSD_LIBTOOL_FALSE}"; then as_fn_error $? "conditional \"OPENBSD_LIBTOOL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_VSCRIPT_TRUE}" && test -z "${HAVE_VSCRIPT_FALSE}"; then as_fn_error $? "conditional \"HAVE_VSCRIPT\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_VSCRIPT_COMPLEX_TRUE}" && test -z "${HAVE_VSCRIPT_COMPLEX_FALSE}"; then as_fn_error $? "conditional \"HAVE_VSCRIPT_COMPLEX\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_STOKEN_TRUE}" && test -z "${OPENCONNECT_STOKEN_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_STOKEN\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_LIBPCSCLITE_TRUE}" && test -z "${OPENCONNECT_LIBPCSCLITE_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_LIBPCSCLITE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_GSSAPI_TRUE}" && test -z "${OPENCONNECT_GSSAPI_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_GSSAPI\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_JNI_TRUE}" && test -z "${OPENCONNECT_JNI_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_JNI\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${JNI_STANDALONE_TRUE}" && test -z "${JNI_STANDALONE_FALSE}"; then as_fn_error $? "conditional \"JNI_STANDALONE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${BUILD_WWW_TRUE}" && test -z "${BUILD_WWW_FALSE}"; then as_fn_error $? "conditional \"BUILD_WWW\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi : "${CONFIG_STATUS=./config.status}" ac_write_fail=0 ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files $CONFIG_STATUS" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $CONFIG_STATUS" >&5 $as_echo "$as_me: creating $CONFIG_STATUS" >&6;} as_write_fail=0 cat >$CONFIG_STATUS <<_ASEOF || as_write_fail=1 #! $SHELL # Generated by $as_me. # Run this file to recreate the current configuration. # Compiler output produced by configure, useful for debugging # configure, is in config.log if it exists. debug=false ac_cs_recheck=false ac_cs_silent=false SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$CONFIG_STATUS <<\_ASEOF || as_write_fail=1 ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" exec 6>&1 ## ----------------------------------- ## ## Main body of $CONFIG_STATUS script. ## ## ----------------------------------- ## _ASEOF test $as_write_fail = 0 && chmod +x $CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Save the log message, to keep $0 and so on meaningful, and to # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" This file was extended by openconnect $as_me 7.06, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES CONFIG_HEADERS = $CONFIG_HEADERS CONFIG_LINKS = $CONFIG_LINKS CONFIG_COMMANDS = $CONFIG_COMMANDS $ $0 $@ on `(hostname || uname -n) 2>/dev/null | sed 1q` " _ACEOF case $ac_config_files in *" "*) set x $ac_config_files; shift; ac_config_files=$*;; esac case $ac_config_headers in *" "*) set x $ac_config_headers; shift; ac_config_headers=$*;; esac cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # Files that config.status was made for. config_files="$ac_config_files" config_headers="$ac_config_headers" config_commands="$ac_config_commands" _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 ac_cs_usage="\ \`$as_me' instantiates files and other configuration actions from templates according to the current configuration. Unless the files and actions are specified as TAGs, all are instantiated by default. Usage: $0 [OPTION]... [TAG]... -h, --help print this help, then exit -V, --version print version number and configuration settings, then exit --config print configuration, then exit -q, --quiet, --silent do not print progress messages -d, --debug don't remove temporary files --recheck update $as_me by reconfiguring in the same conditions --file=FILE[:TEMPLATE] instantiate the configuration file FILE --header=FILE[:TEMPLATE] instantiate the configuration header FILE Configuration files: $config_files Configuration headers: $config_headers Configuration commands: $config_commands Report bugs to the package provider." _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ openconnect config.status 7.06 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" Copyright (C) 2012 Free Software Foundation, Inc. This config.status script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it." ac_pwd='$ac_pwd' srcdir='$srcdir' INSTALL='$INSTALL' MKDIR_P='$MKDIR_P' AWK='$AWK' test -n "\$AWK" || AWK=awk _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # The default lists apply if the user does not specify any file. ac_need_defaults=: while test $# != 0 do case $1 in --*=?*) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg=`expr "X$1" : 'X[^=]*=\(.*\)'` ac_shift=: ;; --*=) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg= ac_shift=: ;; *) ac_option=$1 ac_optarg=$2 ac_shift=shift ;; esac case $ac_option in # Handling of the options. -recheck | --recheck | --rechec | --reche | --rech | --rec | --re | --r) ac_cs_recheck=: ;; --version | --versio | --versi | --vers | --ver | --ve | --v | -V ) $as_echo "$ac_cs_version"; exit ;; --config | --confi | --conf | --con | --co | --c ) $as_echo "$ac_cs_config"; exit ;; --debug | --debu | --deb | --de | --d | -d ) debug=: ;; --file | --fil | --fi | --f ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; '') as_fn_error $? "missing file argument" ;; esac as_fn_append CONFIG_FILES " '$ac_optarg'" ac_need_defaults=false;; --header | --heade | --head | --hea ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; esac as_fn_append CONFIG_HEADERS " '$ac_optarg'" ac_need_defaults=false;; --he | --h) # Conflict between --help and --header as_fn_error $? "ambiguous option: \`$1' Try \`$0 --help' for more information.";; --help | --hel | -h ) $as_echo "$ac_cs_usage"; exit ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil | --si | --s) ac_cs_silent=: ;; # This is an error. -*) as_fn_error $? "unrecognized option: \`$1' Try \`$0 --help' for more information." ;; *) as_fn_append ac_config_targets " $1" ac_need_defaults=false ;; esac shift done ac_configure_extra_args= if $ac_cs_silent; then exec 6>/dev/null ac_configure_extra_args="$ac_configure_extra_args --silent" fi _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 if \$ac_cs_recheck; then set X $SHELL '$0' $ac_configure_args \$ac_configure_extra_args --no-create --no-recursion shift \$as_echo "running CONFIG_SHELL=$SHELL \$*" >&6 CONFIG_SHELL='$SHELL' export CONFIG_SHELL exec "\$@" fi _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 exec 5>>config.log { echo sed 'h;s/./-/g;s/^.../## /;s/...$/ ##/;p;x;p;x' <<_ASBOX ## Running $as_me. ## _ASBOX $as_echo "$ac_log" } >&5 _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # # INIT-COMMANDS # AMDEP_TRUE="$AMDEP_TRUE" ac_aux_dir="$ac_aux_dir" # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH sed_quote_subst='$sed_quote_subst' double_quote_subst='$double_quote_subst' delay_variable_subst='$delay_variable_subst' enable_shared='`$ECHO "$enable_shared" | $SED "$delay_single_quote_subst"`' enable_static='`$ECHO "$enable_static" | $SED "$delay_single_quote_subst"`' macro_version='`$ECHO "$macro_version" | $SED "$delay_single_quote_subst"`' macro_revision='`$ECHO "$macro_revision" | $SED "$delay_single_quote_subst"`' pic_mode='`$ECHO "$pic_mode" | $SED "$delay_single_quote_subst"`' enable_fast_install='`$ECHO "$enable_fast_install" | $SED "$delay_single_quote_subst"`' SHELL='`$ECHO "$SHELL" | $SED "$delay_single_quote_subst"`' ECHO='`$ECHO "$ECHO" | $SED "$delay_single_quote_subst"`' PATH_SEPARATOR='`$ECHO "$PATH_SEPARATOR" | $SED "$delay_single_quote_subst"`' host_alias='`$ECHO "$host_alias" | $SED "$delay_single_quote_subst"`' host='`$ECHO "$host" | $SED "$delay_single_quote_subst"`' host_os='`$ECHO "$host_os" | $SED "$delay_single_quote_subst"`' build_alias='`$ECHO "$build_alias" | $SED "$delay_single_quote_subst"`' build='`$ECHO "$build" | $SED "$delay_single_quote_subst"`' build_os='`$ECHO "$build_os" | $SED "$delay_single_quote_subst"`' SED='`$ECHO "$SED" | $SED "$delay_single_quote_subst"`' Xsed='`$ECHO "$Xsed" | $SED "$delay_single_quote_subst"`' GREP='`$ECHO "$GREP" | $SED "$delay_single_quote_subst"`' EGREP='`$ECHO "$EGREP" | $SED "$delay_single_quote_subst"`' FGREP='`$ECHO "$FGREP" | $SED "$delay_single_quote_subst"`' LD='`$ECHO "$LD" | $SED "$delay_single_quote_subst"`' NM='`$ECHO "$NM" | $SED "$delay_single_quote_subst"`' LN_S='`$ECHO "$LN_S" | $SED "$delay_single_quote_subst"`' max_cmd_len='`$ECHO "$max_cmd_len" | $SED "$delay_single_quote_subst"`' ac_objext='`$ECHO "$ac_objext" | $SED "$delay_single_quote_subst"`' exeext='`$ECHO "$exeext" | $SED "$delay_single_quote_subst"`' lt_unset='`$ECHO "$lt_unset" | $SED "$delay_single_quote_subst"`' lt_SP2NL='`$ECHO "$lt_SP2NL" | $SED "$delay_single_quote_subst"`' lt_NL2SP='`$ECHO "$lt_NL2SP" | $SED "$delay_single_quote_subst"`' lt_cv_to_host_file_cmd='`$ECHO "$lt_cv_to_host_file_cmd" | $SED "$delay_single_quote_subst"`' lt_cv_to_tool_file_cmd='`$ECHO "$lt_cv_to_tool_file_cmd" | $SED "$delay_single_quote_subst"`' reload_flag='`$ECHO "$reload_flag" | $SED "$delay_single_quote_subst"`' reload_cmds='`$ECHO "$reload_cmds" | $SED "$delay_single_quote_subst"`' OBJDUMP='`$ECHO "$OBJDUMP" | $SED "$delay_single_quote_subst"`' deplibs_check_method='`$ECHO "$deplibs_check_method" | $SED "$delay_single_quote_subst"`' file_magic_cmd='`$ECHO "$file_magic_cmd" | $SED "$delay_single_quote_subst"`' file_magic_glob='`$ECHO "$file_magic_glob" | $SED "$delay_single_quote_subst"`' want_nocaseglob='`$ECHO "$want_nocaseglob" | $SED "$delay_single_quote_subst"`' DLLTOOL='`$ECHO "$DLLTOOL" | $SED "$delay_single_quote_subst"`' sharedlib_from_linklib_cmd='`$ECHO "$sharedlib_from_linklib_cmd" | $SED "$delay_single_quote_subst"`' AR='`$ECHO "$AR" | $SED "$delay_single_quote_subst"`' AR_FLAGS='`$ECHO "$AR_FLAGS" | $SED "$delay_single_quote_subst"`' archiver_list_spec='`$ECHO "$archiver_list_spec" | $SED "$delay_single_quote_subst"`' STRIP='`$ECHO "$STRIP" | $SED "$delay_single_quote_subst"`' RANLIB='`$ECHO "$RANLIB" | $SED "$delay_single_quote_subst"`' old_postinstall_cmds='`$ECHO "$old_postinstall_cmds" | $SED "$delay_single_quote_subst"`' old_postuninstall_cmds='`$ECHO "$old_postuninstall_cmds" | $SED "$delay_single_quote_subst"`' old_archive_cmds='`$ECHO "$old_archive_cmds" | $SED "$delay_single_quote_subst"`' lock_old_archive_extraction='`$ECHO "$lock_old_archive_extraction" | $SED "$delay_single_quote_subst"`' CC='`$ECHO "$CC" | $SED "$delay_single_quote_subst"`' CFLAGS='`$ECHO "$CFLAGS" | $SED "$delay_single_quote_subst"`' compiler='`$ECHO "$compiler" | $SED "$delay_single_quote_subst"`' GCC='`$ECHO "$GCC" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_pipe='`$ECHO "$lt_cv_sys_global_symbol_pipe" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_cdecl='`$ECHO "$lt_cv_sys_global_symbol_to_cdecl" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_c_name_address='`$ECHO "$lt_cv_sys_global_symbol_to_c_name_address" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_c_name_address_lib_prefix='`$ECHO "$lt_cv_sys_global_symbol_to_c_name_address_lib_prefix" | $SED "$delay_single_quote_subst"`' nm_file_list_spec='`$ECHO "$nm_file_list_spec" | $SED "$delay_single_quote_subst"`' lt_sysroot='`$ECHO "$lt_sysroot" | $SED "$delay_single_quote_subst"`' objdir='`$ECHO "$objdir" | $SED "$delay_single_quote_subst"`' MAGIC_CMD='`$ECHO "$MAGIC_CMD" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_no_builtin_flag='`$ECHO "$lt_prog_compiler_no_builtin_flag" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_pic='`$ECHO "$lt_prog_compiler_pic" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_wl='`$ECHO "$lt_prog_compiler_wl" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_static='`$ECHO "$lt_prog_compiler_static" | $SED "$delay_single_quote_subst"`' lt_cv_prog_compiler_c_o='`$ECHO "$lt_cv_prog_compiler_c_o" | $SED "$delay_single_quote_subst"`' need_locks='`$ECHO "$need_locks" | $SED "$delay_single_quote_subst"`' MANIFEST_TOOL='`$ECHO "$MANIFEST_TOOL" | $SED "$delay_single_quote_subst"`' DSYMUTIL='`$ECHO "$DSYMUTIL" | $SED "$delay_single_quote_subst"`' NMEDIT='`$ECHO "$NMEDIT" | $SED "$delay_single_quote_subst"`' LIPO='`$ECHO "$LIPO" | $SED "$delay_single_quote_subst"`' OTOOL='`$ECHO "$OTOOL" | $SED "$delay_single_quote_subst"`' OTOOL64='`$ECHO "$OTOOL64" | $SED "$delay_single_quote_subst"`' libext='`$ECHO "$libext" | $SED "$delay_single_quote_subst"`' shrext_cmds='`$ECHO "$shrext_cmds" | $SED "$delay_single_quote_subst"`' extract_expsyms_cmds='`$ECHO "$extract_expsyms_cmds" | $SED "$delay_single_quote_subst"`' archive_cmds_need_lc='`$ECHO "$archive_cmds_need_lc" | $SED "$delay_single_quote_subst"`' enable_shared_with_static_runtimes='`$ECHO "$enable_shared_with_static_runtimes" | $SED "$delay_single_quote_subst"`' export_dynamic_flag_spec='`$ECHO "$export_dynamic_flag_spec" | $SED "$delay_single_quote_subst"`' whole_archive_flag_spec='`$ECHO "$whole_archive_flag_spec" | $SED "$delay_single_quote_subst"`' compiler_needs_object='`$ECHO "$compiler_needs_object" | $SED "$delay_single_quote_subst"`' old_archive_from_new_cmds='`$ECHO "$old_archive_from_new_cmds" | $SED "$delay_single_quote_subst"`' old_archive_from_expsyms_cmds='`$ECHO "$old_archive_from_expsyms_cmds" | $SED "$delay_single_quote_subst"`' archive_cmds='`$ECHO "$archive_cmds" | $SED "$delay_single_quote_subst"`' archive_expsym_cmds='`$ECHO "$archive_expsym_cmds" | $SED "$delay_single_quote_subst"`' module_cmds='`$ECHO "$module_cmds" | $SED "$delay_single_quote_subst"`' module_expsym_cmds='`$ECHO "$module_expsym_cmds" | $SED "$delay_single_quote_subst"`' with_gnu_ld='`$ECHO "$with_gnu_ld" | $SED "$delay_single_quote_subst"`' allow_undefined_flag='`$ECHO "$allow_undefined_flag" | $SED "$delay_single_quote_subst"`' no_undefined_flag='`$ECHO "$no_undefined_flag" | $SED "$delay_single_quote_subst"`' hardcode_libdir_flag_spec='`$ECHO "$hardcode_libdir_flag_spec" | $SED "$delay_single_quote_subst"`' hardcode_libdir_separator='`$ECHO "$hardcode_libdir_separator" | $SED "$delay_single_quote_subst"`' hardcode_direct='`$ECHO "$hardcode_direct" | $SED "$delay_single_quote_subst"`' hardcode_direct_absolute='`$ECHO "$hardcode_direct_absolute" | $SED "$delay_single_quote_subst"`' hardcode_minus_L='`$ECHO "$hardcode_minus_L" | $SED "$delay_single_quote_subst"`' hardcode_shlibpath_var='`$ECHO "$hardcode_shlibpath_var" | $SED "$delay_single_quote_subst"`' hardcode_automatic='`$ECHO "$hardcode_automatic" | $SED "$delay_single_quote_subst"`' inherit_rpath='`$ECHO "$inherit_rpath" | $SED "$delay_single_quote_subst"`' link_all_deplibs='`$ECHO "$link_all_deplibs" | $SED "$delay_single_quote_subst"`' always_export_symbols='`$ECHO "$always_export_symbols" | $SED "$delay_single_quote_subst"`' export_symbols_cmds='`$ECHO "$export_symbols_cmds" | $SED "$delay_single_quote_subst"`' exclude_expsyms='`$ECHO "$exclude_expsyms" | $SED "$delay_single_quote_subst"`' include_expsyms='`$ECHO "$include_expsyms" | $SED "$delay_single_quote_subst"`' prelink_cmds='`$ECHO "$prelink_cmds" | $SED "$delay_single_quote_subst"`' postlink_cmds='`$ECHO "$postlink_cmds" | $SED "$delay_single_quote_subst"`' file_list_spec='`$ECHO "$file_list_spec" | $SED "$delay_single_quote_subst"`' variables_saved_for_relink='`$ECHO "$variables_saved_for_relink" | $SED "$delay_single_quote_subst"`' need_lib_prefix='`$ECHO "$need_lib_prefix" | $SED "$delay_single_quote_subst"`' need_version='`$ECHO "$need_version" | $SED "$delay_single_quote_subst"`' version_type='`$ECHO "$version_type" | $SED "$delay_single_quote_subst"`' runpath_var='`$ECHO "$runpath_var" | $SED "$delay_single_quote_subst"`' shlibpath_var='`$ECHO "$shlibpath_var" | $SED "$delay_single_quote_subst"`' shlibpath_overrides_runpath='`$ECHO "$shlibpath_overrides_runpath" | $SED "$delay_single_quote_subst"`' libname_spec='`$ECHO "$libname_spec" | $SED "$delay_single_quote_subst"`' library_names_spec='`$ECHO "$library_names_spec" | $SED "$delay_single_quote_subst"`' soname_spec='`$ECHO "$soname_spec" | $SED "$delay_single_quote_subst"`' install_override_mode='`$ECHO "$install_override_mode" | $SED "$delay_single_quote_subst"`' postinstall_cmds='`$ECHO "$postinstall_cmds" | $SED "$delay_single_quote_subst"`' postuninstall_cmds='`$ECHO "$postuninstall_cmds" | $SED "$delay_single_quote_subst"`' finish_cmds='`$ECHO "$finish_cmds" | $SED "$delay_single_quote_subst"`' finish_eval='`$ECHO "$finish_eval" | $SED "$delay_single_quote_subst"`' hardcode_into_libs='`$ECHO "$hardcode_into_libs" | $SED "$delay_single_quote_subst"`' sys_lib_search_path_spec='`$ECHO "$sys_lib_search_path_spec" | $SED "$delay_single_quote_subst"`' sys_lib_dlsearch_path_spec='`$ECHO "$sys_lib_dlsearch_path_spec" | $SED "$delay_single_quote_subst"`' hardcode_action='`$ECHO "$hardcode_action" | $SED "$delay_single_quote_subst"`' enable_dlopen='`$ECHO "$enable_dlopen" | $SED "$delay_single_quote_subst"`' enable_dlopen_self='`$ECHO "$enable_dlopen_self" | $SED "$delay_single_quote_subst"`' enable_dlopen_self_static='`$ECHO "$enable_dlopen_self_static" | $SED "$delay_single_quote_subst"`' old_striplib='`$ECHO "$old_striplib" | $SED "$delay_single_quote_subst"`' striplib='`$ECHO "$striplib" | $SED "$delay_single_quote_subst"`' LTCC='$LTCC' LTCFLAGS='$LTCFLAGS' compiler='$compiler_DEFAULT' # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$1 _LTECHO_EOF' } # Quote evaled strings. for var in SHELL \ ECHO \ PATH_SEPARATOR \ SED \ GREP \ EGREP \ FGREP \ LD \ NM \ LN_S \ lt_SP2NL \ lt_NL2SP \ reload_flag \ OBJDUMP \ deplibs_check_method \ file_magic_cmd \ file_magic_glob \ want_nocaseglob \ DLLTOOL \ sharedlib_from_linklib_cmd \ AR \ AR_FLAGS \ archiver_list_spec \ STRIP \ RANLIB \ CC \ CFLAGS \ compiler \ lt_cv_sys_global_symbol_pipe \ lt_cv_sys_global_symbol_to_cdecl \ lt_cv_sys_global_symbol_to_c_name_address \ lt_cv_sys_global_symbol_to_c_name_address_lib_prefix \ nm_file_list_spec \ lt_prog_compiler_no_builtin_flag \ lt_prog_compiler_pic \ lt_prog_compiler_wl \ lt_prog_compiler_static \ lt_cv_prog_compiler_c_o \ need_locks \ MANIFEST_TOOL \ DSYMUTIL \ NMEDIT \ LIPO \ OTOOL \ OTOOL64 \ shrext_cmds \ export_dynamic_flag_spec \ whole_archive_flag_spec \ compiler_needs_object \ with_gnu_ld \ allow_undefined_flag \ no_undefined_flag \ hardcode_libdir_flag_spec \ hardcode_libdir_separator \ exclude_expsyms \ include_expsyms \ file_list_spec \ variables_saved_for_relink \ libname_spec \ library_names_spec \ soname_spec \ install_override_mode \ finish_eval \ old_striplib \ striplib; do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[\\\\\\\`\\"\\\$]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED \\"\\\$sed_quote_subst\\"\\\`\\\\\\"" ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done # Double-quote double-evaled strings. for var in reload_cmds \ old_postinstall_cmds \ old_postuninstall_cmds \ old_archive_cmds \ extract_expsyms_cmds \ old_archive_from_new_cmds \ old_archive_from_expsyms_cmds \ archive_cmds \ archive_expsym_cmds \ module_cmds \ module_expsym_cmds \ export_symbols_cmds \ prelink_cmds \ postlink_cmds \ postinstall_cmds \ postuninstall_cmds \ finish_cmds \ sys_lib_search_path_spec \ sys_lib_dlsearch_path_spec; do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[\\\\\\\`\\"\\\$]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED -e \\"\\\$double_quote_subst\\" -e \\"\\\$sed_quote_subst\\" -e \\"\\\$delay_variable_subst\\"\\\`\\\\\\"" ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done ac_aux_dir='$ac_aux_dir' xsi_shell='$xsi_shell' lt_shell_append='$lt_shell_append' # See if we are running on zsh, and set the options which allow our # commands through without removal of \ escapes INIT. if test -n "\${ZSH_VERSION+set}" ; then setopt NO_GLOB_SUBST fi PACKAGE='$PACKAGE' VERSION='$VERSION' TIMESTAMP='$TIMESTAMP' RM='$RM' ofile='$ofile' _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Handling of arguments. for ac_config_target in $ac_config_targets do case $ac_config_target in "config.h") CONFIG_HEADERS="$CONFIG_HEADERS config.h" ;; "depfiles") CONFIG_COMMANDS="$CONFIG_COMMANDS depfiles" ;; "libtool") CONFIG_COMMANDS="$CONFIG_COMMANDS libtool" ;; "Makefile") CONFIG_FILES="$CONFIG_FILES Makefile" ;; "openconnect.pc") CONFIG_FILES="$CONFIG_FILES openconnect.pc" ;; "po/Makefile") CONFIG_FILES="$CONFIG_FILES po/Makefile" ;; "www/Makefile") CONFIG_FILES="$CONFIG_FILES www/Makefile" ;; "libopenconnect.map") CONFIG_FILES="$CONFIG_FILES libopenconnect.map" ;; "openconnect.8") CONFIG_FILES="$CONFIG_FILES openconnect.8" ;; "www/styles/Makefile") CONFIG_FILES="$CONFIG_FILES www/styles/Makefile" ;; "www/inc/Makefile") CONFIG_FILES="$CONFIG_FILES www/inc/Makefile" ;; "www/images/Makefile") CONFIG_FILES="$CONFIG_FILES www/images/Makefile" ;; *) as_fn_error $? "invalid argument: \`$ac_config_target'" "$LINENO" 5;; esac done # If the user did not use the arguments to specify the items to instantiate, # then the envvar interface is used. Set only those that are not. # We use the long form for the default assignment because of an extremely # bizarre bug on SunOS 4.1.3. if $ac_need_defaults; then test "${CONFIG_FILES+set}" = set || CONFIG_FILES=$config_files test "${CONFIG_HEADERS+set}" = set || CONFIG_HEADERS=$config_headers test "${CONFIG_COMMANDS+set}" = set || CONFIG_COMMANDS=$config_commands fi # Have a temporary directory for convenience. Make it in the build tree # simply because there is no reason against having it here, and in addition, # creating and moving files from /tmp can sometimes cause problems. # Hook for its removal unless debugging. # Note that there is a small window in which the directory will not be cleaned: # after its creation but before its name has been assigned to `$tmp'. $debug || { tmp= ac_tmp= trap 'exit_status=$? : "${ac_tmp:=$tmp}" { test ! -d "$ac_tmp" || rm -fr "$ac_tmp"; } && exit $exit_status ' 0 trap 'as_fn_exit 1' 1 2 13 15 } # Create a (secure) tmp directory for tmp files. { tmp=`(umask 077 && mktemp -d "./confXXXXXX") 2>/dev/null` && test -d "$tmp" } || { tmp=./conf$$-$RANDOM (umask 077 && mkdir "$tmp") } || as_fn_error $? "cannot create a temporary directory in ." "$LINENO" 5 ac_tmp=$tmp # Set up the scripts for CONFIG_FILES section. # No need to generate them if there are no CONFIG_FILES. # This happens for instance with `./config.status config.h'. if test -n "$CONFIG_FILES"; then ac_cr=`echo X | tr X '\015'` # On cygwin, bash can eat \r inside `` if the user requested igncr. # But we know of no other shell where ac_cr would be empty at this # point, so we can use a bashism as a fallback. if test "x$ac_cr" = x; then eval ac_cr=\$\'\\r\' fi ac_cs_awk_cr=`$AWK 'BEGIN { print "a\rb" }' /dev/null` if test "$ac_cs_awk_cr" = "a${ac_cr}b"; then ac_cs_awk_cr='\\r' else ac_cs_awk_cr=$ac_cr fi echo 'BEGIN {' >"$ac_tmp/subs1.awk" && _ACEOF { echo "cat >conf$$subs.awk <<_ACEOF" && echo "$ac_subst_vars" | sed 's/.*/&!$&$ac_delim/' && echo "_ACEOF" } >conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_num=`echo "$ac_subst_vars" | grep -c '^'` ac_delim='%!_!# ' for ac_last_try in false false false false false :; do . ./conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_n=`sed -n "s/.*$ac_delim\$/X/p" conf$$subs.awk | grep -c X` if test $ac_delim_n = $ac_delim_num; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done rm -f conf$$subs.sh cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 cat >>"\$ac_tmp/subs1.awk" <<\\_ACAWK && _ACEOF sed -n ' h s/^/S["/; s/!.*/"]=/ p g s/^[^!]*!// :repl t repl s/'"$ac_delim"'$// t delim :nl h s/\(.\{148\}\)..*/\1/ t more1 s/["\\]/\\&/g; s/^/"/; s/$/\\n"\\/ p n b repl :more1 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t nl :delim h s/\(.\{148\}\)..*/\1/ t more2 s/["\\]/\\&/g; s/^/"/; s/$/"/ p b :more2 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t delim ' >$CONFIG_STATUS || ac_write_fail=1 rm -f conf$$subs.awk cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 _ACAWK cat >>"\$ac_tmp/subs1.awk" <<_ACAWK && for (key in S) S_is_set[key] = 1 FS = "" } { line = $ 0 nfields = split(line, field, "@") substed = 0 len = length(field[1]) for (i = 2; i < nfields; i++) { key = field[i] keylen = length(key) if (S_is_set[key]) { value = S[key] line = substr(line, 1, len) "" value "" substr(line, len + keylen + 3) len += length(value) + length(field[++i]) substed = 1 } else len += 1 + keylen } print line } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 if sed "s/$ac_cr//" < /dev/null > /dev/null 2>&1; then sed "s/$ac_cr\$//; s/$ac_cr/$ac_cs_awk_cr/g" else cat fi < "$ac_tmp/subs1.awk" > "$ac_tmp/subs.awk" \ || as_fn_error $? "could not setup config files machinery" "$LINENO" 5 _ACEOF # VPATH may cause trouble with some makes, so we remove sole $(srcdir), # ${srcdir} and @srcdir@ entries from VPATH if srcdir is ".", strip leading and # trailing colons and then remove the whole line if VPATH becomes empty # (actually we leave an empty line to preserve line numbers). if test "x$srcdir" = x.; then ac_vpsub='/^[ ]*VPATH[ ]*=[ ]*/{ h s/// s/^/:/ s/[ ]*$/:/ s/:\$(srcdir):/:/g s/:\${srcdir}:/:/g s/:@srcdir@:/:/g s/^:*// s/:*$// x s/\(=[ ]*\).*/\1/ G s/\n// s/^[^=]*=[ ]*$// }' fi cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 fi # test -n "$CONFIG_FILES" # Set up the scripts for CONFIG_HEADERS section. # No need to generate them if there are no CONFIG_HEADERS. # This happens for instance with `./config.status Makefile'. if test -n "$CONFIG_HEADERS"; then cat >"$ac_tmp/defines.awk" <<\_ACAWK || BEGIN { _ACEOF # Transform confdefs.h into an awk script `defines.awk', embedded as # here-document in config.status, that substitutes the proper values into # config.h.in to produce config.h. # Create a delimiter string that does not exist in confdefs.h, to ease # handling of long lines. ac_delim='%!_!# ' for ac_last_try in false false :; do ac_tt=`sed -n "/$ac_delim/p" confdefs.h` if test -z "$ac_tt"; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_HEADERS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done # For the awk script, D is an array of macro values keyed by name, # likewise P contains macro parameters if any. Preserve backslash # newline sequences. ac_word_re=[_$as_cr_Letters][_$as_cr_alnum]* sed -n ' s/.\{148\}/&'"$ac_delim"'/g t rset :rset s/^[ ]*#[ ]*define[ ][ ]*/ / t def d :def s/\\$// t bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3"/p s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2"/p d :bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3\\\\\\n"\\/p t cont s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2\\\\\\n"\\/p t cont d :cont n s/.\{148\}/&'"$ac_delim"'/g t clear :clear s/\\$// t bsnlc s/["\\]/\\&/g; s/^/"/; s/$/"/p d :bsnlc s/["\\]/\\&/g; s/^/"/; s/$/\\\\\\n"\\/p b cont ' >$CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 for (key in D) D_is_set[key] = 1 FS = "" } /^[\t ]*#[\t ]*(define|undef)[\t ]+$ac_word_re([\t (]|\$)/ { line = \$ 0 split(line, arg, " ") if (arg[1] == "#") { defundef = arg[2] mac1 = arg[3] } else { defundef = substr(arg[1], 2) mac1 = arg[2] } split(mac1, mac2, "(") #) macro = mac2[1] prefix = substr(line, 1, index(line, defundef) - 1) if (D_is_set[macro]) { # Preserve the white space surrounding the "#". print prefix "define", macro P[macro] D[macro] next } else { # Replace #undef with comments. This is necessary, for example, # in the case of _POSIX_SOURCE, which is predefined and required # on some systems where configure will not decide to define it. if (defundef == "undef") { print "/*", prefix defundef, macro, "*/" next } } } { print } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 as_fn_error $? "could not setup config headers machinery" "$LINENO" 5 fi # test -n "$CONFIG_HEADERS" eval set X " :F $CONFIG_FILES :H $CONFIG_HEADERS :C $CONFIG_COMMANDS" shift for ac_tag do case $ac_tag in :[FHLC]) ac_mode=$ac_tag; continue;; esac case $ac_mode$ac_tag in :[FHL]*:*);; :L* | :C*:*) as_fn_error $? "invalid tag \`$ac_tag'" "$LINENO" 5;; :[FH]-) ac_tag=-:-;; :[FH]*) ac_tag=$ac_tag:$ac_tag.in;; esac ac_save_IFS=$IFS IFS=: set x $ac_tag IFS=$ac_save_IFS shift ac_file=$1 shift case $ac_mode in :L) ac_source=$1;; :[FH]) ac_file_inputs= for ac_f do case $ac_f in -) ac_f="$ac_tmp/stdin";; *) # Look for the file first in the build tree, then in the source tree # (if the path is not absolute). The absolute path cannot be DOS-style, # because $ac_f cannot contain `:'. test -f "$ac_f" || case $ac_f in [\\/$]*) false;; *) test -f "$srcdir/$ac_f" && ac_f="$srcdir/$ac_f";; esac || as_fn_error 1 "cannot find input file: \`$ac_f'" "$LINENO" 5;; esac case $ac_f in *\'*) ac_f=`$as_echo "$ac_f" | sed "s/'/'\\\\\\\\''/g"`;; esac as_fn_append ac_file_inputs " '$ac_f'" done # Let's still pretend it is `configure' which instantiates (i.e., don't # use $as_me), people would be surprised to read: # /* config.h. Generated by config.status. */ configure_input='Generated from '` $as_echo "$*" | sed 's|^[^:]*/||;s|:[^:]*/|, |g' `' by configure.' if test x"$ac_file" != x-; then configure_input="$ac_file. $configure_input" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $ac_file" >&5 $as_echo "$as_me: creating $ac_file" >&6;} fi # Neutralize special characters interpreted by sed in replacement strings. case $configure_input in #( *\&* | *\|* | *\\* ) ac_sed_conf_input=`$as_echo "$configure_input" | sed 's/[\\\\&|]/\\\\&/g'`;; #( *) ac_sed_conf_input=$configure_input;; esac case $ac_tag in *:-:* | *:-) cat >"$ac_tmp/stdin" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; esac ;; esac ac_dir=`$as_dirname -- "$ac_file" || $as_expr X"$ac_file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$ac_file" : 'X\(//\)[^/]' \| \ X"$ac_file" : 'X\(//\)$' \| \ X"$ac_file" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$ac_file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` as_dir="$ac_dir"; as_fn_mkdir_p ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix case $ac_mode in :F) # # CONFIG_FILE # case $INSTALL in [\\/$]* | ?:[\\/]* ) ac_INSTALL=$INSTALL ;; *) ac_INSTALL=$ac_top_build_prefix$INSTALL ;; esac ac_MKDIR_P=$MKDIR_P case $MKDIR_P in [\\/$]* | ?:[\\/]* ) ;; */*) ac_MKDIR_P=$ac_top_build_prefix$MKDIR_P ;; esac _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # If the template does not know about datarootdir, expand it. # FIXME: This hack should be removed a few years after 2.60. ac_datarootdir_hack=; ac_datarootdir_seen= ac_sed_dataroot=' /datarootdir/ { p q } /@datadir@/p /@docdir@/p /@infodir@/p /@localedir@/p /@mandir@/p' case `eval "sed -n \"\$ac_sed_dataroot\" $ac_file_inputs"` in *datarootdir*) ac_datarootdir_seen=yes;; *@datadir@*|*@docdir@*|*@infodir@*|*@localedir@*|*@mandir@*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&5 $as_echo "$as_me: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&2;} _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_datarootdir_hack=' s&@datadir@&$datadir&g s&@docdir@&$docdir&g s&@infodir@&$infodir&g s&@localedir@&$localedir&g s&@mandir@&$mandir&g s&\\\${datarootdir}&$datarootdir&g' ;; esac _ACEOF # Neutralize VPATH when `$srcdir' = `.'. # Shell code in configure.ac might set extrasub. # FIXME: do we really want to maintain this feature? cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_sed_extra="$ac_vpsub $extrasub _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 :t /@[a-zA-Z_][a-zA-Z_0-9]*@/!b s|@configure_input@|$ac_sed_conf_input|;t t s&@top_builddir@&$ac_top_builddir_sub&;t t s&@top_build_prefix@&$ac_top_build_prefix&;t t s&@srcdir@&$ac_srcdir&;t t s&@abs_srcdir@&$ac_abs_srcdir&;t t s&@top_srcdir@&$ac_top_srcdir&;t t s&@abs_top_srcdir@&$ac_abs_top_srcdir&;t t s&@builddir@&$ac_builddir&;t t s&@abs_builddir@&$ac_abs_builddir&;t t s&@abs_top_builddir@&$ac_abs_top_builddir&;t t s&@INSTALL@&$ac_INSTALL&;t t s&@MKDIR_P@&$ac_MKDIR_P&;t t $ac_datarootdir_hack " eval sed \"\$ac_sed_extra\" "$ac_file_inputs" | $AWK -f "$ac_tmp/subs.awk" \ >$ac_tmp/out || as_fn_error $? "could not create $ac_file" "$LINENO" 5 test -z "$ac_datarootdir_hack$ac_datarootdir_seen" && { ac_out=`sed -n '/\${datarootdir}/p' "$ac_tmp/out"`; test -n "$ac_out"; } && { ac_out=`sed -n '/^[ ]*datarootdir[ ]*:*=/p' \ "$ac_tmp/out"`; test -z "$ac_out"; } && { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&5 $as_echo "$as_me: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&2;} rm -f "$ac_tmp/stdin" case $ac_file in -) cat "$ac_tmp/out" && rm -f "$ac_tmp/out";; *) rm -f "$ac_file" && mv "$ac_tmp/out" "$ac_file";; esac \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; :H) # # CONFIG_HEADER # if test x"$ac_file" != x-; then { $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" } >"$ac_tmp/config.h" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 if diff "$ac_file" "$ac_tmp/config.h" >/dev/null 2>&1; then { $as_echo "$as_me:${as_lineno-$LINENO}: $ac_file is unchanged" >&5 $as_echo "$as_me: $ac_file is unchanged" >&6;} else rm -f "$ac_file" mv "$ac_tmp/config.h" "$ac_file" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 fi else $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" \ || as_fn_error $? "could not create -" "$LINENO" 5 fi # Compute "$ac_file"'s index in $config_headers. _am_arg="$ac_file" _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`$as_dirname -- "$_am_arg" || $as_expr X"$_am_arg" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$_am_arg" : 'X\(//\)[^/]' \| \ X"$_am_arg" : 'X\(//\)$' \| \ X"$_am_arg" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$_am_arg" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'`/stamp-h$_am_stamp_count ;; :C) { $as_echo "$as_me:${as_lineno-$LINENO}: executing $ac_file commands" >&5 $as_echo "$as_me: executing $ac_file commands" >&6;} ;; esac case $ac_file$ac_mode in "depfiles":C) test x"$AMDEP_TRUE" != x"" || { # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. case $CONFIG_FILES in *\'*) eval set x "$CONFIG_FILES" ;; *) set x $CONFIG_FILES ;; esac shift for mf do # Strip MF so we end up with the name of the file. mf=`echo "$mf" | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile or not. # We used to match only the files named 'Makefile.in', but # some people rename them; so instead we look at the file content. # Grep'ing the first line is not enough: some people post-process # each Makefile.in and add a new line on top of each file to say so. # Grep'ing the whole file is not good either: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. if sed -n 's,^#.*generated by automake.*,X,p' "$mf" | grep X >/dev/null 2>&1; then dirpart=`$as_dirname -- "$mf" || $as_expr X"$mf" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$mf" : 'X\(//\)[^/]' \| \ X"$mf" : 'X\(//\)$' \| \ X"$mf" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$mf" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` else continue fi # Extract the definition of DEPDIR, am__include, and am__quote # from the Makefile without running 'make'. DEPDIR=`sed -n 's/^DEPDIR = //p' < "$mf"` test -z "$DEPDIR" && continue am__include=`sed -n 's/^am__include = //p' < "$mf"` test -z "$am__include" && continue am__quote=`sed -n 's/^am__quote = //p' < "$mf"` # Find all dependency output files, they are included files with # $(DEPDIR) in their names. We invoke sed twice because it is the # simplest approach to changing $(DEPDIR) to its actual value in the # expansion. for file in `sed -n " s/^$am__include $am__quote\(.*(DEPDIR).*\)$am__quote"'$/\1/p' <"$mf" | \ sed -e 's/\$(DEPDIR)/'"$DEPDIR"'/g'`; do # Make sure the directory exists. test -f "$dirpart/$file" && continue fdir=`$as_dirname -- "$file" || $as_expr X"$file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$file" : 'X\(//\)[^/]' \| \ X"$file" : 'X\(//\)$' \| \ X"$file" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` as_dir=$dirpart/$fdir; as_fn_mkdir_p # echo "creating $dirpart/$file" echo '# dummy' > "$dirpart/$file" done done } ;; "libtool":C) # See if we are running on zsh, and set the options which allow our # commands through without removal of \ escapes. if test -n "${ZSH_VERSION+set}" ; then setopt NO_GLOB_SUBST fi cfgfile="${ofile}T" trap "$RM \"$cfgfile\"; exit 1" 1 2 15 $RM "$cfgfile" cat <<_LT_EOF >> "$cfgfile" #! $SHELL # `$ECHO "$ofile" | sed 's%^.*/%%'` - Provide generalized library-building support services. # Generated automatically by $as_me ($PACKAGE$TIMESTAMP) $VERSION # Libtool was configured on host `(hostname || uname -n) 2>/dev/null | sed 1q`: # NOTE: Changes made to this file will be lost: look at ltmain.sh. # # Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2003, 2004, 2005, # 2006, 2007, 2008, 2009, 2010, 2011 Free Software # Foundation, Inc. # Written by Gordon Matzigkeit, 1996 # # This file is part of GNU Libtool. # # GNU Libtool is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License as # published by the Free Software Foundation; either version 2 of # the License, or (at your option) any later version. # # As a special exception to the GNU General Public License, # if you distribute this file as part of a program or library that # is built using GNU Libtool, you may include this file under the # same distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with GNU Libtool; see the file COPYING. If not, a copy # can be downloaded from http://www.gnu.org/licenses/gpl.html, or # obtained by writing to the Free Software Foundation, Inc., # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. # The names of the tagged configurations supported by this script. available_tags="" # ### BEGIN LIBTOOL CONFIG # Whether or not to build shared libraries. build_libtool_libs=$enable_shared # Whether or not to build static libraries. build_old_libs=$enable_static # Which release of libtool.m4 was used? macro_version=$macro_version macro_revision=$macro_revision # What type of objects to build. pic_mode=$pic_mode # Whether or not to optimize for fast installation. fast_install=$enable_fast_install # Shell to use when invoking shell scripts. SHELL=$lt_SHELL # An echo program that protects backslashes. ECHO=$lt_ECHO # The PATH separator for the build system. PATH_SEPARATOR=$lt_PATH_SEPARATOR # The host system. host_alias=$host_alias host=$host host_os=$host_os # The build system. build_alias=$build_alias build=$build build_os=$build_os # A sed program that does not truncate output. SED=$lt_SED # Sed that helps us avoid accidentally triggering echo(1) options like -n. Xsed="\$SED -e 1s/^X//" # A grep program that handles long lines. GREP=$lt_GREP # An ERE matcher. EGREP=$lt_EGREP # A literal string matcher. FGREP=$lt_FGREP # A BSD- or MS-compatible name lister. NM=$lt_NM # Whether we need soft or hard links. LN_S=$lt_LN_S # What is the maximum length of a command? max_cmd_len=$max_cmd_len # Object file suffix (normally "o"). objext=$ac_objext # Executable file suffix (normally ""). exeext=$exeext # whether the shell understands "unset". lt_unset=$lt_unset # turn spaces into newlines. SP2NL=$lt_lt_SP2NL # turn newlines into spaces. NL2SP=$lt_lt_NL2SP # convert \$build file names to \$host format. to_host_file_cmd=$lt_cv_to_host_file_cmd # convert \$build files to toolchain format. to_tool_file_cmd=$lt_cv_to_tool_file_cmd # An object symbol dumper. OBJDUMP=$lt_OBJDUMP # Method to check whether dependent libraries are shared objects. deplibs_check_method=$lt_deplibs_check_method # Command to use when deplibs_check_method = "file_magic". file_magic_cmd=$lt_file_magic_cmd # How to find potential files when deplibs_check_method = "file_magic". file_magic_glob=$lt_file_magic_glob # Find potential files using nocaseglob when deplibs_check_method = "file_magic". want_nocaseglob=$lt_want_nocaseglob # DLL creation program. DLLTOOL=$lt_DLLTOOL # Command to associate shared and link libraries. sharedlib_from_linklib_cmd=$lt_sharedlib_from_linklib_cmd # The archiver. AR=$lt_AR # Flags to create an archive. AR_FLAGS=$lt_AR_FLAGS # How to feed a file listing to the archiver. archiver_list_spec=$lt_archiver_list_spec # A symbol stripping program. STRIP=$lt_STRIP # Commands used to install an old-style archive. RANLIB=$lt_RANLIB old_postinstall_cmds=$lt_old_postinstall_cmds old_postuninstall_cmds=$lt_old_postuninstall_cmds # Whether to use a lock for old archive extraction. lock_old_archive_extraction=$lock_old_archive_extraction # A C compiler. LTCC=$lt_CC # LTCC compiler flags. LTCFLAGS=$lt_CFLAGS # Take the output of nm and produce a listing of raw symbols and C names. global_symbol_pipe=$lt_lt_cv_sys_global_symbol_pipe # Transform the output of nm in a proper C declaration. global_symbol_to_cdecl=$lt_lt_cv_sys_global_symbol_to_cdecl # Transform the output of nm in a C name address pair. global_symbol_to_c_name_address=$lt_lt_cv_sys_global_symbol_to_c_name_address # Transform the output of nm in a C name address pair when lib prefix is needed. global_symbol_to_c_name_address_lib_prefix=$lt_lt_cv_sys_global_symbol_to_c_name_address_lib_prefix # Specify filename containing input files for \$NM. nm_file_list_spec=$lt_nm_file_list_spec # The root where to search for dependent libraries,and in which our libraries should be installed. lt_sysroot=$lt_sysroot # The name of the directory that contains temporary libtool files. objdir=$objdir # Used to examine libraries when file_magic_cmd begins with "file". MAGIC_CMD=$MAGIC_CMD # Must we lock files when doing compilation? need_locks=$lt_need_locks # Manifest tool. MANIFEST_TOOL=$lt_MANIFEST_TOOL # Tool to manipulate archived DWARF debug symbol files on Mac OS X. DSYMUTIL=$lt_DSYMUTIL # Tool to change global to local symbols on Mac OS X. NMEDIT=$lt_NMEDIT # Tool to manipulate fat objects and archives on Mac OS X. LIPO=$lt_LIPO # ldd/readelf like tool for Mach-O binaries on Mac OS X. OTOOL=$lt_OTOOL # ldd/readelf like tool for 64 bit Mach-O binaries on Mac OS X 10.4. OTOOL64=$lt_OTOOL64 # Old archive suffix (normally "a"). libext=$libext # Shared library suffix (normally ".so"). shrext_cmds=$lt_shrext_cmds # The commands to extract the exported symbol list from a shared archive. extract_expsyms_cmds=$lt_extract_expsyms_cmds # Variables whose values should be saved in libtool wrapper scripts and # restored at link time. variables_saved_for_relink=$lt_variables_saved_for_relink # Do we need the "lib" prefix for modules? need_lib_prefix=$need_lib_prefix # Do we need a version for libraries? need_version=$need_version # Library versioning type. version_type=$version_type # Shared library runtime path variable. runpath_var=$runpath_var # Shared library path variable. shlibpath_var=$shlibpath_var # Is shlibpath searched before the hard-coded library search path? shlibpath_overrides_runpath=$shlibpath_overrides_runpath # Format of library name prefix. libname_spec=$lt_libname_spec # List of archive names. First name is the real one, the rest are links. # The last name is the one that the linker finds with -lNAME library_names_spec=$lt_library_names_spec # The coded name of the library, if different from the real name. soname_spec=$lt_soname_spec # Permission mode override for installation of shared libraries. install_override_mode=$lt_install_override_mode # Command to use after installation of a shared archive. postinstall_cmds=$lt_postinstall_cmds # Command to use after uninstallation of a shared archive. postuninstall_cmds=$lt_postuninstall_cmds # Commands used to finish a libtool library installation in a directory. finish_cmds=$lt_finish_cmds # As "finish_cmds", except a single script fragment to be evaled but # not shown. finish_eval=$lt_finish_eval # Whether we should hardcode library paths into libraries. hardcode_into_libs=$hardcode_into_libs # Compile-time system search path for libraries. sys_lib_search_path_spec=$lt_sys_lib_search_path_spec # Run-time system search path for libraries. sys_lib_dlsearch_path_spec=$lt_sys_lib_dlsearch_path_spec # Whether dlopen is supported. dlopen_support=$enable_dlopen # Whether dlopen of programs is supported. dlopen_self=$enable_dlopen_self # Whether dlopen of statically linked programs is supported. dlopen_self_static=$enable_dlopen_self_static # Commands to strip libraries. old_striplib=$lt_old_striplib striplib=$lt_striplib # The linker used to build libraries. LD=$lt_LD # How to create reloadable object files. reload_flag=$lt_reload_flag reload_cmds=$lt_reload_cmds # Commands used to build an old-style archive. old_archive_cmds=$lt_old_archive_cmds # A language specific compiler. CC=$lt_compiler # Is the compiler the GNU compiler? with_gcc=$GCC # Compiler flag to turn off builtin functions. no_builtin_flag=$lt_lt_prog_compiler_no_builtin_flag # Additional compiler flags for building library objects. pic_flag=$lt_lt_prog_compiler_pic # How to pass a linker flag through the compiler. wl=$lt_lt_prog_compiler_wl # Compiler flag to prevent dynamic linking. link_static_flag=$lt_lt_prog_compiler_static # Does compiler simultaneously support -c and -o options? compiler_c_o=$lt_lt_cv_prog_compiler_c_o # Whether or not to add -lc for building shared libraries. build_libtool_need_lc=$archive_cmds_need_lc # Whether or not to disallow shared libs when runtime libs are static. allow_libtool_libs_with_static_runtimes=$enable_shared_with_static_runtimes # Compiler flag to allow reflexive dlopens. export_dynamic_flag_spec=$lt_export_dynamic_flag_spec # Compiler flag to generate shared objects directly from archives. whole_archive_flag_spec=$lt_whole_archive_flag_spec # Whether the compiler copes with passing no objects directly. compiler_needs_object=$lt_compiler_needs_object # Create an old-style archive from a shared archive. old_archive_from_new_cmds=$lt_old_archive_from_new_cmds # Create a temporary old-style archive to link instead of a shared archive. old_archive_from_expsyms_cmds=$lt_old_archive_from_expsyms_cmds # Commands used to build a shared archive. archive_cmds=$lt_archive_cmds archive_expsym_cmds=$lt_archive_expsym_cmds # Commands used to build a loadable module if different from building # a shared archive. module_cmds=$lt_module_cmds module_expsym_cmds=$lt_module_expsym_cmds # Whether we are building with GNU ld or not. with_gnu_ld=$lt_with_gnu_ld # Flag that allows shared libraries with undefined symbols to be built. allow_undefined_flag=$lt_allow_undefined_flag # Flag that enforces no undefined symbols. no_undefined_flag=$lt_no_undefined_flag # Flag to hardcode \$libdir into a binary during linking. # This must work even if \$libdir does not exist hardcode_libdir_flag_spec=$lt_hardcode_libdir_flag_spec # Whether we need a single "-rpath" flag with a separated argument. hardcode_libdir_separator=$lt_hardcode_libdir_separator # Set to "yes" if using DIR/libNAME\${shared_ext} during linking hardcodes # DIR into the resulting binary. hardcode_direct=$hardcode_direct # Set to "yes" if using DIR/libNAME\${shared_ext} during linking hardcodes # DIR into the resulting binary and the resulting library dependency is # "absolute",i.e impossible to change by setting \${shlibpath_var} if the # library is relocated. hardcode_direct_absolute=$hardcode_direct_absolute # Set to "yes" if using the -LDIR flag during linking hardcodes DIR # into the resulting binary. hardcode_minus_L=$hardcode_minus_L # Set to "yes" if using SHLIBPATH_VAR=DIR during linking hardcodes DIR # into the resulting binary. hardcode_shlibpath_var=$hardcode_shlibpath_var # Set to "yes" if building a shared library automatically hardcodes DIR # into the library and all subsequent libraries and executables linked # against it. hardcode_automatic=$hardcode_automatic # Set to yes if linker adds runtime paths of dependent libraries # to runtime path list. inherit_rpath=$inherit_rpath # Whether libtool must link a program against all its dependency libraries. link_all_deplibs=$link_all_deplibs # Set to "yes" if exported symbols are required. always_export_symbols=$always_export_symbols # The commands to list exported symbols. export_symbols_cmds=$lt_export_symbols_cmds # Symbols that should not be listed in the preloaded symbols. exclude_expsyms=$lt_exclude_expsyms # Symbols that must always be exported. include_expsyms=$lt_include_expsyms # Commands necessary for linking programs (against libraries) with templates. prelink_cmds=$lt_prelink_cmds # Commands necessary for finishing linking programs. postlink_cmds=$lt_postlink_cmds # Specify filename containing input files. file_list_spec=$lt_file_list_spec # How to hardcode a shared library path into an executable. hardcode_action=$hardcode_action # ### END LIBTOOL CONFIG _LT_EOF case $host_os in aix3*) cat <<\_LT_EOF >> "$cfgfile" # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test "X${COLLECT_NAMES+set}" != Xset; then COLLECT_NAMES= export COLLECT_NAMES fi _LT_EOF ;; esac ltmain="$ac_aux_dir/ltmain.sh" # We use sed instead of cat because bash on DJGPP gets confused if # if finds mixed CR/LF and LF-only lines. Since sed operates in # text mode, it properly converts lines to CR/LF. This bash problem # is reportedly fixed, but why not run on old versions too? sed '$q' "$ltmain" >> "$cfgfile" \ || (rm -f "$cfgfile"; exit 1) if test x"$xsi_shell" = xyes; then sed -e '/^func_dirname ()$/,/^} # func_dirname /c\ func_dirname ()\ {\ \ case ${1} in\ \ */*) func_dirname_result="${1%/*}${2}" ;;\ \ * ) func_dirname_result="${3}" ;;\ \ esac\ } # Extended-shell func_dirname implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_basename ()$/,/^} # func_basename /c\ func_basename ()\ {\ \ func_basename_result="${1##*/}"\ } # Extended-shell func_basename implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_dirname_and_basename ()$/,/^} # func_dirname_and_basename /c\ func_dirname_and_basename ()\ {\ \ case ${1} in\ \ */*) func_dirname_result="${1%/*}${2}" ;;\ \ * ) func_dirname_result="${3}" ;;\ \ esac\ \ func_basename_result="${1##*/}"\ } # Extended-shell func_dirname_and_basename implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_stripname ()$/,/^} # func_stripname /c\ func_stripname ()\ {\ \ # pdksh 5.2.14 does not do ${X%$Y} correctly if both X and Y are\ \ # positional parameters, so assign one to ordinary parameter first.\ \ func_stripname_result=${3}\ \ func_stripname_result=${func_stripname_result#"${1}"}\ \ func_stripname_result=${func_stripname_result%"${2}"}\ } # Extended-shell func_stripname implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_split_long_opt ()$/,/^} # func_split_long_opt /c\ func_split_long_opt ()\ {\ \ func_split_long_opt_name=${1%%=*}\ \ func_split_long_opt_arg=${1#*=}\ } # Extended-shell func_split_long_opt implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_split_short_opt ()$/,/^} # func_split_short_opt /c\ func_split_short_opt ()\ {\ \ func_split_short_opt_arg=${1#??}\ \ func_split_short_opt_name=${1%"$func_split_short_opt_arg"}\ } # Extended-shell func_split_short_opt implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_lo2o ()$/,/^} # func_lo2o /c\ func_lo2o ()\ {\ \ case ${1} in\ \ *.lo) func_lo2o_result=${1%.lo}.${objext} ;;\ \ *) func_lo2o_result=${1} ;;\ \ esac\ } # Extended-shell func_lo2o implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_xform ()$/,/^} # func_xform /c\ func_xform ()\ {\ func_xform_result=${1%.*}.lo\ } # Extended-shell func_xform implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_arith ()$/,/^} # func_arith /c\ func_arith ()\ {\ func_arith_result=$(( $* ))\ } # Extended-shell func_arith implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_len ()$/,/^} # func_len /c\ func_len ()\ {\ func_len_result=${#1}\ } # Extended-shell func_len implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: fi if test x"$lt_shell_append" = xyes; then sed -e '/^func_append ()$/,/^} # func_append /c\ func_append ()\ {\ eval "${1}+=\\${2}"\ } # Extended-shell func_append implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: sed -e '/^func_append_quoted ()$/,/^} # func_append_quoted /c\ func_append_quoted ()\ {\ \ func_quote_for_eval "${2}"\ \ eval "${1}+=\\\\ \\$func_quote_for_eval_result"\ } # Extended-shell func_append_quoted implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: # Save a `func_append' function call where possible by direct use of '+=' sed -e 's%func_append \([a-zA-Z_]\{1,\}\) "%\1+="%g' $cfgfile > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: else # Save a `func_append' function call even when '+=' is not available sed -e 's%func_append \([a-zA-Z_]\{1,\}\) "%\1="$\1%g' $cfgfile > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: fi if test x"$_lt_function_replace_fail" = x":"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Unable to substitute extended shell functions in $ofile" >&5 $as_echo "$as_me: WARNING: Unable to substitute extended shell functions in $ofile" >&2;} fi mv -f "$cfgfile" "$ofile" || (rm -f "$ofile" && cp "$cfgfile" "$ofile" && rm -f "$cfgfile") chmod +x "$ofile" ;; esac done # for ac_tag as_fn_exit 0 _ACEOF ac_clean_files=$ac_clean_files_save test $ac_write_fail = 0 || as_fn_error $? "write failure creating $CONFIG_STATUS" "$LINENO" 5 # configure is writing to config.log, and then calls config.status. # config.status does its own redirection, appending to config.log. # Unfortunately, on DOS this fails, as config.log is still kept open # by configure, so config.status won't be able to write to it; its # output is simply discarded. So we exec the FD to /dev/null, # effectively closing config.log, so it can be properly (re)opened and # appended to by config.status. When coming back to configure, we # need to make the FD available again. if test "$no_create" != yes; then ac_cs_success=: ac_config_status_args= test "$silent" = yes && ac_config_status_args="$ac_config_status_args --quiet" exec 5>/dev/null $SHELL $CONFIG_STATUS $ac_config_status_args || ac_cs_success=false exec 5>>config.log # Use ||, not &&, to avoid exiting from the if with $? = 1, which # would make configure fail if this is the last instruction. $ac_cs_success || as_fn_exit 1 fi if test -n "$ac_unrecognized_opts" && test "$enable_option_checking" != no; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unrecognized options: $ac_unrecognized_opts" >&5 $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2;} fi openconnect-7.06/yubikey.c0000664000076400007640000004074012474046503012553 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #define NAME_TAG 0x71 #define NAME_LIST_TAG 0x72 #define KEY_TAG 0x73 #define CHALLENGE_TAG 0x74 #define RESPONSE_TAG 0x75 #define T_RESPONSE_TAG 0x76 #define NO_RESPONSE_TAG 0x77 #define PROPERTY_TAG 0x78 #define VERSION_TAG 0x79 #define IMF_TAG 0x7a #define PUT_INS 0x01 #define DELETE_INS 0x02 #define SET_CODE_INS 0x03 #define RESET_INS 0x04 #define LIST_INS 0xa1 #define CALCULATE_INS 0xa2 #define VALIDATE_INS 0xa3 #define CALCULATE_ALL_INS 0xa4 #define SEND_REMAINING_INS 0xa5 static const unsigned char appselect[] = { 0x00, 0xa4, 0x04, 0x00, 0x07, 0xa0, 0x00, 0x00, 0x05, 0x27, 0x21, 0x01 }; static const unsigned char list_keys[] = { 0x00, LIST_INS, 0x00, 0x00 }; static const unsigned char send_remaining[] = { 0x00, SEND_REMAINING_INS, 0x00, 0x00 }; #ifdef _WIN32 #define scard_error(st) openconnect__win32_strerror(st) #define free_scard_error(str) free(str) #else #define scard_error(st) pcsc_stringify_error(st) #define free_scard_error(str) do { ; } while (0) #endif static int yubikey_cmd(struct openconnect_info *vpninfo, SCARDHANDLE card, int errlvl, const char *desc, const unsigned char *out, size_t outlen, struct oc_text_buf *buf) { DWORD status; buf_truncate(buf); do { DWORD respsize = 258; if (buf_ensure_space(buf, 258)) return -ENOMEM; status = SCardTransmit (card, SCARD_PCI_T1, out, outlen, NULL, (unsigned char *)&buf->data[buf->pos], &respsize); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, errlvl, _("Failed to send \"%s\" to ykneo-oath applet: %s\n"), desc, pcsc_err); free_scard_error(pcsc_err); return -EIO; } if (respsize < 2) { vpn_progress(vpninfo, errlvl, _("Invalid short response to \"%s\" from ykneo-oath applet\n"), desc); return -EIO; } buf->pos += respsize - 2; /* Continuation */ out = send_remaining; outlen = sizeof(send_remaining); } while (buf->data[buf->pos] == 0x61); status = load_be16(buf->data + buf->pos); if (status == 0x9000) return 0; vpn_progress(vpninfo, errlvl, _("Failure response to \"%s\": %04x\n"), desc, (unsigned)status); switch (status) { case 0x6a80: return -EINVAL; default: return -EIO; } } static int buf_tlv(struct oc_text_buf *buf, int *loc, unsigned char *type) { int len; int left = buf->pos - *loc; if (left < 2) return -EINVAL; *type = (unsigned char)buf->data[(*loc)++]; len = (unsigned char)buf->data[(*loc)++]; left -= 2; if (len > 0x82) return -EINVAL; else if (len == 0x81) { if (left < 1) return -EINVAL; len = (unsigned char)buf->data[(*loc)++]; left--; } else if (len == 0x82) { if (left < 2) return -EINVAL; len = (unsigned char)buf->data[(*loc)++]; len <<= 8; len = (unsigned char)buf->data[(*loc)++]; left -= 2; } if (left < len) return -EINVAL; return len; } static int select_yubioath_applet(struct openconnect_info *vpninfo, SCARDHANDLE pcsc_card, struct oc_text_buf *buf) { int ret, tlvlen, tlvpos, id_len, chall_len; unsigned char type; unsigned char applet_id[16], challenge[16]; unsigned char *applet_ver; char *pin = NULL; int pin_len = 0; ret = yubikey_cmd(vpninfo, pcsc_card, PRG_DEBUG, _("select applet command"), appselect, sizeof(appselect), buf); if (ret) return ret; tlvpos = 0; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != VERSION_TAG || tlvlen != 3) { bad_applet: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from ykneo-oath applet\n")); return -EIO; } applet_ver = (void *)&buf->data[tlvpos]; tlvpos += tlvlen; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != NAME_TAG || tlvlen > sizeof(applet_id)) goto bad_applet; memcpy(applet_id, &buf->data[tlvpos], tlvlen); id_len = tlvlen; tlvpos += tlvlen; /* Only print this during the first discovery loop */ if (!vpninfo->pcsc_card) vpn_progress(vpninfo, PRG_INFO, _("Found ykneo-oath applet v%d.%d.%d.\n"), applet_ver[0], applet_ver[1], applet_ver[2]); if (tlvpos != buf->pos) { unsigned char chalresp[7 + SHA1_SIZE + 10]; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != CHALLENGE_TAG || tlvlen > sizeof(challenge)) goto bad_applet; memcpy(challenge, &buf->data[tlvpos], tlvlen); chall_len = tlvlen; retry: if (!vpninfo->yubikey_pw_set) { struct oc_auth_form f; struct oc_form_opt o; memset(&f, 0, sizeof(f)); f.auth_id = (char *)"yubikey_oath_pin"; f.opts = &o; f.message = (char *)_("PIN required for Yubikey OATH applet"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"yubikey_pin"; o.label = (char *)_("Yubikey PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret) goto out; if (!o._value) { ret = -EPERM; goto out; } if (pin) { memset(pin, 0, pin_len); free(pin); } pin = o._value; pin_len = strlen(pin); /* This *should* be UTF-8 but see the workaround below. */ ret = openconnect_hash_yubikey_password(vpninfo, o._value, pin_len, applet_id, id_len); if (ret) goto out; vpninfo->yubikey_pw_set = 1; } if (openconnect_yubikey_chalresp(vpninfo, &challenge, chall_len, chalresp + 7)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate Yubikey unlock response\n")); ret = -EIO; goto out; } chalresp[0] = 0; chalresp[1] = VALIDATE_INS; chalresp[2] = 0; chalresp[3] = 0; chalresp[4] = sizeof(chalresp) - 5; chalresp[5] = RESPONSE_TAG; chalresp[6] = SHA1_SIZE; /* Response is already filled in */ chalresp[7 + SHA1_SIZE] = CHALLENGE_TAG; chalresp[8 + SHA1_SIZE] = 8; memset(chalresp + 9 + SHA1_SIZE, 0xff, 8); ret = yubikey_cmd(vpninfo, pcsc_card, PRG_ERR, _("unlock command"), chalresp, sizeof(chalresp), buf); if (ret == -EINVAL) { memset(vpninfo->yubikey_pwhash, 0, sizeof(vpninfo->yubikey_pwhash)); vpninfo->yubikey_pw_set = 0; if (pin) { /* Try working around pre-KitKat PBKDF2 bug discussed at * http://forum.yubico.com/viewtopic.php?f=26&t=1601#p6807 and * http://android-developers.blogspot.se/2013/12/changes-to-secretkeyfactory-api-in.html */ const char *in; char *out; /* Convert the UTF-8 PIN to byte-truncated form in-place */ in = out = pin; while (*in) { int c = get_utf8char(&in); if (c < 0) { /* Screw it. Break out of the loop in such a fashion * that we don't try the 'converted' result. */ in = out; break; } *(out++) = c; } /* If out == in then the string only contained ASCII so * there was no conversion to be done (or was invalid * UTF-8 and hit the error case above). So don't try. */ if (out != in && !openconnect_hash_yubikey_password(vpninfo, pin, out - pin, applet_id, id_len)) { /* We'll have printed with PRG_ERR when the proper * encoding failed. So use PRG_ERR here too. */ vpn_progress(vpninfo, PRG_ERR, _("Trying truncated-char PBKBF2 variant of Yubikey PIN\n")); vpninfo->yubikey_pw_set = 1; } } goto retry; } } out: if (pin) { memset(pin, 0, pin_len); free(pin); } return ret; } #ifdef _WIN32 #define reader_len wcslen #else #define SCardListReadersW SCardListReaders #define SCardConnectW SCardConnect #define reader_len strlen #endif int set_yubikey_mode(struct openconnect_info *vpninfo, const char *token_str) { SCARDHANDLE pcsc_ctx, pcsc_card; LONG status; #ifdef _WIN32 wchar_t *readers = NULL, *reader; #else char *readers = NULL, *reader; #endif DWORD readers_size, proto; int ret, tlvlen, tlvpos; struct oc_text_buf *buf = NULL; status = SCardEstablishContext(SCARD_SCOPE_USER, NULL, NULL, &pcsc_ctx); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to establish PC/SC context: %s\n"), pcsc_err); free_scard_error(pcsc_err); return -EIO; } vpn_progress(vpninfo, PRG_TRACE, _("Established PC/SC context\n")); ret = -ENOENT; status = SCardListReadersW(pcsc_ctx, NULL, NULL, &readers_size); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to query reader list: %s\n"), pcsc_err); free_scard_error(pcsc_err); goto out_ctx; } readers = calloc(readers_size, sizeof(readers[0])); if (!readers) goto out_ctx; status = SCardListReadersW(pcsc_ctx, NULL, readers, &readers_size); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to query reader list: %s\n"), pcsc_err); free_scard_error(pcsc_err); goto out_ctx; } buf = buf_alloc(); reader = readers; while (reader[0]) { unsigned char type; #ifdef _WIN32 char *reader_utf8; int reader_len; reader_len = WideCharToMultiByte(CP_UTF8, 0, reader, -1, NULL, 0, NULL, NULL); reader_utf8 = malloc(reader_len); if (!reader_utf8) goto next_reader; WideCharToMultiByte(CP_UTF8, 0, reader, -1, reader_utf8, reader_len, NULL, NULL); #else #define reader_utf8 reader #endif status = SCardConnectW(pcsc_ctx, reader, SCARD_SHARE_SHARED, SCARD_PROTOCOL_T1, &pcsc_card, &proto); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to connect to PC/SC reader '%s': %s\n"), reader_utf8, pcsc_err); free_scard_error(pcsc_err); goto free_reader_utf8; } vpn_progress(vpninfo, PRG_TRACE, _("Connected PC/SC reader '%s'\n"), reader_utf8); status = SCardBeginTransaction(pcsc_card); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain exclusive access to reader '%s': %s\n"), reader_utf8, pcsc_err); free_scard_error(pcsc_err); goto disconnect; } ret = select_yubioath_applet(vpninfo, pcsc_card, buf); if (ret) goto end_trans; ret = yubikey_cmd(vpninfo, pcsc_card, PRG_ERR, _("list keys command"), list_keys, sizeof(list_keys), buf); if (ret) goto end_trans; tlvpos = 0; while (tlvpos < buf->pos) { unsigned char mode, hash; tlvlen = buf_tlv(buf, &tlvpos, &type); if (type != NAME_LIST_TAG || tlvlen < 1) { bad_applet: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from ykneo-oath applet\n")); goto end_trans; } mode = buf->data[tlvpos] & 0xf0; hash = buf->data[tlvpos] & 0x0f; if (mode != 0x10 && mode != 0x20) goto bad_applet; if (hash != 0x01 && hash != 0x02) goto bad_applet; if (!token_str || ((tlvlen - 1 == strlen(token_str)) && !memcmp(token_str, &buf->data[tlvpos+1], tlvlen-1))) { vpninfo->yubikey_objname = strndup(&buf->data[tlvpos+1], tlvlen-1); if (!vpninfo->yubikey_objname) { ret = -ENOMEM; SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); SCardDisconnect(pcsc_card, SCARD_LEAVE_CARD); goto out_ctx; } /* Translators: This is filled in with mode and hash type, and the key identifier. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" */ vpn_progress(vpninfo, PRG_INFO, _("Found %s/%s key '%s' on '%s'\n"), (mode == 0x20) ? "TOTP" : "HOTP", (hash == 0x2) ? "SHA256" : "SHA1", vpninfo->yubikey_objname, reader_utf8); vpninfo->yubikey_mode = mode; vpninfo->pcsc_ctx = pcsc_ctx; vpninfo->pcsc_card = pcsc_card; vpninfo->token_mode = OC_TOKEN_MODE_YUBIOATH; SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); goto success; } tlvpos += tlvlen; } if (token_str) { vpn_progress(vpninfo, PRG_ERR, _("Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n"), token_str, reader_utf8); } end_trans: SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); disconnect: SCardDisconnect(pcsc_card, SCARD_LEAVE_CARD); free_reader_utf8: #ifdef _WIN32 free(reader_utf8); next_reader: #endif while (*reader) reader++; reader++; } ret = -ENOENT; out_ctx: SCardReleaseContext(pcsc_ctx); success: free(readers); buf_free(buf); return ret; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if ((strcmp(opt->name, "secondary_password") != 0) || vpninfo->token_bypassed) return -EINVAL; if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += 30; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the Yubikey token; switching to manual entry\n")); return -ENOENT; } return 0; } static int tlvlen_len(int tlvlen) { if (tlvlen < 0x80) return 1; else if (tlvlen < 0x100) return 2; else return 3; } static int append_tlvlen(unsigned char *p, int tlvlen) { if (tlvlen < 0x80) { if (p) p[0] = tlvlen; return 1; } else if (tlvlen < 0x100) { if (p) { p[0] = 0x81; p[1] = tlvlen; } return 2; } else { if (p) { p[0] = 0x82; store_be16(p + 1, tlvlen); } return 3; } } int do_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { struct oc_text_buf *respbuf = NULL; DWORD status; int name_len = strlen(vpninfo->yubikey_objname); int name_tlvlen; int calc_tlvlen; unsigned char *reqbuf = NULL; int tokval; int i = 0; int ret; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating Yubikey token code\n")); status = SCardBeginTransaction(vpninfo->pcsc_card); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain exclusive access to Yubikey: %s\n"), pcsc_err); free_scard_error(pcsc_err); return -EIO; } respbuf = buf_alloc(); ret = select_yubioath_applet(vpninfo, vpninfo->pcsc_card, respbuf); if (ret) goto out; name_tlvlen = tlvlen_len(strlen(vpninfo->yubikey_objname)); calc_tlvlen = 1 /* NAME_TAG */ + name_tlvlen + name_len + 1 /* CHALLENGE_TAG */ + 1 /* Challenge TLV len */; if (vpninfo->yubikey_mode == 0x20) calc_tlvlen += 8; /* TOTP needs the time as challenge */ reqbuf = malloc(4 + tlvlen_len(calc_tlvlen) + calc_tlvlen); if (!reqbuf) goto out; reqbuf[i++] = 0; reqbuf[i++] = CALCULATE_INS; reqbuf[i++] = 0; reqbuf[i++] = 1; i += append_tlvlen(reqbuf + i, calc_tlvlen); reqbuf[i++] = NAME_TAG; i += append_tlvlen(reqbuf + i, name_len); memcpy(reqbuf + i, vpninfo->yubikey_objname, name_len); i += name_len; reqbuf[i++] = CHALLENGE_TAG; if (vpninfo->yubikey_mode == 0x20) { long token_steps = vpninfo->token_time / 30; reqbuf[i++] = 8; reqbuf[i++] = 0; reqbuf[i++] = 0; reqbuf[i++] = 0; reqbuf[i++] = 0; store_be32(reqbuf + i, token_steps); i += 4; } else { reqbuf[i++] = 0; /* HOTP mode, zero-length challenge */ } ret = yubikey_cmd(vpninfo, vpninfo->pcsc_card, PRG_ERR, _("calculate command"), reqbuf, i, respbuf); if (ret) goto out; if (respbuf->pos != 7 || (unsigned char)respbuf->data[0] != T_RESPONSE_TAG || respbuf->data[1] != 5 || respbuf->data[2] > 8 || respbuf->data[2] < 6) { vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from Yubikey when generating tokencode\n")); ret = -EIO; goto out; } tokval = load_be32(respbuf->data + 3); opt->_value = malloc(respbuf->data[2] + 1); if (!opt->_value) { ret = -ENOMEM; goto out; } i = respbuf->data[2]; opt->_value[i] = 0; while (i--) { opt->_value[i] = '0' + tokval % 10; tokval /= 10; } vpninfo->token_tries++; out: SCardEndTransaction(vpninfo->pcsc_card, SCARD_LEAVE_CARD); buf_free(respbuf); free(reqbuf); return ret; } openconnect-7.06/openssl-pkcs11.c0000664000076400007640000003741512461546130013657 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #ifdef HAVE_LIBP11 /* And p11-kit */ #include #include static PKCS11_CTX *pkcs11_ctx(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx; if (!vpninfo->pkcs11_ctx) { ERR_load_PKCS11_strings(); ctx = PKCS11_CTX_new(); if (!ctx) { vpn_progress(vpninfo, PRG_ERR, _("Failed to establish libp11 PKCS#11 context:\n")); openconnect_report_ssl_errors(vpninfo); return NULL; } if (PKCS11_CTX_load(ctx, DEFAULT_PKCS11_MODULE) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n")); openconnect_report_ssl_errors(vpninfo); PKCS11_CTX_free(ctx); return NULL; } vpninfo->pkcs11_ctx = ctx; } return vpninfo->pkcs11_ctx; } static int parse_uri_attr(const char *attr, int attrlen, unsigned char **field, size_t *field_len) { size_t outlen = 0; unsigned char *out; int ret = 0; out = malloc(attrlen + 1); if (!out) return -ENOMEM; while (!ret && attrlen) { if (*attr == '%') { if (attrlen < 3) { ret = -EINVAL; } else { out[outlen++] = unhex(attr+1); attrlen -= 3; attr += 3; } } else { out[outlen++] = *(attr++); attrlen--; } } if (ret) free(out); else { if (field_len) *field_len = outlen; out[outlen] = 0; *field = out; } return ret; } static int parse_pkcs11_uri(const char *uri, PKCS11_TOKEN **p_tok, unsigned char **id, size_t *id_len, char **label) { PKCS11_TOKEN *tok; char *newlabel = NULL; const char *end, *p; int ret = 0; tok = calloc(1, sizeof(*tok)); if (!tok) { fprintf(stderr, "Could not allocate memory for token info\n"); return -ENOMEM; } /* We are only ever invoked if the string starts with 'pkcs11:' */ end = uri + 6; while (!ret && end[0] && end[1]) { p = end + 1; end = strchr(p, ';'); if (!end) end = p + strlen(p); if (!strncmp(p, "model=", 6)) { p += 6; ret = parse_uri_attr(p, end - p, (void *)&tok->model, NULL); } else if (!strncmp(p, "manufacturer=", 13)) { p += 13; ret = parse_uri_attr(p, end - p, (void *)&tok->manufacturer, NULL); } else if (!strncmp(p, "token=", 6)) { p += 6; ret = parse_uri_attr(p, end - p, (void *)&tok->label, NULL); } else if (!strncmp(p, "serial=", 7)) { p += 7; ret = parse_uri_attr(p, end - p, (void *)&tok->serialnr, NULL); } else if (!strncmp(p, "object=", 7)) { p += 7; ret = parse_uri_attr(p, end - p, (void *)&newlabel, NULL); } else if (!strncmp(p, "id=", 3)) { p += 3; ret = parse_uri_attr(p, end - p, (void *)id, id_len); } else if (!strncmp(p, "type=", 5) || !strncmp(p, "object-type=", 12)) { p = strchr(p, '=') + 1; if ((end - p == 4 && !strncmp(p, "cert", 4)) || (end - p == 7 && !strncmp(p, "private", 7))) { /* Actually, just ignore it */ } else ret = -EINVAL; /* Ignore object type for now. */ } else { ret = -EINVAL; } } if (!ret) { *label = newlabel; *p_tok = tok; } else { free(tok); tok = NULL; free(newlabel); } return ret; } static int request_pin(struct openconnect_info *vpninfo, struct pin_cache *cache, int retrying) { struct oc_auth_form f; struct oc_form_opt o; char message[1024]; int ret; if (!vpninfo || !vpninfo->process_auth_form) return -EINVAL; memset(&f, 0, sizeof(f)); f.auth_id = (char *)"pkcs11_pin"; f.opts = &o; message[sizeof(message)-1] = 0; snprintf(message, sizeof(message) - 1, _("PIN required for %s"), cache->token); f.message = message; if (retrying) f.error = (char *)_("Wrong PIN"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"pkcs11_pin"; o.label = (char *)_("Enter PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret || !o._value) return -EIO; cache->pin = o._value; return 0; } static int slot_login(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot) { PKCS11_TOKEN *token = slot->token; struct pin_cache *cache = vpninfo->pin_cache; int ret, retrying = 0; retry: ERR_clear_error(); if (!token->secureLogin) { if (!cache) { for (cache = vpninfo->pin_cache; cache; cache = cache->next) if (!strcmp(slot->description, cache->token)) break; } if (!cache) { cache = malloc(sizeof(*cache)); if (!cache) return -ENOMEM; cache->pin = NULL; cache->next = vpninfo->pin_cache; cache->token = strdup(slot->description); if (!cache->token) { free(cache); return -ENOMEM; } vpninfo->pin_cache = cache; } if (!cache->pin) { ret = request_pin(vpninfo, cache, retrying); if (ret) return ret; } } ret = PKCS11_login(slot, 0, cache ? cache->pin : NULL); if (ret) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_PKCS11 && ERR_GET_FUNC(err) == PKCS11_F_PKCS11_LOGIN) err = ERR_GET_REASON(err); else err = CKR_OK; /* Anything we don't explicitly match */ switch (ERR_GET_REASON(err)) { case CKR_PIN_INCORRECT: /* They'll be told about it in the next UI prompt */ if (cache) { free(cache->pin); cache->pin = NULL; } retrying = 1; goto retry; case CKR_PIN_LOCKED: vpn_progress(vpninfo, PRG_ERR, _("PIN locked\n")); break; case CKR_PIN_EXPIRED: vpn_progress(vpninfo, PRG_ERR, _("PIN expired\n")); break; case CKR_USER_ANOTHER_ALREADY_LOGGED_IN: vpn_progress(vpninfo, PRG_ERR, _("Another user already logged in\n")); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown error logging in to PKCS#11 token\n")); openconnect_report_ssl_errors(vpninfo); } ERR_clear_error(); return -EPERM; } vpn_progress(vpninfo, PRG_TRACE, _("Logged in to PKCS#11 slot '%s'\n"), slot->description); return 0; } static PKCS11_CERT *slot_find_cert(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot, const char *cert_label, unsigned char *cert_id, size_t cert_id_len) { PKCS11_CERT *cert_list = NULL, *cert = NULL; unsigned int cert_count; if (PKCS11_enumerate_certs(slot->token, &cert_list, &cert_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate certs in PKCS#11 slot '%s'\n"), slot->description); return NULL; } vpn_progress(vpninfo, PRG_TRACE, _("Found %d certs in slot '%s'\n"), cert_count, slot->description); for (cert = cert_list; cert < &cert_list[cert_count]; cert++) { if (cert_label && strcmp(cert_label, cert->label)) continue; if (cert_id && (cert_id_len != cert->id_len || memcmp(cert_id, cert->id, cert_id_len))) continue; return cert; } return NULL; } int load_pkcs11_certificate(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx = pkcs11_ctx(vpninfo); PKCS11_TOKEN *match_tok = NULL; PKCS11_CERT *cert; char *cert_label = NULL; unsigned char *cert_id = NULL; size_t cert_id_len = 0; PKCS11_SLOT *slot_list = NULL, *slot, *login_slot = NULL; unsigned int slot_count, matching_slots = 0; int ret = 0; if (parse_pkcs11_uri(vpninfo->cert, &match_tok, &cert_id, &cert_id_len, &cert_label) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse PKCS#11 URI '%s'\n"), vpninfo->cert); return -EINVAL; } if (PKCS11_enumerate_slots(ctx, &slot_list, &slot_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate PKCS#11 slots\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } for (slot = slot_list; slot < &slot_list[slot_count] && slot != login_slot; slot++) { if (!slot->token) continue; if (match_tok->label && strcmp(match_tok->label, slot->token->label)) continue; if (match_tok->manufacturer && strcmp(match_tok->manufacturer, slot->token->manufacturer)) continue; if (match_tok->model && strcmp(match_tok->model, slot->token->model)) continue; if (match_tok->serialnr && strcmp(match_tok->serialnr, slot->token->serialnr)) continue; cert = slot_find_cert(vpninfo, ctx, slot, cert_label, cert_id, cert_id_len); if (cert) goto got_cert; login_slot = slot; matching_slots++; } /* If there was precisely one matching slot, and we still didn't find the cert, try logging in to it. */ if (matching_slots == 1 && login_slot->token->loginRequired) { slot = login_slot; vpn_progress(vpninfo, PRG_INFO, _("Logging in to PKCS#11 slot '%s'\n"), slot->description); if (!slot_login(vpninfo, ctx, slot)) { cert = slot_find_cert(vpninfo, ctx, slot, cert_label, cert_id, cert_id_len); if (cert) goto got_cert; } } ret = -EINVAL; got_cert: if (cert) { /* This happens if the cert is too large for the fixed buffer in libp11 :( */ if (!cert->x509) { vpn_progress(vpninfo, PRG_ERR, _("Certificate X.509 content not fetched by libp11\n")); ret = -EIO; goto out; } vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 certificate %s\n"), vpninfo->cert); vpninfo->cert_x509 = X509_dup(cert->x509); if (!SSL_CTX_use_certificate(vpninfo->https_ctx, vpninfo->cert_x509)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to install certificate in OpenSSL context\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } /* If the key is in PKCS#11 too (which is likely), then keep the slot around. We might want to know which slot the certificate was found in, so we can log into it to find the key. */ if (!strncmp(vpninfo->sslkey, "pkcs11:", 7)) { vpninfo->pkcs11_slot_list = slot_list; vpninfo->pkcs11_slot_count = slot_count; vpninfo->pkcs11_cert_slot = slot; slot_list = NULL; } /* Also remember the ID of the cert, in case it helps us find the matching key */ vpninfo->pkcs11_cert_id = malloc(cert->id_len); if (vpninfo->pkcs11_cert_id) { vpninfo->pkcs11_cert_id_len = cert->id_len; memcpy(vpninfo->pkcs11_cert_id, cert->id, cert->id_len); } } out: if (match_tok) { free(match_tok->model); free(match_tok->manufacturer); free(match_tok->serialnr); free(match_tok->label); free(match_tok); } free(cert_id); free(cert_label); if (slot_list) PKCS11_release_all_slots(ctx, slot_list, slot_count); return ret; } static PKCS11_KEY *slot_find_key(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot, const char *key_label, unsigned char *key_id, size_t key_id_len) { PKCS11_KEY *key_list = NULL, *key = NULL; unsigned int key_count; if (PKCS11_enumerate_keys(slot->token, &key_list, &key_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate keys in PKCS#11 slot '%s'\n"), slot->description); return NULL; } vpn_progress(vpninfo, PRG_TRACE, _("Found %d keys in slot '%s'\n"), key_count, slot->description); for (key = key_list; key < &key_list[key_count]; key++) { if (key_label && strcmp(key_label, key->label)) continue; if (key_id && (key_id_len != key->id_len || memcmp(key_id, key->id, key_id_len))) continue; return key; } return NULL; } int load_pkcs11_key(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx = pkcs11_ctx(vpninfo); PKCS11_TOKEN *match_tok = NULL; PKCS11_KEY *key = NULL; EVP_PKEY *pkey = NULL; char *key_label = NULL; unsigned char *key_id = NULL; size_t key_id_len = 0; PKCS11_SLOT *slot_list = NULL, *slot, *login_slot = NULL; unsigned int slot_count, matching_slots = 0; int ret = 0; if (parse_pkcs11_uri(vpninfo->sslkey, &match_tok, &key_id, &key_id_len, &key_label) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse PKCS#11 URI '%s'\n"), vpninfo->sslkey); return -EINVAL; } if (vpninfo->pkcs11_slot_list) { slot_list = vpninfo->pkcs11_slot_list; slot_count = vpninfo->pkcs11_slot_count; } else if (PKCS11_enumerate_slots(ctx, &slot_list, &slot_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate PKCS#11 slots\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } for (slot = slot_list; slot < &slot_list[slot_count] && slot != login_slot; slot++) { if (!slot->token) continue; if (match_tok->label && strcmp(match_tok->label, slot->token->label)) continue; if (match_tok->manufacturer && strcmp(match_tok->manufacturer, slot->token->manufacturer)) continue; if (match_tok->model && strcmp(match_tok->model, slot->token->model)) continue; if (match_tok->serialnr && strcmp(match_tok->serialnr, slot->token->serialnr)) continue; key = slot_find_key(vpninfo, ctx, slot, key_label, key_id, key_id_len); if (key) goto got_key; login_slot = slot; matching_slots++; } /* If there was precisely one matching slot, or if we know which slot the cert was found in and the key wasn't separately specified, then try that slot. */ if (matching_slots != 1 && vpninfo->pkcs11_cert_slot && vpninfo->sslkey == vpninfo->cert) { /* Use the slot the cert was found in, if one specifier was given for both */ matching_slots = 1; login_slot = vpninfo->pkcs11_cert_slot; vpninfo->pkcs11_cert_slot = NULL; } if (matching_slots == 1 && login_slot->token->loginRequired) { slot = login_slot; vpn_progress(vpninfo, PRG_INFO, _("Logging in to PKCS#11 slot '%s'\n"), slot->description); if (!slot_login(vpninfo, ctx, slot)) { key = slot_find_key(vpninfo, ctx, slot, key_label, key_id, key_id_len); if (key) goto got_key; /* We still haven't found it. If we weren't explicitly given a URI for the key and we're inferring the location of the key from the cert, then drop the label and try matching the CKA_ID of the cert. */ if (vpninfo->cert == vpninfo->sslkey && vpninfo->pkcs11_cert_id && (key_label || !key_id)) { key = slot_find_key(vpninfo, ctx, slot, NULL, vpninfo->pkcs11_cert_id, vpninfo->pkcs11_cert_id_len); if (key) goto got_key; } } } ret = -EINVAL; got_key: if (key) { vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 key %s\n"), vpninfo->cert); pkey = PKCS11_get_private_key(key); if (!pkey) { vpn_progress(vpninfo, PRG_ERR, _("Failed to instantiated private key from PKCS#11\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, pkey)) { vpn_progress(vpninfo, PRG_ERR, _("Add key from PKCS#11 failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; goto out; } /* We have to keep the entire slot list around, because the EVP_PKEY depends on the one we're using, and we have no way to free the others. */ vpninfo->pkcs11_slot_list = slot_list; vpninfo->pkcs11_slot_count = slot_count; slot_list = NULL; } out: if (match_tok) { free(match_tok->model); free(match_tok->manufacturer); free(match_tok->serialnr); free(match_tok->label); free(match_tok); } free(key_id); free(key_label); if (slot_list) PKCS11_release_all_slots(ctx, slot_list, slot_count); return ret; } #else int load_pkcs11_key(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PKCS#11 support\n")); return -EINVAL; } int load_pkcs11_certificate(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PKCS#11 support\n")); return -EINVAL; } #endif openconnect-7.06/ltmain.sh0000644000076400007640000105152212425412631012540 00000000000000 # libtool (GNU libtool) 2.4.2 # Written by Gordon Matzigkeit , 1996 # Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2003, 2004, 2005, 2006, # 2007, 2008, 2009, 2010, 2011 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, # if you distribute this file as part of a program or library that # is built using GNU Libtool, you may include this file under the # same distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with GNU Libtool; see the file COPYING. If not, a copy # can be downloaded from http://www.gnu.org/licenses/gpl.html, # or obtained by writing to the Free Software Foundation, Inc., # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. # Usage: $progname [OPTION]... [MODE-ARG]... # # Provide generalized library-building support services. # # --config show all configuration variables # --debug enable verbose shell tracing # -n, --dry-run display commands without modifying any files # --features display basic configuration information and exit # --mode=MODE use operation mode MODE # --preserve-dup-deps don't remove duplicate dependency libraries # --quiet, --silent don't print informational messages # --no-quiet, --no-silent # print informational messages (default) # --no-warn don't display warning messages # --tag=TAG use configuration variables from tag TAG # -v, --verbose print more informational messages than default # --no-verbose don't print the extra informational messages # --version print version information # -h, --help, --help-all print short, long, or detailed help message # # MODE must be one of the following: # # clean remove files from the build directory # compile compile a source file into a libtool object # execute automatically set library path, then run a program # finish complete the installation of libtool libraries # install install libraries or executables # link create a library or an executable # uninstall remove libraries from an installed directory # # MODE-ARGS vary depending on the MODE. When passed as first option, # `--mode=MODE' may be abbreviated as `MODE' or a unique abbreviation of that. # Try `$progname --help --mode=MODE' for a more detailed description of MODE. # # When reporting a bug, please describe a test case to reproduce it and # include the following information: # # host-triplet: $host # shell: $SHELL # compiler: $LTCC # compiler flags: $LTCFLAGS # linker: $LD (gnu? $with_gnu_ld) # $progname: (GNU libtool) 2.4.2 # automake: $automake_version # autoconf: $autoconf_version # # Report bugs to . # GNU libtool home page: . # General help using GNU software: . PROGRAM=libtool PACKAGE=libtool VERSION=2.4.2 TIMESTAMP="" package_revision=1.3337 # Be Bourne compatible if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then emulate sh NULLCMD=: # Zsh 3.x and 4.x performs word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in *posix*) set -o posix;; esac fi BIN_SH=xpg4; export BIN_SH # for Tru64 DUALCASE=1; export DUALCASE # for MKS sh # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $1 _LTECHO_EOF' } # NLS nuisances: We save the old values to restore during execute mode. lt_user_locale= lt_safe_locale= for lt_var in LANG LANGUAGE LC_ALL LC_CTYPE LC_COLLATE LC_MESSAGES do eval "if test \"\${$lt_var+set}\" = set; then save_$lt_var=\$$lt_var $lt_var=C export $lt_var lt_user_locale=\"$lt_var=\\\$save_\$lt_var; \$lt_user_locale\" lt_safe_locale=\"$lt_var=C; \$lt_safe_locale\" fi" done LC_ALL=C LANGUAGE=C export LANGUAGE LC_ALL $lt_unset CDPATH # Work around backward compatibility issue on IRIX 6.5. On IRIX 6.4+, sh # is ksh but when the shell is invoked as "sh" and the current value of # the _XPG environment variable is not equal to 1 (one), the special # positional parameter $0, within a function call, is the name of the # function. progpath="$0" : ${CP="cp -f"} test "${ECHO+set}" = set || ECHO=${as_echo-'printf %s\n'} : ${MAKE="make"} : ${MKDIR="mkdir"} : ${MV="mv -f"} : ${RM="rm -f"} : ${SHELL="${CONFIG_SHELL-/bin/sh}"} : ${Xsed="$SED -e 1s/^X//"} # Global variables: EXIT_SUCCESS=0 EXIT_FAILURE=1 EXIT_MISMATCH=63 # $? = 63 is used to indicate version mismatch to missing. EXIT_SKIP=77 # $? = 77 is used to indicate a skipped test to automake. exit_status=$EXIT_SUCCESS # Make sure IFS has a sensible default lt_nl=' ' IFS=" $lt_nl" dirname="s,/[^/]*$,," basename="s,^.*/,," # func_dirname file append nondir_replacement # Compute the dirname of FILE. If nonempty, add APPEND to the result, # otherwise set result to NONDIR_REPLACEMENT. func_dirname () { func_dirname_result=`$ECHO "${1}" | $SED "$dirname"` if test "X$func_dirname_result" = "X${1}"; then func_dirname_result="${3}" else func_dirname_result="$func_dirname_result${2}" fi } # func_dirname may be replaced by extended shell implementation # func_basename file func_basename () { func_basename_result=`$ECHO "${1}" | $SED "$basename"` } # func_basename may be replaced by extended shell implementation # func_dirname_and_basename file append nondir_replacement # perform func_basename and func_dirname in a single function # call: # dirname: Compute the dirname of FILE. If nonempty, # add APPEND to the result, otherwise set result # to NONDIR_REPLACEMENT. # value returned in "$func_dirname_result" # basename: Compute filename of FILE. # value retuned in "$func_basename_result" # Implementation must be kept synchronized with func_dirname # and func_basename. For efficiency, we do not delegate to # those functions but instead duplicate the functionality here. func_dirname_and_basename () { # Extract subdirectory from the argument. func_dirname_result=`$ECHO "${1}" | $SED -e "$dirname"` if test "X$func_dirname_result" = "X${1}"; then func_dirname_result="${3}" else func_dirname_result="$func_dirname_result${2}" fi func_basename_result=`$ECHO "${1}" | $SED -e "$basename"` } # func_dirname_and_basename may be replaced by extended shell implementation # func_stripname prefix suffix name # strip PREFIX and SUFFIX off of NAME. # PREFIX and SUFFIX must not contain globbing or regex special # characters, hashes, percent signs, but SUFFIX may contain a leading # dot (in which case that matches only a dot). # func_strip_suffix prefix name func_stripname () { case ${2} in .*) func_stripname_result=`$ECHO "${3}" | $SED "s%^${1}%%; s%\\\\${2}\$%%"`;; *) func_stripname_result=`$ECHO "${3}" | $SED "s%^${1}%%; s%${2}\$%%"`;; esac } # func_stripname may be replaced by extended shell implementation # These SED scripts presuppose an absolute path with a trailing slash. pathcar='s,^/\([^/]*\).*$,\1,' pathcdr='s,^/[^/]*,,' removedotparts=':dotsl s@/\./@/@g t dotsl s,/\.$,/,' collapseslashes='s@/\{1,\}@/@g' finalslash='s,/*$,/,' # func_normal_abspath PATH # Remove doubled-up and trailing slashes, "." path components, # and cancel out any ".." path components in PATH after making # it an absolute path. # value returned in "$func_normal_abspath_result" func_normal_abspath () { # Start from root dir and reassemble the path. func_normal_abspath_result= func_normal_abspath_tpath=$1 func_normal_abspath_altnamespace= case $func_normal_abspath_tpath in "") # Empty path, that just means $cwd. func_stripname '' '/' "`pwd`" func_normal_abspath_result=$func_stripname_result return ;; # The next three entries are used to spot a run of precisely # two leading slashes without using negated character classes; # we take advantage of case's first-match behaviour. ///*) # Unusual form of absolute path, do nothing. ;; //*) # Not necessarily an ordinary path; POSIX reserves leading '//' # and for example Cygwin uses it to access remote file shares # over CIFS/SMB, so we conserve a leading double slash if found. func_normal_abspath_altnamespace=/ ;; /*) # Absolute path, do nothing. ;; *) # Relative path, prepend $cwd. func_normal_abspath_tpath=`pwd`/$func_normal_abspath_tpath ;; esac # Cancel out all the simple stuff to save iterations. We also want # the path to end with a slash for ease of parsing, so make sure # there is one (and only one) here. func_normal_abspath_tpath=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$removedotparts" -e "$collapseslashes" -e "$finalslash"` while :; do # Processed it all yet? if test "$func_normal_abspath_tpath" = / ; then # If we ascended to the root using ".." the result may be empty now. if test -z "$func_normal_abspath_result" ; then func_normal_abspath_result=/ fi break fi func_normal_abspath_tcomponent=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$pathcar"` func_normal_abspath_tpath=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$pathcdr"` # Figure out what to do with it case $func_normal_abspath_tcomponent in "") # Trailing empty path component, ignore it. ;; ..) # Parent dir; strip last assembled component from result. func_dirname "$func_normal_abspath_result" func_normal_abspath_result=$func_dirname_result ;; *) # Actual path component, append it. func_normal_abspath_result=$func_normal_abspath_result/$func_normal_abspath_tcomponent ;; esac done # Restore leading double-slash if one was found on entry. func_normal_abspath_result=$func_normal_abspath_altnamespace$func_normal_abspath_result } # func_relative_path SRCDIR DSTDIR # generates a relative path from SRCDIR to DSTDIR, with a trailing # slash if non-empty, suitable for immediately appending a filename # without needing to append a separator. # value returned in "$func_relative_path_result" func_relative_path () { func_relative_path_result= func_normal_abspath "$1" func_relative_path_tlibdir=$func_normal_abspath_result func_normal_abspath "$2" func_relative_path_tbindir=$func_normal_abspath_result # Ascend the tree starting from libdir while :; do # check if we have found a prefix of bindir case $func_relative_path_tbindir in $func_relative_path_tlibdir) # found an exact match func_relative_path_tcancelled= break ;; $func_relative_path_tlibdir*) # found a matching prefix func_stripname "$func_relative_path_tlibdir" '' "$func_relative_path_tbindir" func_relative_path_tcancelled=$func_stripname_result if test -z "$func_relative_path_result"; then func_relative_path_result=. fi break ;; *) func_dirname $func_relative_path_tlibdir func_relative_path_tlibdir=${func_dirname_result} if test "x$func_relative_path_tlibdir" = x ; then # Have to descend all the way to the root! func_relative_path_result=../$func_relative_path_result func_relative_path_tcancelled=$func_relative_path_tbindir break fi func_relative_path_result=../$func_relative_path_result ;; esac done # Now calculate path; take care to avoid doubling-up slashes. func_stripname '' '/' "$func_relative_path_result" func_relative_path_result=$func_stripname_result func_stripname '/' '/' "$func_relative_path_tcancelled" if test "x$func_stripname_result" != x ; then func_relative_path_result=${func_relative_path_result}/${func_stripname_result} fi # Normalisation. If bindir is libdir, return empty string, # else relative path ending with a slash; either way, target # file name can be directly appended. if test ! -z "$func_relative_path_result"; then func_stripname './' '' "$func_relative_path_result/" func_relative_path_result=$func_stripname_result fi } # The name of this program: func_dirname_and_basename "$progpath" progname=$func_basename_result # Make sure we have an absolute path for reexecution: case $progpath in [\\/]*|[A-Za-z]:\\*) ;; *[\\/]*) progdir=$func_dirname_result progdir=`cd "$progdir" && pwd` progpath="$progdir/$progname" ;; *) save_IFS="$IFS" IFS=${PATH_SEPARATOR-:} for progdir in $PATH; do IFS="$save_IFS" test -x "$progdir/$progname" && break done IFS="$save_IFS" test -n "$progdir" || progdir=`pwd` progpath="$progdir/$progname" ;; esac # Sed substitution that helps us do robust quoting. It backslashifies # metacharacters that are still active within double-quoted strings. Xsed="${SED}"' -e 1s/^X//' sed_quote_subst='s/\([`"$\\]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\(["`\\]\)/\\\1/g' # Sed substitution that turns a string into a regex matching for the # string literally. sed_make_literal_regex='s,[].[^$\\*\/],\\&,g' # Sed substitution that converts a w32 file name or path # which contains forward slashes, into one that contains # (escaped) backslashes. A very naive implementation. lt_sed_naive_backslashify='s|\\\\*|\\|g;s|/|\\|g;s|\\|\\\\|g' # Re-`\' parameter expansions in output of double_quote_subst that were # `\'-ed in input to the same. If an odd number of `\' preceded a '$' # in input to double_quote_subst, that '$' was protected from expansion. # Since each input `\' is now two `\'s, look for any number of runs of # four `\'s followed by two `\'s and then a '$'. `\' that '$'. bs='\\' bs2='\\\\' bs4='\\\\\\\\' dollar='\$' sed_double_backslash="\ s/$bs4/&\\ /g s/^$bs2$dollar/$bs&/ s/\\([^$bs]\\)$bs2$dollar/\\1$bs2$bs$dollar/g s/\n//g" # Standard options: opt_dry_run=false opt_help=false opt_quiet=false opt_verbose=false opt_warning=: # func_echo arg... # Echo program name prefixed message, along with the current mode # name if it has been set yet. func_echo () { $ECHO "$progname: ${opt_mode+$opt_mode: }$*" } # func_verbose arg... # Echo program name prefixed message in verbose mode only. func_verbose () { $opt_verbose && func_echo ${1+"$@"} # A bug in bash halts the script if the last line of a function # fails when set -e is in force, so we need another command to # work around that: : } # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "$*" } # func_error arg... # Echo program name prefixed message to standard error. func_error () { $ECHO "$progname: ${opt_mode+$opt_mode: }"${1+"$@"} 1>&2 } # func_warning arg... # Echo program name prefixed warning message to standard error. func_warning () { $opt_warning && $ECHO "$progname: ${opt_mode+$opt_mode: }warning: "${1+"$@"} 1>&2 # bash bug again: : } # func_fatal_error arg... # Echo program name prefixed message to standard error, and exit. func_fatal_error () { func_error ${1+"$@"} exit $EXIT_FAILURE } # func_fatal_help arg... # Echo program name prefixed message to standard error, followed by # a help hint, and exit. func_fatal_help () { func_error ${1+"$@"} func_fatal_error "$help" } help="Try \`$progname --help' for more information." ## default # func_grep expression filename # Check whether EXPRESSION matches any line of FILENAME, without output. func_grep () { $GREP "$1" "$2" >/dev/null 2>&1 } # func_mkdir_p directory-path # Make sure the entire path to DIRECTORY-PATH is available. func_mkdir_p () { my_directory_path="$1" my_dir_list= if test -n "$my_directory_path" && test "$opt_dry_run" != ":"; then # Protect directory names starting with `-' case $my_directory_path in -*) my_directory_path="./$my_directory_path" ;; esac # While some portion of DIR does not yet exist... while test ! -d "$my_directory_path"; do # ...make a list in topmost first order. Use a colon delimited # list incase some portion of path contains whitespace. my_dir_list="$my_directory_path:$my_dir_list" # If the last portion added has no slash in it, the list is done case $my_directory_path in */*) ;; *) break ;; esac # ...otherwise throw away the child directory and loop my_directory_path=`$ECHO "$my_directory_path" | $SED -e "$dirname"` done my_dir_list=`$ECHO "$my_dir_list" | $SED 's,:*$,,'` save_mkdir_p_IFS="$IFS"; IFS=':' for my_dir in $my_dir_list; do IFS="$save_mkdir_p_IFS" # mkdir can fail with a `File exist' error if two processes # try to create one of the directories concurrently. Don't # stop in that case! $MKDIR "$my_dir" 2>/dev/null || : done IFS="$save_mkdir_p_IFS" # Bail out if we (or some other process) failed to create a directory. test -d "$my_directory_path" || \ func_fatal_error "Failed to create \`$1'" fi } # func_mktempdir [string] # Make a temporary directory that won't clash with other running # libtool processes, and avoids race conditions if possible. If # given, STRING is the basename for that directory. func_mktempdir () { my_template="${TMPDIR-/tmp}/${1-$progname}" if test "$opt_dry_run" = ":"; then # Return a directory name, but don't create it in dry-run mode my_tmpdir="${my_template}-$$" else # If mktemp works, use that first and foremost my_tmpdir=`mktemp -d "${my_template}-XXXXXXXX" 2>/dev/null` if test ! -d "$my_tmpdir"; then # Failing that, at least try and use $RANDOM to avoid a race my_tmpdir="${my_template}-${RANDOM-0}$$" save_mktempdir_umask=`umask` umask 0077 $MKDIR "$my_tmpdir" umask $save_mktempdir_umask fi # If we're not in dry-run mode, bomb out on failure test -d "$my_tmpdir" || \ func_fatal_error "cannot create temporary directory \`$my_tmpdir'" fi $ECHO "$my_tmpdir" } # func_quote_for_eval arg # Aesthetically quote ARG to be evaled later. # This function returns two values: FUNC_QUOTE_FOR_EVAL_RESULT # is double-quoted, suitable for a subsequent eval, whereas # FUNC_QUOTE_FOR_EVAL_UNQUOTED_RESULT has merely all characters # which are still active within double quotes backslashified. func_quote_for_eval () { case $1 in *[\\\`\"\$]*) func_quote_for_eval_unquoted_result=`$ECHO "$1" | $SED "$sed_quote_subst"` ;; *) func_quote_for_eval_unquoted_result="$1" ;; esac case $func_quote_for_eval_unquoted_result in # Double-quote args containing shell metacharacters to delay # word splitting, command substitution and and variable # expansion for a subsequent eval. # Many Bourne shells cannot handle close brackets correctly # in scan sets, so we specify it separately. *[\[\~\#\^\&\*\(\)\{\}\|\;\<\>\?\'\ \ ]*|*]*|"") func_quote_for_eval_result="\"$func_quote_for_eval_unquoted_result\"" ;; *) func_quote_for_eval_result="$func_quote_for_eval_unquoted_result" esac } # func_quote_for_expand arg # Aesthetically quote ARG to be evaled later; same as above, # but do not quote variable references. func_quote_for_expand () { case $1 in *[\\\`\"]*) my_arg=`$ECHO "$1" | $SED \ -e "$double_quote_subst" -e "$sed_double_backslash"` ;; *) my_arg="$1" ;; esac case $my_arg in # Double-quote args containing shell metacharacters to delay # word splitting and command substitution for a subsequent eval. # Many Bourne shells cannot handle close brackets correctly # in scan sets, so we specify it separately. *[\[\~\#\^\&\*\(\)\{\}\|\;\<\>\?\'\ \ ]*|*]*|"") my_arg="\"$my_arg\"" ;; esac func_quote_for_expand_result="$my_arg" } # func_show_eval cmd [fail_exp] # Unless opt_silent is true, then output CMD. Then, if opt_dryrun is # not true, evaluate CMD. If the evaluation of CMD fails, and FAIL_EXP # is given, then evaluate it. func_show_eval () { my_cmd="$1" my_fail_exp="${2-:}" ${opt_silent-false} || { func_quote_for_expand "$my_cmd" eval "func_echo $func_quote_for_expand_result" } if ${opt_dry_run-false}; then :; else eval "$my_cmd" my_status=$? if test "$my_status" -eq 0; then :; else eval "(exit $my_status); $my_fail_exp" fi fi } # func_show_eval_locale cmd [fail_exp] # Unless opt_silent is true, then output CMD. Then, if opt_dryrun is # not true, evaluate CMD. If the evaluation of CMD fails, and FAIL_EXP # is given, then evaluate it. Use the saved locale for evaluation. func_show_eval_locale () { my_cmd="$1" my_fail_exp="${2-:}" ${opt_silent-false} || { func_quote_for_expand "$my_cmd" eval "func_echo $func_quote_for_expand_result" } if ${opt_dry_run-false}; then :; else eval "$lt_user_locale $my_cmd" my_status=$? eval "$lt_safe_locale" if test "$my_status" -eq 0; then :; else eval "(exit $my_status); $my_fail_exp" fi fi } # func_tr_sh # Turn $1 into a string suitable for a shell variable name. # Result is stored in $func_tr_sh_result. All characters # not in the set a-zA-Z0-9_ are replaced with '_'. Further, # if $1 begins with a digit, a '_' is prepended as well. func_tr_sh () { case $1 in [0-9]* | *[!a-zA-Z0-9_]*) func_tr_sh_result=`$ECHO "$1" | $SED 's/^\([0-9]\)/_\1/; s/[^a-zA-Z0-9_]/_/g'` ;; * ) func_tr_sh_result=$1 ;; esac } # func_version # Echo version message to standard output and exit. func_version () { $opt_debug $SED -n '/(C)/!b go :more /\./!{ N s/\n# / / b more } :go /^# '$PROGRAM' (GNU /,/# warranty; / { s/^# // s/^# *$// s/\((C)\)[ 0-9,-]*\( [1-9][0-9]*\)/\1\2/ p }' < "$progpath" exit $? } # func_usage # Echo short help message to standard output and exit. func_usage () { $opt_debug $SED -n '/^# Usage:/,/^# *.*--help/ { s/^# // s/^# *$// s/\$progname/'$progname'/ p }' < "$progpath" echo $ECHO "run \`$progname --help | more' for full usage" exit $? } # func_help [NOEXIT] # Echo long help message to standard output and exit, # unless 'noexit' is passed as argument. func_help () { $opt_debug $SED -n '/^# Usage:/,/# Report bugs to/ { :print s/^# // s/^# *$// s*\$progname*'$progname'* s*\$host*'"$host"'* s*\$SHELL*'"$SHELL"'* s*\$LTCC*'"$LTCC"'* s*\$LTCFLAGS*'"$LTCFLAGS"'* s*\$LD*'"$LD"'* s/\$with_gnu_ld/'"$with_gnu_ld"'/ s/\$automake_version/'"`(${AUTOMAKE-automake} --version) 2>/dev/null |$SED 1q`"'/ s/\$autoconf_version/'"`(${AUTOCONF-autoconf} --version) 2>/dev/null |$SED 1q`"'/ p d } /^# .* home page:/b print /^# General help using/b print ' < "$progpath" ret=$? if test -z "$1"; then exit $ret fi } # func_missing_arg argname # Echo program name prefixed message to standard error and set global # exit_cmd. func_missing_arg () { $opt_debug func_error "missing argument for $1." exit_cmd=exit } # func_split_short_opt shortopt # Set func_split_short_opt_name and func_split_short_opt_arg shell # variables after splitting SHORTOPT after the 2nd character. func_split_short_opt () { my_sed_short_opt='1s/^\(..\).*$/\1/;q' my_sed_short_rest='1s/^..\(.*\)$/\1/;q' func_split_short_opt_name=`$ECHO "$1" | $SED "$my_sed_short_opt"` func_split_short_opt_arg=`$ECHO "$1" | $SED "$my_sed_short_rest"` } # func_split_short_opt may be replaced by extended shell implementation # func_split_long_opt longopt # Set func_split_long_opt_name and func_split_long_opt_arg shell # variables after splitting LONGOPT at the `=' sign. func_split_long_opt () { my_sed_long_opt='1s/^\(--[^=]*\)=.*/\1/;q' my_sed_long_arg='1s/^--[^=]*=//' func_split_long_opt_name=`$ECHO "$1" | $SED "$my_sed_long_opt"` func_split_long_opt_arg=`$ECHO "$1" | $SED "$my_sed_long_arg"` } # func_split_long_opt may be replaced by extended shell implementation exit_cmd=: magic="%%%MAGIC variable%%%" magic_exe="%%%MAGIC EXE variable%%%" # Global variables. nonopt= preserve_args= lo2o="s/\\.lo\$/.${objext}/" o2lo="s/\\.${objext}\$/.lo/" extracted_archives= extracted_serial=0 # If this variable is set in any of the actions, the command in it # will be execed at the end. This prevents here-documents from being # left over by shells. exec_cmd= # func_append var value # Append VALUE to the end of shell variable VAR. func_append () { eval "${1}=\$${1}\${2}" } # func_append may be replaced by extended shell implementation # func_append_quoted var value # Quote VALUE and append to the end of shell variable VAR, separated # by a space. func_append_quoted () { func_quote_for_eval "${2}" eval "${1}=\$${1}\\ \$func_quote_for_eval_result" } # func_append_quoted may be replaced by extended shell implementation # func_arith arithmetic-term... func_arith () { func_arith_result=`expr "${@}"` } # func_arith may be replaced by extended shell implementation # func_len string # STRING may not start with a hyphen. func_len () { func_len_result=`expr "${1}" : ".*" 2>/dev/null || echo $max_cmd_len` } # func_len may be replaced by extended shell implementation # func_lo2o object func_lo2o () { func_lo2o_result=`$ECHO "${1}" | $SED "$lo2o"` } # func_lo2o may be replaced by extended shell implementation # func_xform libobj-or-source func_xform () { func_xform_result=`$ECHO "${1}" | $SED 's/\.[^.]*$/.lo/'` } # func_xform may be replaced by extended shell implementation # func_fatal_configuration arg... # Echo program name prefixed message to standard error, followed by # a configuration failure hint, and exit. func_fatal_configuration () { func_error ${1+"$@"} func_error "See the $PACKAGE documentation for more information." func_fatal_error "Fatal configuration error." } # func_config # Display the configuration for all the tags in this script. func_config () { re_begincf='^# ### BEGIN LIBTOOL' re_endcf='^# ### END LIBTOOL' # Default configuration. $SED "1,/$re_begincf CONFIG/d;/$re_endcf CONFIG/,\$d" < "$progpath" # Now print the configurations for the tags. for tagname in $taglist; do $SED -n "/$re_begincf TAG CONFIG: $tagname\$/,/$re_endcf TAG CONFIG: $tagname\$/p" < "$progpath" done exit $? } # func_features # Display the features supported by this script. func_features () { echo "host: $host" if test "$build_libtool_libs" = yes; then echo "enable shared libraries" else echo "disable shared libraries" fi if test "$build_old_libs" = yes; then echo "enable static libraries" else echo "disable static libraries" fi exit $? } # func_enable_tag tagname # Verify that TAGNAME is valid, and either flag an error and exit, or # enable the TAGNAME tag. We also add TAGNAME to the global $taglist # variable here. func_enable_tag () { # Global variable: tagname="$1" re_begincf="^# ### BEGIN LIBTOOL TAG CONFIG: $tagname\$" re_endcf="^# ### END LIBTOOL TAG CONFIG: $tagname\$" sed_extractcf="/$re_begincf/,/$re_endcf/p" # Validate tagname. case $tagname in *[!-_A-Za-z0-9,/]*) func_fatal_error "invalid tag name: $tagname" ;; esac # Don't test for the "default" C tag, as we know it's # there but not specially marked. case $tagname in CC) ;; *) if $GREP "$re_begincf" "$progpath" >/dev/null 2>&1; then taglist="$taglist $tagname" # Evaluate the configuration. Be careful to quote the path # and the sed script, to avoid splitting on whitespace, but # also don't use non-portable quotes within backquotes within # quotes we have to do it in 2 steps: extractedcf=`$SED -n -e "$sed_extractcf" < "$progpath"` eval "$extractedcf" else func_error "ignoring unknown tag $tagname" fi ;; esac } # func_check_version_match # Ensure that we are using m4 macros, and libtool script from the same # release of libtool. func_check_version_match () { if test "$package_revision" != "$macro_revision"; then if test "$VERSION" != "$macro_version"; then if test -z "$macro_version"; then cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, but the $progname: definition of this LT_INIT comes from an older release. $progname: You should recreate aclocal.m4 with macros from $PACKAGE $VERSION $progname: and run autoconf again. _LT_EOF else cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, but the $progname: definition of this LT_INIT comes from $PACKAGE $macro_version. $progname: You should recreate aclocal.m4 with macros from $PACKAGE $VERSION $progname: and run autoconf again. _LT_EOF fi else cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, revision $package_revision, $progname: but the definition of this LT_INIT comes from revision $macro_revision. $progname: You should recreate aclocal.m4 with macros from revision $package_revision $progname: of $PACKAGE $VERSION and run autoconf again. _LT_EOF fi exit $EXIT_MISMATCH fi } # Shorthand for --mode=foo, only valid as the first argument case $1 in clean|clea|cle|cl) shift; set dummy --mode clean ${1+"$@"}; shift ;; compile|compil|compi|comp|com|co|c) shift; set dummy --mode compile ${1+"$@"}; shift ;; execute|execut|execu|exec|exe|ex|e) shift; set dummy --mode execute ${1+"$@"}; shift ;; finish|finis|fini|fin|fi|f) shift; set dummy --mode finish ${1+"$@"}; shift ;; install|instal|insta|inst|ins|in|i) shift; set dummy --mode install ${1+"$@"}; shift ;; link|lin|li|l) shift; set dummy --mode link ${1+"$@"}; shift ;; uninstall|uninstal|uninsta|uninst|unins|unin|uni|un|u) shift; set dummy --mode uninstall ${1+"$@"}; shift ;; esac # Option defaults: opt_debug=: opt_dry_run=false opt_config=false opt_preserve_dup_deps=false opt_features=false opt_finish=false opt_help=false opt_help_all=false opt_silent=: opt_warning=: opt_verbose=: opt_silent=false opt_verbose=false # Parse options once, thoroughly. This comes as soon as possible in the # script to make things like `--version' happen as quickly as we can. { # this just eases exit handling while test $# -gt 0; do opt="$1" shift case $opt in --debug|-x) opt_debug='set -x' func_echo "enabling shell trace mode" $opt_debug ;; --dry-run|--dryrun|-n) opt_dry_run=: ;; --config) opt_config=: func_config ;; --dlopen|-dlopen) optarg="$1" opt_dlopen="${opt_dlopen+$opt_dlopen }$optarg" shift ;; --preserve-dup-deps) opt_preserve_dup_deps=: ;; --features) opt_features=: func_features ;; --finish) opt_finish=: set dummy --mode finish ${1+"$@"}; shift ;; --help) opt_help=: ;; --help-all) opt_help_all=: opt_help=': help-all' ;; --mode) test $# = 0 && func_missing_arg $opt && break optarg="$1" opt_mode="$optarg" case $optarg in # Valid mode arguments: clean|compile|execute|finish|install|link|relink|uninstall) ;; # Catch anything else as an error *) func_error "invalid argument for $opt" exit_cmd=exit break ;; esac shift ;; --no-silent|--no-quiet) opt_silent=false func_append preserve_args " $opt" ;; --no-warning|--no-warn) opt_warning=false func_append preserve_args " $opt" ;; --no-verbose) opt_verbose=false func_append preserve_args " $opt" ;; --silent|--quiet) opt_silent=: func_append preserve_args " $opt" opt_verbose=false ;; --verbose|-v) opt_verbose=: func_append preserve_args " $opt" opt_silent=false ;; --tag) test $# = 0 && func_missing_arg $opt && break optarg="$1" opt_tag="$optarg" func_append preserve_args " $opt $optarg" func_enable_tag "$optarg" shift ;; -\?|-h) func_usage ;; --help) func_help ;; --version) func_version ;; # Separate optargs to long options: --*=*) func_split_long_opt "$opt" set dummy "$func_split_long_opt_name" "$func_split_long_opt_arg" ${1+"$@"} shift ;; # Separate non-argument short options: -\?*|-h*|-n*|-v*) func_split_short_opt "$opt" set dummy "$func_split_short_opt_name" "-$func_split_short_opt_arg" ${1+"$@"} shift ;; --) break ;; -*) func_fatal_help "unrecognized option \`$opt'" ;; *) set dummy "$opt" ${1+"$@"}; shift; break ;; esac done # Validate options: # save first non-option argument if test "$#" -gt 0; then nonopt="$opt" shift fi # preserve --debug test "$opt_debug" = : || func_append preserve_args " --debug" case $host in *cygwin* | *mingw* | *pw32* | *cegcc*) # don't eliminate duplications in $postdeps and $predeps opt_duplicate_compiler_generated_deps=: ;; *) opt_duplicate_compiler_generated_deps=$opt_preserve_dup_deps ;; esac $opt_help || { # Sanity checks first: func_check_version_match if test "$build_libtool_libs" != yes && test "$build_old_libs" != yes; then func_fatal_configuration "not configured to build any kind of library" fi # Darwin sucks eval std_shrext=\"$shrext_cmds\" # Only execute mode is allowed to have -dlopen flags. if test -n "$opt_dlopen" && test "$opt_mode" != execute; then func_error "unrecognized option \`-dlopen'" $ECHO "$help" 1>&2 exit $EXIT_FAILURE fi # Change the help message to a mode-specific one. generic_help="$help" help="Try \`$progname --help --mode=$opt_mode' for more information." } # Bail if the options were screwed $exit_cmd $EXIT_FAILURE } ## ----------- ## ## Main. ## ## ----------- ## # func_lalib_p file # True iff FILE is a libtool `.la' library or `.lo' object file. # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_lalib_p () { test -f "$1" && $SED -e 4q "$1" 2>/dev/null \ | $GREP "^# Generated by .*$PACKAGE" > /dev/null 2>&1 } # func_lalib_unsafe_p file # True iff FILE is a libtool `.la' library or `.lo' object file. # This function implements the same check as func_lalib_p without # resorting to external programs. To this end, it redirects stdin and # closes it afterwards, without saving the original file descriptor. # As a safety measure, use it only where a negative result would be # fatal anyway. Works if `file' does not exist. func_lalib_unsafe_p () { lalib_p=no if test -f "$1" && test -r "$1" && exec 5<&0 <"$1"; then for lalib_p_l in 1 2 3 4 do read lalib_p_line case "$lalib_p_line" in \#\ Generated\ by\ *$PACKAGE* ) lalib_p=yes; break;; esac done exec 0<&5 5<&- fi test "$lalib_p" = yes } # func_ltwrapper_script_p file # True iff FILE is a libtool wrapper script # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_script_p () { func_lalib_p "$1" } # func_ltwrapper_executable_p file # True iff FILE is a libtool wrapper executable # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_executable_p () { func_ltwrapper_exec_suffix= case $1 in *.exe) ;; *) func_ltwrapper_exec_suffix=.exe ;; esac $GREP "$magic_exe" "$1$func_ltwrapper_exec_suffix" >/dev/null 2>&1 } # func_ltwrapper_scriptname file # Assumes file is an ltwrapper_executable # uses $file to determine the appropriate filename for a # temporary ltwrapper_script. func_ltwrapper_scriptname () { func_dirname_and_basename "$1" "" "." func_stripname '' '.exe' "$func_basename_result" func_ltwrapper_scriptname_result="$func_dirname_result/$objdir/${func_stripname_result}_ltshwrapper" } # func_ltwrapper_p file # True iff FILE is a libtool wrapper script or wrapper executable # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_p () { func_ltwrapper_script_p "$1" || func_ltwrapper_executable_p "$1" } # func_execute_cmds commands fail_cmd # Execute tilde-delimited COMMANDS. # If FAIL_CMD is given, eval that upon failure. # FAIL_CMD may read-access the current command in variable CMD! func_execute_cmds () { $opt_debug save_ifs=$IFS; IFS='~' for cmd in $1; do IFS=$save_ifs eval cmd=\"$cmd\" func_show_eval "$cmd" "${2-:}" done IFS=$save_ifs } # func_source file # Source FILE, adding directory component if necessary. # Note that it is not necessary on cygwin/mingw to append a dot to # FILE even if both FILE and FILE.exe exist: automatic-append-.exe # behavior happens only for exec(3), not for open(2)! Also, sourcing # `FILE.' does not work on cygwin managed mounts. func_source () { $opt_debug case $1 in */* | *\\*) . "$1" ;; *) . "./$1" ;; esac } # func_resolve_sysroot PATH # Replace a leading = in PATH with a sysroot. Store the result into # func_resolve_sysroot_result func_resolve_sysroot () { func_resolve_sysroot_result=$1 case $func_resolve_sysroot_result in =*) func_stripname '=' '' "$func_resolve_sysroot_result" func_resolve_sysroot_result=$lt_sysroot$func_stripname_result ;; esac } # func_replace_sysroot PATH # If PATH begins with the sysroot, replace it with = and # store the result into func_replace_sysroot_result. func_replace_sysroot () { case "$lt_sysroot:$1" in ?*:"$lt_sysroot"*) func_stripname "$lt_sysroot" '' "$1" func_replace_sysroot_result="=$func_stripname_result" ;; *) # Including no sysroot. func_replace_sysroot_result=$1 ;; esac } # func_infer_tag arg # Infer tagged configuration to use if any are available and # if one wasn't chosen via the "--tag" command line option. # Only attempt this if the compiler in the base compile # command doesn't match the default compiler. # arg is usually of the form 'gcc ...' func_infer_tag () { $opt_debug if test -n "$available_tags" && test -z "$tagname"; then CC_quoted= for arg in $CC; do func_append_quoted CC_quoted "$arg" done CC_expanded=`func_echo_all $CC` CC_quoted_expanded=`func_echo_all $CC_quoted` case $@ in # Blanks in the command may have been stripped by the calling shell, # but not from the CC environment variable when configure was run. " $CC "* | "$CC "* | " $CC_expanded "* | "$CC_expanded "* | \ " $CC_quoted"* | "$CC_quoted "* | " $CC_quoted_expanded "* | "$CC_quoted_expanded "*) ;; # Blanks at the start of $base_compile will cause this to fail # if we don't check for them as well. *) for z in $available_tags; do if $GREP "^# ### BEGIN LIBTOOL TAG CONFIG: $z$" < "$progpath" > /dev/null; then # Evaluate the configuration. eval "`${SED} -n -e '/^# ### BEGIN LIBTOOL TAG CONFIG: '$z'$/,/^# ### END LIBTOOL TAG CONFIG: '$z'$/p' < $progpath`" CC_quoted= for arg in $CC; do # Double-quote args containing other shell metacharacters. func_append_quoted CC_quoted "$arg" done CC_expanded=`func_echo_all $CC` CC_quoted_expanded=`func_echo_all $CC_quoted` case "$@ " in " $CC "* | "$CC "* | " $CC_expanded "* | "$CC_expanded "* | \ " $CC_quoted"* | "$CC_quoted "* | " $CC_quoted_expanded "* | "$CC_quoted_expanded "*) # The compiler in the base compile command matches # the one in the tagged configuration. # Assume this is the tagged configuration we want. tagname=$z break ;; esac fi done # If $tagname still isn't set, then no tagged configuration # was found and let the user know that the "--tag" command # line option must be used. if test -z "$tagname"; then func_echo "unable to infer tagged configuration" func_fatal_error "specify a tag with \`--tag'" # else # func_verbose "using $tagname tagged configuration" fi ;; esac fi } # func_write_libtool_object output_name pic_name nonpic_name # Create a libtool object file (analogous to a ".la" file), # but don't create it if we're doing a dry run. func_write_libtool_object () { write_libobj=${1} if test "$build_libtool_libs" = yes; then write_lobj=\'${2}\' else write_lobj=none fi if test "$build_old_libs" = yes; then write_oldobj=\'${3}\' else write_oldobj=none fi $opt_dry_run || { cat >${write_libobj}T </dev/null` if test "$?" -eq 0 && test -n "${func_convert_core_file_wine_to_w32_tmp}"; then func_convert_core_file_wine_to_w32_result=`$ECHO "$func_convert_core_file_wine_to_w32_tmp" | $SED -e "$lt_sed_naive_backslashify"` else func_convert_core_file_wine_to_w32_result= fi fi } # end: func_convert_core_file_wine_to_w32 # func_convert_core_path_wine_to_w32 ARG # Helper function used by path conversion functions when $build is *nix, and # $host is mingw, cygwin, or some other w32 environment. Relies on a correctly # configured wine environment available, with the winepath program in $build's # $PATH. Assumes ARG has no leading or trailing path separator characters. # # ARG is path to be converted from $build format to win32. # Result is available in $func_convert_core_path_wine_to_w32_result. # Unconvertible file (directory) names in ARG are skipped; if no directory names # are convertible, then the result may be empty. func_convert_core_path_wine_to_w32 () { $opt_debug # unfortunately, winepath doesn't convert paths, only file names func_convert_core_path_wine_to_w32_result="" if test -n "$1"; then oldIFS=$IFS IFS=: for func_convert_core_path_wine_to_w32_f in $1; do IFS=$oldIFS func_convert_core_file_wine_to_w32 "$func_convert_core_path_wine_to_w32_f" if test -n "$func_convert_core_file_wine_to_w32_result" ; then if test -z "$func_convert_core_path_wine_to_w32_result"; then func_convert_core_path_wine_to_w32_result="$func_convert_core_file_wine_to_w32_result" else func_append func_convert_core_path_wine_to_w32_result ";$func_convert_core_file_wine_to_w32_result" fi fi done IFS=$oldIFS fi } # end: func_convert_core_path_wine_to_w32 # func_cygpath ARGS... # Wrapper around calling the cygpath program via LT_CYGPATH. This is used when # when (1) $build is *nix and Cygwin is hosted via a wine environment; or (2) # $build is MSYS and $host is Cygwin, or (3) $build is Cygwin. In case (1) or # (2), returns the Cygwin file name or path in func_cygpath_result (input # file name or path is assumed to be in w32 format, as previously converted # from $build's *nix or MSYS format). In case (3), returns the w32 file name # or path in func_cygpath_result (input file name or path is assumed to be in # Cygwin format). Returns an empty string on error. # # ARGS are passed to cygpath, with the last one being the file name or path to # be converted. # # Specify the absolute *nix (or w32) name to cygpath in the LT_CYGPATH # environment variable; do not put it in $PATH. func_cygpath () { $opt_debug if test -n "$LT_CYGPATH" && test -f "$LT_CYGPATH"; then func_cygpath_result=`$LT_CYGPATH "$@" 2>/dev/null` if test "$?" -ne 0; then # on failure, ensure result is empty func_cygpath_result= fi else func_cygpath_result= func_error "LT_CYGPATH is empty or specifies non-existent file: \`$LT_CYGPATH'" fi } #end: func_cygpath # func_convert_core_msys_to_w32 ARG # Convert file name or path ARG from MSYS format to w32 format. Return # result in func_convert_core_msys_to_w32_result. func_convert_core_msys_to_w32 () { $opt_debug # awkward: cmd appends spaces to result func_convert_core_msys_to_w32_result=`( cmd //c echo "$1" ) 2>/dev/null | $SED -e 's/[ ]*$//' -e "$lt_sed_naive_backslashify"` } #end: func_convert_core_msys_to_w32 # func_convert_file_check ARG1 ARG2 # Verify that ARG1 (a file name in $build format) was converted to $host # format in ARG2. Otherwise, emit an error message, but continue (resetting # func_to_host_file_result to ARG1). func_convert_file_check () { $opt_debug if test -z "$2" && test -n "$1" ; then func_error "Could not determine host file name corresponding to" func_error " \`$1'" func_error "Continuing, but uninstalled executables may not work." # Fallback: func_to_host_file_result="$1" fi } # end func_convert_file_check # func_convert_path_check FROM_PATHSEP TO_PATHSEP FROM_PATH TO_PATH # Verify that FROM_PATH (a path in $build format) was converted to $host # format in TO_PATH. Otherwise, emit an error message, but continue, resetting # func_to_host_file_result to a simplistic fallback value (see below). func_convert_path_check () { $opt_debug if test -z "$4" && test -n "$3"; then func_error "Could not determine the host path corresponding to" func_error " \`$3'" func_error "Continuing, but uninstalled executables may not work." # Fallback. This is a deliberately simplistic "conversion" and # should not be "improved". See libtool.info. if test "x$1" != "x$2"; then lt_replace_pathsep_chars="s|$1|$2|g" func_to_host_path_result=`echo "$3" | $SED -e "$lt_replace_pathsep_chars"` else func_to_host_path_result="$3" fi fi } # end func_convert_path_check # func_convert_path_front_back_pathsep FRONTPAT BACKPAT REPL ORIG # Modifies func_to_host_path_result by prepending REPL if ORIG matches FRONTPAT # and appending REPL if ORIG matches BACKPAT. func_convert_path_front_back_pathsep () { $opt_debug case $4 in $1 ) func_to_host_path_result="$3$func_to_host_path_result" ;; esac case $4 in $2 ) func_append func_to_host_path_result "$3" ;; esac } # end func_convert_path_front_back_pathsep ################################################## # $build to $host FILE NAME CONVERSION FUNCTIONS # ################################################## # invoked via `$to_host_file_cmd ARG' # # In each case, ARG is the path to be converted from $build to $host format. # Result will be available in $func_to_host_file_result. # func_to_host_file ARG # Converts the file name ARG from $build format to $host format. Return result # in func_to_host_file_result. func_to_host_file () { $opt_debug $to_host_file_cmd "$1" } # end func_to_host_file # func_to_tool_file ARG LAZY # converts the file name ARG from $build format to toolchain format. Return # result in func_to_tool_file_result. If the conversion in use is listed # in (the comma separated) LAZY, no conversion takes place. func_to_tool_file () { $opt_debug case ,$2, in *,"$to_tool_file_cmd",*) func_to_tool_file_result=$1 ;; *) $to_tool_file_cmd "$1" func_to_tool_file_result=$func_to_host_file_result ;; esac } # end func_to_tool_file # func_convert_file_noop ARG # Copy ARG to func_to_host_file_result. func_convert_file_noop () { func_to_host_file_result="$1" } # end func_convert_file_noop # func_convert_file_msys_to_w32 ARG # Convert file name ARG from (mingw) MSYS to (mingw) w32 format; automatic # conversion to w32 is not available inside the cwrapper. Returns result in # func_to_host_file_result. func_convert_file_msys_to_w32 () { $opt_debug func_to_host_file_result="$1" if test -n "$1"; then func_convert_core_msys_to_w32 "$1" func_to_host_file_result="$func_convert_core_msys_to_w32_result" fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_msys_to_w32 # func_convert_file_cygwin_to_w32 ARG # Convert file name ARG from Cygwin to w32 format. Returns result in # func_to_host_file_result. func_convert_file_cygwin_to_w32 () { $opt_debug func_to_host_file_result="$1" if test -n "$1"; then # because $build is cygwin, we call "the" cygpath in $PATH; no need to use # LT_CYGPATH in this case. func_to_host_file_result=`cygpath -m "$1"` fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_cygwin_to_w32 # func_convert_file_nix_to_w32 ARG # Convert file name ARG from *nix to w32 format. Requires a wine environment # and a working winepath. Returns result in func_to_host_file_result. func_convert_file_nix_to_w32 () { $opt_debug func_to_host_file_result="$1" if test -n "$1"; then func_convert_core_file_wine_to_w32 "$1" func_to_host_file_result="$func_convert_core_file_wine_to_w32_result" fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_nix_to_w32 # func_convert_file_msys_to_cygwin ARG # Convert file name ARG from MSYS to Cygwin format. Requires LT_CYGPATH set. # Returns result in func_to_host_file_result. func_convert_file_msys_to_cygwin () { $opt_debug func_to_host_file_result="$1" if test -n "$1"; then func_convert_core_msys_to_w32 "$1" func_cygpath -u "$func_convert_core_msys_to_w32_result" func_to_host_file_result="$func_cygpath_result" fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_msys_to_cygwin # func_convert_file_nix_to_cygwin ARG # Convert file name ARG from *nix to Cygwin format. Requires Cygwin installed # in a wine environment, working winepath, and LT_CYGPATH set. Returns result # in func_to_host_file_result. func_convert_file_nix_to_cygwin () { $opt_debug func_to_host_file_result="$1" if test -n "$1"; then # convert from *nix to w32, then use cygpath to convert from w32 to cygwin. func_convert_core_file_wine_to_w32 "$1" func_cygpath -u "$func_convert_core_file_wine_to_w32_result" func_to_host_file_result="$func_cygpath_result" fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_nix_to_cygwin ############################################# # $build to $host PATH CONVERSION FUNCTIONS # ############################################# # invoked via `$to_host_path_cmd ARG' # # In each case, ARG is the path to be converted from $build to $host format. # The result will be available in $func_to_host_path_result. # # Path separators are also converted from $build format to $host format. If # ARG begins or ends with a path separator character, it is preserved (but # converted to $host format) on output. # # All path conversion functions are named using the following convention: # file name conversion function : func_convert_file_X_to_Y () # path conversion function : func_convert_path_X_to_Y () # where, for any given $build/$host combination the 'X_to_Y' value is the # same. If conversion functions are added for new $build/$host combinations, # the two new functions must follow this pattern, or func_init_to_host_path_cmd # will break. # func_init_to_host_path_cmd # Ensures that function "pointer" variable $to_host_path_cmd is set to the # appropriate value, based on the value of $to_host_file_cmd. to_host_path_cmd= func_init_to_host_path_cmd () { $opt_debug if test -z "$to_host_path_cmd"; then func_stripname 'func_convert_file_' '' "$to_host_file_cmd" to_host_path_cmd="func_convert_path_${func_stripname_result}" fi } # func_to_host_path ARG # Converts the path ARG from $build format to $host format. Return result # in func_to_host_path_result. func_to_host_path () { $opt_debug func_init_to_host_path_cmd $to_host_path_cmd "$1" } # end func_to_host_path # func_convert_path_noop ARG # Copy ARG to func_to_host_path_result. func_convert_path_noop () { func_to_host_path_result="$1" } # end func_convert_path_noop # func_convert_path_msys_to_w32 ARG # Convert path ARG from (mingw) MSYS to (mingw) w32 format; automatic # conversion to w32 is not available inside the cwrapper. Returns result in # func_to_host_path_result. func_convert_path_msys_to_w32 () { $opt_debug func_to_host_path_result="$1" if test -n "$1"; then # Remove leading and trailing path separator characters from ARG. MSYS # behavior is inconsistent here; cygpath turns them into '.;' and ';.'; # and winepath ignores them completely. func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_msys_to_w32 "$func_to_host_path_tmp1" func_to_host_path_result="$func_convert_core_msys_to_w32_result" func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_msys_to_w32 # func_convert_path_cygwin_to_w32 ARG # Convert path ARG from Cygwin to w32 format. Returns result in # func_to_host_file_result. func_convert_path_cygwin_to_w32 () { $opt_debug func_to_host_path_result="$1" if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_to_host_path_result=`cygpath -m -p "$func_to_host_path_tmp1"` func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_cygwin_to_w32 # func_convert_path_nix_to_w32 ARG # Convert path ARG from *nix to w32 format. Requires a wine environment and # a working winepath. Returns result in func_to_host_file_result. func_convert_path_nix_to_w32 () { $opt_debug func_to_host_path_result="$1" if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_path_wine_to_w32 "$func_to_host_path_tmp1" func_to_host_path_result="$func_convert_core_path_wine_to_w32_result" func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_nix_to_w32 # func_convert_path_msys_to_cygwin ARG # Convert path ARG from MSYS to Cygwin format. Requires LT_CYGPATH set. # Returns result in func_to_host_file_result. func_convert_path_msys_to_cygwin () { $opt_debug func_to_host_path_result="$1" if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_msys_to_w32 "$func_to_host_path_tmp1" func_cygpath -u -p "$func_convert_core_msys_to_w32_result" func_to_host_path_result="$func_cygpath_result" func_convert_path_check : : \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" : "$1" fi } # end func_convert_path_msys_to_cygwin # func_convert_path_nix_to_cygwin ARG # Convert path ARG from *nix to Cygwin format. Requires Cygwin installed in a # a wine environment, working winepath, and LT_CYGPATH set. Returns result in # func_to_host_file_result. func_convert_path_nix_to_cygwin () { $opt_debug func_to_host_path_result="$1" if test -n "$1"; then # Remove leading and trailing path separator characters from # ARG. msys behavior is inconsistent here, cygpath turns them # into '.;' and ';.', and winepath ignores them completely. func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_path_wine_to_w32 "$func_to_host_path_tmp1" func_cygpath -u -p "$func_convert_core_path_wine_to_w32_result" func_to_host_path_result="$func_cygpath_result" func_convert_path_check : : \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" : "$1" fi } # end func_convert_path_nix_to_cygwin # func_mode_compile arg... func_mode_compile () { $opt_debug # Get the compilation command and the source file. base_compile= srcfile="$nonopt" # always keep a non-empty value in "srcfile" suppress_opt=yes suppress_output= arg_mode=normal libobj= later= pie_flag= for arg do case $arg_mode in arg ) # do not "continue". Instead, add this to base_compile lastarg="$arg" arg_mode=normal ;; target ) libobj="$arg" arg_mode=normal continue ;; normal ) # Accept any command-line options. case $arg in -o) test -n "$libobj" && \ func_fatal_error "you cannot specify \`-o' more than once" arg_mode=target continue ;; -pie | -fpie | -fPIE) func_append pie_flag " $arg" continue ;; -shared | -static | -prefer-pic | -prefer-non-pic) func_append later " $arg" continue ;; -no-suppress) suppress_opt=no continue ;; -Xcompiler) arg_mode=arg # the next one goes into the "base_compile" arg list continue # The current "srcfile" will either be retained or ;; # replaced later. I would guess that would be a bug. -Wc,*) func_stripname '-Wc,' '' "$arg" args=$func_stripname_result lastarg= save_ifs="$IFS"; IFS=',' for arg in $args; do IFS="$save_ifs" func_append_quoted lastarg "$arg" done IFS="$save_ifs" func_stripname ' ' '' "$lastarg" lastarg=$func_stripname_result # Add the arguments to base_compile. func_append base_compile " $lastarg" continue ;; *) # Accept the current argument as the source file. # The previous "srcfile" becomes the current argument. # lastarg="$srcfile" srcfile="$arg" ;; esac # case $arg ;; esac # case $arg_mode # Aesthetically quote the previous argument. func_append_quoted base_compile "$lastarg" done # for arg case $arg_mode in arg) func_fatal_error "you must specify an argument for -Xcompile" ;; target) func_fatal_error "you must specify a target with \`-o'" ;; *) # Get the name of the library object. test -z "$libobj" && { func_basename "$srcfile" libobj="$func_basename_result" } ;; esac # Recognize several different file suffixes. # If the user specifies -o file.o, it is replaced with file.lo case $libobj in *.[cCFSifmso] | \ *.ada | *.adb | *.ads | *.asm | \ *.c++ | *.cc | *.ii | *.class | *.cpp | *.cxx | \ *.[fF][09]? | *.for | *.java | *.go | *.obj | *.sx | *.cu | *.cup) func_xform "$libobj" libobj=$func_xform_result ;; esac case $libobj in *.lo) func_lo2o "$libobj"; obj=$func_lo2o_result ;; *) func_fatal_error "cannot determine name of library object from \`$libobj'" ;; esac func_infer_tag $base_compile for arg in $later; do case $arg in -shared) test "$build_libtool_libs" != yes && \ func_fatal_configuration "can not build a shared library" build_old_libs=no continue ;; -static) build_libtool_libs=no build_old_libs=yes continue ;; -prefer-pic) pic_mode=yes continue ;; -prefer-non-pic) pic_mode=no continue ;; esac done func_quote_for_eval "$libobj" test "X$libobj" != "X$func_quote_for_eval_result" \ && $ECHO "X$libobj" | $GREP '[]~#^*{};<>?"'"'"' &()|`$[]' \ && func_warning "libobj name \`$libobj' may not contain shell special characters." func_dirname_and_basename "$obj" "/" "" objname="$func_basename_result" xdir="$func_dirname_result" lobj=${xdir}$objdir/$objname test -z "$base_compile" && \ func_fatal_help "you must specify a compilation command" # Delete any leftover library objects. if test "$build_old_libs" = yes; then removelist="$obj $lobj $libobj ${libobj}T" else removelist="$lobj $libobj ${libobj}T" fi # On Cygwin there's no "real" PIC flag so we must build both object types case $host_os in cygwin* | mingw* | pw32* | os2* | cegcc*) pic_mode=default ;; esac if test "$pic_mode" = no && test "$deplibs_check_method" != pass_all; then # non-PIC code in shared libraries is not supported pic_mode=default fi # Calculate the filename of the output object if compiler does # not support -o with -c if test "$compiler_c_o" = no; then output_obj=`$ECHO "$srcfile" | $SED 's%^.*/%%; s%\.[^.]*$%%'`.${objext} lockfile="$output_obj.lock" else output_obj= need_locks=no lockfile= fi # Lock this critical section if it is needed # We use this script file to make the link, it avoids creating a new file if test "$need_locks" = yes; then until $opt_dry_run || ln "$progpath" "$lockfile" 2>/dev/null; do func_echo "Waiting for $lockfile to be removed" sleep 2 done elif test "$need_locks" = warn; then if test -f "$lockfile"; then $ECHO "\ *** ERROR, $lockfile exists and contains: `cat $lockfile 2>/dev/null` This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support \`-c' and \`-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi func_append removelist " $output_obj" $ECHO "$srcfile" > "$lockfile" fi $opt_dry_run || $RM $removelist func_append removelist " $lockfile" trap '$opt_dry_run || $RM $removelist; exit $EXIT_FAILURE' 1 2 15 func_to_tool_file "$srcfile" func_convert_file_msys_to_w32 srcfile=$func_to_tool_file_result func_quote_for_eval "$srcfile" qsrcfile=$func_quote_for_eval_result # Only build a PIC object if we are building libtool libraries. if test "$build_libtool_libs" = yes; then # Without this assignment, base_compile gets emptied. fbsd_hideous_sh_bug=$base_compile if test "$pic_mode" != no; then command="$base_compile $qsrcfile $pic_flag" else # Don't build PIC code command="$base_compile $qsrcfile" fi func_mkdir_p "$xdir$objdir" if test -z "$output_obj"; then # Place PIC objects in $objdir func_append command " -o $lobj" fi func_show_eval_locale "$command" \ 'test -n "$output_obj" && $RM $removelist; exit $EXIT_FAILURE' if test "$need_locks" = warn && test "X`cat $lockfile 2>/dev/null`" != "X$srcfile"; then $ECHO "\ *** ERROR, $lockfile contains: `cat $lockfile 2>/dev/null` but it should contain: $srcfile This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support \`-c' and \`-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi # Just move the object if needed, then go on to compile the next one if test -n "$output_obj" && test "X$output_obj" != "X$lobj"; then func_show_eval '$MV "$output_obj" "$lobj"' \ 'error=$?; $opt_dry_run || $RM $removelist; exit $error' fi # Allow error messages only from the first compilation. if test "$suppress_opt" = yes; then suppress_output=' >/dev/null 2>&1' fi fi # Only build a position-dependent object if we build old libraries. if test "$build_old_libs" = yes; then if test "$pic_mode" != yes; then # Don't build PIC code command="$base_compile $qsrcfile$pie_flag" else command="$base_compile $qsrcfile $pic_flag" fi if test "$compiler_c_o" = yes; then func_append command " -o $obj" fi # Suppress compiler output if we already did a PIC compilation. func_append command "$suppress_output" func_show_eval_locale "$command" \ '$opt_dry_run || $RM $removelist; exit $EXIT_FAILURE' if test "$need_locks" = warn && test "X`cat $lockfile 2>/dev/null`" != "X$srcfile"; then $ECHO "\ *** ERROR, $lockfile contains: `cat $lockfile 2>/dev/null` but it should contain: $srcfile This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support \`-c' and \`-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi # Just move the object if needed if test -n "$output_obj" && test "X$output_obj" != "X$obj"; then func_show_eval '$MV "$output_obj" "$obj"' \ 'error=$?; $opt_dry_run || $RM $removelist; exit $error' fi fi $opt_dry_run || { func_write_libtool_object "$libobj" "$objdir/$objname" "$objname" # Unlock the critical section if it was locked if test "$need_locks" != no; then removelist=$lockfile $RM "$lockfile" fi } exit $EXIT_SUCCESS } $opt_help || { test "$opt_mode" = compile && func_mode_compile ${1+"$@"} } func_mode_help () { # We need to display help for each of the modes. case $opt_mode in "") # Generic help is extracted from the usage comments # at the start of this file. func_help ;; clean) $ECHO \ "Usage: $progname [OPTION]... --mode=clean RM [RM-OPTION]... FILE... Remove files from the build directory. RM is the name of the program to use to delete files associated with each FILE (typically \`/bin/rm'). RM-OPTIONS are options (such as \`-f') to be passed to RM. If FILE is a libtool library, object or program, all the files associated with it are deleted. Otherwise, only FILE itself is deleted using RM." ;; compile) $ECHO \ "Usage: $progname [OPTION]... --mode=compile COMPILE-COMMAND... SOURCEFILE Compile a source file into a libtool library object. This mode accepts the following additional options: -o OUTPUT-FILE set the output file name to OUTPUT-FILE -no-suppress do not suppress compiler output for multiple passes -prefer-pic try to build PIC objects only -prefer-non-pic try to build non-PIC objects only -shared do not build a \`.o' file suitable for static linking -static only build a \`.o' file suitable for static linking -Wc,FLAG pass FLAG directly to the compiler COMPILE-COMMAND is a command to be used in creating a \`standard' object file from the given SOURCEFILE. The output file name is determined by removing the directory component from SOURCEFILE, then substituting the C source code suffix \`.c' with the library object suffix, \`.lo'." ;; execute) $ECHO \ "Usage: $progname [OPTION]... --mode=execute COMMAND [ARGS]... Automatically set library path, then run a program. This mode accepts the following additional options: -dlopen FILE add the directory containing FILE to the library path This mode sets the library path environment variable according to \`-dlopen' flags. If any of the ARGS are libtool executable wrappers, then they are translated into their corresponding uninstalled binary, and any of their required library directories are added to the library path. Then, COMMAND is executed, with ARGS as arguments." ;; finish) $ECHO \ "Usage: $progname [OPTION]... --mode=finish [LIBDIR]... Complete the installation of libtool libraries. Each LIBDIR is a directory that contains libtool libraries. The commands that this mode executes may require superuser privileges. Use the \`--dry-run' option if you just want to see what would be executed." ;; install) $ECHO \ "Usage: $progname [OPTION]... --mode=install INSTALL-COMMAND... Install executables or libraries. INSTALL-COMMAND is the installation command. The first component should be either the \`install' or \`cp' program. The following components of INSTALL-COMMAND are treated specially: -inst-prefix-dir PREFIX-DIR Use PREFIX-DIR as a staging area for installation The rest of the components are interpreted as arguments to that command (only BSD-compatible install options are recognized)." ;; link) $ECHO \ "Usage: $progname [OPTION]... --mode=link LINK-COMMAND... Link object files or libraries together to form another library, or to create an executable program. LINK-COMMAND is a command using the C compiler that you would use to create a program from several object files. The following components of LINK-COMMAND are treated specially: -all-static do not do any dynamic linking at all -avoid-version do not add a version suffix if possible -bindir BINDIR specify path to binaries directory (for systems where libraries must be found in the PATH setting at runtime) -dlopen FILE \`-dlpreopen' FILE if it cannot be dlopened at runtime -dlpreopen FILE link in FILE and add its symbols to lt_preloaded_symbols -export-dynamic allow symbols from OUTPUT-FILE to be resolved with dlsym(3) -export-symbols SYMFILE try to export only the symbols listed in SYMFILE -export-symbols-regex REGEX try to export only the symbols matching REGEX -LLIBDIR search LIBDIR for required installed libraries -lNAME OUTPUT-FILE requires the installed library libNAME -module build a library that can dlopened -no-fast-install disable the fast-install mode -no-install link a not-installable executable -no-undefined declare that a library does not refer to external symbols -o OUTPUT-FILE create OUTPUT-FILE from the specified objects -objectlist FILE Use a list of object files found in FILE to specify objects -precious-files-regex REGEX don't remove output files matching REGEX -release RELEASE specify package release information -rpath LIBDIR the created library will eventually be installed in LIBDIR -R[ ]LIBDIR add LIBDIR to the runtime path of programs and libraries -shared only do dynamic linking of libtool libraries -shrext SUFFIX override the standard shared library file extension -static do not do any dynamic linking of uninstalled libtool libraries -static-libtool-libs do not do any dynamic linking of libtool libraries -version-info CURRENT[:REVISION[:AGE]] specify library version info [each variable defaults to 0] -weak LIBNAME declare that the target provides the LIBNAME interface -Wc,FLAG -Xcompiler FLAG pass linker-specific FLAG directly to the compiler -Wl,FLAG -Xlinker FLAG pass linker-specific FLAG directly to the linker -XCClinker FLAG pass link-specific FLAG to the compiler driver (CC) All other options (arguments beginning with \`-') are ignored. Every other argument is treated as a filename. Files ending in \`.la' are treated as uninstalled libtool libraries, other files are standard or library object files. If the OUTPUT-FILE ends in \`.la', then a libtool library is created, only library objects (\`.lo' files) may be specified, and \`-rpath' is required, except when creating a convenience library. If OUTPUT-FILE ends in \`.a' or \`.lib', then a standard library is created using \`ar' and \`ranlib', or on Windows using \`lib'. If OUTPUT-FILE ends in \`.lo' or \`.${objext}', then a reloadable object file is created, otherwise an executable program is created." ;; uninstall) $ECHO \ "Usage: $progname [OPTION]... --mode=uninstall RM [RM-OPTION]... FILE... Remove libraries from an installation directory. RM is the name of the program to use to delete files associated with each FILE (typically \`/bin/rm'). RM-OPTIONS are options (such as \`-f') to be passed to RM. If FILE is a libtool library, all the files associated with it are deleted. Otherwise, only FILE itself is deleted using RM." ;; *) func_fatal_help "invalid operation mode \`$opt_mode'" ;; esac echo $ECHO "Try \`$progname --help' for more information about other modes." } # Now that we've collected a possible --mode arg, show help if necessary if $opt_help; then if test "$opt_help" = :; then func_mode_help else { func_help noexit for opt_mode in compile link execute install finish uninstall clean; do func_mode_help done } | sed -n '1p; 2,$s/^Usage:/ or: /p' { func_help noexit for opt_mode in compile link execute install finish uninstall clean; do echo func_mode_help done } | sed '1d /^When reporting/,/^Report/{ H d } $x /information about other modes/d /more detailed .*MODE/d s/^Usage:.*--mode=\([^ ]*\) .*/Description of \1 mode:/' fi exit $? fi # func_mode_execute arg... func_mode_execute () { $opt_debug # The first argument is the command name. cmd="$nonopt" test -z "$cmd" && \ func_fatal_help "you must specify a COMMAND" # Handle -dlopen flags immediately. for file in $opt_dlopen; do test -f "$file" \ || func_fatal_help "\`$file' is not a file" dir= case $file in *.la) func_resolve_sysroot "$file" file=$func_resolve_sysroot_result # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$file" \ || func_fatal_help "\`$lib' is not a valid libtool archive" # Read the libtool library. dlname= library_names= func_source "$file" # Skip this library if it cannot be dlopened. if test -z "$dlname"; then # Warn if it was a shared library. test -n "$library_names" && \ func_warning "\`$file' was not linked with \`-export-dynamic'" continue fi func_dirname "$file" "" "." dir="$func_dirname_result" if test -f "$dir/$objdir/$dlname"; then func_append dir "/$objdir" else if test ! -f "$dir/$dlname"; then func_fatal_error "cannot find \`$dlname' in \`$dir' or \`$dir/$objdir'" fi fi ;; *.lo) # Just add the directory containing the .lo file. func_dirname "$file" "" "." dir="$func_dirname_result" ;; *) func_warning "\`-dlopen' is ignored for non-libtool libraries and objects" continue ;; esac # Get the absolute pathname. absdir=`cd "$dir" && pwd` test -n "$absdir" && dir="$absdir" # Now add the directory to shlibpath_var. if eval "test -z \"\$$shlibpath_var\""; then eval "$shlibpath_var=\"\$dir\"" else eval "$shlibpath_var=\"\$dir:\$$shlibpath_var\"" fi done # This variable tells wrapper scripts just to set shlibpath_var # rather than running their programs. libtool_execute_magic="$magic" # Check if any of the arguments is a wrapper script. args= for file do case $file in -* | *.la | *.lo ) ;; *) # Do a test to see if this is really a libtool program. if func_ltwrapper_script_p "$file"; then func_source "$file" # Transform arg to wrapped name. file="$progdir/$program" elif func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" func_source "$func_ltwrapper_scriptname_result" # Transform arg to wrapped name. file="$progdir/$program" fi ;; esac # Quote arguments (to preserve shell metacharacters). func_append_quoted args "$file" done if test "X$opt_dry_run" = Xfalse; then if test -n "$shlibpath_var"; then # Export the shlibpath_var. eval "export $shlibpath_var" fi # Restore saved environment variables for lt_var in LANG LANGUAGE LC_ALL LC_CTYPE LC_COLLATE LC_MESSAGES do eval "if test \"\${save_$lt_var+set}\" = set; then $lt_var=\$save_$lt_var; export $lt_var else $lt_unset $lt_var fi" done # Now prepare to actually exec the command. exec_cmd="\$cmd$args" else # Display what would be done. if test -n "$shlibpath_var"; then eval "\$ECHO \"\$shlibpath_var=\$$shlibpath_var\"" echo "export $shlibpath_var" fi $ECHO "$cmd$args" exit $EXIT_SUCCESS fi } test "$opt_mode" = execute && func_mode_execute ${1+"$@"} # func_mode_finish arg... func_mode_finish () { $opt_debug libs= libdirs= admincmds= for opt in "$nonopt" ${1+"$@"} do if test -d "$opt"; then func_append libdirs " $opt" elif test -f "$opt"; then if func_lalib_unsafe_p "$opt"; then func_append libs " $opt" else func_warning "\`$opt' is not a valid libtool archive" fi else func_fatal_error "invalid argument \`$opt'" fi done if test -n "$libs"; then if test -n "$lt_sysroot"; then sysroot_regex=`$ECHO "$lt_sysroot" | $SED "$sed_make_literal_regex"` sysroot_cmd="s/\([ ']\)$sysroot_regex/\1/g;" else sysroot_cmd= fi # Remove sysroot references if $opt_dry_run; then for lib in $libs; do echo "removing references to $lt_sysroot and \`=' prefixes from $lib" done else tmpdir=`func_mktempdir` for lib in $libs; do sed -e "${sysroot_cmd} s/\([ ']-[LR]\)=/\1/g; s/\([ ']\)=/\1/g" $lib \ > $tmpdir/tmp-la mv -f $tmpdir/tmp-la $lib done ${RM}r "$tmpdir" fi fi if test -n "$finish_cmds$finish_eval" && test -n "$libdirs"; then for libdir in $libdirs; do if test -n "$finish_cmds"; then # Do each command in the finish commands. func_execute_cmds "$finish_cmds" 'admincmds="$admincmds '"$cmd"'"' fi if test -n "$finish_eval"; then # Do the single finish_eval. eval cmds=\"$finish_eval\" $opt_dry_run || eval "$cmds" || func_append admincmds " $cmds" fi done fi # Exit here if they wanted silent mode. $opt_silent && exit $EXIT_SUCCESS if test -n "$finish_cmds$finish_eval" && test -n "$libdirs"; then echo "----------------------------------------------------------------------" echo "Libraries have been installed in:" for libdir in $libdirs; do $ECHO " $libdir" done echo echo "If you ever happen to want to link against installed libraries" echo "in a given directory, LIBDIR, you must either use libtool, and" echo "specify the full pathname of the library, or use the \`-LLIBDIR'" echo "flag during linking and do at least one of the following:" if test -n "$shlibpath_var"; then echo " - add LIBDIR to the \`$shlibpath_var' environment variable" echo " during execution" fi if test -n "$runpath_var"; then echo " - add LIBDIR to the \`$runpath_var' environment variable" echo " during linking" fi if test -n "$hardcode_libdir_flag_spec"; then libdir=LIBDIR eval flag=\"$hardcode_libdir_flag_spec\" $ECHO " - use the \`$flag' linker flag" fi if test -n "$admincmds"; then $ECHO " - have your system administrator run these commands:$admincmds" fi if test -f /etc/ld.so.conf; then echo " - have your system administrator add LIBDIR to \`/etc/ld.so.conf'" fi echo echo "See any operating system documentation about shared libraries for" case $host in solaris2.[6789]|solaris2.1[0-9]) echo "more information, such as the ld(1), crle(1) and ld.so(8) manual" echo "pages." ;; *) echo "more information, such as the ld(1) and ld.so(8) manual pages." ;; esac echo "----------------------------------------------------------------------" fi exit $EXIT_SUCCESS } test "$opt_mode" = finish && func_mode_finish ${1+"$@"} # func_mode_install arg... func_mode_install () { $opt_debug # There may be an optional sh(1) argument at the beginning of # install_prog (especially on Windows NT). if test "$nonopt" = "$SHELL" || test "$nonopt" = /bin/sh || # Allow the use of GNU shtool's install command. case $nonopt in *shtool*) :;; *) false;; esac; then # Aesthetically quote it. func_quote_for_eval "$nonopt" install_prog="$func_quote_for_eval_result " arg=$1 shift else install_prog= arg=$nonopt fi # The real first argument should be the name of the installation program. # Aesthetically quote it. func_quote_for_eval "$arg" func_append install_prog "$func_quote_for_eval_result" install_shared_prog=$install_prog case " $install_prog " in *[\\\ /]cp\ *) install_cp=: ;; *) install_cp=false ;; esac # We need to accept at least all the BSD install flags. dest= files= opts= prev= install_type= isdir=no stripme= no_mode=: for arg do arg2= if test -n "$dest"; then func_append files " $dest" dest=$arg continue fi case $arg in -d) isdir=yes ;; -f) if $install_cp; then :; else prev=$arg fi ;; -g | -m | -o) prev=$arg ;; -s) stripme=" -s" continue ;; -*) ;; *) # If the previous option needed an argument, then skip it. if test -n "$prev"; then if test "x$prev" = x-m && test -n "$install_override_mode"; then arg2=$install_override_mode no_mode=false fi prev= else dest=$arg continue fi ;; esac # Aesthetically quote the argument. func_quote_for_eval "$arg" func_append install_prog " $func_quote_for_eval_result" if test -n "$arg2"; then func_quote_for_eval "$arg2" fi func_append install_shared_prog " $func_quote_for_eval_result" done test -z "$install_prog" && \ func_fatal_help "you must specify an install program" test -n "$prev" && \ func_fatal_help "the \`$prev' option requires an argument" if test -n "$install_override_mode" && $no_mode; then if $install_cp; then :; else func_quote_for_eval "$install_override_mode" func_append install_shared_prog " -m $func_quote_for_eval_result" fi fi if test -z "$files"; then if test -z "$dest"; then func_fatal_help "no file or destination specified" else func_fatal_help "you must specify a destination" fi fi # Strip any trailing slash from the destination. func_stripname '' '/' "$dest" dest=$func_stripname_result # Check to see that the destination is a directory. test -d "$dest" && isdir=yes if test "$isdir" = yes; then destdir="$dest" destname= else func_dirname_and_basename "$dest" "" "." destdir="$func_dirname_result" destname="$func_basename_result" # Not a directory, so check to see that there is only one file specified. set dummy $files; shift test "$#" -gt 1 && \ func_fatal_help "\`$dest' is not a directory" fi case $destdir in [\\/]* | [A-Za-z]:[\\/]*) ;; *) for file in $files; do case $file in *.lo) ;; *) func_fatal_help "\`$destdir' must be an absolute directory name" ;; esac done ;; esac # This variable tells wrapper scripts just to set variables rather # than running their programs. libtool_install_magic="$magic" staticlibs= future_libdirs= current_libdirs= for file in $files; do # Do each installation. case $file in *.$libext) # Do the static libraries later. func_append staticlibs " $file" ;; *.la) func_resolve_sysroot "$file" file=$func_resolve_sysroot_result # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$file" \ || func_fatal_help "\`$file' is not a valid libtool archive" library_names= old_library= relink_command= func_source "$file" # Add the libdir to current_libdirs if it is the destination. if test "X$destdir" = "X$libdir"; then case "$current_libdirs " in *" $libdir "*) ;; *) func_append current_libdirs " $libdir" ;; esac else # Note the libdir as a future libdir. case "$future_libdirs " in *" $libdir "*) ;; *) func_append future_libdirs " $libdir" ;; esac fi func_dirname "$file" "/" "" dir="$func_dirname_result" func_append dir "$objdir" if test -n "$relink_command"; then # Determine the prefix the user has applied to our future dir. inst_prefix_dir=`$ECHO "$destdir" | $SED -e "s%$libdir\$%%"` # Don't allow the user to place us outside of our expected # location b/c this prevents finding dependent libraries that # are installed to the same prefix. # At present, this check doesn't affect windows .dll's that # are installed into $libdir/../bin (currently, that works fine) # but it's something to keep an eye on. test "$inst_prefix_dir" = "$destdir" && \ func_fatal_error "error: cannot install \`$file' to a directory not ending in $libdir" if test -n "$inst_prefix_dir"; then # Stick the inst_prefix_dir data into the link command. relink_command=`$ECHO "$relink_command" | $SED "s%@inst_prefix_dir@%-inst-prefix-dir $inst_prefix_dir%"` else relink_command=`$ECHO "$relink_command" | $SED "s%@inst_prefix_dir@%%"` fi func_warning "relinking \`$file'" func_show_eval "$relink_command" \ 'func_fatal_error "error: relink \`$file'\'' with the above command before installing it"' fi # See the names of the shared library. set dummy $library_names; shift if test -n "$1"; then realname="$1" shift srcname="$realname" test -n "$relink_command" && srcname="$realname"T # Install the shared library and build the symlinks. func_show_eval "$install_shared_prog $dir/$srcname $destdir/$realname" \ 'exit $?' tstripme="$stripme" case $host_os in cygwin* | mingw* | pw32* | cegcc*) case $realname in *.dll.a) tstripme="" ;; esac ;; esac if test -n "$tstripme" && test -n "$striplib"; then func_show_eval "$striplib $destdir/$realname" 'exit $?' fi if test "$#" -gt 0; then # Delete the old symlinks, and create new ones. # Try `ln -sf' first, because the `ln' binary might depend on # the symlink we replace! Solaris /bin/ln does not understand -f, # so we also need to try rm && ln -s. for linkname do test "$linkname" != "$realname" \ && func_show_eval "(cd $destdir && { $LN_S -f $realname $linkname || { $RM $linkname && $LN_S $realname $linkname; }; })" done fi # Do each command in the postinstall commands. lib="$destdir/$realname" func_execute_cmds "$postinstall_cmds" 'exit $?' fi # Install the pseudo-library for information purposes. func_basename "$file" name="$func_basename_result" instname="$dir/$name"i func_show_eval "$install_prog $instname $destdir/$name" 'exit $?' # Maybe install the static library, too. test -n "$old_library" && func_append staticlibs " $dir/$old_library" ;; *.lo) # Install (i.e. copy) a libtool object. # Figure out destination file name, if it wasn't already specified. if test -n "$destname"; then destfile="$destdir/$destname" else func_basename "$file" destfile="$func_basename_result" destfile="$destdir/$destfile" fi # Deduce the name of the destination old-style object file. case $destfile in *.lo) func_lo2o "$destfile" staticdest=$func_lo2o_result ;; *.$objext) staticdest="$destfile" destfile= ;; *) func_fatal_help "cannot copy a libtool object to \`$destfile'" ;; esac # Install the libtool object if requested. test -n "$destfile" && \ func_show_eval "$install_prog $file $destfile" 'exit $?' # Install the old object if enabled. if test "$build_old_libs" = yes; then # Deduce the name of the old-style object file. func_lo2o "$file" staticobj=$func_lo2o_result func_show_eval "$install_prog \$staticobj \$staticdest" 'exit $?' fi exit $EXIT_SUCCESS ;; *) # Figure out destination file name, if it wasn't already specified. if test -n "$destname"; then destfile="$destdir/$destname" else func_basename "$file" destfile="$func_basename_result" destfile="$destdir/$destfile" fi # If the file is missing, and there is a .exe on the end, strip it # because it is most likely a libtool script we actually want to # install stripped_ext="" case $file in *.exe) if test ! -f "$file"; then func_stripname '' '.exe' "$file" file=$func_stripname_result stripped_ext=".exe" fi ;; esac # Do a test to see if this is really a libtool program. case $host in *cygwin* | *mingw*) if func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" wrapper=$func_ltwrapper_scriptname_result else func_stripname '' '.exe' "$file" wrapper=$func_stripname_result fi ;; *) wrapper=$file ;; esac if func_ltwrapper_script_p "$wrapper"; then notinst_deplibs= relink_command= func_source "$wrapper" # Check the variables that should have been set. test -z "$generated_by_libtool_version" && \ func_fatal_error "invalid libtool wrapper script \`$wrapper'" finalize=yes for lib in $notinst_deplibs; do # Check to see that each library is installed. libdir= if test -f "$lib"; then func_source "$lib" fi libfile="$libdir/"`$ECHO "$lib" | $SED 's%^.*/%%g'` ### testsuite: skip nested quoting test if test -n "$libdir" && test ! -f "$libfile"; then func_warning "\`$lib' has not been installed in \`$libdir'" finalize=no fi done relink_command= func_source "$wrapper" outputname= if test "$fast_install" = no && test -n "$relink_command"; then $opt_dry_run || { if test "$finalize" = yes; then tmpdir=`func_mktempdir` func_basename "$file$stripped_ext" file="$func_basename_result" outputname="$tmpdir/$file" # Replace the output file specification. relink_command=`$ECHO "$relink_command" | $SED 's%@OUTPUT@%'"$outputname"'%g'` $opt_silent || { func_quote_for_expand "$relink_command" eval "func_echo $func_quote_for_expand_result" } if eval "$relink_command"; then : else func_error "error: relink \`$file' with the above command before installing it" $opt_dry_run || ${RM}r "$tmpdir" continue fi file="$outputname" else func_warning "cannot relink \`$file'" fi } else # Install the binary that we compiled earlier. file=`$ECHO "$file$stripped_ext" | $SED "s%\([^/]*\)$%$objdir/\1%"` fi fi # remove .exe since cygwin /usr/bin/install will append another # one anyway case $install_prog,$host in */usr/bin/install*,*cygwin*) case $file:$destfile in *.exe:*.exe) # this is ok ;; *.exe:*) destfile=$destfile.exe ;; *:*.exe) func_stripname '' '.exe' "$destfile" destfile=$func_stripname_result ;; esac ;; esac func_show_eval "$install_prog\$stripme \$file \$destfile" 'exit $?' $opt_dry_run || if test -n "$outputname"; then ${RM}r "$tmpdir" fi ;; esac done for file in $staticlibs; do func_basename "$file" name="$func_basename_result" # Set up the ranlib parameters. oldlib="$destdir/$name" func_to_tool_file "$oldlib" func_convert_file_msys_to_w32 tool_oldlib=$func_to_tool_file_result func_show_eval "$install_prog \$file \$oldlib" 'exit $?' if test -n "$stripme" && test -n "$old_striplib"; then func_show_eval "$old_striplib $tool_oldlib" 'exit $?' fi # Do each command in the postinstall commands. func_execute_cmds "$old_postinstall_cmds" 'exit $?' done test -n "$future_libdirs" && \ func_warning "remember to run \`$progname --finish$future_libdirs'" if test -n "$current_libdirs"; then # Maybe just do a dry run. $opt_dry_run && current_libdirs=" -n$current_libdirs" exec_cmd='$SHELL $progpath $preserve_args --finish$current_libdirs' else exit $EXIT_SUCCESS fi } test "$opt_mode" = install && func_mode_install ${1+"$@"} # func_generate_dlsyms outputname originator pic_p # Extract symbols from dlprefiles and create ${outputname}S.o with # a dlpreopen symbol table. func_generate_dlsyms () { $opt_debug my_outputname="$1" my_originator="$2" my_pic_p="${3-no}" my_prefix=`$ECHO "$my_originator" | sed 's%[^a-zA-Z0-9]%_%g'` my_dlsyms= if test -n "$dlfiles$dlprefiles" || test "$dlself" != no; then if test -n "$NM" && test -n "$global_symbol_pipe"; then my_dlsyms="${my_outputname}S.c" else func_error "not configured to extract global symbols from dlpreopened files" fi fi if test -n "$my_dlsyms"; then case $my_dlsyms in "") ;; *.c) # Discover the nlist of each of the dlfiles. nlist="$output_objdir/${my_outputname}.nm" func_show_eval "$RM $nlist ${nlist}S ${nlist}T" # Parse the name list into a source file. func_verbose "creating $output_objdir/$my_dlsyms" $opt_dry_run || $ECHO > "$output_objdir/$my_dlsyms" "\ /* $my_dlsyms - symbol resolution table for \`$my_outputname' dlsym emulation. */ /* Generated by $PROGRAM (GNU $PACKAGE$TIMESTAMP) $VERSION */ #ifdef __cplusplus extern \"C\" { #endif #if defined(__GNUC__) && (((__GNUC__ == 4) && (__GNUC_MINOR__ >= 4)) || (__GNUC__ > 4)) #pragma GCC diagnostic ignored \"-Wstrict-prototypes\" #endif /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined(_WIN32) || defined(__CYGWIN__) || defined(_WIN32_WCE) /* DATA imports from DLLs on WIN32 con't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT_DLSYM_CONST #elif defined(__osf__) /* This system does not cope well with relocations in const data. */ # define LT_DLSYM_CONST #else # define LT_DLSYM_CONST const #endif /* External symbol declarations for the compiler. */\ " if test "$dlself" = yes; then func_verbose "generating symbol list for \`$output'" $opt_dry_run || echo ': @PROGRAM@ ' > "$nlist" # Add our own program objects to the symbol list. progfiles=`$ECHO "$objs$old_deplibs" | $SP2NL | $SED "$lo2o" | $NL2SP` for progfile in $progfiles; do func_to_tool_file "$progfile" func_convert_file_msys_to_w32 func_verbose "extracting global C symbols from \`$func_to_tool_file_result'" $opt_dry_run || eval "$NM $func_to_tool_file_result | $global_symbol_pipe >> '$nlist'" done if test -n "$exclude_expsyms"; then $opt_dry_run || { eval '$EGREP -v " ($exclude_expsyms)$" "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' } fi if test -n "$export_symbols_regex"; then $opt_dry_run || { eval '$EGREP -e "$export_symbols_regex" "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' } fi # Prepare the list of exported symbols if test -z "$export_symbols"; then export_symbols="$output_objdir/$outputname.exp" $opt_dry_run || { $RM $export_symbols eval "${SED} -n -e '/^: @PROGRAM@ $/d' -e 's/^.* \(.*\)$/\1/p' "'< "$nlist" > "$export_symbols"' case $host in *cygwin* | *mingw* | *cegcc* ) eval "echo EXPORTS "'> "$output_objdir/$outputname.def"' eval 'cat "$export_symbols" >> "$output_objdir/$outputname.def"' ;; esac } else $opt_dry_run || { eval "${SED} -e 's/\([].[*^$]\)/\\\\\1/g' -e 's/^/ /' -e 's/$/$/'"' < "$export_symbols" > "$output_objdir/$outputname.exp"' eval '$GREP -f "$output_objdir/$outputname.exp" < "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' case $host in *cygwin* | *mingw* | *cegcc* ) eval "echo EXPORTS "'> "$output_objdir/$outputname.def"' eval 'cat "$nlist" >> "$output_objdir/$outputname.def"' ;; esac } fi fi for dlprefile in $dlprefiles; do func_verbose "extracting global C symbols from \`$dlprefile'" func_basename "$dlprefile" name="$func_basename_result" case $host in *cygwin* | *mingw* | *cegcc* ) # if an import library, we need to obtain dlname if func_win32_import_lib_p "$dlprefile"; then func_tr_sh "$dlprefile" eval "curr_lafile=\$libfile_$func_tr_sh_result" dlprefile_dlbasename="" if test -n "$curr_lafile" && func_lalib_p "$curr_lafile"; then # Use subshell, to avoid clobbering current variable values dlprefile_dlname=`source "$curr_lafile" && echo "$dlname"` if test -n "$dlprefile_dlname" ; then func_basename "$dlprefile_dlname" dlprefile_dlbasename="$func_basename_result" else # no lafile. user explicitly requested -dlpreopen . $sharedlib_from_linklib_cmd "$dlprefile" dlprefile_dlbasename=$sharedlib_from_linklib_result fi fi $opt_dry_run || { if test -n "$dlprefile_dlbasename" ; then eval '$ECHO ": $dlprefile_dlbasename" >> "$nlist"' else func_warning "Could not compute DLL name from $name" eval '$ECHO ": $name " >> "$nlist"' fi func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe | $SED -e '/I __imp/d' -e 's/I __nm_/D /;s/_nm__//' >> '$nlist'" } else # not an import lib $opt_dry_run || { eval '$ECHO ": $name " >> "$nlist"' func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe >> '$nlist'" } fi ;; *) $opt_dry_run || { eval '$ECHO ": $name " >> "$nlist"' func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe >> '$nlist'" } ;; esac done $opt_dry_run || { # Make sure we have at least an empty file. test -f "$nlist" || : > "$nlist" if test -n "$exclude_expsyms"; then $EGREP -v " ($exclude_expsyms)$" "$nlist" > "$nlist"T $MV "$nlist"T "$nlist" fi # Try sorting and uniquifying the output. if $GREP -v "^: " < "$nlist" | if sort -k 3 /dev/null 2>&1; then sort -k 3 else sort +2 fi | uniq > "$nlist"S; then : else $GREP -v "^: " < "$nlist" > "$nlist"S fi if test -f "$nlist"S; then eval "$global_symbol_to_cdecl"' < "$nlist"S >> "$output_objdir/$my_dlsyms"' else echo '/* NONE */' >> "$output_objdir/$my_dlsyms" fi echo >> "$output_objdir/$my_dlsyms" "\ /* The mapping between symbol names and symbols. */ typedef struct { const char *name; void *address; } lt_dlsymlist; extern LT_DLSYM_CONST lt_dlsymlist lt_${my_prefix}_LTX_preloaded_symbols[]; LT_DLSYM_CONST lt_dlsymlist lt_${my_prefix}_LTX_preloaded_symbols[] = {\ { \"$my_originator\", (void *) 0 }," case $need_lib_prefix in no) eval "$global_symbol_to_c_name_address" < "$nlist" >> "$output_objdir/$my_dlsyms" ;; *) eval "$global_symbol_to_c_name_address_lib_prefix" < "$nlist" >> "$output_objdir/$my_dlsyms" ;; esac echo >> "$output_objdir/$my_dlsyms" "\ {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt_${my_prefix}_LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif\ " } # !$opt_dry_run pic_flag_for_symtable= case "$compile_command " in *" -static "*) ;; *) case $host in # compiling the symbol table file with pic_flag works around # a FreeBSD bug that causes programs to crash when -lm is # linked before any other PIC object. But we must not use # pic_flag when linking with -static. The problem exists in # FreeBSD 2.2.6 and is fixed in FreeBSD 3.1. *-*-freebsd2.*|*-*-freebsd3.0*|*-*-freebsdelf3.0*) pic_flag_for_symtable=" $pic_flag -DFREEBSD_WORKAROUND" ;; *-*-hpux*) pic_flag_for_symtable=" $pic_flag" ;; *) if test "X$my_pic_p" != Xno; then pic_flag_for_symtable=" $pic_flag" fi ;; esac ;; esac symtab_cflags= for arg in $LTCFLAGS; do case $arg in -pie | -fpie | -fPIE) ;; *) func_append symtab_cflags " $arg" ;; esac done # Now compile the dynamic symbol file. func_show_eval '(cd $output_objdir && $LTCC$symtab_cflags -c$no_builtin_flag$pic_flag_for_symtable "$my_dlsyms")' 'exit $?' # Clean up the generated files. func_show_eval '$RM "$output_objdir/$my_dlsyms" "$nlist" "${nlist}S" "${nlist}T"' # Transform the symbol file into the correct name. symfileobj="$output_objdir/${my_outputname}S.$objext" case $host in *cygwin* | *mingw* | *cegcc* ) if test -f "$output_objdir/$my_outputname.def"; then compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$output_objdir/$my_outputname.def $symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$output_objdir/$my_outputname.def $symfileobj%"` else compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$symfileobj%"` fi ;; *) compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$symfileobj%"` ;; esac ;; *) func_fatal_error "unknown suffix for \`$my_dlsyms'" ;; esac else # We keep going just in case the user didn't refer to # lt_preloaded_symbols. The linker will fail if global_symbol_pipe # really was required. # Nullify the symbol file. compile_command=`$ECHO "$compile_command" | $SED "s% @SYMFILE@%%"` finalize_command=`$ECHO "$finalize_command" | $SED "s% @SYMFILE@%%"` fi } # func_win32_libid arg # return the library type of file 'arg' # # Need a lot of goo to handle *both* DLLs and import libs # Has to be a shell function in order to 'eat' the argument # that is supplied when $file_magic_command is called. # Despite the name, also deal with 64 bit binaries. func_win32_libid () { $opt_debug win32_libid_type="unknown" win32_fileres=`file -L $1 2>/dev/null` case $win32_fileres in *ar\ archive\ import\ library*) # definitely import win32_libid_type="x86 archive import" ;; *ar\ archive*) # could be an import, or static # Keep the egrep pattern in sync with the one in _LT_CHECK_MAGIC_METHOD. if eval $OBJDUMP -f $1 | $SED -e '10q' 2>/dev/null | $EGREP 'file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' >/dev/null; then func_to_tool_file "$1" func_convert_file_msys_to_w32 win32_nmres=`eval $NM -f posix -A \"$func_to_tool_file_result\" | $SED -n -e ' 1,100{ / I /{ s,.*,import, p q } }'` case $win32_nmres in import*) win32_libid_type="x86 archive import";; *) win32_libid_type="x86 archive static";; esac fi ;; *DLL*) win32_libid_type="x86 DLL" ;; *executable*) # but shell scripts are "executable" too... case $win32_fileres in *MS\ Windows\ PE\ Intel*) win32_libid_type="x86 DLL" ;; esac ;; esac $ECHO "$win32_libid_type" } # func_cygming_dll_for_implib ARG # # Platform-specific function to extract the # name of the DLL associated with the specified # import library ARG. # Invoked by eval'ing the libtool variable # $sharedlib_from_linklib_cmd # Result is available in the variable # $sharedlib_from_linklib_result func_cygming_dll_for_implib () { $opt_debug sharedlib_from_linklib_result=`$DLLTOOL --identify-strict --identify "$1"` } # func_cygming_dll_for_implib_fallback_core SECTION_NAME LIBNAMEs # # The is the core of a fallback implementation of a # platform-specific function to extract the name of the # DLL associated with the specified import library LIBNAME. # # SECTION_NAME is either .idata$6 or .idata$7, depending # on the platform and compiler that created the implib. # # Echos the name of the DLL associated with the # specified import library. func_cygming_dll_for_implib_fallback_core () { $opt_debug match_literal=`$ECHO "$1" | $SED "$sed_make_literal_regex"` $OBJDUMP -s --section "$1" "$2" 2>/dev/null | $SED '/^Contents of section '"$match_literal"':/{ # Place marker at beginning of archive member dllname section s/.*/====MARK====/ p d } # These lines can sometimes be longer than 43 characters, but # are always uninteresting /:[ ]*file format pe[i]\{,1\}-/d /^In archive [^:]*:/d # Ensure marker is printed /^====MARK====/p # Remove all lines with less than 43 characters /^.\{43\}/!d # From remaining lines, remove first 43 characters s/^.\{43\}//' | $SED -n ' # Join marker and all lines until next marker into a single line /^====MARK====/ b para H $ b para b :para x s/\n//g # Remove the marker s/^====MARK====// # Remove trailing dots and whitespace s/[\. \t]*$// # Print /./p' | # we now have a list, one entry per line, of the stringified # contents of the appropriate section of all members of the # archive which possess that section. Heuristic: eliminate # all those which have a first or second character that is # a '.' (that is, objdump's representation of an unprintable # character.) This should work for all archives with less than # 0x302f exports -- but will fail for DLLs whose name actually # begins with a literal '.' or a single character followed by # a '.'. # # Of those that remain, print the first one. $SED -e '/^\./d;/^.\./d;q' } # func_cygming_gnu_implib_p ARG # This predicate returns with zero status (TRUE) if # ARG is a GNU/binutils-style import library. Returns # with nonzero status (FALSE) otherwise. func_cygming_gnu_implib_p () { $opt_debug func_to_tool_file "$1" func_convert_file_msys_to_w32 func_cygming_gnu_implib_tmp=`$NM "$func_to_tool_file_result" | eval "$global_symbol_pipe" | $EGREP ' (_head_[A-Za-z0-9_]+_[ad]l*|[A-Za-z0-9_]+_[ad]l*_iname)$'` test -n "$func_cygming_gnu_implib_tmp" } # func_cygming_ms_implib_p ARG # This predicate returns with zero status (TRUE) if # ARG is an MS-style import library. Returns # with nonzero status (FALSE) otherwise. func_cygming_ms_implib_p () { $opt_debug func_to_tool_file "$1" func_convert_file_msys_to_w32 func_cygming_ms_implib_tmp=`$NM "$func_to_tool_file_result" | eval "$global_symbol_pipe" | $GREP '_NULL_IMPORT_DESCRIPTOR'` test -n "$func_cygming_ms_implib_tmp" } # func_cygming_dll_for_implib_fallback ARG # Platform-specific function to extract the # name of the DLL associated with the specified # import library ARG. # # This fallback implementation is for use when $DLLTOOL # does not support the --identify-strict option. # Invoked by eval'ing the libtool variable # $sharedlib_from_linklib_cmd # Result is available in the variable # $sharedlib_from_linklib_result func_cygming_dll_for_implib_fallback () { $opt_debug if func_cygming_gnu_implib_p "$1" ; then # binutils import library sharedlib_from_linklib_result=`func_cygming_dll_for_implib_fallback_core '.idata$7' "$1"` elif func_cygming_ms_implib_p "$1" ; then # ms-generated import library sharedlib_from_linklib_result=`func_cygming_dll_for_implib_fallback_core '.idata$6' "$1"` else # unknown sharedlib_from_linklib_result="" fi } # func_extract_an_archive dir oldlib func_extract_an_archive () { $opt_debug f_ex_an_ar_dir="$1"; shift f_ex_an_ar_oldlib="$1" if test "$lock_old_archive_extraction" = yes; then lockfile=$f_ex_an_ar_oldlib.lock until $opt_dry_run || ln "$progpath" "$lockfile" 2>/dev/null; do func_echo "Waiting for $lockfile to be removed" sleep 2 done fi func_show_eval "(cd \$f_ex_an_ar_dir && $AR x \"\$f_ex_an_ar_oldlib\")" \ 'stat=$?; rm -f "$lockfile"; exit $stat' if test "$lock_old_archive_extraction" = yes; then $opt_dry_run || rm -f "$lockfile" fi if ($AR t "$f_ex_an_ar_oldlib" | sort | sort -uc >/dev/null 2>&1); then : else func_fatal_error "object name conflicts in archive: $f_ex_an_ar_dir/$f_ex_an_ar_oldlib" fi } # func_extract_archives gentop oldlib ... func_extract_archives () { $opt_debug my_gentop="$1"; shift my_oldlibs=${1+"$@"} my_oldobjs="" my_xlib="" my_xabs="" my_xdir="" for my_xlib in $my_oldlibs; do # Extract the objects. case $my_xlib in [\\/]* | [A-Za-z]:[\\/]*) my_xabs="$my_xlib" ;; *) my_xabs=`pwd`"/$my_xlib" ;; esac func_basename "$my_xlib" my_xlib="$func_basename_result" my_xlib_u=$my_xlib while :; do case " $extracted_archives " in *" $my_xlib_u "*) func_arith $extracted_serial + 1 extracted_serial=$func_arith_result my_xlib_u=lt$extracted_serial-$my_xlib ;; *) break ;; esac done extracted_archives="$extracted_archives $my_xlib_u" my_xdir="$my_gentop/$my_xlib_u" func_mkdir_p "$my_xdir" case $host in *-darwin*) func_verbose "Extracting $my_xabs" # Do not bother doing anything if just a dry run $opt_dry_run || { darwin_orig_dir=`pwd` cd $my_xdir || exit $? darwin_archive=$my_xabs darwin_curdir=`pwd` darwin_base_archive=`basename "$darwin_archive"` darwin_arches=`$LIPO -info "$darwin_archive" 2>/dev/null | $GREP Architectures 2>/dev/null || true` if test -n "$darwin_arches"; then darwin_arches=`$ECHO "$darwin_arches" | $SED -e 's/.*are://'` darwin_arch= func_verbose "$darwin_base_archive has multiple architectures $darwin_arches" for darwin_arch in $darwin_arches ; do func_mkdir_p "unfat-$$/${darwin_base_archive}-${darwin_arch}" $LIPO -thin $darwin_arch -output "unfat-$$/${darwin_base_archive}-${darwin_arch}/${darwin_base_archive}" "${darwin_archive}" cd "unfat-$$/${darwin_base_archive}-${darwin_arch}" func_extract_an_archive "`pwd`" "${darwin_base_archive}" cd "$darwin_curdir" $RM "unfat-$$/${darwin_base_archive}-${darwin_arch}/${darwin_base_archive}" done # $darwin_arches ## Okay now we've a bunch of thin objects, gotta fatten them up :) darwin_filelist=`find unfat-$$ -type f -name \*.o -print -o -name \*.lo -print | $SED -e "$basename" | sort -u` darwin_file= darwin_files= for darwin_file in $darwin_filelist; do darwin_files=`find unfat-$$ -name $darwin_file -print | sort | $NL2SP` $LIPO -create -output "$darwin_file" $darwin_files done # $darwin_filelist $RM -rf unfat-$$ cd "$darwin_orig_dir" else cd $darwin_orig_dir func_extract_an_archive "$my_xdir" "$my_xabs" fi # $darwin_arches } # !$opt_dry_run ;; *) func_extract_an_archive "$my_xdir" "$my_xabs" ;; esac my_oldobjs="$my_oldobjs "`find $my_xdir -name \*.$objext -print -o -name \*.lo -print | sort | $NL2SP` done func_extract_archives_result="$my_oldobjs" } # func_emit_wrapper [arg=no] # # Emit a libtool wrapper script on stdout. # Don't directly open a file because we may want to # incorporate the script contents within a cygwin/mingw # wrapper executable. Must ONLY be called from within # func_mode_link because it depends on a number of variables # set therein. # # ARG is the value that the WRAPPER_SCRIPT_BELONGS_IN_OBJDIR # variable will take. If 'yes', then the emitted script # will assume that the directory in which it is stored is # the $objdir directory. This is a cygwin/mingw-specific # behavior. func_emit_wrapper () { func_emit_wrapper_arg1=${1-no} $ECHO "\ #! $SHELL # $output - temporary wrapper script for $objdir/$outputname # Generated by $PROGRAM (GNU $PACKAGE$TIMESTAMP) $VERSION # # The $output program cannot be directly executed until all the libtool # libraries that it depends on are installed. # # This wrapper script should never be moved out of the build directory. # If it is, it will not operate correctly. # Sed substitution that helps us do robust quoting. It backslashifies # metacharacters that are still active within double-quoted strings. sed_quote_subst='$sed_quote_subst' # Be Bourne compatible if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then emulate sh NULLCMD=: # Zsh 3.x and 4.x performs word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in *posix*) set -o posix;; esac fi BIN_SH=xpg4; export BIN_SH # for Tru64 DUALCASE=1; export DUALCASE # for MKS sh # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH relink_command=\"$relink_command\" # This environment variable determines our operation mode. if test \"\$libtool_install_magic\" = \"$magic\"; then # install mode needs the following variables: generated_by_libtool_version='$macro_version' notinst_deplibs='$notinst_deplibs' else # When we are sourced in execute mode, \$file and \$ECHO are already set. if test \"\$libtool_execute_magic\" != \"$magic\"; then file=\"\$0\"" qECHO=`$ECHO "$ECHO" | $SED "$sed_quote_subst"` $ECHO "\ # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$1 _LTECHO_EOF' } ECHO=\"$qECHO\" fi # Very basic option parsing. These options are (a) specific to # the libtool wrapper, (b) are identical between the wrapper # /script/ and the wrapper /executable/ which is used only on # windows platforms, and (c) all begin with the string "--lt-" # (application programs are unlikely to have options which match # this pattern). # # There are only two supported options: --lt-debug and # --lt-dump-script. There is, deliberately, no --lt-help. # # The first argument to this parsing function should be the # script's $0 value, followed by "$@". lt_option_debug= func_parse_lt_options () { lt_script_arg0=\$0 shift for lt_opt do case \"\$lt_opt\" in --lt-debug) lt_option_debug=1 ;; --lt-dump-script) lt_dump_D=\`\$ECHO \"X\$lt_script_arg0\" | $SED -e 's/^X//' -e 's%/[^/]*$%%'\` test \"X\$lt_dump_D\" = \"X\$lt_script_arg0\" && lt_dump_D=. lt_dump_F=\`\$ECHO \"X\$lt_script_arg0\" | $SED -e 's/^X//' -e 's%^.*/%%'\` cat \"\$lt_dump_D/\$lt_dump_F\" exit 0 ;; --lt-*) \$ECHO \"Unrecognized --lt- option: '\$lt_opt'\" 1>&2 exit 1 ;; esac done # Print the debug banner immediately: if test -n \"\$lt_option_debug\"; then echo \"${outputname}:${output}:\${LINENO}: libtool wrapper (GNU $PACKAGE$TIMESTAMP) $VERSION\" 1>&2 fi } # Used when --lt-debug. Prints its arguments to stdout # (redirection is the responsibility of the caller) func_lt_dump_args () { lt_dump_args_N=1; for lt_arg do \$ECHO \"${outputname}:${output}:\${LINENO}: newargv[\$lt_dump_args_N]: \$lt_arg\" lt_dump_args_N=\`expr \$lt_dump_args_N + 1\` done } # Core function for launching the target application func_exec_program_core () { " case $host in # Backslashes separate directories on plain windows *-*-mingw | *-*-os2* | *-cegcc*) $ECHO "\ if test -n \"\$lt_option_debug\"; then \$ECHO \"${outputname}:${output}:\${LINENO}: newargv[0]: \$progdir\\\\\$program\" 1>&2 func_lt_dump_args \${1+\"\$@\"} 1>&2 fi exec \"\$progdir\\\\\$program\" \${1+\"\$@\"} " ;; *) $ECHO "\ if test -n \"\$lt_option_debug\"; then \$ECHO \"${outputname}:${output}:\${LINENO}: newargv[0]: \$progdir/\$program\" 1>&2 func_lt_dump_args \${1+\"\$@\"} 1>&2 fi exec \"\$progdir/\$program\" \${1+\"\$@\"} " ;; esac $ECHO "\ \$ECHO \"\$0: cannot exec \$program \$*\" 1>&2 exit 1 } # A function to encapsulate launching the target application # Strips options in the --lt-* namespace from \$@ and # launches target application with the remaining arguments. func_exec_program () { case \" \$* \" in *\\ --lt-*) for lt_wr_arg do case \$lt_wr_arg in --lt-*) ;; *) set x \"\$@\" \"\$lt_wr_arg\"; shift;; esac shift done ;; esac func_exec_program_core \${1+\"\$@\"} } # Parse options func_parse_lt_options \"\$0\" \${1+\"\$@\"} # Find the directory that this script lives in. thisdir=\`\$ECHO \"\$file\" | $SED 's%/[^/]*$%%'\` test \"x\$thisdir\" = \"x\$file\" && thisdir=. # Follow symbolic links until we get to the real thisdir. file=\`ls -ld \"\$file\" | $SED -n 's/.*-> //p'\` while test -n \"\$file\"; do destdir=\`\$ECHO \"\$file\" | $SED 's%/[^/]*\$%%'\` # If there was a directory component, then change thisdir. if test \"x\$destdir\" != \"x\$file\"; then case \"\$destdir\" in [\\\\/]* | [A-Za-z]:[\\\\/]*) thisdir=\"\$destdir\" ;; *) thisdir=\"\$thisdir/\$destdir\" ;; esac fi file=\`\$ECHO \"\$file\" | $SED 's%^.*/%%'\` file=\`ls -ld \"\$thisdir/\$file\" | $SED -n 's/.*-> //p'\` done # Usually 'no', except on cygwin/mingw when embedded into # the cwrapper. WRAPPER_SCRIPT_BELONGS_IN_OBJDIR=$func_emit_wrapper_arg1 if test \"\$WRAPPER_SCRIPT_BELONGS_IN_OBJDIR\" = \"yes\"; then # special case for '.' if test \"\$thisdir\" = \".\"; then thisdir=\`pwd\` fi # remove .libs from thisdir case \"\$thisdir\" in *[\\\\/]$objdir ) thisdir=\`\$ECHO \"\$thisdir\" | $SED 's%[\\\\/][^\\\\/]*$%%'\` ;; $objdir ) thisdir=. ;; esac fi # Try to get the absolute directory name. absdir=\`cd \"\$thisdir\" && pwd\` test -n \"\$absdir\" && thisdir=\"\$absdir\" " if test "$fast_install" = yes; then $ECHO "\ program=lt-'$outputname'$exeext progdir=\"\$thisdir/$objdir\" if test ! -f \"\$progdir/\$program\" || { file=\`ls -1dt \"\$progdir/\$program\" \"\$progdir/../\$program\" 2>/dev/null | ${SED} 1q\`; \\ test \"X\$file\" != \"X\$progdir/\$program\"; }; then file=\"\$\$-\$program\" if test ! -d \"\$progdir\"; then $MKDIR \"\$progdir\" else $RM \"\$progdir/\$file\" fi" $ECHO "\ # relink executable if necessary if test -n \"\$relink_command\"; then if relink_command_output=\`eval \$relink_command 2>&1\`; then : else $ECHO \"\$relink_command_output\" >&2 $RM \"\$progdir/\$file\" exit 1 fi fi $MV \"\$progdir/\$file\" \"\$progdir/\$program\" 2>/dev/null || { $RM \"\$progdir/\$program\"; $MV \"\$progdir/\$file\" \"\$progdir/\$program\"; } $RM \"\$progdir/\$file\" fi" else $ECHO "\ program='$outputname' progdir=\"\$thisdir/$objdir\" " fi $ECHO "\ if test -f \"\$progdir/\$program\"; then" # fixup the dll searchpath if we need to. # # Fix the DLL searchpath if we need to. Do this before prepending # to shlibpath, because on Windows, both are PATH and uninstalled # libraries must come first. if test -n "$dllsearchpath"; then $ECHO "\ # Add the dll search path components to the executable PATH PATH=$dllsearchpath:\$PATH " fi # Export our shlibpath_var if we have one. if test "$shlibpath_overrides_runpath" = yes && test -n "$shlibpath_var" && test -n "$temp_rpath"; then $ECHO "\ # Add our own library path to $shlibpath_var $shlibpath_var=\"$temp_rpath\$$shlibpath_var\" # Some systems cannot cope with colon-terminated $shlibpath_var # The second colon is a workaround for a bug in BeOS R4 sed $shlibpath_var=\`\$ECHO \"\$$shlibpath_var\" | $SED 's/::*\$//'\` export $shlibpath_var " fi $ECHO "\ if test \"\$libtool_execute_magic\" != \"$magic\"; then # Run the actual program with our arguments. func_exec_program \${1+\"\$@\"} fi else # The program doesn't exist. \$ECHO \"\$0: error: \\\`\$progdir/\$program' does not exist\" 1>&2 \$ECHO \"This script is just a wrapper for \$program.\" 1>&2 \$ECHO \"See the $PACKAGE documentation for more information.\" 1>&2 exit 1 fi fi\ " } # func_emit_cwrapperexe_src # emit the source code for a wrapper executable on stdout # Must ONLY be called from within func_mode_link because # it depends on a number of variable set therein. func_emit_cwrapperexe_src () { cat < #include #ifdef _MSC_VER # include # include # include #else # include # include # ifdef __CYGWIN__ # include # endif #endif #include #include #include #include #include #include #include #include /* declarations of non-ANSI functions */ #if defined(__MINGW32__) # ifdef __STRICT_ANSI__ int _putenv (const char *); # endif #elif defined(__CYGWIN__) # ifdef __STRICT_ANSI__ char *realpath (const char *, char *); int putenv (char *); int setenv (const char *, const char *, int); # endif /* #elif defined (other platforms) ... */ #endif /* portability defines, excluding path handling macros */ #if defined(_MSC_VER) # define setmode _setmode # define stat _stat # define chmod _chmod # define getcwd _getcwd # define putenv _putenv # define S_IXUSR _S_IEXEC # ifndef _INTPTR_T_DEFINED # define _INTPTR_T_DEFINED # define intptr_t int # endif #elif defined(__MINGW32__) # define setmode _setmode # define stat _stat # define chmod _chmod # define getcwd _getcwd # define putenv _putenv #elif defined(__CYGWIN__) # define HAVE_SETENV # define FOPEN_WB "wb" /* #elif defined (other platforms) ... */ #endif #if defined(PATH_MAX) # define LT_PATHMAX PATH_MAX #elif defined(MAXPATHLEN) # define LT_PATHMAX MAXPATHLEN #else # define LT_PATHMAX 1024 #endif #ifndef S_IXOTH # define S_IXOTH 0 #endif #ifndef S_IXGRP # define S_IXGRP 0 #endif /* path handling portability macros */ #ifndef DIR_SEPARATOR # define DIR_SEPARATOR '/' # define PATH_SEPARATOR ':' #endif #if defined (_WIN32) || defined (__MSDOS__) || defined (__DJGPP__) || \ defined (__OS2__) # define HAVE_DOS_BASED_FILE_SYSTEM # define FOPEN_WB "wb" # ifndef DIR_SEPARATOR_2 # define DIR_SEPARATOR_2 '\\' # endif # ifndef PATH_SEPARATOR_2 # define PATH_SEPARATOR_2 ';' # endif #endif #ifndef DIR_SEPARATOR_2 # define IS_DIR_SEPARATOR(ch) ((ch) == DIR_SEPARATOR) #else /* DIR_SEPARATOR_2 */ # define IS_DIR_SEPARATOR(ch) \ (((ch) == DIR_SEPARATOR) || ((ch) == DIR_SEPARATOR_2)) #endif /* DIR_SEPARATOR_2 */ #ifndef PATH_SEPARATOR_2 # define IS_PATH_SEPARATOR(ch) ((ch) == PATH_SEPARATOR) #else /* PATH_SEPARATOR_2 */ # define IS_PATH_SEPARATOR(ch) ((ch) == PATH_SEPARATOR_2) #endif /* PATH_SEPARATOR_2 */ #ifndef FOPEN_WB # define FOPEN_WB "w" #endif #ifndef _O_BINARY # define _O_BINARY 0 #endif #define XMALLOC(type, num) ((type *) xmalloc ((num) * sizeof(type))) #define XFREE(stale) do { \ if (stale) { free ((void *) stale); stale = 0; } \ } while (0) #if defined(LT_DEBUGWRAPPER) static int lt_debug = 1; #else static int lt_debug = 0; #endif const char *program_name = "libtool-wrapper"; /* in case xstrdup fails */ void *xmalloc (size_t num); char *xstrdup (const char *string); const char *base_name (const char *name); char *find_executable (const char *wrapper); char *chase_symlinks (const char *pathspec); int make_executable (const char *path); int check_executable (const char *path); char *strendzap (char *str, const char *pat); void lt_debugprintf (const char *file, int line, const char *fmt, ...); void lt_fatal (const char *file, int line, const char *message, ...); static const char *nonnull (const char *s); static const char *nonempty (const char *s); void lt_setenv (const char *name, const char *value); char *lt_extend_str (const char *orig_value, const char *add, int to_end); void lt_update_exe_path (const char *name, const char *value); void lt_update_lib_path (const char *name, const char *value); char **prepare_spawn (char **argv); void lt_dump_script (FILE *f); EOF cat <= 0) && (st.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))) return 1; else return 0; } int make_executable (const char *path) { int rval = 0; struct stat st; lt_debugprintf (__FILE__, __LINE__, "(make_executable): %s\n", nonempty (path)); if ((!path) || (!*path)) return 0; if (stat (path, &st) >= 0) { rval = chmod (path, st.st_mode | S_IXOTH | S_IXGRP | S_IXUSR); } return rval; } /* Searches for the full path of the wrapper. Returns newly allocated full path name if found, NULL otherwise Does not chase symlinks, even on platforms that support them. */ char * find_executable (const char *wrapper) { int has_slash = 0; const char *p; const char *p_next; /* static buffer for getcwd */ char tmp[LT_PATHMAX + 1]; int tmp_len; char *concat_name; lt_debugprintf (__FILE__, __LINE__, "(find_executable): %s\n", nonempty (wrapper)); if ((wrapper == NULL) || (*wrapper == '\0')) return NULL; /* Absolute path? */ #if defined (HAVE_DOS_BASED_FILE_SYSTEM) if (isalpha ((unsigned char) wrapper[0]) && wrapper[1] == ':') { concat_name = xstrdup (wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } else { #endif if (IS_DIR_SEPARATOR (wrapper[0])) { concat_name = xstrdup (wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } #if defined (HAVE_DOS_BASED_FILE_SYSTEM) } #endif for (p = wrapper; *p; p++) if (*p == '/') { has_slash = 1; break; } if (!has_slash) { /* no slashes; search PATH */ const char *path = getenv ("PATH"); if (path != NULL) { for (p = path; *p; p = p_next) { const char *q; size_t p_len; for (q = p; *q; q++) if (IS_PATH_SEPARATOR (*q)) break; p_len = q - p; p_next = (*q == '\0' ? q : q + 1); if (p_len == 0) { /* empty path: current directory */ if (getcwd (tmp, LT_PATHMAX) == NULL) lt_fatal (__FILE__, __LINE__, "getcwd failed: %s", nonnull (strerror (errno))); tmp_len = strlen (tmp); concat_name = XMALLOC (char, tmp_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, tmp, tmp_len); concat_name[tmp_len] = '/'; strcpy (concat_name + tmp_len + 1, wrapper); } else { concat_name = XMALLOC (char, p_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, p, p_len); concat_name[p_len] = '/'; strcpy (concat_name + p_len + 1, wrapper); } if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } } /* not found in PATH; assume curdir */ } /* Relative path | not found in path: prepend cwd */ if (getcwd (tmp, LT_PATHMAX) == NULL) lt_fatal (__FILE__, __LINE__, "getcwd failed: %s", nonnull (strerror (errno))); tmp_len = strlen (tmp); concat_name = XMALLOC (char, tmp_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, tmp, tmp_len); concat_name[tmp_len] = '/'; strcpy (concat_name + tmp_len + 1, wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); return NULL; } char * chase_symlinks (const char *pathspec) { #ifndef S_ISLNK return xstrdup (pathspec); #else char buf[LT_PATHMAX]; struct stat s; char *tmp_pathspec = xstrdup (pathspec); char *p; int has_symlinks = 0; while (strlen (tmp_pathspec) && !has_symlinks) { lt_debugprintf (__FILE__, __LINE__, "checking path component for symlinks: %s\n", tmp_pathspec); if (lstat (tmp_pathspec, &s) == 0) { if (S_ISLNK (s.st_mode) != 0) { has_symlinks = 1; break; } /* search backwards for last DIR_SEPARATOR */ p = tmp_pathspec + strlen (tmp_pathspec) - 1; while ((p > tmp_pathspec) && (!IS_DIR_SEPARATOR (*p))) p--; if ((p == tmp_pathspec) && (!IS_DIR_SEPARATOR (*p))) { /* no more DIR_SEPARATORS left */ break; } *p = '\0'; } else { lt_fatal (__FILE__, __LINE__, "error accessing file \"%s\": %s", tmp_pathspec, nonnull (strerror (errno))); } } XFREE (tmp_pathspec); if (!has_symlinks) { return xstrdup (pathspec); } tmp_pathspec = realpath (pathspec, buf); if (tmp_pathspec == 0) { lt_fatal (__FILE__, __LINE__, "could not follow symlinks for %s", pathspec); } return xstrdup (tmp_pathspec); #endif } char * strendzap (char *str, const char *pat) { size_t len, patlen; assert (str != NULL); assert (pat != NULL); len = strlen (str); patlen = strlen (pat); if (patlen <= len) { str += len - patlen; if (strcmp (str, pat) == 0) *str = '\0'; } return str; } void lt_debugprintf (const char *file, int line, const char *fmt, ...) { va_list args; if (lt_debug) { (void) fprintf (stderr, "%s:%s:%d: ", program_name, file, line); va_start (args, fmt); (void) vfprintf (stderr, fmt, args); va_end (args); } } static void lt_error_core (int exit_status, const char *file, int line, const char *mode, const char *message, va_list ap) { fprintf (stderr, "%s:%s:%d: %s: ", program_name, file, line, mode); vfprintf (stderr, message, ap); fprintf (stderr, ".\n"); if (exit_status >= 0) exit (exit_status); } void lt_fatal (const char *file, int line, const char *message, ...) { va_list ap; va_start (ap, message); lt_error_core (EXIT_FAILURE, file, line, "FATAL", message, ap); va_end (ap); } static const char * nonnull (const char *s) { return s ? s : "(null)"; } static const char * nonempty (const char *s) { return (s && !*s) ? "(empty)" : nonnull (s); } void lt_setenv (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_setenv) setting '%s' to '%s'\n", nonnull (name), nonnull (value)); { #ifdef HAVE_SETENV /* always make a copy, for consistency with !HAVE_SETENV */ char *str = xstrdup (value); setenv (name, str, 1); #else int len = strlen (name) + 1 + strlen (value) + 1; char *str = XMALLOC (char, len); sprintf (str, "%s=%s", name, value); if (putenv (str) != EXIT_SUCCESS) { XFREE (str); } #endif } } char * lt_extend_str (const char *orig_value, const char *add, int to_end) { char *new_value; if (orig_value && *orig_value) { int orig_value_len = strlen (orig_value); int add_len = strlen (add); new_value = XMALLOC (char, add_len + orig_value_len + 1); if (to_end) { strcpy (new_value, orig_value); strcpy (new_value + orig_value_len, add); } else { strcpy (new_value, add); strcpy (new_value + add_len, orig_value); } } else { new_value = xstrdup (add); } return new_value; } void lt_update_exe_path (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_update_exe_path) modifying '%s' by prepending '%s'\n", nonnull (name), nonnull (value)); if (name && *name && value && *value) { char *new_value = lt_extend_str (getenv (name), value, 0); /* some systems can't cope with a ':'-terminated path #' */ int len = strlen (new_value); while (((len = strlen (new_value)) > 0) && IS_PATH_SEPARATOR (new_value[len-1])) { new_value[len-1] = '\0'; } lt_setenv (name, new_value); XFREE (new_value); } } void lt_update_lib_path (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_update_lib_path) modifying '%s' by prepending '%s'\n", nonnull (name), nonnull (value)); if (name && *name && value && *value) { char *new_value = lt_extend_str (getenv (name), value, 0); lt_setenv (name, new_value); XFREE (new_value); } } EOF case $host_os in mingw*) cat <<"EOF" /* Prepares an argument vector before calling spawn(). Note that spawn() does not by itself call the command interpreter (getenv ("COMSPEC") != NULL ? getenv ("COMSPEC") : ({ OSVERSIONINFO v; v.dwOSVersionInfoSize = sizeof(OSVERSIONINFO); GetVersionEx(&v); v.dwPlatformId == VER_PLATFORM_WIN32_NT; }) ? "cmd.exe" : "command.com"). Instead it simply concatenates the arguments, separated by ' ', and calls CreateProcess(). We must quote the arguments since Win32 CreateProcess() interprets characters like ' ', '\t', '\\', '"' (but not '<' and '>') in a special way: - Space and tab are interpreted as delimiters. They are not treated as delimiters if they are surrounded by double quotes: "...". - Unescaped double quotes are removed from the input. Their only effect is that within double quotes, space and tab are treated like normal characters. - Backslashes not followed by double quotes are not special. - But 2*n+1 backslashes followed by a double quote become n backslashes followed by a double quote (n >= 0): \" -> " \\\" -> \" \\\\\" -> \\" */ #define SHELL_SPECIAL_CHARS "\"\\ \001\002\003\004\005\006\007\010\011\012\013\014\015\016\017\020\021\022\023\024\025\026\027\030\031\032\033\034\035\036\037" #define SHELL_SPACE_CHARS " \001\002\003\004\005\006\007\010\011\012\013\014\015\016\017\020\021\022\023\024\025\026\027\030\031\032\033\034\035\036\037" char ** prepare_spawn (char **argv) { size_t argc; char **new_argv; size_t i; /* Count number of arguments. */ for (argc = 0; argv[argc] != NULL; argc++) ; /* Allocate new argument vector. */ new_argv = XMALLOC (char *, argc + 1); /* Put quoted arguments into the new argument vector. */ for (i = 0; i < argc; i++) { const char *string = argv[i]; if (string[0] == '\0') new_argv[i] = xstrdup ("\"\""); else if (strpbrk (string, SHELL_SPECIAL_CHARS) != NULL) { int quote_around = (strpbrk (string, SHELL_SPACE_CHARS) != NULL); size_t length; unsigned int backslashes; const char *s; char *quoted_string; char *p; length = 0; backslashes = 0; if (quote_around) length++; for (s = string; *s != '\0'; s++) { char c = *s; if (c == '"') length += backslashes + 1; length++; if (c == '\\') backslashes++; else backslashes = 0; } if (quote_around) length += backslashes + 1; quoted_string = XMALLOC (char, length + 1); p = quoted_string; backslashes = 0; if (quote_around) *p++ = '"'; for (s = string; *s != '\0'; s++) { char c = *s; if (c == '"') { unsigned int j; for (j = backslashes + 1; j > 0; j--) *p++ = '\\'; } *p++ = c; if (c == '\\') backslashes++; else backslashes = 0; } if (quote_around) { unsigned int j; for (j = backslashes; j > 0; j--) *p++ = '\\'; *p++ = '"'; } *p = '\0'; new_argv[i] = quoted_string; } else new_argv[i] = (char *) string; } new_argv[argc] = NULL; return new_argv; } EOF ;; esac cat <<"EOF" void lt_dump_script (FILE* f) { EOF func_emit_wrapper yes | $SED -n -e ' s/^\(.\{79\}\)\(..*\)/\1\ \2/ h s/\([\\"]\)/\\\1/g s/$/\\n/ s/\([^\n]*\).*/ fputs ("\1", f);/p g D' cat <<"EOF" } EOF } # end: func_emit_cwrapperexe_src # func_win32_import_lib_p ARG # True if ARG is an import lib, as indicated by $file_magic_cmd func_win32_import_lib_p () { $opt_debug case `eval $file_magic_cmd \"\$1\" 2>/dev/null | $SED -e 10q` in *import*) : ;; *) false ;; esac } # func_mode_link arg... func_mode_link () { $opt_debug case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) # It is impossible to link a dll without this setting, and # we shouldn't force the makefile maintainer to figure out # which system we are compiling for in order to pass an extra # flag for every libtool invocation. # allow_undefined=no # FIXME: Unfortunately, there are problems with the above when trying # to make a dll which has undefined symbols, in which case not # even a static library is built. For now, we need to specify # -no-undefined on the libtool link line when we can be certain # that all symbols are satisfied, otherwise we get a static library. allow_undefined=yes ;; *) allow_undefined=yes ;; esac libtool_args=$nonopt base_compile="$nonopt $@" compile_command=$nonopt finalize_command=$nonopt compile_rpath= finalize_rpath= compile_shlibpath= finalize_shlibpath= convenience= old_convenience= deplibs= old_deplibs= compiler_flags= linker_flags= dllsearchpath= lib_search_path=`pwd` inst_prefix_dir= new_inherited_linker_flags= avoid_version=no bindir= dlfiles= dlprefiles= dlself=no export_dynamic=no export_symbols= export_symbols_regex= generated= libobjs= ltlibs= module=no no_install=no objs= non_pic_objects= precious_files_regex= prefer_static_libs=no preload=no prev= prevarg= release= rpath= xrpath= perm_rpath= temp_rpath= thread_safe=no vinfo= vinfo_number=no weak_libs= single_module="${wl}-single_module" func_infer_tag $base_compile # We need to know -static, to get the right output filenames. for arg do case $arg in -shared) test "$build_libtool_libs" != yes && \ func_fatal_configuration "can not build a shared library" build_old_libs=no break ;; -all-static | -static | -static-libtool-libs) case $arg in -all-static) if test "$build_libtool_libs" = yes && test -z "$link_static_flag"; then func_warning "complete static linking is impossible in this configuration" fi if test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=yes ;; -static) if test -z "$pic_flag" && test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=built ;; -static-libtool-libs) if test -z "$pic_flag" && test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=yes ;; esac build_libtool_libs=no build_old_libs=yes break ;; esac done # See if our shared archives depend on static archives. test -n "$old_archive_from_new_cmds" && build_old_libs=yes # Go through the arguments, transforming them on the way. while test "$#" -gt 0; do arg="$1" shift func_quote_for_eval "$arg" qarg=$func_quote_for_eval_unquoted_result func_append libtool_args " $func_quote_for_eval_result" # If the previous option needs an argument, assign it. if test -n "$prev"; then case $prev in output) func_append compile_command " @OUTPUT@" func_append finalize_command " @OUTPUT@" ;; esac case $prev in bindir) bindir="$arg" prev= continue ;; dlfiles|dlprefiles) if test "$preload" = no; then # Add the symbol object into the linking commands. func_append compile_command " @SYMFILE@" func_append finalize_command " @SYMFILE@" preload=yes fi case $arg in *.la | *.lo) ;; # We handle these cases below. force) if test "$dlself" = no; then dlself=needless export_dynamic=yes fi prev= continue ;; self) if test "$prev" = dlprefiles; then dlself=yes elif test "$prev" = dlfiles && test "$dlopen_self" != yes; then dlself=yes else dlself=needless export_dynamic=yes fi prev= continue ;; *) if test "$prev" = dlfiles; then func_append dlfiles " $arg" else func_append dlprefiles " $arg" fi prev= continue ;; esac ;; expsyms) export_symbols="$arg" test -f "$arg" \ || func_fatal_error "symbol file \`$arg' does not exist" prev= continue ;; expsyms_regex) export_symbols_regex="$arg" prev= continue ;; framework) case $host in *-*-darwin*) case "$deplibs " in *" $qarg.ltframework "*) ;; *) func_append deplibs " $qarg.ltframework" # this is fixed later ;; esac ;; esac prev= continue ;; inst_prefix) inst_prefix_dir="$arg" prev= continue ;; objectlist) if test -f "$arg"; then save_arg=$arg moreargs= for fil in `cat "$save_arg"` do # func_append moreargs " $fil" arg=$fil # A libtool-controlled object. # Check to see that this really is a libtool object. if func_lalib_unsafe_p "$arg"; then pic_object= non_pic_object= # Read the .lo file func_source "$arg" if test -z "$pic_object" || test -z "$non_pic_object" || test "$pic_object" = none && test "$non_pic_object" = none; then func_fatal_error "cannot find name of object for \`$arg'" fi # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir="$func_dirname_result" if test "$pic_object" != none; then # Prepend the subdirectory the object is found in. pic_object="$xdir$pic_object" if test "$prev" = dlfiles; then if test "$build_libtool_libs" = yes && test "$dlopen_support" = yes; then func_append dlfiles " $pic_object" prev= continue else # If libtool objects are unsupported, then we need to preload. prev=dlprefiles fi fi # CHECK ME: I think I busted this. -Ossama if test "$prev" = dlprefiles; then # Preload the old-style object. func_append dlprefiles " $pic_object" prev= fi # A PIC object. func_append libobjs " $pic_object" arg="$pic_object" fi # Non-PIC object. if test "$non_pic_object" != none; then # Prepend the subdirectory the object is found in. non_pic_object="$xdir$non_pic_object" # A standard non-PIC object func_append non_pic_objects " $non_pic_object" if test -z "$pic_object" || test "$pic_object" = none ; then arg="$non_pic_object" fi else # If the PIC object exists, use it instead. # $xdir was prepended to $pic_object above. non_pic_object="$pic_object" func_append non_pic_objects " $non_pic_object" fi else # Only an error if not doing a dry-run. if $opt_dry_run; then # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir="$func_dirname_result" func_lo2o "$arg" pic_object=$xdir$objdir/$func_lo2o_result non_pic_object=$xdir$func_lo2o_result func_append libobjs " $pic_object" func_append non_pic_objects " $non_pic_object" else func_fatal_error "\`$arg' is not a valid libtool object" fi fi done else func_fatal_error "link input file \`$arg' does not exist" fi arg=$save_arg prev= continue ;; precious_regex) precious_files_regex="$arg" prev= continue ;; release) release="-$arg" prev= continue ;; rpath | xrpath) # We need an absolute path. case $arg in [\\/]* | [A-Za-z]:[\\/]*) ;; *) func_fatal_error "only absolute run-paths are allowed" ;; esac if test "$prev" = rpath; then case "$rpath " in *" $arg "*) ;; *) func_append rpath " $arg" ;; esac else case "$xrpath " in *" $arg "*) ;; *) func_append xrpath " $arg" ;; esac fi prev= continue ;; shrext) shrext_cmds="$arg" prev= continue ;; weak) func_append weak_libs " $arg" prev= continue ;; xcclinker) func_append linker_flags " $qarg" func_append compiler_flags " $qarg" prev= func_append compile_command " $qarg" func_append finalize_command " $qarg" continue ;; xcompiler) func_append compiler_flags " $qarg" prev= func_append compile_command " $qarg" func_append finalize_command " $qarg" continue ;; xlinker) func_append linker_flags " $qarg" func_append compiler_flags " $wl$qarg" prev= func_append compile_command " $wl$qarg" func_append finalize_command " $wl$qarg" continue ;; *) eval "$prev=\"\$arg\"" prev= continue ;; esac fi # test -n "$prev" prevarg="$arg" case $arg in -all-static) if test -n "$link_static_flag"; then # See comment for -static flag below, for more details. func_append compile_command " $link_static_flag" func_append finalize_command " $link_static_flag" fi continue ;; -allow-undefined) # FIXME: remove this flag sometime in the future. func_fatal_error "\`-allow-undefined' must not be used because it is the default" ;; -avoid-version) avoid_version=yes continue ;; -bindir) prev=bindir continue ;; -dlopen) prev=dlfiles continue ;; -dlpreopen) prev=dlprefiles continue ;; -export-dynamic) export_dynamic=yes continue ;; -export-symbols | -export-symbols-regex) if test -n "$export_symbols" || test -n "$export_symbols_regex"; then func_fatal_error "more than one -exported-symbols argument is not allowed" fi if test "X$arg" = "X-export-symbols"; then prev=expsyms else prev=expsyms_regex fi continue ;; -framework) prev=framework continue ;; -inst-prefix-dir) prev=inst_prefix continue ;; # The native IRIX linker understands -LANG:*, -LIST:* and -LNO:* # so, if we see these flags be careful not to treat them like -L -L[A-Z][A-Z]*:*) case $with_gcc/$host in no/*-*-irix* | /*-*-irix*) func_append compile_command " $arg" func_append finalize_command " $arg" ;; esac continue ;; -L*) func_stripname "-L" '' "$arg" if test -z "$func_stripname_result"; then if test "$#" -gt 0; then func_fatal_error "require no space between \`-L' and \`$1'" else func_fatal_error "need path for \`-L' option" fi fi func_resolve_sysroot "$func_stripname_result" dir=$func_resolve_sysroot_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) ;; *) absdir=`cd "$dir" && pwd` test -z "$absdir" && \ func_fatal_error "cannot determine absolute directory name of \`$dir'" dir="$absdir" ;; esac case "$deplibs " in *" -L$dir "* | *" $arg "*) # Will only happen for absolute or sysroot arguments ;; *) # Preserve sysroot, but never include relative directories case $dir in [\\/]* | [A-Za-z]:[\\/]* | =*) func_append deplibs " $arg" ;; *) func_append deplibs " -L$dir" ;; esac func_append lib_search_path " $dir" ;; esac case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) testbindir=`$ECHO "$dir" | $SED 's*/lib$*/bin*'` case :$dllsearchpath: in *":$dir:"*) ;; ::) dllsearchpath=$dir;; *) func_append dllsearchpath ":$dir";; esac case :$dllsearchpath: in *":$testbindir:"*) ;; ::) dllsearchpath=$testbindir;; *) func_append dllsearchpath ":$testbindir";; esac ;; esac continue ;; -l*) if test "X$arg" = "X-lc" || test "X$arg" = "X-lm"; then case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-beos* | *-cegcc* | *-*-haiku*) # These systems don't actually have a C or math library (as such) continue ;; *-*-os2*) # These systems don't actually have a C library (as such) test "X$arg" = "X-lc" && continue ;; *-*-openbsd* | *-*-freebsd* | *-*-dragonfly*) # Do not include libc due to us having libc/libc_r. test "X$arg" = "X-lc" && continue ;; *-*-rhapsody* | *-*-darwin1.[012]) # Rhapsody C and math libraries are in the System framework func_append deplibs " System.ltframework" continue ;; *-*-sco3.2v5* | *-*-sco5v6*) # Causes problems with __ctype test "X$arg" = "X-lc" && continue ;; *-*-sysv4.2uw2* | *-*-sysv5* | *-*-unixware* | *-*-OpenUNIX*) # Compiler inserts libc in the correct place for threads to work test "X$arg" = "X-lc" && continue ;; esac elif test "X$arg" = "X-lc_r"; then case $host in *-*-openbsd* | *-*-freebsd* | *-*-dragonfly*) # Do not include libc_r directly, use -pthread flag. continue ;; esac fi func_append deplibs " $arg" continue ;; -module) module=yes continue ;; # Tru64 UNIX uses -model [arg] to determine the layout of C++ # classes, name mangling, and exception handling. # Darwin uses the -arch flag to determine output architecture. -model|-arch|-isysroot|--sysroot) func_append compiler_flags " $arg" func_append compile_command " $arg" func_append finalize_command " $arg" prev=xcompiler continue ;; -mt|-mthreads|-kthread|-Kthread|-pthread|-pthreads|--thread-safe \ |-threads|-fopenmp|-openmp|-mp|-xopenmp|-omp|-qsmp=*) func_append compiler_flags " $arg" func_append compile_command " $arg" func_append finalize_command " $arg" case "$new_inherited_linker_flags " in *" $arg "*) ;; * ) func_append new_inherited_linker_flags " $arg" ;; esac continue ;; -multi_module) single_module="${wl}-multi_module" continue ;; -no-fast-install) fast_install=no continue ;; -no-install) case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-*-darwin* | *-cegcc*) # The PATH hackery in wrapper scripts is required on Windows # and Darwin in order for the loader to find any dlls it needs. func_warning "\`-no-install' is ignored for $host" func_warning "assuming \`-no-fast-install' instead" fast_install=no ;; *) no_install=yes ;; esac continue ;; -no-undefined) allow_undefined=no continue ;; -objectlist) prev=objectlist continue ;; -o) prev=output ;; -precious-files-regex) prev=precious_regex continue ;; -release) prev=release continue ;; -rpath) prev=rpath continue ;; -R) prev=xrpath continue ;; -R*) func_stripname '-R' '' "$arg" dir=$func_stripname_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) ;; =*) func_stripname '=' '' "$dir" dir=$lt_sysroot$func_stripname_result ;; *) func_fatal_error "only absolute run-paths are allowed" ;; esac case "$xrpath " in *" $dir "*) ;; *) func_append xrpath " $dir" ;; esac continue ;; -shared) # The effects of -shared are defined in a previous loop. continue ;; -shrext) prev=shrext continue ;; -static | -static-libtool-libs) # The effects of -static are defined in a previous loop. # We used to do the same as -all-static on platforms that # didn't have a PIC flag, but the assumption that the effects # would be equivalent was wrong. It would break on at least # Digital Unix and AIX. continue ;; -thread-safe) thread_safe=yes continue ;; -version-info) prev=vinfo continue ;; -version-number) prev=vinfo vinfo_number=yes continue ;; -weak) prev=weak continue ;; -Wc,*) func_stripname '-Wc,' '' "$arg" args=$func_stripname_result arg= save_ifs="$IFS"; IFS=',' for flag in $args; do IFS="$save_ifs" func_quote_for_eval "$flag" func_append arg " $func_quote_for_eval_result" func_append compiler_flags " $func_quote_for_eval_result" done IFS="$save_ifs" func_stripname ' ' '' "$arg" arg=$func_stripname_result ;; -Wl,*) func_stripname '-Wl,' '' "$arg" args=$func_stripname_result arg= save_ifs="$IFS"; IFS=',' for flag in $args; do IFS="$save_ifs" func_quote_for_eval "$flag" func_append arg " $wl$func_quote_for_eval_result" func_append compiler_flags " $wl$func_quote_for_eval_result" func_append linker_flags " $func_quote_for_eval_result" done IFS="$save_ifs" func_stripname ' ' '' "$arg" arg=$func_stripname_result ;; -Xcompiler) prev=xcompiler continue ;; -Xlinker) prev=xlinker continue ;; -XCClinker) prev=xcclinker continue ;; # -msg_* for osf cc -msg_*) func_quote_for_eval "$arg" arg="$func_quote_for_eval_result" ;; # Flags to be passed through unchanged, with rationale: # -64, -mips[0-9] enable 64-bit mode for the SGI compiler # -r[0-9][0-9]* specify processor for the SGI compiler # -xarch=*, -xtarget=* enable 64-bit mode for the Sun compiler # +DA*, +DD* enable 64-bit mode for the HP compiler # -q* compiler args for the IBM compiler # -m*, -t[45]*, -txscale* architecture-specific flags for GCC # -F/path path to uninstalled frameworks, gcc on darwin # -p, -pg, --coverage, -fprofile-* profiling flags for GCC # @file GCC response files # -tp=* Portland pgcc target processor selection # --sysroot=* for sysroot support # -O*, -flto*, -fwhopr*, -fuse-linker-plugin GCC link-time optimization -64|-mips[0-9]|-r[0-9][0-9]*|-xarch=*|-xtarget=*|+DA*|+DD*|-q*|-m*| \ -t[45]*|-txscale*|-p|-pg|--coverage|-fprofile-*|-F*|@*|-tp=*|--sysroot=*| \ -O*|-flto*|-fwhopr*|-fuse-linker-plugin) func_quote_for_eval "$arg" arg="$func_quote_for_eval_result" func_append compile_command " $arg" func_append finalize_command " $arg" func_append compiler_flags " $arg" continue ;; # Some other compiler flag. -* | +*) func_quote_for_eval "$arg" arg="$func_quote_for_eval_result" ;; *.$objext) # A standard object. func_append objs " $arg" ;; *.lo) # A libtool-controlled object. # Check to see that this really is a libtool object. if func_lalib_unsafe_p "$arg"; then pic_object= non_pic_object= # Read the .lo file func_source "$arg" if test -z "$pic_object" || test -z "$non_pic_object" || test "$pic_object" = none && test "$non_pic_object" = none; then func_fatal_error "cannot find name of object for \`$arg'" fi # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir="$func_dirname_result" if test "$pic_object" != none; then # Prepend the subdirectory the object is found in. pic_object="$xdir$pic_object" if test "$prev" = dlfiles; then if test "$build_libtool_libs" = yes && test "$dlopen_support" = yes; then func_append dlfiles " $pic_object" prev= continue else # If libtool objects are unsupported, then we need to preload. prev=dlprefiles fi fi # CHECK ME: I think I busted this. -Ossama if test "$prev" = dlprefiles; then # Preload the old-style object. func_append dlprefiles " $pic_object" prev= fi # A PIC object. func_append libobjs " $pic_object" arg="$pic_object" fi # Non-PIC object. if test "$non_pic_object" != none; then # Prepend the subdirectory the object is found in. non_pic_object="$xdir$non_pic_object" # A standard non-PIC object func_append non_pic_objects " $non_pic_object" if test -z "$pic_object" || test "$pic_object" = none ; then arg="$non_pic_object" fi else # If the PIC object exists, use it instead. # $xdir was prepended to $pic_object above. non_pic_object="$pic_object" func_append non_pic_objects " $non_pic_object" fi else # Only an error if not doing a dry-run. if $opt_dry_run; then # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir="$func_dirname_result" func_lo2o "$arg" pic_object=$xdir$objdir/$func_lo2o_result non_pic_object=$xdir$func_lo2o_result func_append libobjs " $pic_object" func_append non_pic_objects " $non_pic_object" else func_fatal_error "\`$arg' is not a valid libtool object" fi fi ;; *.$libext) # An archive. func_append deplibs " $arg" func_append old_deplibs " $arg" continue ;; *.la) # A libtool-controlled library. func_resolve_sysroot "$arg" if test "$prev" = dlfiles; then # This library was specified with -dlopen. func_append dlfiles " $func_resolve_sysroot_result" prev= elif test "$prev" = dlprefiles; then # The library was specified with -dlpreopen. func_append dlprefiles " $func_resolve_sysroot_result" prev= else func_append deplibs " $func_resolve_sysroot_result" fi continue ;; # Some other compiler argument. *) # Unknown arguments in both finalize_command and compile_command need # to be aesthetically quoted because they are evaled later. func_quote_for_eval "$arg" arg="$func_quote_for_eval_result" ;; esac # arg # Now actually substitute the argument into the commands. if test -n "$arg"; then func_append compile_command " $arg" func_append finalize_command " $arg" fi done # argument parsing loop test -n "$prev" && \ func_fatal_help "the \`$prevarg' option requires an argument" if test "$export_dynamic" = yes && test -n "$export_dynamic_flag_spec"; then eval arg=\"$export_dynamic_flag_spec\" func_append compile_command " $arg" func_append finalize_command " $arg" fi oldlibs= # calculate the name of the file, without its directory func_basename "$output" outputname="$func_basename_result" libobjs_save="$libobjs" if test -n "$shlibpath_var"; then # get the directories listed in $shlibpath_var eval shlib_search_path=\`\$ECHO \"\${$shlibpath_var}\" \| \$SED \'s/:/ /g\'\` else shlib_search_path= fi eval sys_lib_search_path=\"$sys_lib_search_path_spec\" eval sys_lib_dlsearch_path=\"$sys_lib_dlsearch_path_spec\" func_dirname "$output" "/" "" output_objdir="$func_dirname_result$objdir" func_to_tool_file "$output_objdir/" tool_output_objdir=$func_to_tool_file_result # Create the object directory. func_mkdir_p "$output_objdir" # Determine the type of output case $output in "") func_fatal_help "you must specify an output file" ;; *.$libext) linkmode=oldlib ;; *.lo | *.$objext) linkmode=obj ;; *.la) linkmode=lib ;; *) linkmode=prog ;; # Anything else should be a program. esac specialdeplibs= libs= # Find all interdependent deplibs by searching for libraries # that are linked more than once (e.g. -la -lb -la) for deplib in $deplibs; do if $opt_preserve_dup_deps ; then case "$libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append libs " $deplib" done if test "$linkmode" = lib; then libs="$predeps $libs $compiler_lib_search_path $postdeps" # Compute libraries that are listed more than once in $predeps # $postdeps and mark them as special (i.e., whose duplicates are # not to be eliminated). pre_post_deps= if $opt_duplicate_compiler_generated_deps; then for pre_post_dep in $predeps $postdeps; do case "$pre_post_deps " in *" $pre_post_dep "*) func_append specialdeplibs " $pre_post_deps" ;; esac func_append pre_post_deps " $pre_post_dep" done fi pre_post_deps= fi deplibs= newdependency_libs= newlib_search_path= need_relink=no # whether we're linking any uninstalled libtool libraries notinst_deplibs= # not-installed libtool libraries notinst_path= # paths that contain not-installed libtool libraries case $linkmode in lib) passes="conv dlpreopen link" for file in $dlfiles $dlprefiles; do case $file in *.la) ;; *) func_fatal_help "libraries can \`-dlopen' only libtool libraries: $file" ;; esac done ;; prog) compile_deplibs= finalize_deplibs= alldeplibs=no newdlfiles= newdlprefiles= passes="conv scan dlopen dlpreopen link" ;; *) passes="conv" ;; esac for pass in $passes; do # The preopen pass in lib mode reverses $deplibs; put it back here # so that -L comes before libs that need it for instance... if test "$linkmode,$pass" = "lib,link"; then ## FIXME: Find the place where the list is rebuilt in the wrong ## order, and fix it there properly tmp_deplibs= for deplib in $deplibs; do tmp_deplibs="$deplib $tmp_deplibs" done deplibs="$tmp_deplibs" fi if test "$linkmode,$pass" = "lib,link" || test "$linkmode,$pass" = "prog,scan"; then libs="$deplibs" deplibs= fi if test "$linkmode" = prog; then case $pass in dlopen) libs="$dlfiles" ;; dlpreopen) libs="$dlprefiles" ;; link) libs="$deplibs %DEPLIBS% $dependency_libs" ;; esac fi if test "$linkmode,$pass" = "lib,dlpreopen"; then # Collect and forward deplibs of preopened libtool libs for lib in $dlprefiles; do # Ignore non-libtool-libs dependency_libs= func_resolve_sysroot "$lib" case $lib in *.la) func_source "$func_resolve_sysroot_result" ;; esac # Collect preopened libtool deplibs, except any this library # has declared as weak libs for deplib in $dependency_libs; do func_basename "$deplib" deplib_base=$func_basename_result case " $weak_libs " in *" $deplib_base "*) ;; *) func_append deplibs " $deplib" ;; esac done done libs="$dlprefiles" fi if test "$pass" = dlopen; then # Collect dlpreopened libraries save_deplibs="$deplibs" deplibs= fi for deplib in $libs; do lib= found=no case $deplib in -mt|-mthreads|-kthread|-Kthread|-pthread|-pthreads|--thread-safe \ |-threads|-fopenmp|-openmp|-mp|-xopenmp|-omp|-qsmp=*) if test "$linkmode,$pass" = "prog,link"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else func_append compiler_flags " $deplib" if test "$linkmode" = lib ; then case "$new_inherited_linker_flags " in *" $deplib "*) ;; * ) func_append new_inherited_linker_flags " $deplib" ;; esac fi fi continue ;; -l*) if test "$linkmode" != lib && test "$linkmode" != prog; then func_warning "\`-l' is ignored for archives/objects" continue fi func_stripname '-l' '' "$deplib" name=$func_stripname_result if test "$linkmode" = lib; then searchdirs="$newlib_search_path $lib_search_path $compiler_lib_search_dirs $sys_lib_search_path $shlib_search_path" else searchdirs="$newlib_search_path $lib_search_path $sys_lib_search_path $shlib_search_path" fi for searchdir in $searchdirs; do for search_ext in .la $std_shrext .so .a; do # Search the libtool library lib="$searchdir/lib${name}${search_ext}" if test -f "$lib"; then if test "$search_ext" = ".la"; then found=yes else found=no fi break 2 fi done done if test "$found" != yes; then # deplib doesn't seem to be a libtool library if test "$linkmode,$pass" = "prog,link"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" test "$linkmode" = lib && newdependency_libs="$deplib $newdependency_libs" fi continue else # deplib is a libtool library # If $allow_libtool_libs_with_static_runtimes && $deplib is a stdlib, # We need to do some special things here, and not later. if test "X$allow_libtool_libs_with_static_runtimes" = "Xyes" ; then case " $predeps $postdeps " in *" $deplib "*) if func_lalib_p "$lib"; then library_names= old_library= func_source "$lib" for l in $old_library $library_names; do ll="$l" done if test "X$ll" = "X$old_library" ; then # only static version available found=no func_dirname "$lib" "" "." ladir="$func_dirname_result" lib=$ladir/$old_library if test "$linkmode,$pass" = "prog,link"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" test "$linkmode" = lib && newdependency_libs="$deplib $newdependency_libs" fi continue fi fi ;; *) ;; esac fi fi ;; # -l *.ltframework) if test "$linkmode,$pass" = "prog,link"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" if test "$linkmode" = lib ; then case "$new_inherited_linker_flags " in *" $deplib "*) ;; * ) func_append new_inherited_linker_flags " $deplib" ;; esac fi fi continue ;; -L*) case $linkmode in lib) deplibs="$deplib $deplibs" test "$pass" = conv && continue newdependency_libs="$deplib $newdependency_libs" func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; prog) if test "$pass" = conv; then deplibs="$deplib $deplibs" continue fi if test "$pass" = scan; then deplibs="$deplib $deplibs" else compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" fi func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; *) func_warning "\`-L' is ignored for archives/objects" ;; esac # linkmode continue ;; # -L -R*) if test "$pass" = link; then func_stripname '-R' '' "$deplib" func_resolve_sysroot "$func_stripname_result" dir=$func_resolve_sysroot_result # Make sure the xrpath contains only unique directories. case "$xrpath " in *" $dir "*) ;; *) func_append xrpath " $dir" ;; esac fi deplibs="$deplib $deplibs" continue ;; *.la) func_resolve_sysroot "$deplib" lib=$func_resolve_sysroot_result ;; *.$libext) if test "$pass" = conv; then deplibs="$deplib $deplibs" continue fi case $linkmode in lib) # Linking convenience modules into shared libraries is allowed, # but linking other static libraries is non-portable. case " $dlpreconveniencelibs " in *" $deplib "*) ;; *) valid_a_lib=no case $deplibs_check_method in match_pattern*) set dummy $deplibs_check_method; shift match_pattern_regex=`expr "$deplibs_check_method" : "$1 \(.*\)"` if eval "\$ECHO \"$deplib\"" 2>/dev/null | $SED 10q \ | $EGREP "$match_pattern_regex" > /dev/null; then valid_a_lib=yes fi ;; pass_all) valid_a_lib=yes ;; esac if test "$valid_a_lib" != yes; then echo $ECHO "*** Warning: Trying to link with static lib archive $deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because the file extensions .$libext of this argument makes me believe" echo "*** that it is just a static archive that I should not use here." else echo $ECHO "*** Warning: Linking the shared library $output against the" $ECHO "*** static library $deplib is not portable!" deplibs="$deplib $deplibs" fi ;; esac continue ;; prog) if test "$pass" != link; then deplibs="$deplib $deplibs" else compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" fi continue ;; esac # linkmode ;; # *.$libext *.lo | *.$objext) if test "$pass" = conv; then deplibs="$deplib $deplibs" elif test "$linkmode" = prog; then if test "$pass" = dlpreopen || test "$dlopen_support" != yes || test "$build_libtool_libs" = no; then # If there is no dlopen support or we're linking statically, # we need to preload. func_append newdlprefiles " $deplib" compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else func_append newdlfiles " $deplib" fi fi continue ;; %DEPLIBS%) alldeplibs=yes continue ;; esac # case $deplib if test "$found" = yes || test -f "$lib"; then : else func_fatal_error "cannot find the library \`$lib' or unhandled argument \`$deplib'" fi # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$lib" \ || func_fatal_error "\`$lib' is not a valid libtool archive" func_dirname "$lib" "" "." ladir="$func_dirname_result" dlname= dlopen= dlpreopen= libdir= library_names= old_library= inherited_linker_flags= # If the library was installed with an old release of libtool, # it will not redefine variables installed, or shouldnotlink installed=yes shouldnotlink=no avoidtemprpath= # Read the .la file func_source "$lib" # Convert "-framework foo" to "foo.ltframework" if test -n "$inherited_linker_flags"; then tmp_inherited_linker_flags=`$ECHO "$inherited_linker_flags" | $SED 's/-framework \([^ $]*\)/\1.ltframework/g'` for tmp_inherited_linker_flag in $tmp_inherited_linker_flags; do case " $new_inherited_linker_flags " in *" $tmp_inherited_linker_flag "*) ;; *) func_append new_inherited_linker_flags " $tmp_inherited_linker_flag";; esac done fi dependency_libs=`$ECHO " $dependency_libs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` if test "$linkmode,$pass" = "lib,link" || test "$linkmode,$pass" = "prog,scan" || { test "$linkmode" != prog && test "$linkmode" != lib; }; then test -n "$dlopen" && func_append dlfiles " $dlopen" test -n "$dlpreopen" && func_append dlprefiles " $dlpreopen" fi if test "$pass" = conv; then # Only check for convenience libraries deplibs="$lib $deplibs" if test -z "$libdir"; then if test -z "$old_library"; then func_fatal_error "cannot find name of link library for \`$lib'" fi # It is a libtool convenience library, so add in its objects. func_append convenience " $ladir/$objdir/$old_library" func_append old_convenience " $ladir/$objdir/$old_library" elif test "$linkmode" != prog && test "$linkmode" != lib; then func_fatal_error "\`$lib' is not a convenience library" fi tmp_libs= for deplib in $dependency_libs; do deplibs="$deplib $deplibs" if $opt_preserve_dup_deps ; then case "$tmp_libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append tmp_libs " $deplib" done continue fi # $pass = conv # Get the name of the library we link against. linklib= if test -n "$old_library" && { test "$prefer_static_libs" = yes || test "$prefer_static_libs,$installed" = "built,no"; }; then linklib=$old_library else for l in $old_library $library_names; do linklib="$l" done fi if test -z "$linklib"; then func_fatal_error "cannot find name of link library for \`$lib'" fi # This library was specified with -dlopen. if test "$pass" = dlopen; then if test -z "$libdir"; then func_fatal_error "cannot -dlopen a convenience library: \`$lib'" fi if test -z "$dlname" || test "$dlopen_support" != yes || test "$build_libtool_libs" = no; then # If there is no dlname, no dlopen support or we're linking # statically, we need to preload. We also need to preload any # dependent libraries so libltdl's deplib preloader doesn't # bomb out in the load deplibs phase. func_append dlprefiles " $lib $dependency_libs" else func_append newdlfiles " $lib" fi continue fi # $pass = dlopen # We need an absolute path. case $ladir in [\\/]* | [A-Za-z]:[\\/]*) abs_ladir="$ladir" ;; *) abs_ladir=`cd "$ladir" && pwd` if test -z "$abs_ladir"; then func_warning "cannot determine absolute directory name of \`$ladir'" func_warning "passing it literally to the linker, although it might fail" abs_ladir="$ladir" fi ;; esac func_basename "$lib" laname="$func_basename_result" # Find the relevant object directory and library name. if test "X$installed" = Xyes; then if test ! -f "$lt_sysroot$libdir/$linklib" && test -f "$abs_ladir/$linklib"; then func_warning "library \`$lib' was moved." dir="$ladir" absdir="$abs_ladir" libdir="$abs_ladir" else dir="$lt_sysroot$libdir" absdir="$lt_sysroot$libdir" fi test "X$hardcode_automatic" = Xyes && avoidtemprpath=yes else if test ! -f "$ladir/$objdir/$linklib" && test -f "$abs_ladir/$linklib"; then dir="$ladir" absdir="$abs_ladir" # Remove this search path later func_append notinst_path " $abs_ladir" else dir="$ladir/$objdir" absdir="$abs_ladir/$objdir" # Remove this search path later func_append notinst_path " $abs_ladir" fi fi # $installed = yes func_stripname 'lib' '.la' "$laname" name=$func_stripname_result # This library was specified with -dlpreopen. if test "$pass" = dlpreopen; then if test -z "$libdir" && test "$linkmode" = prog; then func_fatal_error "only libraries may -dlpreopen a convenience library: \`$lib'" fi case "$host" in # special handling for platforms with PE-DLLs. *cygwin* | *mingw* | *cegcc* ) # Linker will automatically link against shared library if both # static and shared are present. Therefore, ensure we extract # symbols from the import library if a shared library is present # (otherwise, the dlopen module name will be incorrect). We do # this by putting the import library name into $newdlprefiles. # We recover the dlopen module name by 'saving' the la file # name in a special purpose variable, and (later) extracting the # dlname from the la file. if test -n "$dlname"; then func_tr_sh "$dir/$linklib" eval "libfile_$func_tr_sh_result=\$abs_ladir/\$laname" func_append newdlprefiles " $dir/$linklib" else func_append newdlprefiles " $dir/$old_library" # Keep a list of preopened convenience libraries to check # that they are being used correctly in the link pass. test -z "$libdir" && \ func_append dlpreconveniencelibs " $dir/$old_library" fi ;; * ) # Prefer using a static library (so that no silly _DYNAMIC symbols # are required to link). if test -n "$old_library"; then func_append newdlprefiles " $dir/$old_library" # Keep a list of preopened convenience libraries to check # that they are being used correctly in the link pass. test -z "$libdir" && \ func_append dlpreconveniencelibs " $dir/$old_library" # Otherwise, use the dlname, so that lt_dlopen finds it. elif test -n "$dlname"; then func_append newdlprefiles " $dir/$dlname" else func_append newdlprefiles " $dir/$linklib" fi ;; esac fi # $pass = dlpreopen if test -z "$libdir"; then # Link the convenience library if test "$linkmode" = lib; then deplibs="$dir/$old_library $deplibs" elif test "$linkmode,$pass" = "prog,link"; then compile_deplibs="$dir/$old_library $compile_deplibs" finalize_deplibs="$dir/$old_library $finalize_deplibs" else deplibs="$lib $deplibs" # used for prog,scan pass fi continue fi if test "$linkmode" = prog && test "$pass" != link; then func_append newlib_search_path " $ladir" deplibs="$lib $deplibs" linkalldeplibs=no if test "$link_all_deplibs" != no || test -z "$library_names" || test "$build_libtool_libs" = no; then linkalldeplibs=yes fi tmp_libs= for deplib in $dependency_libs; do case $deplib in -L*) func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; esac # Need to link against all dependency_libs? if test "$linkalldeplibs" = yes; then deplibs="$deplib $deplibs" else # Need to hardcode shared library paths # or/and link against static libraries newdependency_libs="$deplib $newdependency_libs" fi if $opt_preserve_dup_deps ; then case "$tmp_libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append tmp_libs " $deplib" done # for deplib continue fi # $linkmode = prog... if test "$linkmode,$pass" = "prog,link"; then if test -n "$library_names" && { { test "$prefer_static_libs" = no || test "$prefer_static_libs,$installed" = "built,yes"; } || test -z "$old_library"; }; then # We need to hardcode the library path if test -n "$shlibpath_var" && test -z "$avoidtemprpath" ; then # Make sure the rpath contains only unique directories. case "$temp_rpath:" in *"$absdir:"*) ;; *) func_append temp_rpath "$absdir:" ;; esac fi # Hardcode the library path. # Skip directories that are in the system default run-time # search path. case " $sys_lib_dlsearch_path " in *" $absdir "*) ;; *) case "$compile_rpath " in *" $absdir "*) ;; *) func_append compile_rpath " $absdir" ;; esac ;; esac case " $sys_lib_dlsearch_path " in *" $libdir "*) ;; *) case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac ;; esac fi # $linkmode,$pass = prog,link... if test "$alldeplibs" = yes && { test "$deplibs_check_method" = pass_all || { test "$build_libtool_libs" = yes && test -n "$library_names"; }; }; then # We only need to search for static libraries continue fi fi link_static=no # Whether the deplib will be linked statically use_static_libs=$prefer_static_libs if test "$use_static_libs" = built && test "$installed" = yes; then use_static_libs=no fi if test -n "$library_names" && { test "$use_static_libs" = no || test -z "$old_library"; }; then case $host in *cygwin* | *mingw* | *cegcc*) # No point in relinking DLLs because paths are not encoded func_append notinst_deplibs " $lib" need_relink=no ;; *) if test "$installed" = no; then func_append notinst_deplibs " $lib" need_relink=yes fi ;; esac # This is a shared library # Warn about portability, can't link against -module's on some # systems (darwin). Don't bleat about dlopened modules though! dlopenmodule="" for dlpremoduletest in $dlprefiles; do if test "X$dlpremoduletest" = "X$lib"; then dlopenmodule="$dlpremoduletest" break fi done if test -z "$dlopenmodule" && test "$shouldnotlink" = yes && test "$pass" = link; then echo if test "$linkmode" = prog; then $ECHO "*** Warning: Linking the executable $output against the loadable module" else $ECHO "*** Warning: Linking the shared library $output against the loadable module" fi $ECHO "*** $linklib is not portable!" fi if test "$linkmode" = lib && test "$hardcode_into_libs" = yes; then # Hardcode the library path. # Skip directories that are in the system default run-time # search path. case " $sys_lib_dlsearch_path " in *" $absdir "*) ;; *) case "$compile_rpath " in *" $absdir "*) ;; *) func_append compile_rpath " $absdir" ;; esac ;; esac case " $sys_lib_dlsearch_path " in *" $libdir "*) ;; *) case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac ;; esac fi if test -n "$old_archive_from_expsyms_cmds"; then # figure out the soname set dummy $library_names shift realname="$1" shift libname=`eval "\\$ECHO \"$libname_spec\""` # use dlname if we got it. it's perfectly good, no? if test -n "$dlname"; then soname="$dlname" elif test -n "$soname_spec"; then # bleh windows case $host in *cygwin* | mingw* | *cegcc*) func_arith $current - $age major=$func_arith_result versuffix="-$major" ;; esac eval soname=\"$soname_spec\" else soname="$realname" fi # Make a new name for the extract_expsyms_cmds to use soroot="$soname" func_basename "$soroot" soname="$func_basename_result" func_stripname 'lib' '.dll' "$soname" newlib=libimp-$func_stripname_result.a # If the library has no export list, then create one now if test -f "$output_objdir/$soname-def"; then : else func_verbose "extracting exported symbol list from \`$soname'" func_execute_cmds "$extract_expsyms_cmds" 'exit $?' fi # Create $newlib if test -f "$output_objdir/$newlib"; then :; else func_verbose "generating import library for \`$soname'" func_execute_cmds "$old_archive_from_expsyms_cmds" 'exit $?' fi # make sure the library variables are pointing to the new library dir=$output_objdir linklib=$newlib fi # test -n "$old_archive_from_expsyms_cmds" if test "$linkmode" = prog || test "$opt_mode" != relink; then add_shlibpath= add_dir= add= lib_linked=yes case $hardcode_action in immediate | unsupported) if test "$hardcode_direct" = no; then add="$dir/$linklib" case $host in *-*-sco3.2v5.0.[024]*) add_dir="-L$dir" ;; *-*-sysv4*uw2*) add_dir="-L$dir" ;; *-*-sysv5OpenUNIX* | *-*-sysv5UnixWare7.[01].[10]* | \ *-*-unixware7*) add_dir="-L$dir" ;; *-*-darwin* ) # if the lib is a (non-dlopened) module then we can not # link against it, someone is ignoring the earlier warnings if /usr/bin/file -L $add 2> /dev/null | $GREP ": [^:]* bundle" >/dev/null ; then if test "X$dlopenmodule" != "X$lib"; then $ECHO "*** Warning: lib $linklib is a module, not a shared library" if test -z "$old_library" ; then echo echo "*** And there doesn't seem to be a static archive available" echo "*** The link will probably fail, sorry" else add="$dir/$old_library" fi elif test -n "$old_library"; then add="$dir/$old_library" fi fi esac elif test "$hardcode_minus_L" = no; then case $host in *-*-sunos*) add_shlibpath="$dir" ;; esac add_dir="-L$dir" add="-l$name" elif test "$hardcode_shlibpath_var" = no; then add_shlibpath="$dir" add="-l$name" else lib_linked=no fi ;; relink) if test "$hardcode_direct" = yes && test "$hardcode_direct_absolute" = no; then add="$dir/$linklib" elif test "$hardcode_minus_L" = yes; then add_dir="-L$absdir" # Try looking first in the location we're being installed to. if test -n "$inst_prefix_dir"; then case $libdir in [\\/]*) func_append add_dir " -L$inst_prefix_dir$libdir" ;; esac fi add="-l$name" elif test "$hardcode_shlibpath_var" = yes; then add_shlibpath="$dir" add="-l$name" else lib_linked=no fi ;; *) lib_linked=no ;; esac if test "$lib_linked" != yes; then func_fatal_configuration "unsupported hardcode properties" fi if test -n "$add_shlibpath"; then case :$compile_shlibpath: in *":$add_shlibpath:"*) ;; *) func_append compile_shlibpath "$add_shlibpath:" ;; esac fi if test "$linkmode" = prog; then test -n "$add_dir" && compile_deplibs="$add_dir $compile_deplibs" test -n "$add" && compile_deplibs="$add $compile_deplibs" else test -n "$add_dir" && deplibs="$add_dir $deplibs" test -n "$add" && deplibs="$add $deplibs" if test "$hardcode_direct" != yes && test "$hardcode_minus_L" != yes && test "$hardcode_shlibpath_var" = yes; then case :$finalize_shlibpath: in *":$libdir:"*) ;; *) func_append finalize_shlibpath "$libdir:" ;; esac fi fi fi if test "$linkmode" = prog || test "$opt_mode" = relink; then add_shlibpath= add_dir= add= # Finalize command for both is simple: just hardcode it. if test "$hardcode_direct" = yes && test "$hardcode_direct_absolute" = no; then add="$libdir/$linklib" elif test "$hardcode_minus_L" = yes; then add_dir="-L$libdir" add="-l$name" elif test "$hardcode_shlibpath_var" = yes; then case :$finalize_shlibpath: in *":$libdir:"*) ;; *) func_append finalize_shlibpath "$libdir:" ;; esac add="-l$name" elif test "$hardcode_automatic" = yes; then if test -n "$inst_prefix_dir" && test -f "$inst_prefix_dir$libdir/$linklib" ; then add="$inst_prefix_dir$libdir/$linklib" else add="$libdir/$linklib" fi else # We cannot seem to hardcode it, guess we'll fake it. add_dir="-L$libdir" # Try looking first in the location we're being installed to. if test -n "$inst_prefix_dir"; then case $libdir in [\\/]*) func_append add_dir " -L$inst_prefix_dir$libdir" ;; esac fi add="-l$name" fi if test "$linkmode" = prog; then test -n "$add_dir" && finalize_deplibs="$add_dir $finalize_deplibs" test -n "$add" && finalize_deplibs="$add $finalize_deplibs" else test -n "$add_dir" && deplibs="$add_dir $deplibs" test -n "$add" && deplibs="$add $deplibs" fi fi elif test "$linkmode" = prog; then # Here we assume that one of hardcode_direct or hardcode_minus_L # is not unsupported. This is valid on all known static and # shared platforms. if test "$hardcode_direct" != unsupported; then test -n "$old_library" && linklib="$old_library" compile_deplibs="$dir/$linklib $compile_deplibs" finalize_deplibs="$dir/$linklib $finalize_deplibs" else compile_deplibs="-l$name -L$dir $compile_deplibs" finalize_deplibs="-l$name -L$dir $finalize_deplibs" fi elif test "$build_libtool_libs" = yes; then # Not a shared library if test "$deplibs_check_method" != pass_all; then # We're trying link a shared library against a static one # but the system doesn't support it. # Just print a warning and add the library to dependency_libs so # that the program can be linked against the static library. echo $ECHO "*** Warning: This system can not link to static lib archive $lib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have." if test "$module" = yes; then echo "*** But as you try to build a module library, libtool will still create " echo "*** a static module, that should work as long as the dlopening application" echo "*** is linked with the -dlopen flag to resolve symbols at runtime." if test -z "$global_symbol_pipe"; then echo echo "*** However, this would only work if libtool was able to extract symbol" echo "*** lists from a program, using \`nm' or equivalent, but libtool could" echo "*** not find such a program. So, this module is probably useless." echo "*** \`nm' from GNU binutils and a full rebuild may help." fi if test "$build_old_libs" = no; then build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi fi else deplibs="$dir/$old_library $deplibs" link_static=yes fi fi # link shared/static library? if test "$linkmode" = lib; then if test -n "$dependency_libs" && { test "$hardcode_into_libs" != yes || test "$build_old_libs" = yes || test "$link_static" = yes; }; then # Extract -R from dependency_libs temp_deplibs= for libdir in $dependency_libs; do case $libdir in -R*) func_stripname '-R' '' "$libdir" temp_xrpath=$func_stripname_result case " $xrpath " in *" $temp_xrpath "*) ;; *) func_append xrpath " $temp_xrpath";; esac;; *) func_append temp_deplibs " $libdir";; esac done dependency_libs="$temp_deplibs" fi func_append newlib_search_path " $absdir" # Link against this library test "$link_static" = no && newdependency_libs="$abs_ladir/$laname $newdependency_libs" # ... and its dependency_libs tmp_libs= for deplib in $dependency_libs; do newdependency_libs="$deplib $newdependency_libs" case $deplib in -L*) func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result";; *) func_resolve_sysroot "$deplib" ;; esac if $opt_preserve_dup_deps ; then case "$tmp_libs " in *" $func_resolve_sysroot_result "*) func_append specialdeplibs " $func_resolve_sysroot_result" ;; esac fi func_append tmp_libs " $func_resolve_sysroot_result" done if test "$link_all_deplibs" != no; then # Add the search paths of all dependency libraries for deplib in $dependency_libs; do path= case $deplib in -L*) path="$deplib" ;; *.la) func_resolve_sysroot "$deplib" deplib=$func_resolve_sysroot_result func_dirname "$deplib" "" "." dir=$func_dirname_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) absdir="$dir" ;; *) absdir=`cd "$dir" && pwd` if test -z "$absdir"; then func_warning "cannot determine absolute directory name of \`$dir'" absdir="$dir" fi ;; esac if $GREP "^installed=no" $deplib > /dev/null; then case $host in *-*-darwin*) depdepl= eval deplibrary_names=`${SED} -n -e 's/^library_names=\(.*\)$/\1/p' $deplib` if test -n "$deplibrary_names" ; then for tmp in $deplibrary_names ; do depdepl=$tmp done if test -f "$absdir/$objdir/$depdepl" ; then depdepl="$absdir/$objdir/$depdepl" darwin_install_name=`${OTOOL} -L $depdepl | awk '{if (NR == 2) {print $1;exit}}'` if test -z "$darwin_install_name"; then darwin_install_name=`${OTOOL64} -L $depdepl | awk '{if (NR == 2) {print $1;exit}}'` fi func_append compiler_flags " ${wl}-dylib_file ${wl}${darwin_install_name}:${depdepl}" func_append linker_flags " -dylib_file ${darwin_install_name}:${depdepl}" path= fi fi ;; *) path="-L$absdir/$objdir" ;; esac else eval libdir=`${SED} -n -e 's/^libdir=\(.*\)$/\1/p' $deplib` test -z "$libdir" && \ func_fatal_error "\`$deplib' is not a valid libtool archive" test "$absdir" != "$libdir" && \ func_warning "\`$deplib' seems to be moved" path="-L$absdir" fi ;; esac case " $deplibs " in *" $path "*) ;; *) deplibs="$path $deplibs" ;; esac done fi # link_all_deplibs != no fi # linkmode = lib done # for deplib in $libs if test "$pass" = link; then if test "$linkmode" = "prog"; then compile_deplibs="$new_inherited_linker_flags $compile_deplibs" finalize_deplibs="$new_inherited_linker_flags $finalize_deplibs" else compiler_flags="$compiler_flags "`$ECHO " $new_inherited_linker_flags" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` fi fi dependency_libs="$newdependency_libs" if test "$pass" = dlpreopen; then # Link the dlpreopened libraries before other libraries for deplib in $save_deplibs; do deplibs="$deplib $deplibs" done fi if test "$pass" != dlopen; then if test "$pass" != conv; then # Make sure lib_search_path contains only unique directories. lib_search_path= for dir in $newlib_search_path; do case "$lib_search_path " in *" $dir "*) ;; *) func_append lib_search_path " $dir" ;; esac done newlib_search_path= fi if test "$linkmode,$pass" != "prog,link"; then vars="deplibs" else vars="compile_deplibs finalize_deplibs" fi for var in $vars dependency_libs; do # Add libraries to $var in reverse order eval tmp_libs=\"\$$var\" new_libs= for deplib in $tmp_libs; do # FIXME: Pedantically, this is the right thing to do, so # that some nasty dependency loop isn't accidentally # broken: #new_libs="$deplib $new_libs" # Pragmatically, this seems to cause very few problems in # practice: case $deplib in -L*) new_libs="$deplib $new_libs" ;; -R*) ;; *) # And here is the reason: when a library appears more # than once as an explicit dependence of a library, or # is implicitly linked in more than once by the # compiler, it is considered special, and multiple # occurrences thereof are not removed. Compare this # with having the same library being listed as a # dependency of multiple other libraries: in this case, # we know (pedantically, we assume) the library does not # need to be listed more than once, so we keep only the # last copy. This is not always right, but it is rare # enough that we require users that really mean to play # such unportable linking tricks to link the library # using -Wl,-lname, so that libtool does not consider it # for duplicate removal. case " $specialdeplibs " in *" $deplib "*) new_libs="$deplib $new_libs" ;; *) case " $new_libs " in *" $deplib "*) ;; *) new_libs="$deplib $new_libs" ;; esac ;; esac ;; esac done tmp_libs= for deplib in $new_libs; do case $deplib in -L*) case " $tmp_libs " in *" $deplib "*) ;; *) func_append tmp_libs " $deplib" ;; esac ;; *) func_append tmp_libs " $deplib" ;; esac done eval $var=\"$tmp_libs\" done # for var fi # Last step: remove runtime libs from dependency_libs # (they stay in deplibs) tmp_libs= for i in $dependency_libs ; do case " $predeps $postdeps $compiler_lib_search_path " in *" $i "*) i="" ;; esac if test -n "$i" ; then func_append tmp_libs " $i" fi done dependency_libs=$tmp_libs done # for pass if test "$linkmode" = prog; then dlfiles="$newdlfiles" fi if test "$linkmode" = prog || test "$linkmode" = lib; then dlprefiles="$newdlprefiles" fi case $linkmode in oldlib) if test -n "$dlfiles$dlprefiles" || test "$dlself" != no; then func_warning "\`-dlopen' is ignored for archives" fi case " $deplibs" in *\ -l* | *\ -L*) func_warning "\`-l' and \`-L' are ignored for archives" ;; esac test -n "$rpath" && \ func_warning "\`-rpath' is ignored for archives" test -n "$xrpath" && \ func_warning "\`-R' is ignored for archives" test -n "$vinfo" && \ func_warning "\`-version-info/-version-number' is ignored for archives" test -n "$release" && \ func_warning "\`-release' is ignored for archives" test -n "$export_symbols$export_symbols_regex" && \ func_warning "\`-export-symbols' is ignored for archives" # Now set the variables for building old libraries. build_libtool_libs=no oldlibs="$output" func_append objs "$old_deplibs" ;; lib) # Make sure we only generate libraries of the form `libNAME.la'. case $outputname in lib*) func_stripname 'lib' '.la' "$outputname" name=$func_stripname_result eval shared_ext=\"$shrext_cmds\" eval libname=\"$libname_spec\" ;; *) test "$module" = no && \ func_fatal_help "libtool library \`$output' must begin with \`lib'" if test "$need_lib_prefix" != no; then # Add the "lib" prefix for modules if required func_stripname '' '.la' "$outputname" name=$func_stripname_result eval shared_ext=\"$shrext_cmds\" eval libname=\"$libname_spec\" else func_stripname '' '.la' "$outputname" libname=$func_stripname_result fi ;; esac if test -n "$objs"; then if test "$deplibs_check_method" != pass_all; then func_fatal_error "cannot build libtool library \`$output' from non-libtool objects on this host:$objs" else echo $ECHO "*** Warning: Linking the shared library $output against the non-libtool" $ECHO "*** objects $objs is not portable!" func_append libobjs " $objs" fi fi test "$dlself" != no && \ func_warning "\`-dlopen self' is ignored for libtool libraries" set dummy $rpath shift test "$#" -gt 1 && \ func_warning "ignoring multiple \`-rpath's for a libtool library" install_libdir="$1" oldlibs= if test -z "$rpath"; then if test "$build_libtool_libs" = yes; then # Building a libtool convenience library. # Some compilers have problems with a `.al' extension so # convenience libraries should have the same extension an # archive normally would. oldlibs="$output_objdir/$libname.$libext $oldlibs" build_libtool_libs=convenience build_old_libs=yes fi test -n "$vinfo" && \ func_warning "\`-version-info/-version-number' is ignored for convenience libraries" test -n "$release" && \ func_warning "\`-release' is ignored for convenience libraries" else # Parse the version information argument. save_ifs="$IFS"; IFS=':' set dummy $vinfo 0 0 0 shift IFS="$save_ifs" test -n "$7" && \ func_fatal_help "too many parameters to \`-version-info'" # convert absolute version numbers to libtool ages # this retains compatibility with .la files and attempts # to make the code below a bit more comprehensible case $vinfo_number in yes) number_major="$1" number_minor="$2" number_revision="$3" # # There are really only two kinds -- those that # use the current revision as the major version # and those that subtract age and use age as # a minor version. But, then there is irix # which has an extra 1 added just for fun # case $version_type in # correct linux to gnu/linux during the next big refactor darwin|linux|osf|windows|none) func_arith $number_major + $number_minor current=$func_arith_result age="$number_minor" revision="$number_revision" ;; freebsd-aout|freebsd-elf|qnx|sunos) current="$number_major" revision="$number_minor" age="0" ;; irix|nonstopux) func_arith $number_major + $number_minor current=$func_arith_result age="$number_minor" revision="$number_minor" lt_irix_increment=no ;; esac ;; no) current="$1" revision="$2" age="$3" ;; esac # Check that each of the things are valid numbers. case $current in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "CURRENT \`$current' must be a nonnegative integer" func_fatal_error "\`$vinfo' is not valid version information" ;; esac case $revision in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "REVISION \`$revision' must be a nonnegative integer" func_fatal_error "\`$vinfo' is not valid version information" ;; esac case $age in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "AGE \`$age' must be a nonnegative integer" func_fatal_error "\`$vinfo' is not valid version information" ;; esac if test "$age" -gt "$current"; then func_error "AGE \`$age' is greater than the current interface number \`$current'" func_fatal_error "\`$vinfo' is not valid version information" fi # Calculate the version variables. major= versuffix= verstring= case $version_type in none) ;; darwin) # Like Linux, but with the current version available in # verstring for coding it into the library header func_arith $current - $age major=.$func_arith_result versuffix="$major.$age.$revision" # Darwin ld doesn't like 0 for these options... func_arith $current + 1 minor_current=$func_arith_result xlcverstring="${wl}-compatibility_version ${wl}$minor_current ${wl}-current_version ${wl}$minor_current.$revision" verstring="-compatibility_version $minor_current -current_version $minor_current.$revision" ;; freebsd-aout) major=".$current" versuffix=".$current.$revision"; ;; freebsd-elf) major=".$current" versuffix=".$current" ;; irix | nonstopux) if test "X$lt_irix_increment" = "Xno"; then func_arith $current - $age else func_arith $current - $age + 1 fi major=$func_arith_result case $version_type in nonstopux) verstring_prefix=nonstopux ;; *) verstring_prefix=sgi ;; esac verstring="$verstring_prefix$major.$revision" # Add in all the interfaces that we are compatible with. loop=$revision while test "$loop" -ne 0; do func_arith $revision - $loop iface=$func_arith_result func_arith $loop - 1 loop=$func_arith_result verstring="$verstring_prefix$major.$iface:$verstring" done # Before this point, $major must not contain `.'. major=.$major versuffix="$major.$revision" ;; linux) # correct to gnu/linux during the next big refactor func_arith $current - $age major=.$func_arith_result versuffix="$major.$age.$revision" ;; osf) func_arith $current - $age major=.$func_arith_result versuffix=".$current.$age.$revision" verstring="$current.$age.$revision" # Add in all the interfaces that we are compatible with. loop=$age while test "$loop" -ne 0; do func_arith $current - $loop iface=$func_arith_result func_arith $loop - 1 loop=$func_arith_result verstring="$verstring:${iface}.0" done # Make executables depend on our current version. func_append verstring ":${current}.0" ;; qnx) major=".$current" versuffix=".$current" ;; sunos) major=".$current" versuffix=".$current.$revision" ;; windows) # Use '-' rather than '.', since we only want one # extension on DOS 8.3 filesystems. func_arith $current - $age major=$func_arith_result versuffix="-$major" ;; *) func_fatal_configuration "unknown library version type \`$version_type'" ;; esac # Clear the version info if we defaulted, and they specified a release. if test -z "$vinfo" && test -n "$release"; then major= case $version_type in darwin) # we can't check for "0.0" in archive_cmds due to quoting # problems, so we reset it completely verstring= ;; *) verstring="0.0" ;; esac if test "$need_version" = no; then versuffix= else versuffix=".0.0" fi fi # Remove version info from name if versioning should be avoided if test "$avoid_version" = yes && test "$need_version" = no; then major= versuffix= verstring="" fi # Check to see if the archive will have undefined symbols. if test "$allow_undefined" = yes; then if test "$allow_undefined_flag" = unsupported; then func_warning "undefined symbols not allowed in $host shared libraries" build_libtool_libs=no build_old_libs=yes fi else # Don't allow undefined symbols. allow_undefined_flag="$no_undefined_flag" fi fi func_generate_dlsyms "$libname" "$libname" "yes" func_append libobjs " $symfileobj" test "X$libobjs" = "X " && libobjs= if test "$opt_mode" != relink; then # Remove our outputs, but don't remove object files since they # may have been created when compiling PIC objects. removelist= tempremovelist=`$ECHO "$output_objdir/*"` for p in $tempremovelist; do case $p in *.$objext | *.gcno) ;; $output_objdir/$outputname | $output_objdir/$libname.* | $output_objdir/${libname}${release}.*) if test "X$precious_files_regex" != "X"; then if $ECHO "$p" | $EGREP -e "$precious_files_regex" >/dev/null 2>&1 then continue fi fi func_append removelist " $p" ;; *) ;; esac done test -n "$removelist" && \ func_show_eval "${RM}r \$removelist" fi # Now set the variables for building old libraries. if test "$build_old_libs" = yes && test "$build_libtool_libs" != convenience ; then func_append oldlibs " $output_objdir/$libname.$libext" # Transform .lo files to .o files. oldobjs="$objs "`$ECHO "$libobjs" | $SP2NL | $SED "/\.${libext}$/d; $lo2o" | $NL2SP` fi # Eliminate all temporary directories. #for path in $notinst_path; do # lib_search_path=`$ECHO "$lib_search_path " | $SED "s% $path % %g"` # deplibs=`$ECHO "$deplibs " | $SED "s% -L$path % %g"` # dependency_libs=`$ECHO "$dependency_libs " | $SED "s% -L$path % %g"` #done if test -n "$xrpath"; then # If the user specified any rpath flags, then add them. temp_xrpath= for libdir in $xrpath; do func_replace_sysroot "$libdir" func_append temp_xrpath " -R$func_replace_sysroot_result" case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac done if test "$hardcode_into_libs" != yes || test "$build_old_libs" = yes; then dependency_libs="$temp_xrpath $dependency_libs" fi fi # Make sure dlfiles contains only unique files that won't be dlpreopened old_dlfiles="$dlfiles" dlfiles= for lib in $old_dlfiles; do case " $dlprefiles $dlfiles " in *" $lib "*) ;; *) func_append dlfiles " $lib" ;; esac done # Make sure dlprefiles contains only unique files old_dlprefiles="$dlprefiles" dlprefiles= for lib in $old_dlprefiles; do case "$dlprefiles " in *" $lib "*) ;; *) func_append dlprefiles " $lib" ;; esac done if test "$build_libtool_libs" = yes; then if test -n "$rpath"; then case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-*-beos* | *-cegcc* | *-*-haiku*) # these systems don't actually have a c library (as such)! ;; *-*-rhapsody* | *-*-darwin1.[012]) # Rhapsody C library is in the System framework func_append deplibs " System.ltframework" ;; *-*-netbsd*) # Don't link with libc until the a.out ld.so is fixed. ;; *-*-openbsd* | *-*-freebsd* | *-*-dragonfly*) # Do not include libc due to us having libc/libc_r. ;; *-*-sco3.2v5* | *-*-sco5v6*) # Causes problems with __ctype ;; *-*-sysv4.2uw2* | *-*-sysv5* | *-*-unixware* | *-*-OpenUNIX*) # Compiler inserts libc in the correct place for threads to work ;; *) # Add libc to deplibs on all other systems if necessary. if test "$build_libtool_need_lc" = "yes"; then func_append deplibs " -lc" fi ;; esac fi # Transform deplibs into only deplibs that can be linked in shared. name_save=$name libname_save=$libname release_save=$release versuffix_save=$versuffix major_save=$major # I'm not sure if I'm treating the release correctly. I think # release should show up in the -l (ie -lgmp5) so we don't want to # add it in twice. Is that correct? release="" versuffix="" major="" newdeplibs= droppeddeps=no case $deplibs_check_method in pass_all) # Don't check for shared/static. Everything works. # This might be a little naive. We might want to check # whether the library exists or not. But this is on # osf3 & osf4 and I'm not really sure... Just # implementing what was already the behavior. newdeplibs=$deplibs ;; test_compile) # This code stresses the "libraries are programs" paradigm to its # limits. Maybe even breaks it. We compile a program, linking it # against the deplibs as a proxy for the library. Then we can check # whether they linked in statically or dynamically with ldd. $opt_dry_run || $RM conftest.c cat > conftest.c </dev/null` $nocaseglob else potential_libs=`ls $i/$libnameglob[.-]* 2>/dev/null` fi for potent_lib in $potential_libs; do # Follow soft links. if ls -lLd "$potent_lib" 2>/dev/null | $GREP " -> " >/dev/null; then continue fi # The statement above tries to avoid entering an # endless loop below, in case of cyclic links. # We might still enter an endless loop, since a link # loop can be closed while we follow links, # but so what? potlib="$potent_lib" while test -h "$potlib" 2>/dev/null; do potliblink=`ls -ld $potlib | ${SED} 's/.* -> //'` case $potliblink in [\\/]* | [A-Za-z]:[\\/]*) potlib="$potliblink";; *) potlib=`$ECHO "$potlib" | $SED 's,[^/]*$,,'`"$potliblink";; esac done if eval $file_magic_cmd \"\$potlib\" 2>/dev/null | $SED -e 10q | $EGREP "$file_magic_regex" > /dev/null; then func_append newdeplibs " $a_deplib" a_deplib="" break 2 fi done done fi if test -n "$a_deplib" ; then droppeddeps=yes echo $ECHO "*** Warning: linker path does not have real file for library $a_deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because I did check the linker path looking for a file starting" if test -z "$potlib" ; then $ECHO "*** with $libname but no candidates were found. (...for file magic test)" else $ECHO "*** with $libname and none of the candidates passed a file format test" $ECHO "*** using a file magic. Last file checked: $potlib" fi fi ;; *) # Add a -L argument. func_append newdeplibs " $a_deplib" ;; esac done # Gone through all deplibs. ;; match_pattern*) set dummy $deplibs_check_method; shift match_pattern_regex=`expr "$deplibs_check_method" : "$1 \(.*\)"` for a_deplib in $deplibs; do case $a_deplib in -l*) func_stripname -l '' "$a_deplib" name=$func_stripname_result if test "X$allow_libtool_libs_with_static_runtimes" = "Xyes" ; then case " $predeps $postdeps " in *" $a_deplib "*) func_append newdeplibs " $a_deplib" a_deplib="" ;; esac fi if test -n "$a_deplib" ; then libname=`eval "\\$ECHO \"$libname_spec\""` for i in $lib_search_path $sys_lib_search_path $shlib_search_path; do potential_libs=`ls $i/$libname[.-]* 2>/dev/null` for potent_lib in $potential_libs; do potlib="$potent_lib" # see symlink-check above in file_magic test if eval "\$ECHO \"$potent_lib\"" 2>/dev/null | $SED 10q | \ $EGREP "$match_pattern_regex" > /dev/null; then func_append newdeplibs " $a_deplib" a_deplib="" break 2 fi done done fi if test -n "$a_deplib" ; then droppeddeps=yes echo $ECHO "*** Warning: linker path does not have real file for library $a_deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because I did check the linker path looking for a file starting" if test -z "$potlib" ; then $ECHO "*** with $libname but no candidates were found. (...for regex pattern test)" else $ECHO "*** with $libname and none of the candidates passed a file format test" $ECHO "*** using a regex pattern. Last file checked: $potlib" fi fi ;; *) # Add a -L argument. func_append newdeplibs " $a_deplib" ;; esac done # Gone through all deplibs. ;; none | unknown | *) newdeplibs="" tmp_deplibs=`$ECHO " $deplibs" | $SED 's/ -lc$//; s/ -[LR][^ ]*//g'` if test "X$allow_libtool_libs_with_static_runtimes" = "Xyes" ; then for i in $predeps $postdeps ; do # can't use Xsed below, because $i might contain '/' tmp_deplibs=`$ECHO " $tmp_deplibs" | $SED "s,$i,,"` done fi case $tmp_deplibs in *[!\ \ ]*) echo if test "X$deplibs_check_method" = "Xnone"; then echo "*** Warning: inter-library dependencies are not supported in this platform." else echo "*** Warning: inter-library dependencies are not known to be supported." fi echo "*** All declared inter-library dependencies are being dropped." droppeddeps=yes ;; esac ;; esac versuffix=$versuffix_save major=$major_save release=$release_save libname=$libname_save name=$name_save case $host in *-*-rhapsody* | *-*-darwin1.[012]) # On Rhapsody replace the C library with the System framework newdeplibs=`$ECHO " $newdeplibs" | $SED 's/ -lc / System.ltframework /'` ;; esac if test "$droppeddeps" = yes; then if test "$module" = yes; then echo echo "*** Warning: libtool could not satisfy all declared inter-library" $ECHO "*** dependencies of module $libname. Therefore, libtool will create" echo "*** a static module, that should work as long as the dlopening" echo "*** application is linked with the -dlopen flag." if test -z "$global_symbol_pipe"; then echo echo "*** However, this would only work if libtool was able to extract symbol" echo "*** lists from a program, using \`nm' or equivalent, but libtool could" echo "*** not find such a program. So, this module is probably useless." echo "*** \`nm' from GNU binutils and a full rebuild may help." fi if test "$build_old_libs" = no; then oldlibs="$output_objdir/$libname.$libext" build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi else echo "*** The inter-library dependencies that have been dropped here will be" echo "*** automatically added whenever a program is linked with this library" echo "*** or is declared to -dlopen it." if test "$allow_undefined" = no; then echo echo "*** Since this library must not contain undefined symbols," echo "*** because either the platform does not support them or" echo "*** it was explicitly requested with -no-undefined," echo "*** libtool will only create a static version of it." if test "$build_old_libs" = no; then oldlibs="$output_objdir/$libname.$libext" build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi fi fi fi # Done checking deplibs! deplibs=$newdeplibs fi # Time to change all our "foo.ltframework" stuff back to "-framework foo" case $host in *-*-darwin*) newdeplibs=`$ECHO " $newdeplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` new_inherited_linker_flags=`$ECHO " $new_inherited_linker_flags" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` deplibs=`$ECHO " $deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` ;; esac # move library search paths that coincide with paths to not yet # installed libraries to the beginning of the library search list new_libs= for path in $notinst_path; do case " $new_libs " in *" -L$path/$objdir "*) ;; *) case " $deplibs " in *" -L$path/$objdir "*) func_append new_libs " -L$path/$objdir" ;; esac ;; esac done for deplib in $deplibs; do case $deplib in -L*) case " $new_libs " in *" $deplib "*) ;; *) func_append new_libs " $deplib" ;; esac ;; *) func_append new_libs " $deplib" ;; esac done deplibs="$new_libs" # All the library-specific variables (install_libdir is set above). library_names= old_library= dlname= # Test again, we may have decided not to build it any more if test "$build_libtool_libs" = yes; then # Remove ${wl} instances when linking with ld. # FIXME: should test the right _cmds variable. case $archive_cmds in *\$LD\ *) wl= ;; esac if test "$hardcode_into_libs" = yes; then # Hardcode the library paths hardcode_libdirs= dep_rpath= rpath="$finalize_rpath" test "$opt_mode" != relink && rpath="$compile_rpath$rpath" for libdir in $rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then func_replace_sysroot "$libdir" libdir=$func_replace_sysroot_result if test -z "$hardcode_libdirs"; then hardcode_libdirs="$libdir" else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append dep_rpath " $flag" fi elif test -n "$runpath_var"; then case "$perm_rpath " in *" $libdir "*) ;; *) func_append perm_rpath " $libdir" ;; esac fi done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir="$hardcode_libdirs" eval "dep_rpath=\"$hardcode_libdir_flag_spec\"" fi if test -n "$runpath_var" && test -n "$perm_rpath"; then # We should set the runpath_var. rpath= for dir in $perm_rpath; do func_append rpath "$dir:" done eval "$runpath_var='$rpath\$$runpath_var'; export $runpath_var" fi test -n "$dep_rpath" && deplibs="$dep_rpath $deplibs" fi shlibpath="$finalize_shlibpath" test "$opt_mode" != relink && shlibpath="$compile_shlibpath$shlibpath" if test -n "$shlibpath"; then eval "$shlibpath_var='$shlibpath\$$shlibpath_var'; export $shlibpath_var" fi # Get the real and link names of the library. eval shared_ext=\"$shrext_cmds\" eval library_names=\"$library_names_spec\" set dummy $library_names shift realname="$1" shift if test -n "$soname_spec"; then eval soname=\"$soname_spec\" else soname="$realname" fi if test -z "$dlname"; then dlname=$soname fi lib="$output_objdir/$realname" linknames= for link do func_append linknames " $link" done # Use standard objects if they are pic test -z "$pic_flag" && libobjs=`$ECHO "$libobjs" | $SP2NL | $SED "$lo2o" | $NL2SP` test "X$libobjs" = "X " && libobjs= delfiles= if test -n "$export_symbols" && test -n "$include_expsyms"; then $opt_dry_run || cp "$export_symbols" "$output_objdir/$libname.uexp" export_symbols="$output_objdir/$libname.uexp" func_append delfiles " $export_symbols" fi orig_export_symbols= case $host_os in cygwin* | mingw* | cegcc*) if test -n "$export_symbols" && test -z "$export_symbols_regex"; then # exporting using user supplied symfile if test "x`$SED 1q $export_symbols`" != xEXPORTS; then # and it's NOT already a .def file. Must figure out # which of the given symbols are data symbols and tag # them as such. So, trigger use of export_symbols_cmds. # export_symbols gets reassigned inside the "prepare # the list of exported symbols" if statement, so the # include_expsyms logic still works. orig_export_symbols="$export_symbols" export_symbols= always_export_symbols=yes fi fi ;; esac # Prepare the list of exported symbols if test -z "$export_symbols"; then if test "$always_export_symbols" = yes || test -n "$export_symbols_regex"; then func_verbose "generating symbol list for \`$libname.la'" export_symbols="$output_objdir/$libname.exp" $opt_dry_run || $RM $export_symbols cmds=$export_symbols_cmds save_ifs="$IFS"; IFS='~' for cmd1 in $cmds; do IFS="$save_ifs" # Take the normal branch if the nm_file_list_spec branch # doesn't work or if tool conversion is not needed. case $nm_file_list_spec~$to_tool_file_cmd in *~func_convert_file_noop | *~func_convert_file_msys_to_w32 | ~*) try_normal_branch=yes eval cmd=\"$cmd1\" func_len " $cmd" len=$func_len_result ;; *) try_normal_branch=no ;; esac if test "$try_normal_branch" = yes \ && { test "$len" -lt "$max_cmd_len" \ || test "$max_cmd_len" -le -1; } then func_show_eval "$cmd" 'exit $?' skipped_export=false elif test -n "$nm_file_list_spec"; then func_basename "$output" output_la=$func_basename_result save_libobjs=$libobjs save_output=$output output=${output_objdir}/${output_la}.nm func_to_tool_file "$output" libobjs=$nm_file_list_spec$func_to_tool_file_result func_append delfiles " $output" func_verbose "creating $NM input file list: $output" for obj in $save_libobjs; do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" done > "$output" eval cmd=\"$cmd1\" func_show_eval "$cmd" 'exit $?' output=$save_output libobjs=$save_libobjs skipped_export=false else # The command line is too long to execute in one step. func_verbose "using reloadable object file for export list..." skipped_export=: # Break out early, otherwise skipped_export may be # set to false by a later but shorter cmd. break fi done IFS="$save_ifs" if test -n "$export_symbols_regex" && test "X$skipped_export" != "X:"; then func_show_eval '$EGREP -e "$export_symbols_regex" "$export_symbols" > "${export_symbols}T"' func_show_eval '$MV "${export_symbols}T" "$export_symbols"' fi fi fi if test -n "$export_symbols" && test -n "$include_expsyms"; then tmp_export_symbols="$export_symbols" test -n "$orig_export_symbols" && tmp_export_symbols="$orig_export_symbols" $opt_dry_run || eval '$ECHO "$include_expsyms" | $SP2NL >> "$tmp_export_symbols"' fi if test "X$skipped_export" != "X:" && test -n "$orig_export_symbols"; then # The given exports_symbols file has to be filtered, so filter it. func_verbose "filter symbol list for \`$libname.la' to tag DATA exports" # FIXME: $output_objdir/$libname.filter potentially contains lots of # 's' commands which not all seds can handle. GNU sed should be fine # though. Also, the filter scales superlinearly with the number of # global variables. join(1) would be nice here, but unfortunately # isn't a blessed tool. $opt_dry_run || $SED -e '/[ ,]DATA/!d;s,\(.*\)\([ \,].*\),s|^\1$|\1\2|,' < $export_symbols > $output_objdir/$libname.filter func_append delfiles " $export_symbols $output_objdir/$libname.filter" export_symbols=$output_objdir/$libname.def $opt_dry_run || $SED -f $output_objdir/$libname.filter < $orig_export_symbols > $export_symbols fi tmp_deplibs= for test_deplib in $deplibs; do case " $convenience " in *" $test_deplib "*) ;; *) func_append tmp_deplibs " $test_deplib" ;; esac done deplibs="$tmp_deplibs" if test -n "$convenience"; then if test -n "$whole_archive_flag_spec" && test "$compiler_needs_object" = yes && test -z "$libobjs"; then # extract the archives, so we have objects to list. # TODO: could optimize this to just extract one archive. whole_archive_flag_spec= fi if test -n "$whole_archive_flag_spec"; then save_libobjs=$libobjs eval libobjs=\"\$libobjs $whole_archive_flag_spec\" test "X$libobjs" = "X " && libobjs= else gentop="$output_objdir/${outputname}x" func_append generated " $gentop" func_extract_archives $gentop $convenience func_append libobjs " $func_extract_archives_result" test "X$libobjs" = "X " && libobjs= fi fi if test "$thread_safe" = yes && test -n "$thread_safe_flag_spec"; then eval flag=\"$thread_safe_flag_spec\" func_append linker_flags " $flag" fi # Make a backup of the uninstalled library when relinking if test "$opt_mode" = relink; then $opt_dry_run || eval '(cd $output_objdir && $RM ${realname}U && $MV $realname ${realname}U)' || exit $? fi # Do each of the archive commands. if test "$module" = yes && test -n "$module_cmds" ; then if test -n "$export_symbols" && test -n "$module_expsym_cmds"; then eval test_cmds=\"$module_expsym_cmds\" cmds=$module_expsym_cmds else eval test_cmds=\"$module_cmds\" cmds=$module_cmds fi else if test -n "$export_symbols" && test -n "$archive_expsym_cmds"; then eval test_cmds=\"$archive_expsym_cmds\" cmds=$archive_expsym_cmds else eval test_cmds=\"$archive_cmds\" cmds=$archive_cmds fi fi if test "X$skipped_export" != "X:" && func_len " $test_cmds" && len=$func_len_result && test "$len" -lt "$max_cmd_len" || test "$max_cmd_len" -le -1; then : else # The command line is too long to link in one step, link piecewise # or, if using GNU ld and skipped_export is not :, use a linker # script. # Save the value of $output and $libobjs because we want to # use them later. If we have whole_archive_flag_spec, we # want to use save_libobjs as it was before # whole_archive_flag_spec was expanded, because we can't # assume the linker understands whole_archive_flag_spec. # This may have to be revisited, in case too many # convenience libraries get linked in and end up exceeding # the spec. if test -z "$convenience" || test -z "$whole_archive_flag_spec"; then save_libobjs=$libobjs fi save_output=$output func_basename "$output" output_la=$func_basename_result # Clear the reloadable object creation command queue and # initialize k to one. test_cmds= concat_cmds= objlist= last_robj= k=1 if test -n "$save_libobjs" && test "X$skipped_export" != "X:" && test "$with_gnu_ld" = yes; then output=${output_objdir}/${output_la}.lnkscript func_verbose "creating GNU ld script: $output" echo 'INPUT (' > $output for obj in $save_libobjs do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" >> $output done echo ')' >> $output func_append delfiles " $output" func_to_tool_file "$output" output=$func_to_tool_file_result elif test -n "$save_libobjs" && test "X$skipped_export" != "X:" && test "X$file_list_spec" != X; then output=${output_objdir}/${output_la}.lnk func_verbose "creating linker input file list: $output" : > $output set x $save_libobjs shift firstobj= if test "$compiler_needs_object" = yes; then firstobj="$1 " shift fi for obj do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" >> $output done func_append delfiles " $output" func_to_tool_file "$output" output=$firstobj\"$file_list_spec$func_to_tool_file_result\" else if test -n "$save_libobjs"; then func_verbose "creating reloadable object files..." output=$output_objdir/$output_la-${k}.$objext eval test_cmds=\"$reload_cmds\" func_len " $test_cmds" len0=$func_len_result len=$len0 # Loop over the list of objects to be linked. for obj in $save_libobjs do func_len " $obj" func_arith $len + $func_len_result len=$func_arith_result if test "X$objlist" = X || test "$len" -lt "$max_cmd_len"; then func_append objlist " $obj" else # The command $test_cmds is almost too long, add a # command to the queue. if test "$k" -eq 1 ; then # The first file doesn't have a previous command to add. reload_objs=$objlist eval concat_cmds=\"$reload_cmds\" else # All subsequent reloadable object files will link in # the last one created. reload_objs="$objlist $last_robj" eval concat_cmds=\"\$concat_cmds~$reload_cmds~\$RM $last_robj\" fi last_robj=$output_objdir/$output_la-${k}.$objext func_arith $k + 1 k=$func_arith_result output=$output_objdir/$output_la-${k}.$objext objlist=" $obj" func_len " $last_robj" func_arith $len0 + $func_len_result len=$func_arith_result fi done # Handle the remaining objects by creating one last # reloadable object file. All subsequent reloadable object # files will link in the last one created. test -z "$concat_cmds" || concat_cmds=$concat_cmds~ reload_objs="$objlist $last_robj" eval concat_cmds=\"\${concat_cmds}$reload_cmds\" if test -n "$last_robj"; then eval concat_cmds=\"\${concat_cmds}~\$RM $last_robj\" fi func_append delfiles " $output" else output= fi if ${skipped_export-false}; then func_verbose "generating symbol list for \`$libname.la'" export_symbols="$output_objdir/$libname.exp" $opt_dry_run || $RM $export_symbols libobjs=$output # Append the command to create the export file. test -z "$concat_cmds" || concat_cmds=$concat_cmds~ eval concat_cmds=\"\$concat_cmds$export_symbols_cmds\" if test -n "$last_robj"; then eval concat_cmds=\"\$concat_cmds~\$RM $last_robj\" fi fi test -n "$save_libobjs" && func_verbose "creating a temporary reloadable object file: $output" # Loop through the commands generated above and execute them. save_ifs="$IFS"; IFS='~' for cmd in $concat_cmds; do IFS="$save_ifs" $opt_silent || { func_quote_for_expand "$cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || eval "$cmd" || { lt_exit=$? # Restore the uninstalled library and exit if test "$opt_mode" = relink; then ( cd "$output_objdir" && \ $RM "${realname}T" && \ $MV "${realname}U" "$realname" ) fi exit $lt_exit } done IFS="$save_ifs" if test -n "$export_symbols_regex" && ${skipped_export-false}; then func_show_eval '$EGREP -e "$export_symbols_regex" "$export_symbols" > "${export_symbols}T"' func_show_eval '$MV "${export_symbols}T" "$export_symbols"' fi fi if ${skipped_export-false}; then if test -n "$export_symbols" && test -n "$include_expsyms"; then tmp_export_symbols="$export_symbols" test -n "$orig_export_symbols" && tmp_export_symbols="$orig_export_symbols" $opt_dry_run || eval '$ECHO "$include_expsyms" | $SP2NL >> "$tmp_export_symbols"' fi if test -n "$orig_export_symbols"; then # The given exports_symbols file has to be filtered, so filter it. func_verbose "filter symbol list for \`$libname.la' to tag DATA exports" # FIXME: $output_objdir/$libname.filter potentially contains lots of # 's' commands which not all seds can handle. GNU sed should be fine # though. Also, the filter scales superlinearly with the number of # global variables. join(1) would be nice here, but unfortunately # isn't a blessed tool. $opt_dry_run || $SED -e '/[ ,]DATA/!d;s,\(.*\)\([ \,].*\),s|^\1$|\1\2|,' < $export_symbols > $output_objdir/$libname.filter func_append delfiles " $export_symbols $output_objdir/$libname.filter" export_symbols=$output_objdir/$libname.def $opt_dry_run || $SED -f $output_objdir/$libname.filter < $orig_export_symbols > $export_symbols fi fi libobjs=$output # Restore the value of output. output=$save_output if test -n "$convenience" && test -n "$whole_archive_flag_spec"; then eval libobjs=\"\$libobjs $whole_archive_flag_spec\" test "X$libobjs" = "X " && libobjs= fi # Expand the library linking commands again to reset the # value of $libobjs for piecewise linking. # Do each of the archive commands. if test "$module" = yes && test -n "$module_cmds" ; then if test -n "$export_symbols" && test -n "$module_expsym_cmds"; then cmds=$module_expsym_cmds else cmds=$module_cmds fi else if test -n "$export_symbols" && test -n "$archive_expsym_cmds"; then cmds=$archive_expsym_cmds else cmds=$archive_cmds fi fi fi if test -n "$delfiles"; then # Append the command to remove temporary files to $cmds. eval cmds=\"\$cmds~\$RM $delfiles\" fi # Add any objects from preloaded convenience libraries if test -n "$dlprefiles"; then gentop="$output_objdir/${outputname}x" func_append generated " $gentop" func_extract_archives $gentop $dlprefiles func_append libobjs " $func_extract_archives_result" test "X$libobjs" = "X " && libobjs= fi save_ifs="$IFS"; IFS='~' for cmd in $cmds; do IFS="$save_ifs" eval cmd=\"$cmd\" $opt_silent || { func_quote_for_expand "$cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || eval "$cmd" || { lt_exit=$? # Restore the uninstalled library and exit if test "$opt_mode" = relink; then ( cd "$output_objdir" && \ $RM "${realname}T" && \ $MV "${realname}U" "$realname" ) fi exit $lt_exit } done IFS="$save_ifs" # Restore the uninstalled library and exit if test "$opt_mode" = relink; then $opt_dry_run || eval '(cd $output_objdir && $RM ${realname}T && $MV $realname ${realname}T && $MV ${realname}U $realname)' || exit $? if test -n "$convenience"; then if test -z "$whole_archive_flag_spec"; then func_show_eval '${RM}r "$gentop"' fi fi exit $EXIT_SUCCESS fi # Create links to the real library. for linkname in $linknames; do if test "$realname" != "$linkname"; then func_show_eval '(cd "$output_objdir" && $RM "$linkname" && $LN_S "$realname" "$linkname")' 'exit $?' fi done # If -module or -export-dynamic was specified, set the dlname. if test "$module" = yes || test "$export_dynamic" = yes; then # On all known operating systems, these are identical. dlname="$soname" fi fi ;; obj) if test -n "$dlfiles$dlprefiles" || test "$dlself" != no; then func_warning "\`-dlopen' is ignored for objects" fi case " $deplibs" in *\ -l* | *\ -L*) func_warning "\`-l' and \`-L' are ignored for objects" ;; esac test -n "$rpath" && \ func_warning "\`-rpath' is ignored for objects" test -n "$xrpath" && \ func_warning "\`-R' is ignored for objects" test -n "$vinfo" && \ func_warning "\`-version-info' is ignored for objects" test -n "$release" && \ func_warning "\`-release' is ignored for objects" case $output in *.lo) test -n "$objs$old_deplibs" && \ func_fatal_error "cannot build library object \`$output' from non-libtool objects" libobj=$output func_lo2o "$libobj" obj=$func_lo2o_result ;; *) libobj= obj="$output" ;; esac # Delete the old objects. $opt_dry_run || $RM $obj $libobj # Objects from convenience libraries. This assumes # single-version convenience libraries. Whenever we create # different ones for PIC/non-PIC, this we'll have to duplicate # the extraction. reload_conv_objs= gentop= # reload_cmds runs $LD directly, so let us get rid of # -Wl from whole_archive_flag_spec and hope we can get by with # turning comma into space.. wl= if test -n "$convenience"; then if test -n "$whole_archive_flag_spec"; then eval tmp_whole_archive_flags=\"$whole_archive_flag_spec\" reload_conv_objs=$reload_objs\ `$ECHO "$tmp_whole_archive_flags" | $SED 's|,| |g'` else gentop="$output_objdir/${obj}x" func_append generated " $gentop" func_extract_archives $gentop $convenience reload_conv_objs="$reload_objs $func_extract_archives_result" fi fi # If we're not building shared, we need to use non_pic_objs test "$build_libtool_libs" != yes && libobjs="$non_pic_objects" # Create the old-style object. reload_objs="$objs$old_deplibs "`$ECHO "$libobjs" | $SP2NL | $SED "/\.${libext}$/d; /\.lib$/d; $lo2o" | $NL2SP`" $reload_conv_objs" ### testsuite: skip nested quoting test output="$obj" func_execute_cmds "$reload_cmds" 'exit $?' # Exit if we aren't doing a library object file. if test -z "$libobj"; then if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi exit $EXIT_SUCCESS fi if test "$build_libtool_libs" != yes; then if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi # Create an invalid libtool object if no PIC, so that we don't # accidentally link it into a program. # $show "echo timestamp > $libobj" # $opt_dry_run || eval "echo timestamp > $libobj" || exit $? exit $EXIT_SUCCESS fi if test -n "$pic_flag" || test "$pic_mode" != default; then # Only do commands if we really have different PIC objects. reload_objs="$libobjs $reload_conv_objs" output="$libobj" func_execute_cmds "$reload_cmds" 'exit $?' fi if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi exit $EXIT_SUCCESS ;; prog) case $host in *cygwin*) func_stripname '' '.exe' "$output" output=$func_stripname_result.exe;; esac test -n "$vinfo" && \ func_warning "\`-version-info' is ignored for programs" test -n "$release" && \ func_warning "\`-release' is ignored for programs" test "$preload" = yes \ && test "$dlopen_support" = unknown \ && test "$dlopen_self" = unknown \ && test "$dlopen_self_static" = unknown && \ func_warning "\`LT_INIT([dlopen])' not used. Assuming no dlopen support." case $host in *-*-rhapsody* | *-*-darwin1.[012]) # On Rhapsody replace the C library is the System framework compile_deplibs=`$ECHO " $compile_deplibs" | $SED 's/ -lc / System.ltframework /'` finalize_deplibs=`$ECHO " $finalize_deplibs" | $SED 's/ -lc / System.ltframework /'` ;; esac case $host in *-*-darwin*) # Don't allow lazy linking, it breaks C++ global constructors # But is supposedly fixed on 10.4 or later (yay!). if test "$tagname" = CXX ; then case ${MACOSX_DEPLOYMENT_TARGET-10.0} in 10.[0123]) func_append compile_command " ${wl}-bind_at_load" func_append finalize_command " ${wl}-bind_at_load" ;; esac fi # Time to change all our "foo.ltframework" stuff back to "-framework foo" compile_deplibs=`$ECHO " $compile_deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` finalize_deplibs=`$ECHO " $finalize_deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` ;; esac # move library search paths that coincide with paths to not yet # installed libraries to the beginning of the library search list new_libs= for path in $notinst_path; do case " $new_libs " in *" -L$path/$objdir "*) ;; *) case " $compile_deplibs " in *" -L$path/$objdir "*) func_append new_libs " -L$path/$objdir" ;; esac ;; esac done for deplib in $compile_deplibs; do case $deplib in -L*) case " $new_libs " in *" $deplib "*) ;; *) func_append new_libs " $deplib" ;; esac ;; *) func_append new_libs " $deplib" ;; esac done compile_deplibs="$new_libs" func_append compile_command " $compile_deplibs" func_append finalize_command " $finalize_deplibs" if test -n "$rpath$xrpath"; then # If the user specified any rpath flags, then add them. for libdir in $rpath $xrpath; do # This is the magic to use -rpath. case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac done fi # Now hardcode the library paths rpath= hardcode_libdirs= for libdir in $compile_rpath $finalize_rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then if test -z "$hardcode_libdirs"; then hardcode_libdirs="$libdir" else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append rpath " $flag" fi elif test -n "$runpath_var"; then case "$perm_rpath " in *" $libdir "*) ;; *) func_append perm_rpath " $libdir" ;; esac fi case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) testbindir=`${ECHO} "$libdir" | ${SED} -e 's*/lib$*/bin*'` case :$dllsearchpath: in *":$libdir:"*) ;; ::) dllsearchpath=$libdir;; *) func_append dllsearchpath ":$libdir";; esac case :$dllsearchpath: in *":$testbindir:"*) ;; ::) dllsearchpath=$testbindir;; *) func_append dllsearchpath ":$testbindir";; esac ;; esac done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir="$hardcode_libdirs" eval rpath=\" $hardcode_libdir_flag_spec\" fi compile_rpath="$rpath" rpath= hardcode_libdirs= for libdir in $finalize_rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then if test -z "$hardcode_libdirs"; then hardcode_libdirs="$libdir" else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append rpath " $flag" fi elif test -n "$runpath_var"; then case "$finalize_perm_rpath " in *" $libdir "*) ;; *) func_append finalize_perm_rpath " $libdir" ;; esac fi done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir="$hardcode_libdirs" eval rpath=\" $hardcode_libdir_flag_spec\" fi finalize_rpath="$rpath" if test -n "$libobjs" && test "$build_old_libs" = yes; then # Transform all the library objects into standard objects. compile_command=`$ECHO "$compile_command" | $SP2NL | $SED "$lo2o" | $NL2SP` finalize_command=`$ECHO "$finalize_command" | $SP2NL | $SED "$lo2o" | $NL2SP` fi func_generate_dlsyms "$outputname" "@PROGRAM@" "no" # template prelinking step if test -n "$prelink_cmds"; then func_execute_cmds "$prelink_cmds" 'exit $?' fi wrappers_required=yes case $host in *cegcc* | *mingw32ce*) # Disable wrappers for cegcc and mingw32ce hosts, we are cross compiling anyway. wrappers_required=no ;; *cygwin* | *mingw* ) if test "$build_libtool_libs" != yes; then wrappers_required=no fi ;; *) if test "$need_relink" = no || test "$build_libtool_libs" != yes; then wrappers_required=no fi ;; esac if test "$wrappers_required" = no; then # Replace the output file specification. compile_command=`$ECHO "$compile_command" | $SED 's%@OUTPUT@%'"$output"'%g'` link_command="$compile_command$compile_rpath" # We have no uninstalled library dependencies, so finalize right now. exit_status=0 func_show_eval "$link_command" 'exit_status=$?' if test -n "$postlink_cmds"; then func_to_tool_file "$output" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi # Delete the generated files. if test -f "$output_objdir/${outputname}S.${objext}"; then func_show_eval '$RM "$output_objdir/${outputname}S.${objext}"' fi exit $exit_status fi if test -n "$compile_shlibpath$finalize_shlibpath"; then compile_command="$shlibpath_var=\"$compile_shlibpath$finalize_shlibpath\$$shlibpath_var\" $compile_command" fi if test -n "$finalize_shlibpath"; then finalize_command="$shlibpath_var=\"$finalize_shlibpath\$$shlibpath_var\" $finalize_command" fi compile_var= finalize_var= if test -n "$runpath_var"; then if test -n "$perm_rpath"; then # We should set the runpath_var. rpath= for dir in $perm_rpath; do func_append rpath "$dir:" done compile_var="$runpath_var=\"$rpath\$$runpath_var\" " fi if test -n "$finalize_perm_rpath"; then # We should set the runpath_var. rpath= for dir in $finalize_perm_rpath; do func_append rpath "$dir:" done finalize_var="$runpath_var=\"$rpath\$$runpath_var\" " fi fi if test "$no_install" = yes; then # We don't need to create a wrapper script. link_command="$compile_var$compile_command$compile_rpath" # Replace the output file specification. link_command=`$ECHO "$link_command" | $SED 's%@OUTPUT@%'"$output"'%g'` # Delete the old output file. $opt_dry_run || $RM $output # Link the executable and exit func_show_eval "$link_command" 'exit $?' if test -n "$postlink_cmds"; then func_to_tool_file "$output" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi exit $EXIT_SUCCESS fi if test "$hardcode_action" = relink; then # Fast installation is not supported link_command="$compile_var$compile_command$compile_rpath" relink_command="$finalize_var$finalize_command$finalize_rpath" func_warning "this platform does not like uninstalled shared libraries" func_warning "\`$output' will be relinked during installation" else if test "$fast_install" != no; then link_command="$finalize_var$compile_command$finalize_rpath" if test "$fast_install" = yes; then relink_command=`$ECHO "$compile_var$compile_command$compile_rpath" | $SED 's%@OUTPUT@%\$progdir/\$file%g'` else # fast_install is set to needless relink_command= fi else link_command="$compile_var$compile_command$compile_rpath" relink_command="$finalize_var$finalize_command$finalize_rpath" fi fi # Replace the output file specification. link_command=`$ECHO "$link_command" | $SED 's%@OUTPUT@%'"$output_objdir/$outputname"'%g'` # Delete the old output files. $opt_dry_run || $RM $output $output_objdir/$outputname $output_objdir/lt-$outputname func_show_eval "$link_command" 'exit $?' if test -n "$postlink_cmds"; then func_to_tool_file "$output_objdir/$outputname" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output_objdir/$outputname"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi # Now create the wrapper script. func_verbose "creating $output" # Quote the relink command for shipping. if test -n "$relink_command"; then # Preserve any variables that may affect compiler behavior for var in $variables_saved_for_relink; do if eval test -z \"\${$var+set}\"; then relink_command="{ test -z \"\${$var+set}\" || $lt_unset $var || { $var=; export $var; }; }; $relink_command" elif eval var_value=\$$var; test -z "$var_value"; then relink_command="$var=; export $var; $relink_command" else func_quote_for_eval "$var_value" relink_command="$var=$func_quote_for_eval_result; export $var; $relink_command" fi done relink_command="(cd `pwd`; $relink_command)" relink_command=`$ECHO "$relink_command" | $SED "$sed_quote_subst"` fi # Only actually do things if not in dry run mode. $opt_dry_run || { # win32 will think the script is a binary if it has # a .exe suffix, so we strip it off here. case $output in *.exe) func_stripname '' '.exe' "$output" output=$func_stripname_result ;; esac # test for cygwin because mv fails w/o .exe extensions case $host in *cygwin*) exeext=.exe func_stripname '' '.exe' "$outputname" outputname=$func_stripname_result ;; *) exeext= ;; esac case $host in *cygwin* | *mingw* ) func_dirname_and_basename "$output" "" "." output_name=$func_basename_result output_path=$func_dirname_result cwrappersource="$output_path/$objdir/lt-$output_name.c" cwrapper="$output_path/$output_name.exe" $RM $cwrappersource $cwrapper trap "$RM $cwrappersource $cwrapper; exit $EXIT_FAILURE" 1 2 15 func_emit_cwrapperexe_src > $cwrappersource # The wrapper executable is built using the $host compiler, # because it contains $host paths and files. If cross- # compiling, it, like the target executable, must be # executed on the $host or under an emulation environment. $opt_dry_run || { $LTCC $LTCFLAGS -o $cwrapper $cwrappersource $STRIP $cwrapper } # Now, create the wrapper script for func_source use: func_ltwrapper_scriptname $cwrapper $RM $func_ltwrapper_scriptname_result trap "$RM $func_ltwrapper_scriptname_result; exit $EXIT_FAILURE" 1 2 15 $opt_dry_run || { # note: this script will not be executed, so do not chmod. if test "x$build" = "x$host" ; then $cwrapper --lt-dump-script > $func_ltwrapper_scriptname_result else func_emit_wrapper no > $func_ltwrapper_scriptname_result fi } ;; * ) $RM $output trap "$RM $output; exit $EXIT_FAILURE" 1 2 15 func_emit_wrapper no > $output chmod +x $output ;; esac } exit $EXIT_SUCCESS ;; esac # See if we need to build an old-fashioned archive. for oldlib in $oldlibs; do if test "$build_libtool_libs" = convenience; then oldobjs="$libobjs_save $symfileobj" addlibs="$convenience" build_libtool_libs=no else if test "$build_libtool_libs" = module; then oldobjs="$libobjs_save" build_libtool_libs=no else oldobjs="$old_deplibs $non_pic_objects" if test "$preload" = yes && test -f "$symfileobj"; then func_append oldobjs " $symfileobj" fi fi addlibs="$old_convenience" fi if test -n "$addlibs"; then gentop="$output_objdir/${outputname}x" func_append generated " $gentop" func_extract_archives $gentop $addlibs func_append oldobjs " $func_extract_archives_result" fi # Do each command in the archive commands. if test -n "$old_archive_from_new_cmds" && test "$build_libtool_libs" = yes; then cmds=$old_archive_from_new_cmds else # Add any objects from preloaded convenience libraries if test -n "$dlprefiles"; then gentop="$output_objdir/${outputname}x" func_append generated " $gentop" func_extract_archives $gentop $dlprefiles func_append oldobjs " $func_extract_archives_result" fi # POSIX demands no paths to be encoded in archives. We have # to avoid creating archives with duplicate basenames if we # might have to extract them afterwards, e.g., when creating a # static archive out of a convenience library, or when linking # the entirety of a libtool archive into another (currently # not supported by libtool). if (for obj in $oldobjs do func_basename "$obj" $ECHO "$func_basename_result" done | sort | sort -uc >/dev/null 2>&1); then : else echo "copying selected object files to avoid basename conflicts..." gentop="$output_objdir/${outputname}x" func_append generated " $gentop" func_mkdir_p "$gentop" save_oldobjs=$oldobjs oldobjs= counter=1 for obj in $save_oldobjs do func_basename "$obj" objbase="$func_basename_result" case " $oldobjs " in " ") oldobjs=$obj ;; *[\ /]"$objbase "*) while :; do # Make sure we don't pick an alternate name that also # overlaps. newobj=lt$counter-$objbase func_arith $counter + 1 counter=$func_arith_result case " $oldobjs " in *[\ /]"$newobj "*) ;; *) if test ! -f "$gentop/$newobj"; then break; fi ;; esac done func_show_eval "ln $obj $gentop/$newobj || cp $obj $gentop/$newobj" func_append oldobjs " $gentop/$newobj" ;; *) func_append oldobjs " $obj" ;; esac done fi func_to_tool_file "$oldlib" func_convert_file_msys_to_w32 tool_oldlib=$func_to_tool_file_result eval cmds=\"$old_archive_cmds\" func_len " $cmds" len=$func_len_result if test "$len" -lt "$max_cmd_len" || test "$max_cmd_len" -le -1; then cmds=$old_archive_cmds elif test -n "$archiver_list_spec"; then func_verbose "using command file archive linking..." for obj in $oldobjs do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" done > $output_objdir/$libname.libcmd func_to_tool_file "$output_objdir/$libname.libcmd" oldobjs=" $archiver_list_spec$func_to_tool_file_result" cmds=$old_archive_cmds else # the command line is too long to link in one step, link in parts func_verbose "using piecewise archive linking..." save_RANLIB=$RANLIB RANLIB=: objlist= concat_cmds= save_oldobjs=$oldobjs oldobjs= # Is there a better way of finding the last object in the list? for obj in $save_oldobjs do last_oldobj=$obj done eval test_cmds=\"$old_archive_cmds\" func_len " $test_cmds" len0=$func_len_result len=$len0 for obj in $save_oldobjs do func_len " $obj" func_arith $len + $func_len_result len=$func_arith_result func_append objlist " $obj" if test "$len" -lt "$max_cmd_len"; then : else # the above command should be used before it gets too long oldobjs=$objlist if test "$obj" = "$last_oldobj" ; then RANLIB=$save_RANLIB fi test -z "$concat_cmds" || concat_cmds=$concat_cmds~ eval concat_cmds=\"\${concat_cmds}$old_archive_cmds\" objlist= len=$len0 fi done RANLIB=$save_RANLIB oldobjs=$objlist if test "X$oldobjs" = "X" ; then eval cmds=\"\$concat_cmds\" else eval cmds=\"\$concat_cmds~\$old_archive_cmds\" fi fi fi func_execute_cmds "$cmds" 'exit $?' done test -n "$generated" && \ func_show_eval "${RM}r$generated" # Now create the libtool archive. case $output in *.la) old_library= test "$build_old_libs" = yes && old_library="$libname.$libext" func_verbose "creating $output" # Preserve any variables that may affect compiler behavior for var in $variables_saved_for_relink; do if eval test -z \"\${$var+set}\"; then relink_command="{ test -z \"\${$var+set}\" || $lt_unset $var || { $var=; export $var; }; }; $relink_command" elif eval var_value=\$$var; test -z "$var_value"; then relink_command="$var=; export $var; $relink_command" else func_quote_for_eval "$var_value" relink_command="$var=$func_quote_for_eval_result; export $var; $relink_command" fi done # Quote the link command for shipping. relink_command="(cd `pwd`; $SHELL $progpath $preserve_args --mode=relink $libtool_args @inst_prefix_dir@)" relink_command=`$ECHO "$relink_command" | $SED "$sed_quote_subst"` if test "$hardcode_automatic" = yes ; then relink_command= fi # Only create the output if not a dry run. $opt_dry_run || { for installed in no yes; do if test "$installed" = yes; then if test -z "$install_libdir"; then break fi output="$output_objdir/$outputname"i # Replace all uninstalled libtool libraries with the installed ones newdependency_libs= for deplib in $dependency_libs; do case $deplib in *.la) func_basename "$deplib" name="$func_basename_result" func_resolve_sysroot "$deplib" eval libdir=`${SED} -n -e 's/^libdir=\(.*\)$/\1/p' $func_resolve_sysroot_result` test -z "$libdir" && \ func_fatal_error "\`$deplib' is not a valid libtool archive" func_append newdependency_libs " ${lt_sysroot:+=}$libdir/$name" ;; -L*) func_stripname -L '' "$deplib" func_replace_sysroot "$func_stripname_result" func_append newdependency_libs " -L$func_replace_sysroot_result" ;; -R*) func_stripname -R '' "$deplib" func_replace_sysroot "$func_stripname_result" func_append newdependency_libs " -R$func_replace_sysroot_result" ;; *) func_append newdependency_libs " $deplib" ;; esac done dependency_libs="$newdependency_libs" newdlfiles= for lib in $dlfiles; do case $lib in *.la) func_basename "$lib" name="$func_basename_result" eval libdir=`${SED} -n -e 's/^libdir=\(.*\)$/\1/p' $lib` test -z "$libdir" && \ func_fatal_error "\`$lib' is not a valid libtool archive" func_append newdlfiles " ${lt_sysroot:+=}$libdir/$name" ;; *) func_append newdlfiles " $lib" ;; esac done dlfiles="$newdlfiles" newdlprefiles= for lib in $dlprefiles; do case $lib in *.la) # Only pass preopened files to the pseudo-archive (for # eventual linking with the app. that links it) if we # didn't already link the preopened objects directly into # the library: func_basename "$lib" name="$func_basename_result" eval libdir=`${SED} -n -e 's/^libdir=\(.*\)$/\1/p' $lib` test -z "$libdir" && \ func_fatal_error "\`$lib' is not a valid libtool archive" func_append newdlprefiles " ${lt_sysroot:+=}$libdir/$name" ;; esac done dlprefiles="$newdlprefiles" else newdlfiles= for lib in $dlfiles; do case $lib in [\\/]* | [A-Za-z]:[\\/]*) abs="$lib" ;; *) abs=`pwd`"/$lib" ;; esac func_append newdlfiles " $abs" done dlfiles="$newdlfiles" newdlprefiles= for lib in $dlprefiles; do case $lib in [\\/]* | [A-Za-z]:[\\/]*) abs="$lib" ;; *) abs=`pwd`"/$lib" ;; esac func_append newdlprefiles " $abs" done dlprefiles="$newdlprefiles" fi $RM $output # place dlname in correct position for cygwin # In fact, it would be nice if we could use this code for all target # systems that can't hard-code library paths into their executables # and that have no shared library path variable independent of PATH, # but it turns out we can't easily determine that from inspecting # libtool variables, so we have to hard-code the OSs to which it # applies here; at the moment, that means platforms that use the PE # object format with DLL files. See the long comment at the top of # tests/bindir.at for full details. tdlname=$dlname case $host,$output,$installed,$module,$dlname in *cygwin*,*lai,yes,no,*.dll | *mingw*,*lai,yes,no,*.dll | *cegcc*,*lai,yes,no,*.dll) # If a -bindir argument was supplied, place the dll there. if test "x$bindir" != x ; then func_relative_path "$install_libdir" "$bindir" tdlname=$func_relative_path_result$dlname else # Otherwise fall back on heuristic. tdlname=../bin/$dlname fi ;; esac $ECHO > $output "\ # $outputname - a libtool library file # Generated by $PROGRAM (GNU $PACKAGE$TIMESTAMP) $VERSION # # Please DO NOT delete this file! # It is necessary for linking the library. # The name that we can dlopen(3). dlname='$tdlname' # Names of this library. library_names='$library_names' # The name of the static archive. old_library='$old_library' # Linker flags that can not go in dependency_libs. inherited_linker_flags='$new_inherited_linker_flags' # Libraries that this one depends upon. dependency_libs='$dependency_libs' # Names of additional weak libraries provided by this library weak_library_names='$weak_libs' # Version information for $libname. current=$current age=$age revision=$revision # Is this an already installed library? installed=$installed # Should we warn about portability when linking against -modules? shouldnotlink=$module # Files to dlopen/dlpreopen dlopen='$dlfiles' dlpreopen='$dlprefiles' # Directory that this library needs to be installed in: libdir='$install_libdir'" if test "$installed" = no && test "$need_relink" = yes; then $ECHO >> $output "\ relink_command=\"$relink_command\"" fi done } # Do a symbolic link so that the libtool archive can be found in # LD_LIBRARY_PATH before the program is installed. func_show_eval '( cd "$output_objdir" && $RM "$outputname" && $LN_S "../$outputname" "$outputname" )' 'exit $?' ;; esac exit $EXIT_SUCCESS } { test "$opt_mode" = link || test "$opt_mode" = relink; } && func_mode_link ${1+"$@"} # func_mode_uninstall arg... func_mode_uninstall () { $opt_debug RM="$nonopt" files= rmforce= exit_status=0 # This variable tells wrapper scripts just to set variables rather # than running their programs. libtool_install_magic="$magic" for arg do case $arg in -f) func_append RM " $arg"; rmforce=yes ;; -*) func_append RM " $arg" ;; *) func_append files " $arg" ;; esac done test -z "$RM" && \ func_fatal_help "you must specify an RM program" rmdirs= for file in $files; do func_dirname "$file" "" "." dir="$func_dirname_result" if test "X$dir" = X.; then odir="$objdir" else odir="$dir/$objdir" fi func_basename "$file" name="$func_basename_result" test "$opt_mode" = uninstall && odir="$dir" # Remember odir for removal later, being careful to avoid duplicates if test "$opt_mode" = clean; then case " $rmdirs " in *" $odir "*) ;; *) func_append rmdirs " $odir" ;; esac fi # Don't error if the file doesn't exist and rm -f was used. if { test -L "$file"; } >/dev/null 2>&1 || { test -h "$file"; } >/dev/null 2>&1 || test -f "$file"; then : elif test -d "$file"; then exit_status=1 continue elif test "$rmforce" = yes; then continue fi rmfiles="$file" case $name in *.la) # Possibly a libtool archive, so verify it. if func_lalib_p "$file"; then func_source $dir/$name # Delete the libtool libraries and symlinks. for n in $library_names; do func_append rmfiles " $odir/$n" done test -n "$old_library" && func_append rmfiles " $odir/$old_library" case "$opt_mode" in clean) case " $library_names " in *" $dlname "*) ;; *) test -n "$dlname" && func_append rmfiles " $odir/$dlname" ;; esac test -n "$libdir" && func_append rmfiles " $odir/$name $odir/${name}i" ;; uninstall) if test -n "$library_names"; then # Do each command in the postuninstall commands. func_execute_cmds "$postuninstall_cmds" 'test "$rmforce" = yes || exit_status=1' fi if test -n "$old_library"; then # Do each command in the old_postuninstall commands. func_execute_cmds "$old_postuninstall_cmds" 'test "$rmforce" = yes || exit_status=1' fi # FIXME: should reinstall the best remaining shared library. ;; esac fi ;; *.lo) # Possibly a libtool object, so verify it. if func_lalib_p "$file"; then # Read the .lo file func_source $dir/$name # Add PIC object to the list of files to remove. if test -n "$pic_object" && test "$pic_object" != none; then func_append rmfiles " $dir/$pic_object" fi # Add non-PIC object to the list of files to remove. if test -n "$non_pic_object" && test "$non_pic_object" != none; then func_append rmfiles " $dir/$non_pic_object" fi fi ;; *) if test "$opt_mode" = clean ; then noexename=$name case $file in *.exe) func_stripname '' '.exe' "$file" file=$func_stripname_result func_stripname '' '.exe' "$name" noexename=$func_stripname_result # $file with .exe has already been added to rmfiles, # add $file without .exe func_append rmfiles " $file" ;; esac # Do a test to see if this is a libtool program. if func_ltwrapper_p "$file"; then if func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" relink_command= func_source $func_ltwrapper_scriptname_result func_append rmfiles " $func_ltwrapper_scriptname_result" else relink_command= func_source $dir/$noexename fi # note $name still contains .exe if it was in $file originally # as does the version of $file that was added into $rmfiles func_append rmfiles " $odir/$name $odir/${name}S.${objext}" if test "$fast_install" = yes && test -n "$relink_command"; then func_append rmfiles " $odir/lt-$name" fi if test "X$noexename" != "X$name" ; then func_append rmfiles " $odir/lt-${noexename}.c" fi fi fi ;; esac func_show_eval "$RM $rmfiles" 'exit_status=1' done # Try to remove the ${objdir}s in the directories where we deleted files for dir in $rmdirs; do if test -d "$dir"; then func_show_eval "rmdir $dir >/dev/null 2>&1" fi done exit $exit_status } { test "$opt_mode" = uninstall || test "$opt_mode" = clean; } && func_mode_uninstall ${1+"$@"} test -z "$opt_mode" && { help="$generic_help" func_fatal_help "you must specify a MODE" } test -z "$exec_cmd" && \ func_fatal_help "invalid operation mode \`$opt_mode'" if test -n "$exec_cmd"; then eval exec "$exec_cmd" exit $EXIT_FAILURE fi exit $exit_status # The TAGs below are defined such that we never get into a situation # in which we disable both kinds of libraries. Given conflicting # choices, we go for a static library, that is the most portable, # since we can't tell whether shared libraries were disabled because # the user asked for that or because the platform doesn't support # them. This is particularly important on AIX, because we don't # support having both static and shared libraries enabled at the same # time on that platform, so we default to a shared-only configuration. # If a disable-shared tag is given, we'll fallback to a static-only # configuration. But we'll never go from static-only to shared-only. # ### BEGIN LIBTOOL TAG CONFIG: disable-shared build_libtool_libs=no build_old_libs=yes # ### END LIBTOOL TAG CONFIG: disable-shared # ### BEGIN LIBTOOL TAG CONFIG: disable-static build_old_libs=`case $build_libtool_libs in yes) echo no;; *) echo yes;; esac` # ### END LIBTOOL TAG CONFIG: disable-static # Local Variables: # mode:shell-script # sh-indentation:2 # End: # vi:sw=2 openconnect-7.06/po/0000775000076400007640000000000012502026433011407 500000000000000openconnect-7.06/po/pt.po0000664000076400007640000022577612502026115012332 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Carlos , 2013 # Carlos , 2011-2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2014-02-19 09:05+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Portuguese (http://www.transifex.com/projects/p/meego/" "language/pt/)\n" "Language: pt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Não consegue processar formulário method='%s', action='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "A escolha do formulário não tem nome\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "nome %s não introduzido\n" #: auth.c:186 msgid "No input type in form\n" msgstr "" "Sem tipo de entrada no formulário\n" "\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Sem nome de entrada no formulário\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada %s desconhecido no formulário\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Resposta vazia do servidor\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Falhou ao processar resposta do servidor\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Resposta foi:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Perguntou pela senha, mas '--no-passwd' definido\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falha ao abrir a ligação HTTPS a %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "O ficheiro de configuração transferido não correspondeu ao SHA1 desejado\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falhou ao abrir o ficheiro de script CSD temporário: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falhou ao escrever o ficheiro de script CSD temporário: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falhou ao alterar a pasta pessoal CSD: '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: está a executar código CSD inseguro privilégios de raiz\n" "\t Use a opção de linha de comando \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falhou ao executar script CSD %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Servidor pediu o certificado do cliente SSL; nenhum foi configurado\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "A refrescar %s após 1 segundo...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Erro ao obter resposta HTTPS\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Serviço VPN indisponível; razão: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obteve resposta HTTP CONNECT inapropriada: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obteve resposta CONNECT: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Não há memória para opções\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Codificação de Conteúdo Desconhecido CSTP %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Sem endereço IP recebido. A abortar\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconexão deu endereços IP diferentes antigos (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconexão deu máscara de rede IP diferente antiga (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconexão deu endereços IPv6 diferentes (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconexão deu máscara de rede IPv6 diferente (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP ligado. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "A configuração de compressão falhou\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "enchimento falhou\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate falhou %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Comprimento inesperado do pacote. SSL_read devolveu %d mas o pacote é\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Pedido CSTP DPD obtido\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Resposta CSTP DPD obtida\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Obteve CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Recebido pacote de dados não comprimidos de %d bytes\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Recebido o desligamento do servidor: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Recebido pacote comprimido em modo !deflate\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "pacote de terminação do servidor recebido\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pacote desconhecido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" "SSL escreveu poucos bytes! Pediu por %d, enviou %d\n" "\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Reescrita de CSTP devida\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Religação falhou\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Enviar CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Enviar CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "A enviar pacote de dados não comprimidos de %d bytes\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar pacote BYE: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Falhou ao iniciar a sessão DTLSv1\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Falhou a inicialização de DTLSv1 CTX\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Falhou a definição da lista de cifras DTLS\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Não é precisamente uma cifra DTLS\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falhou com o antigo protocolo versão 0x%x\n" "Você está ausar uma versão do OpenSSL anterior do que a 0.9.8m?\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Utilize a opção de linha de comando --no-dtls para evitar esta mensagem\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "O seu OpenSSL é anterior ao que acabou de compilar, por isso pode falhar o " "DTLS!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Cumprimento DTLS expirado\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Cumprimento DTLS falhou:%d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Sem endereço DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "O servidor não ofereceu opção de cifra DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Sem DTLS ao ligar via proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opção DTLS %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Tentar nova ligação DTLS\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recebido pacote DTLS 0x%02x de %d bytes\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Pedido DTLS DPD obtido\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falha ao enviar resposta DPD. Desligar esperado\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Resposta DTLS DPD obtida\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Obteve DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipo de pacote DTLS desconhecido %02x, len %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Reescrita DTLS devida\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Enviar DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falha ao enviar pedido DPD. Desligar esperado\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Enviar DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita %d. A reverter para SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Escrita SSL cancelada\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Leitura SSL cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Envio SSL falhou: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Certificado do cliente expirou em" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Certificado do cliente expira brevemente em" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Introduza a palavra-passe PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "A usar certificado PKCS#11 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "A usar o ficheiro de certificado %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Não se encontrou um certificado no ficheiro" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "assinante não encontrado" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certificado ainda não ativado" #: gnutls.c:1978 msgid "certificate expired" msgstr "certificado expirou" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "falhou a verificação de assinatura" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Falhou a verificação do certificado do servidor: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" "Falhou ao carregar o certificado. A abortar.\n" "\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociação SSL com %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Falha na ligação SSL: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Ligado a HTTPS em %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN necessário para %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "PIN errado" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Introduza o PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Introduza o PIN de TPM SRK:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Introduza o PIN da chave TPM:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Sem memória para alocar cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falhou ao processar resposta HTTP '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obteve resposta HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Erro ao processar resposta HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "A ignorar linha com resposta HTTP desconhecida '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie inválido oferecido: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Corpo de respostas tem tamanho negativo (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificação de Conteúdo Desconhecido: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Corpo HTTP %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Erro ao ler corpo de reposta HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Erro ao obter cabeçalho do pedaço\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Erro ao obter resposta do corpo HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Erro na descodificação do bloco. Esperado '', obtido: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "Não pode receber corpo em HTTP 1.0 sem ligação de fecho\n" "\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falhou ao processar URL redirecionado '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Falhou a alocação de novo caminho do redirecionamento relativo: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado inesperado %d do servidor\n" #: http.c:1056 msgid "request granted" msgstr "pedido concedido" #: http.c:1057 msgid "general failure" msgstr "falha geral" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "ligação não permitida pelas regras" #: http.c:1059 msgid "network unreachable" msgstr "rede inatingível" #: http.c:1060 msgid "host unreachable" msgstr "hospedeiro inatingível " #: http.c:1061 msgid "connection refused by destination host" msgstr "ligação recusada pelo hospedeiro no destino" #: http.c:1062 msgid "TTL expired" msgstr "TTL expirou" #: http.c:1063 msgid "command not supported / protocol error" msgstr "comando não suportado / erro de protocolo" #: http.c:1064 msgid "address type not supported" msgstr "tipo de endereço não suportado" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Erro ao escrever pedido de autorização ao proxy SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Erro ao ler resposta de autorização do proxy SOCKS: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Resposta de autorização inesperada do proxy SOCKS: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Erro ao escrever pedido de ligação ao proxy SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Erro ao ler resposta de ligação do proxy SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Resposta de ligação inesperada do proxy SOCKS: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Erro de proxy SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Erro de proxy SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de endereço inesperado %02x na resposta de ligação SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "A pedir ligação do proxy HTTP a %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Falhou o envio do pedido de proxy: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy '%s' desconhecido \n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Apenas proxies http ou socks(5) são suportados\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falhou ao processar URL do servidor '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "utilizar OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Utilização: openconnect [opções] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "Continuar nos bastidores após arranque" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Usar o certificado CERT do cliente SSL" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "Ativar compressão (padrão)" #: main.c:719 msgid "Disable compression" msgstr "Desativar compressão" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "Mostrar texto de ajuda" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME na interface de túnel" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "Definir servidor de proxy" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Desativar proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "Menos saída" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "padrão" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "Relatar número da versão" #: main.c:754 msgid "More output" msgstr "Mais saída" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "Ficheiro de configuração XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "Desativar DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Utilizador inválido \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeno\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "Versão OpenConnect %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nenhum servidor especificado\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Falhou ao criar a ligação SSL\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falhou ao abrir '%s' para escrita: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "A continuar nos bastidores; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falhou ao abrir %s para escrita: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falhou ao escrever configuração em %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "O certificado do servidor SSL não correspondeu: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificado do servidor VPN \"%s\" falhou a verificação.\n" "Razão_: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "não" #: main.c:1661 main.c:1667 msgid "yes" msgstr "sim" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Escolha de autenticação \"%s\" indisponível\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Não consegue abrir o ficheiro ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Falha geral em libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Falha geral em liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nada para fazer; a descansar durante %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Erro de leitura SSL %d (o servidor provavelmente fechou a ligação); a " "religar.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write falhou: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Senha PEM demasiado comprida (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra de %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Falhou processamento PKCS#12 (consultar erros acima)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 não continha um certificado!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 não continha uma chave privada!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Não consegue carregar o motor TPM.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Falhou iniciar o motor TPM\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Falhou ao definir a senha TPM SRK\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Falhou carregar a chave privada TPM\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Falhou adicionar a chave de TPM\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falhou ao abrir o ficheiro de certificado %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Falhou ao carregar o certificado\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Falhou carregar chave privada (senha errada?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Falhou carregar a chave privada (consultar erros acima)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falhou ao abrir o ficheiro de chave privada %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" "Falhou a identificação do tipo de chave privada em '%s'\n" "\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Correspondeu %s do endereço '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Sem correspondências do endereço %s '%s':\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' tem um caminho não vazio; será ignorado\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "URI correspondido '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Sem correspondências do URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra do catfile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falhou ao abrir ficheiro CA '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "falha na ligação SSL\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Falhou ao religar ao proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Sem erros" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "Erro do sistema" #: ssl.c:591 msgid "Protocol error" msgstr "Erro de protocolo" #: ssl.c:592 msgid "Permission denied" msgstr "Permissão negada" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "Valor corrompido" #: ssl.c:595 msgid "Undefined action" msgstr "Ação indefinida" #: ssl.c:599 msgid "Wrong password" msgstr "Senha errada" #: ssl.c:600 msgid "Unknown error" msgstr "Erro desconhecido" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "ID do Dispositivo:" #: stoken.c:89 msgid "Password:" msgstr "Senha:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "Não pode forçar o IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Não consegue definir ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Não consegue abrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "rede aberta" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falhou no SHA1 do ficheiro existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Ficheiro de configuração em XML de SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/tg.po0000664000076400007640000020567712502026115012317 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-06-21 09:22+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Tajik (http://www.transifex.net/projects/p/meego/language/" "tg/)\n" "Language: tg\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "" #: main.c:1661 main.c:1667 msgid "yes" msgstr "" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "Хатои системавӣ" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "Пароли нодуруст" #: ssl.c:600 msgid "Unknown error" msgstr "Хатои номаълум" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "ID-и дастгоҳ:" #: stoken.c:89 msgid "Password:" msgstr "Парол:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/ug.po0000664000076400007640000027420412502026115012310 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Abduqadir Abliz , 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: Abduqadir Abliz \n" "Language-Team: Uighur (http://www.transifex.com/projects/p/meego/language/" "ug/)\n" "Language: ug\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "كۆنەكنى بىر تەرەپ قىلالمايدۇ ئۇسۇلى='%s'، مەشغۇلات='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "كۆزنەك تاللاشنىڭ ئاتى يوق\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "%s ئات كىرگۈزۈلمىگەن\n" #: auth.c:186 msgid "No input type in form\n" msgstr "كۆزنەكتە كىرگۈزۈش تىپى يوق\n" #: auth.c:198 msgid "No input name in form\n" msgstr "كۆزنەكتە كىرگۈزۈش ئاتى يوق\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "كۆزنەكتىكى يوچۇن كىرگۈزۈش تىپى %s\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "مۇلازىمېتىر ئىنكاسىنى تەھلىل قىلالمىدى\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "ئىنكاسى: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "ئىم سورالدى ئەمما '--no-passwd' تەڭشەلگەن\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "%s غىچە HTTPS باغلىنىشىنى ئاچالمىدى\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "يېڭى سەپلىمە ئۈچۈن GET ئىلتىماسىنى يوللىيالمىدى\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "چۈشۈرگەن سەپلىمە ھۆججەت مۆلچەرلىگەن SHA1 بىلەن ماسلاشمىدى\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "خاتالىق: مۇلازىمېتىر بىزدىن 'Cisco Secure Desktop' تىروياننى چۈشۈرۈپ ئىجرا " "قىلىشنى سورىدى.\n" "كۆڭۈلدىكى ئەھۋالدا بىخەتەرلىكنى چىقىش قىلىپ بۇ چەكلەندى، شۇڭلاشقا ئۇنى " "قوزغىتامسىز.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD تىرويان قوليازمىنى ئىجرا قىلىشنى سىناۋاتىدۇ.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "ۋاقىتلىق CSD قوليازما ھۆججەتنى ئاچالمىدى: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "ۋاقىتلىق CSD قوليازما ھۆججەتنى يازالمىدى: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "uid %ld نى تەڭشىيەلمىدى\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "ئىناۋەتسىز ئىشلەتكۈچى uid=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "CSD ماكان مۇندەرىجە '%s' نى ئۆزگەرتەلمىدى: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "ئاگاھلاندۇرۇش: سىز بىخەتەر بولمىغان CSD كودىنى root ھوقۇقىدا ئىجرا " "قىلىۋاتىسىز\n" "\"--csd-user\" بۇيرۇق قۇرى تاللانمىسىنى ئىشلىتىڭ\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD قوليازما %s نى ئىجرا قىلالمىدى\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "مۇلازىمېتىرنىڭ يوچۇن ئىنكاسى\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 سېكۇنتتىن كېيىن %s يېڭىلايدۇ\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "HTTPS ئىنكاسىغا ئېرىشىشتە خاتالىق كۆرۈلدى\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN مۇلازىمىتىنى ئىشلەتكىلى بولمايدۇ؛ سەۋەبى: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "خاتا HTTP CONNECT ئىنكاسىغا ئېرىشتى: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT ئىنكاسىغا ئېرىشتى: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "تاللانمىلار ئۈچۈن ئەسلەك يوق\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID بولسا 64 ھەرپ ئەمەس؛ بۇ: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "يوچۇن CSTP-Content-Encoding %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "ھېچقانداق MTU قوبۇللىمىدى. چېكىنىۋاتىدۇ\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "ھېچقانداق IP ئادرېس قوبۇللىمىدى. چېكىنىۋاتىدۇ\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق كونا IP ئادرېس بەردى (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق كونا IP تور ماسكىسى بەردى (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق IPv6 ئادرېس بەردى (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق IPv6 تور ماسكىسى بەردى (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP باغلاندى. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "پىرىسلاشنى تەڭشىيەلمىدى\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "كىچىكلىتىلگەن يىغلەكنى تەقسىملىيەلمىدى\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "كىچىكلىتەلمىدى\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "%d كىچىكلىتەلمىدى\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "بوغچا ئۇزۇنلۇقى توغرا ئەمەس. SSL_read %d نى قايتۇردى ئەمما بوغچا \n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD ئىلتىماسىغا ئېرىشتى\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD ئىنكاسىغا ئېرىشتى\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive غا ئېرىشتى\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d بايتلىق پىرىسلانمىغان سانلىق مەلۇمات بوغچىسى تاپشۇرۇۋالدى\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "مۇلازىمېتىر ئۈزۈلۈشىنى تاپشۇرۇۋالدى: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "!deflate ھالەتتە پىرىسلانغان بوغچا تاپشۇرۇۋالدى\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "مۇلازىمېتىر ئاخىرلاشتۇرۇش بوغچىسىنى تاپشۇرۇۋالدى\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "يوچۇن بوغچا %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL يازغان بايت سانى بەك ئاز! ئىلتىماس قىلغىنى %d، يوللىغىنى %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP ئاچقۇچ يېڭىلاش سەۋەبى\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "قايتا باغلىنالمىدى\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "CSTP DPD يوللا\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive يوللا\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d بايتلىق پىرىسلانمىغان سانلىق مەلۇمات بوغچىسى يوللاۋاتىدۇ\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "يوللىغان BYE بوغچا: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "DTLSv1 سۆزلىشىشنى دەسلەپلەشتۈرەلمىدى\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "DTLSv1 CTX نى دەسلەپلەشتۈرەلمىدى\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "DTLS شىفىر تىزىمىنى تەڭشىيەلمىدى\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "دەل بىر DTLS شىفىر ئەمەس\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "كونا كېلىشىم نەشرى 0x%x دا SSL_set_session() مەغلۇپ بولدى\n" "OpenSSL نىڭ 0.9.8m دىن كونا نەشرىنى ئىشلىتەمسىز؟\n" "http://rt.openssl.org/Ticket/Display.html?id=1751 نى كۆرۈڭ\n" "--no-dtls بۇيرۇق قۇرى تاللانمىسى ئىشلىتىلسە بۇ ئۇچۇردىن ساقلانغىلى بولىدۇ\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "OpenSSL سىزنىڭ نەشرىڭىزدىن كونا ئىكەن، شۇڭلاشقا DTLS مەغلۇپ بولۇشى مۇمكىن!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS قول ئېلىشىش ۋاقىت ھالقىدى\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS قول ئېلىشالمىدى: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "ئىلتىماس قىلىنغان شىفىر يۈرۈشلۈكى '%s' نىڭ يوچۇن DTLS پارامېتىرلىرى\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "DTLS ئالدىنلىقىنى تەڭشىيەلمىدى: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS سۆزلىشىش پارامېتىرلىرىنى تەڭشىيەلمىدى: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "DTLS MTU نى تەڭشىيەلمىدى: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS قول ئېلىشالمىدى: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "DTLS ئادرېس يوق\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "مۇلازىمېتىر DTLS شىفىر تاللانمىسى تەمىنلىمىگەن\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "ۋاكالەتچى بىلەن باغلانغاندا DTLS يوق\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS تاللانما %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "يېڭى DTLS باغلىنىشىنى سىناۋاتىدۇ\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS بوغچىسى 0x%02x نى تاپشۇرۇۋالدى %d بايت\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD ئىلتىماسىغا ئېرىشتى\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "DPD ئىنكاسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD ئىنكاسىغا ئېرىشتى\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive غا ئېرىشتى\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "يوچۇن DTLS بوغچا تىپى %02x، ئۇزۇنلۇقى %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLS ئاچقۇچ يېڭىلاش سەۋەبى\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "DTLS DPD يوللا\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "DPD ئىلتىماسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive يوللا\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "keepalive ئىلتىماسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS يېزىش خاتالىقى %d غا ئېرىشتى. SSL گە قايتىدۇ\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS يېزىش خاتالىقى %s غا ئېرىشتى. SSL گە قايتىدۇ\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d بايتلىق DTLS بوغچىسى يوللىدى؛ DTLS يوللاش %d قايتۇردى\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL يېزىشتىن ۋاز كەچتى\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "SSL socket نى يازالمىدى: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL ئوقۇشتىن ۋاز كەچتى\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "SSL socket تىن ئوقۇيالمىدى: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL ئوقۇش خاتالىقى: %s؛ قايتا باغلىنىۋاتىدۇ.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL يوللىيالمىدى: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "گۇۋاھنامىنىڭ توشىدىغان قەرەلىنى ئوقۇيالمىدى\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "خېرىدار گۇۋاھنامىسىنىڭ قەرەلى ئۆتىدىغان ۋاقىت" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "خېرىدار گۇۋاھنامىسىنىڭ قەرەلى توشىدىغان ۋاقىت" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "ئاچقۇچ ئامبىرىدىن '%s' تۈرنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "ئاچقۇچ/گۇۋاھنامە ھۆججىتى %s نى ئاچالمىدى: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "ئاچقۇچ/گۇۋاھنامە ھۆججىتى %s نى سىتاتىستىكا قىلالمىدى: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "گۇۋاھنامە يىغلەكنى تەقسىملىيەلمىدى\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "گۇۋاھنامىنى ئەسلەككە ئوقۇيالمىدى: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12 سانلىق مەلۇمات قۇرۇلمىسىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12 گۇۋاھنامە ھۆججەت شىفىرىنى يېشەلمىدى\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "PKCS#12 ھۆججەتنى بىر تەرەپ قىلالمىدى: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "PKCS#12 ھۆججەتنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "X509 گۇۋاھنامىنى ئەكىرەلمىدى: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "PKCS#11 گۇۋاھنامىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5 hash نى دەسلەپلەشتۈرەلمىدى: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash خاتالىقى: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "PEM شىفىرلاش تىپىنى جەزملىيەلمىدى\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "قوللىمايدىغان PEM شىفىرلاش تىپى: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "base64 كود يەشكۈچتە PEM ھۆججەتنى شىېفىرلىغاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "شىفىرلانغان PEM ھۆججەت بەك قىسقا\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "PEM ھۆججەت شىفىرىنى يېشىش ئۈچۈن شىفىرنى دەسلەپلەشتۈرەلمىدى: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "PEM ئاچقۇچ شىفىرىنى يېشەلمىدى: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "PEM ئاچقۇچ شىفىرىنى يېشەلمىدى\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "PEM ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "بۇ ئىككىلىك نەشرى PKCS#11 نى قوللىمايدۇ\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11 گۇۋاھنامە %s ئىشلىتىدۇ\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "PKCS#11 دىن گۇۋاھنامە يۈكلىيەلمىدى: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "گۇۋاھنامە ھۆججىتى %s نى ئىشلىتىۋاتىدۇ\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 ھۆججەتتە گۇۋاھنامە يوق\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "ھۆججەتتە گۇۋاھنامە يوق" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "شەخسىي ئاچقۇچ قۇرۇلمىسىنى دەسلەپلەشتۈرۈۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "PKCS#11 ئاچقۇچ قۇرۇلمىسىنى دەسلەپلەشتۈرۈۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "PKCS#11 URL %s نى ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11 ئاچقۇچ %s ئىشلىتىدۇ\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "PKCS#11 ئاچقۇچنى شەخسىي ئاچقۇچ قۇرۇلمىسىغا ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى: " "%s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "شەخسىي ئاچقۇچ ھۆججەت %s نى ئىشلىتىدۇ\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "بۇ OpenConnect نەشرى TPM نى قوللىمايدۇ\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "PEM ھۆججەتنى چۈشەندۈرەلمىدى\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "PKCS#1 شەخسىي ئاچقۇچنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "شەخسىي ئاچقۇچنى PKCS#8 سۈپىتىدە يۈكلىيەلمىدى: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8 گۇۋاھنامە ھۆججەت شىفىرىنى يېشەلمىدى\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "شەخسىي ئاچقۇچ %s نىڭ تىپىنى جەزملىيەلمىدى\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "ئاچقۇچ ID غا ئېرىشەلمىدى: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" "شەخسىي ئاچقۇچ بىلەن سىناق سانلىق مەلۇماتتا تىزىمغا كىرىۋاتقاندا خاتالىق " "كۆرۈلدى: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" "گۇۋاھنامە ئىمزاسىغا نىسبەتەن دەلىللەش ئېلىپ بېرىۋاتقاندا خاتالىق كۆرۈلدى: " "%s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "شەخسىي ئاچقۇچقا ماس كېلىدىغان ھېچقانداق SSL گۇۋاھنامە تېپىلمىدى\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "خېرىدار گۇۋاھنامىسى '%s' نى ئىشلىتىدۇ\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "گۇۋاھنامە كۈچتىن قېلىش تىزىمىنى تەڭشەۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ئاگاھلاندۇرۇش: GnuTLS خاتا تارقىتىلغان گۇۋاھنامە قايتۇردى؛ دەلىللەش مەغلۇپ " "بولۇشى مۇمكىن!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "قوللايدىغان گۇۋاھنامىلەر ئۈچۈن ئەسلەك تەقسىملىيەلمىدى\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "قوللايدىغان CA '%s' قوشۇۋاتىدۇ\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "گۇۋاھنامىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "مۇلازىمېتىر تارقىتىدىغان گۇۋاھنامە يوق\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "X509 گۇۋاھنامە قۇرۇلمىسىنى دەسلەپلەشتۈرەلمىدى\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "مۇلازىمېتىرنىڭ گۇۋاھنامىسىنى ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "مۇلازىمېتىر گۇۋاھنامە ھالىتىنى تەكشۈرۈۋاتقاندا خاتالىق كۆرۈلدى\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "گۇۋاھنامە كۈچتىن قالدى" #: gnutls.c:1970 msgid "signer not found" msgstr "ئىمزا قويغۇچى تېپىلمىدى" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "ئىمزا قويغۇچى بىر CA گۇۋاھنامىسى ئەمەس" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "بىخەتەر بولمىغان ھېسابلاش ئۇسۇلى" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "گۇۋاھنامە تېخى ئاكتىپلانمىغان" #: gnutls.c:1978 msgid "certificate expired" msgstr "گۇۋاھنامىنىڭ ۋاقتى ئۆتكەن" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "ئىمزا دەلىللىيەلمىدى" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "گۇۋاھنامە ماشىنا ئاتىغا ماس كەلمىدى" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "مۇلازىمېتىر گۇۋاھنامىسىنى دەلىللىيەلمىدى: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "CA ھۆججەت گۇۋاھنامىسى ئۈچۈن ئەسلەك تەقسىملىيەلمىدى\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "CA ھۆججەتتىن گۇۋاھنامە ئوقۇيالمىدى: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "CA ھۆججەت '%s' تىن گۇۋاھنامە ئاچالمىدى: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى. چېكىنىۋاتىدۇ.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "TLS ئالدىنلىق تىزىقىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "%s بىلەن SSL كېڭىشى\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL باغلىنىشتىن ۋاز كەچتى\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL باغلىنالمىدى: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "قول ئېلىشىۋاتقاندا GnuTLS ئەجەللىك بولمىغان قايتۇرۇش: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "%s دا HTTPS غا باغلاندى\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "%s ئۈچۈن PIN زۆرۈر" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "PIN خاتا" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "بۇ قۇلۇپلاشتىن ئىلگىرىكى ئاخىرقى سىناق!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "قۇلۇپلاشتىن ئىلگىرى بىر قانچە قېتىملىق سىناقلا قالدى!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "PIN نى كىرگۈزۈڭ" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "ئىمزا ئۈچۈن SHA1 كىرگۈزگەن سانلىق مەلۇماتى مەغلۇپ بولدى: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "%d بايتلىق TPM ئىمزا فونكسىيەسىنى چاقىردى.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM hash نەڭ قۇرالمىدى: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "TPM hash نەڭدە قىممەتنى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash ئىمزالىيالمىدى: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "TSS key blob نى كود يېشىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "TSS key blob خاتالىقى\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "TPM تىل مۇھىتى قۇرالمىدى: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "TPM تىل مۇھىتىغا باغلىنالمىدى: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "TPM SRK ئاچقۇچىنى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "TPM SRK بىخەتەرلىك نەڭنى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "TPM PIN نى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "TPM key blob نى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN كىرگۈزۈڭ:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "ئاچقۇچ بىخەتەرلىك نەڭ قۇرالمىدى: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "بىخەتەرلىك ئاچقۇچىنى تەقسىملىيەلمىدى: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "TPM key PIN كىرگۈزۈڭ:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "ئاچقۇچ PIN نى تەڭشىيەلمىدى: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "cookies تەقسىملەيدىغان ئەسلەك يوق\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP ئىنكاسى '%s' نى تەھلىل قىلالمىدى\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP ئىنكاسىغا ئېرىشتى: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "HTTPS ئىنكاسىنى بىر تەرەپ قىلىۋاتقاندا خاتالىق كۆرۈلدى\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "يوچۇن HTTP ئىنكاس قۇرى '%s' غا پەرۋا قىلمايۋاتىدۇ\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "ئىناۋەتسىز cookie تەمىنلىگەن: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "SSL گۇۋاھنامە دەلىللىيەلمىدى\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "ئىنكاس گەۋدىسى مەنپىي چوڭلۇقتا (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "يوچۇن يوللاش كودلىنىشى: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP گەۋدىسى %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "HTTP ئىنكاس گەۋدىسىنى ئوقۇش خاتالىقى\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "بۆلەك بېشىغا ئېرىشىش خاتالىقى\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" "ۋاكالەتچى ئىنكاسىغا ئېرىشىشتە خاتالىق كۆرۈلدىHTTP ئىنكاس گەۋدىسىگە ئېرىشىش " "خاتالىقى\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "بۆلەك كۆد يېشىش خاتالىقى. مۆلچەرلىگىنى ''، ئېرىشكىنى: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "باشلىنىش يېپىلمىغان HTTP 1.0 گەۋدىسىنى قوبۇل قىلالمايدۇ\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "قايتا نىشانلايدىغان URL '%s' نى تەھلىل قىلالمىدى: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "قايتا نىشانلايدىغان https ئەمەس URL '%s' غا ئەگىشەلمىدى\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "مۇناسىۋەتلىك قايتا نىشانلاش ئۈچۈن يېڭى يولنى تەقسىملىيەلمىدى: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "مۇلازىمېتىرنىڭ ئويلىشىلمىغان %d نەتىجىسى\n" #: http.c:1056 msgid "request granted" msgstr "ئىجازەت ئىلتىماسى" #: http.c:1057 msgid "general failure" msgstr "ئادەتتىكى مەغلۇبىيەت" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "قائىدە توپلىمى باغلىنىشقا يول قويمىدى" #: http.c:1059 msgid "network unreachable" msgstr "تورغا يېتەلمەيدۇ" #: http.c:1060 msgid "host unreachable" msgstr "ماشىنىغا يېتەلمەيدۇ" #: http.c:1061 msgid "connection refused by destination host" msgstr "نىشان ماشىنا باغلىنىشنى رەت قىلدى" #: http.c:1062 msgid "TTL expired" msgstr "TTL ۋاقتى ئۆتتى" #: http.c:1063 msgid "command not supported / protocol error" msgstr "بۇيرۇقنى قوللىمايدۇ/كېلىشىم خاتالىقى" #: http.c:1064 msgid "address type not supported" msgstr "ئادرېس تىپىنى قوللىمايدۇ" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "دەلىللەش ئىلتىماسىنى SOCKS ۋاكالەتچىگە يېزىش خاتالىقى: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "دەلىللەش ئىنكاسىنى SOCKS ۋاكالەتچىدىن ئوقۇش خاتالىقى: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "SOCKS ۋاكالەتچىنىڭ ئويلاشمىغان دەلىللەش ئىنكاسى: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "%s غا SOCKS ۋاكالەتچى باغلىنىش ئىلتىماسى: %d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "باغلىنىش ئىلتىماسىنى SOCKS ۋاكالەتچىگە يېزىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "باغلىنىش ئىنكاسىنى SOCKS ۋاكالەتچىدىن ئوقۇش خاتالىقى: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "SOCKS ۋاكالەتچىدىن كەلگەن ئويلاشمىغان باغلىنىش ئىنكاسى: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS ۋاكالەتچى خاتالىقى %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS ۋاكالەتچى خاتالىقى %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "SOCKS باغلىنىش ئىنكاسىدىكى ئويلاشمىغان ئادرېس تىپى %02x\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "%s غا HTTP ۋاكالەتچى باغلىنىش ئىلتىماسى: %d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "ۋاكالەتچى ئىلتىماسىنى يوللىيالمىدى: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "ۋاكالەتچى CONNECT ئىلتىماسى مەغلۇپ بولدى: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "يوچۇن ۋاكالەتچى خاتالىقى '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "پەقەت http ياكى socks(5) نىلا قوللايدۇ\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "ئىچكى SSL ئامبار نەشرىدە Cisco DTLS نى قوللىمايدۇ\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "مۇلازىمېتىر URL '%s' نى تەھلىل قىلالمىدى\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "مۇلازىمېتىر URL پەقەت https:// غىلا يول قويىدۇ\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "كۆزنەك بىر تەرەپ قىلغۇچ يوق؛ دەلىللىيەلمەيدۇ\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "stdin دىن ھەرپ تىزىقىنى تەقسىملىيەلمىدى\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "OpenConnect ھەققىدىكى ياردەمنى تۆۋەندىكى تورتۇرادىن كۆرۈڭ\n" "http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL. ئىشلىتىش ئىقتىدار تونۇشتۇرۇش:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS. ئىشلىتىش ئىقتىدار تونۇشتۇرۇش:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL موتورى مەۋجۇت ئەمەس" #: main.c:613 msgid "using OpenSSL" msgstr "OpenSSL ئىشلەت" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "ئاگاھلاندۇرۇش: بۇ ئىككىلىك ھالەتتە DTLS نى قوللىمايدۇ. ئۈنۈمى تەسىرگە " "ئۇچرىشى مۇمكىن.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "ئىشلىتىلىشى: openconnect [options] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Cisco AnyConnect VPN ئوچۇق خېرىدارى، نەشرى %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "سەپلىمە ھۆججەتتىن تاللانمىلارنى ئوقۇ" #: main.c:710 msgid "Continue in background after startup" msgstr "قوزغالغاندىن كېيىن ئارقا سۇپىدا داۋاملاشتۇر" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "نازارەتچىنىڭ PID نى بۇ ھۆججەتكە ياز" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "SSL خېرىدار گۇۋاھنامىسى CERT نى ئىشلەت" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "گۇۋاھنامىنىڭ ئىناۋەتلىك ۋاقتىنى ئاگاھلاندۇر < DAYS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "SSL شەخسىي ئاچقۇچ ھۆججەت ئاچقۇچىنى ئىشلەت" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "WebVPN cookie COOKIE ئىشلەت" #: main.c:717 msgid "Read cookie from standard input" msgstr "ئۆلچەملىك كىرگۈزۈشتىن cookie ئوقۇ" #: main.c:718 msgid "Enable compression (default)" msgstr "پىرىسلاشنى قوزغات (كۆڭۈلدىكى)" #: main.c:719 msgid "Disable compression" msgstr "پىرىسلاشنى چەكلە" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "usergroup تىزىمغا كىرىش تەڭشىكى" #: main.c:722 msgid "Display help text" msgstr "ياردەم مەتىننى كۆرسەت" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "تونىل ئېغىزى ئۈچۈن IFNAME ئىشلەت" #: main.c:725 msgid "Use syslog for progress messages" msgstr "سۈرئەت ئۇچۇرى ئۈچۈن syslog ئىشلەت" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "باغلانغاندىن كېيىن ئالدىنلىقنى تاشلا" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "CSD نى ئىجرا قىلىش جەريانىدا ئالدىنلىقنى تاشلا" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "CSD ئىككىلىكنىڭ ئورنىغا SCRIPT ئىجرا قىل" #: main.c:733 msgid "Request MTU from server" msgstr "مۇلازىمېتىردىن MTU ئىلتىماسى" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "مۇلازىمېتىرغا/دىن MTU يولىنى كۆرسەت" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "ئاچقۇچ ئىم جۈملىسى ياكى TPM SRK PIN تەڭشىكى" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "ھۆججەت سىستېمىسىنىڭ ھالقىلىق ئىم جۈملىسى fsid" #: main.c:737 msgid "Set proxy server" msgstr "ۋاكالەتچى مۇلازىمېتىر تەڭشەك" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "ۋاكالەتچىنى چەكلە" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "ئۆزلۈكىدىن سەپلىنىدىغان ۋاكالەتچى libproxy نى ئىشلەت" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(دىققەت: libproxy بۇ نەشرىدە چەكلەنگەن)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "ئازراق چىقىرىش" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "بوغچا قاتار چېكىنى LEN pkts غا تەڭشە" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "vpnc ماسلىشىشچان سەپلىمە قوليازمىسىنىڭ Shell بۇيرۇقى قۇرى" #: main.c:748 msgid "default" msgstr "كۆڭۈلدىكى" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "تىزىمغا كىرىدىغان ئىشلەتكۈچى ئاتى تەڭشىكى" #: main.c:753 msgid "Report version number" msgstr "دوكلات نەشر نومۇرى" #: main.c:754 msgid "More output" msgstr "تېخىمۇ كۆپ چىقىرىش" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "XML سەپلىمە ھۆججەت" #: main.c:757 msgid "Choose authentication login selection" msgstr "دەلىللەپ تىزىمغا كىرىش تاللانمىسىنى تاللاڭ" #: main.c:758 msgid "Authenticate only and print login info" msgstr "پەقەت دەلىللەش ۋە باسىدىغان تىزىمغا كىرىش ئۇچۇرى بار" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "webvpn cookie غىلا ئېرىش؛ باغلانما" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "باغلىنىشتىن ئىلگىرى webvpn cookie نى باس" #: main.c:761 msgid "Cert file for server verification" msgstr "مۇلازىمېتىر دەلىللەش ئۈچۈن گۇۋاھنامە ھۆججەت" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6 باغلىنىشىنى سورىما" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "DTLS نى قوللايدىغان OpenSSL شىفىر" #: main.c:764 msgid "Disable DTLS" msgstr "DTLS نى چەكلە" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "HTTP باغلىنىشىنى قايتا ئىشلىتىشنى چەكلە" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "ئىم/SecurID دەلىللەشنى چەكلە" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "مۇلازىمېتىر SSL گۇۋاھنامىسى زۆرۈر بولماسلىق ئىناۋەتلىك" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "ئىشلەتكۈچى كىرگۈزۈشنى ئۈمىد قىلما؛ زۆرۈر بولسا چېكىن" #: main.c:771 msgid "Read password from standard input" msgstr "ئۆلچەملىك كىرگۈزۈشتىن ئىم ئوقۇ" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "سېكۇنت بىلەن ئىپادىلەنگەن باغلىنىشنى قايتا سىناش مۆھلىتى" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "مۇلازىمېتىرنىڭ گۇۋاھنامە SHA1 بارماق ئىزى" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP بېشىنىڭ ئىشلەتكۈچى ۋاكالەتچىسى: سۆز بۆلىكى" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "DTLS سانلىق مەلۇمات بوغچىسىنىڭ يەرلىك ئېغىز تەڭشىكى" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "سەپلىمە ھۆججەتتىن قۇرغا ئېرىشەلمىدى: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "%d قۇردىكى تونۇيالمايدىغان تاللانما: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' تاللانما %d قۇردىكى ئۆزگەرگۈچىگە ئېرىشەلمىدى\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' تاللانما %d قۇردىكى ئۆزگەرگۈچىنى ئىلتىماس قىلدى\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ئاگاھلاندۇرۇش: بۇ نەشرىدىكى openconnect بولسا %s ئەمما libopenconnect " "ئامبىرى %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "vpninfo قۇرۇلمىسىنى تەقسىملىيەلمىدى\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "ئىناۋەتسىز ئىشلەتكۈچى «%s»\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "سەپلىمە ھۆججەتتە 'config' تاللانمىسىنى ئىشلىتەلمەىدى\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "سەپلىمە ھۆججەت «%s»نى ئاچالمىدى: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d بەك كىچىك\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "تاللانما -no-http-keepalive نى قايتا ئىشلىتىش سەۋەبىدىن بارلىق HTTP باغلىنىش " "چەكلەندى.\n" "ئەگەر بۇنىڭ ياردىمى بولسا غا دوكلات " "قىلىڭ.\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "قاتار ئۇزۇنلۇقىنىڭ نۆل بولۇشىغا يول قويۇلمايدۇ؛ 1 نى ئىشلىتىڭ\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect نەشرى %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "بۇيرۇق قۇرىدا ئۆزگەرگۈچى بەك كۆپ\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "مۇلازىمېتىر بەلگىلەنمىگەن\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "openconnect نىڭ بۇ نەشرى libproxy نى قوللىمايدۇ \n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "WebVPN cookie غا ئېرىشەلمىدى\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL باغلىنىشى قۇرالمىدى\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "tun ئۈسكۈنىسىنى تەڭشىيەلمىدى\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "DTLS نى تەڭشىيەلمىدى؛ ئورنىغا SSL ئىشلىتىڭ\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "ھېچقانداق --script ئۆزگەرگۈچى تەمىنلەنمىگەن؛ DNS ۋە يېتەكلىگۈچ سەپلەنمىگەن\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "http://www.infradead.org/openconnect/vpnc-script.html نى كۆرۈڭ\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "يېزىش ئۈچۈن «%s»نى ئاچالمىدى: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "ئارقا سۇپىدا داۋاملاشتۇر؛ pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "يېزىش ئۈچۈن %s نى ئاچالمىدى: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "سەپلىمىنى %s غا يازالمىدى: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "مۇلازىمېتىر SSL گۇۋاھنامىسى ماسلاشمىدى: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "VPN مۇلازىمىتىر «%s» دىن گۇۋاھنامە دەلىللىيەلمىدى.\n" "سەۋەبى: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "«%s» كىرگۈزۈلسە قوشۇلىدۇ، «%s» چېكىنىدۇ؛ ئۇنداق بولمىسا كۆرسىتىدۇ: " #: main.c:1661 main.c:1679 msgid "no" msgstr "ياق" #: main.c:1661 main.c:1667 msgid "yes" msgstr "ھەئە" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "دەلىللەشكە «%s»نى تاللاپ ئىشلەتكىلى بولمايدۇ\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "تەسىرلەشمەيدىغان ھالەتتە ئىشلەتكۈچى كىرگۈزۈشى زۆرۈر\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "ھېچقانداق ئىش يوق؛ %dms ئۇخلايدۇ…\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "SSL socket نى يازالمىدى\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "SSL socket تىن ئوقۇيالمىدى\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL ئوقۇش خاتالىقى %d (مۇلازىمېتىر باغلىنىشنى تاقىشى مۇمكىن)؛ قايتا " "باغلىنىۋاتىدۇ.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write مەغلۇپ بولدى: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM ئىم جۈملىسى بەك ئۇزۇن (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s نىڭ زىيادە گۇۋاھنامىسى: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "PKCS#12 نى تەھلىل قىلالمىدى (ئۈستىدىكى خاتالىقلارنى كۆرۈڭ)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 دا گۇۋاھنامە يوق!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 دا شەخسىي ئاچقۇچ يوق!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "TPM موتۇرنى يۈكلىيەلمىدى.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "TPM موتۇرنى دەسلەپلەشتۈرەلمىدى\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "TPM SRK ئىمنى تەڭشىيەلمىدى\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "TPM شەخسىي ئاچقۇچنى يۈكلىيەلمىدى\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "TPM دىن ئاچقۇچ قوشالمىدى\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "گۇۋاھنامە ھۆججىتى %s نى ئاچالمىدى: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "ئاچقۇچ ئامبار تۈرى '%s' دىن BIO نى قۇرالمىدى\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "شەخسىي ئاچقۇچنى يۈكلىيەلمىدى (ئىم جۈملىسى خاتا؟)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "شەخسىي ئاچقۇچنى يۈكلىيەلمىدى (ئۈستىدىكى خاتالىقلارنى كۆرۈڭ)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن X509 گۇۋاھنامىنى يۈكلىيەلمىدى\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن X509 گۇۋاھنامىنى ئىشلىتەلمىدى\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن شەخسىي ئاچقۇچنى ئىشلىتەلمىدى\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "شەخسىي ئاچقۇچ ھۆججىتى %s نى ئاچالمىدى: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "شەخسىي ئاچقۇچ ھۆججىتى %s نى تونۇيالمىدى\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "DNS altname '%s' ماسلاشتى\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "altname '%s' ماس كېلىدىغىنى يوق\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "ماسلاشقىنى %s ئادرېس '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "'%s' ئۈچۈن ماس كېلىدىغىنى يوق ئادرېس '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' نىڭ بوش ئەمەس يولى بار؛ پەرۋا قىلمايۋاتىدۇ\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "ماس كەلگەن URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "URI '%s' ئۈچۈن ماس كەلگىنى يوق\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile دىن زىيادە گۇۋاھنامە: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "خېرىدار گۇۋاھنامەدىكى notAfter سۆز بۆلەك خاتالىقى\n" #: openssl.c:1362 msgid "" msgstr "<خاتالىق>" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "CA ھۆججەت '%s' تىن گۇۋاھنامە ئوقۇش خاتالىقى\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "CA ھۆججەت '%s' تىن ئوقۇيالمىدى\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL باغلىنالمىدى\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket باغلىنىشتىن ۋاز كەچتى\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "ۋاكالەتچى %s غا قايتا باغلىنالمىدى\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "ماشىنا %s غا قايتا باغلىنالمىدى\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "libproxy دىن كەلگەن ۋاكالەتچى: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "ماشىنا '%s' نىڭ getaddrinfo مەغلۇپ بولدى: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "sockaddr ساقلىغۇچنى تەقسىملىيەلمىدى\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "ماشىنا %s غا باغلىنالمىدى\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "خاتالىق يوق" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "ئاچقۇچ ئامبىرى دەسلەپلەشتۈرۈلمىگەن" #: ssl.c:590 msgid "System error" msgstr "سىستېما خاتالىقى" #: ssl.c:591 msgid "Protocol error" msgstr "كېلىشىم خاتالىقى" #: ssl.c:592 msgid "Permission denied" msgstr "ھوقۇقى رەت قىلىندى" #: ssl.c:593 msgid "Key not found" msgstr "ئاچقۇچ تېپىلمىدى" #: ssl.c:594 msgid "Value corrupted" msgstr "قىممەت بۇزۇلغان" #: ssl.c:595 msgid "Undefined action" msgstr "بەلگىلەنمىگەن مەشغۇلات" #: ssl.c:599 msgid "Wrong password" msgstr "ئىم خاتا" #: ssl.c:600 msgid "Unknown error" msgstr "يوچۇن خاتالىق" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "ئۇخلاش %ds، قالغان مۆھلىتى %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "ئۈسكۈنە كىملىكى:" #: stoken.c:89 msgid "Password:" msgstr "ئىم:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ئۈسكۈنە كىملىكى ياكى ئىم خاتا؛ قايتا سىناڭ.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "ئىناۋەتسىز PIN پىچىمى، قايتا سىناڭ.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "IP نى ئىتتىرەلمىدى" #: tun.c:102 msgid "Can't set ifname" msgstr "ifname نى تەڭشىيەلمىدى" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "%s ئاچالمايدۇ: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun ئاچ" #: tun.c:145 msgid "Failed to create new tun" msgstr "يېڭى tun قۇرالمىدى" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "ئوچۇق تور" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "tun ئۈسكۈنىسىنى ئاچالمىدى: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "ئىناۋەتسىز ئېغىز ئاتى '%s'؛ 'tun%%d' غا ماسلىشىش كېرەك\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "'%s' ئاچالمىدى: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(قوليازما)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "يوچۇن بوغچا (len %d) تاپشۇرۇۋالدى: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "كەلگەن بوغچىنى يازالمىدى: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "«%s» ماشىنىنى raw ماشىنا سۈپىتىدە بىر تەرەپ قىلىدۇ\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML سەپلىمە ھۆججەت SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML سەپلىمە ھۆججىتى «%s» نى تەھلىل قىلالمىدى\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "«%s» ماشىنىنىڭ ئادرېسى «%s»\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "«%s» ماشىنىنىڭ UserGroup «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "«%s» ماشىنا سەپلىمە تىزىمىدا يوق؛ raw ماشىنا سۈپىتىدە بىر تەرەپ قىلىدۇ\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/ar.po0000664000076400007640000020674512502026115012304 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # osama7 , 2013 # osama7 , 2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2014-02-19 09:05+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Arabic (http://www.transifex.com/projects/p/meego/language/" "ar/)\n" "Language: ar\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 " "&& n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5;\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "لا يمكن التعامل بهذه الطريقة ='%s' العمل ='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "النموذج ليس له أسم\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "الأسم%s غير مدخل\n" #: auth.c:186 msgid "No input type in form\n" msgstr "لايوجد مدخلات في النموذج\n" #: auth.c:198 msgid "No input name in form\n" msgstr "لايوجد اسم مدخل في النموذج\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "شكل غير معروف مدخل %s في النموذج\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "فشل في تحليل استجابة الملقم\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "الرد هو:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "طلب لكلمة المرور ولكن '- لايوجد كلمة مرور' معينة\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "" #: main.c:1661 main.c:1667 msgid "yes" msgstr "" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "خيار المصادقة \"%s\" غير متاح\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/id.po0000664000076400007640000026572012502026115012274 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Andika Triwidada , 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Indonesian (http://www.transifex.com/projects/p/meego/" "language/id/)\n" "Language: id\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Tak bisa menangani method='%s', action='%s' milik form\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Gagal menjangkitkan kode token OTP: menonaktifkan token\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Pilihan form tak punya nama\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "nama %s bukan masukan\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Tak ada tipe masukan dalam form\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Tak ada nama masukan dalam form\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipe masukan %s tak dikenal dalam form\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Respon kosong dari server\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Gagal mengurai respon server\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Respon adalah:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Menerima ketika tak mengharapkannya.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "Respon XML tak memiliki node \"auth\"\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Meminta sandi tapi '--no-passwd' ditata\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Tak mengunduh profil XML karena SHA1 telah cocok\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Gagal membuka koneksi HTTPS ke %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Gagal mengirim permintaan GET untuk konfig baru\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Konfig yang diunduh tak cocok dengan SHA1 yang dikehendaki\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Mengunduh profil XML baru\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Galat: Menjalankan trojan 'Cisco Secure Desktop' pada Windows belum " "diimplementasi.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Galat: Server meminta kita menjalankan hostscan CSD.\n" "Anda perlu menyediakan agrumen --csd-wrapper yang sesuai.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Galat: Server meminta kita untuk mengunduh dan menjalankan suatu trojan " "'Cisco Secure Desktop'.\n" "Fasilitas ini dinonaktifkan secara baku untuk alasan keamanan, maka Anda " "mungkin ingin memfungsikannya.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Mencoba menjalankan skrip trojan CSD Linux.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Gagal membuka berkas skrip CSD temporer: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Gagal menulis berkas skrip CSD sementara: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Gagal menata uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "uid=%ld milik pengguna tak valid\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Gagal mengubah ke direktori rumah CSD '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Peringatan: Anda sedang menjalankan kode CSD yang tak aman dengan hak root\n" "\t Gunakan opsi baris perintah \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Gagal exec skrip CSD %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Respon tak dikenal dari server\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server meminta sertifikat klien SSL setelah satu disediakan\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server meminta sertifikat klien SSL; tak ada yang dikonfigurasi\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST difungsikan\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Menyegarkan %s setelah 1 detik...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GALAT: Tak bisa menginisialisasi soket\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "GALAT KRITIS: Rahasia induk DTLS tak terinisialisasi. Harap laporkan ini.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Galat saat membuat permintaan HTTPS CONNECT\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Galat saat mengambil respon HTTPS\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Layanan VPN tak tersedia; alasan: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Mendapat respon HTTP CONNECT yang tak sepantasnya: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Mendapat respon CONNECT: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Tak ada memori bagi opsi\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID buka 64 karacter; yaitu: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s tak dikenal\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "MTU tak diterima. Menggugurkan\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Alamat IP tak diterima. Menggugurkan\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Menyambung ulang memberi alamat IP Legacy yang berbeda (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Menyambung ulang memberi netmask IP Legacy yang berbeda (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Menyambung ulang memberi alamat IPv6 yang berbeda (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Menyambung ulang memberi netmask IPv6 yang berbeda (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP tersambung. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Penyiapan kompresi gagal\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Alokasi penyangga deflate gagal\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "inflate gagal\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate gagal %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Panjang paket tak diharapkan. SSL_read mengembalikan %d tapi paket\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Mendapat permintaan CSTP DPD\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Mendapat respon CSTP DPD\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Mendapat CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Menerima paket data tak terkompresi %d byte\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Menerima pemutusan server: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Paket terkompresi diterima dalam mode !deflate\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "menerima paket terminasi server\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paket tak dikenal %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL menulis terlalu sedikit byte! Minta %d, dikirimi %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Kunci ulang CSTP jatuh tempo\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Jabat tangan ulang gagal; mencoba tunnel baru\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Pendeteksi Pasangan Mati CSTP mendeteksi pasangan yang mati!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Sambung ulang gagal\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Kirim DPD CSTP\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Kirim Keepalive CSTP\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Mengirim paket data tak terkompresi %d byte\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Kirim paket BYE: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Mencoba otentikasi digest ke proksi\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Inisialisasi sesi DTLSv1 gagal\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inisialisasi DTLSv1 CTX gagal\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Penataan daftar cipher DTLS gagal\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Bukan secara tepat satu cipher DTLS\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() gagal dengan versi protokol lama 0x%x\n" "Apakah Anda memakai versi OpenSSL yang lebih tua dari 0.9.8m?\n" "Lihat http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Pakai opsi baris perintah --no-dtls untuk menghindari pesan ini\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Terjalin koneksi DTLS (memakai OpenSSL). Ciphersuite %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "OpenSSL Anda lebih tua daripada yang Anda pakai untuk membangun, sehingga " "DTLS mungkin gagal!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Habis waktu jabat tangan DTLS\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ini mungkin karena OpenSSL Anda rusak\n" "Lihat http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Jabat tangan DTLS gagal: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parameter DTLS tak dikenal bagi CipherSuite '%s' yang diminta\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Gagal menata prioritas DTLS: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Gagal menata parameter sesi DTLS: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Gagal menata MTU DTLS: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Terjalink koneksi DTLS (memakai GnuTLS). Ciphersuite %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Jabat tangan DTLS gagal: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "Koneksi DTLS dicoba dengan fd yang ada\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Tak ada alamat DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server tak menawarkan opsi cipher DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Tak ada DTLS ketika tersambung lewat proksi\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opsi DTLS %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS diinisialisasi. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Mencoba koneksi DTLS baru\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Diterima paket DTLS 0x%02x dari %d byte\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Mendapat permintaan DTLS DPD\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Gagal mengirim respon DPD. Mengharapkan pemutusan koneksi\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Mendapat respon DTLS DPD\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Mendapat DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipe paket DTLS tak dikenal %02x, len %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Kunci ulang DTLS jatuh tempo\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Jabat tangan ulang DTLS gagal; menyambung ulang.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Pendeteksi Pasangan Mati DTLS mendeteksi pasangan yang mati!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Kirim DPD DTLS\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Gagal mengirim permintaan DPD. Mengharapkan pemutusan koneksi\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Kirim Keepalive DTLS\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Gagal mengirim permintaan keepalive. Mengharapkan pemutusan koneksi\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS mendapat galat tulis %d. Berpindah ke SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS mendapat galat tulis: %s. Berpindah ke SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Dikirim paket DTLS %d byte; DTLS send mengembalikan %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL write dibatalkan\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Gagal menulis ke soket SSL: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL read dibatalkan\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "Soket SSL ditutup tak secara bersih\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Gagal baca dari soket SSL: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Galat SSL read: %s; menyambung ulang.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL send gagal: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Tak bisa mengekstrak waktu kedaluarsa dari sertifikat\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Sertifikat klien telah kedaluarsa pada" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Sertifikat klien segera kedaluarsa pada" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Gagal memuat butir '%s' dari penyimpanan kunci: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Gagal membuka berkas kunci/sertifikat %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Gagal men-stat berkas kunci/sertifikat %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Gagal mengalokasikan penyangga sertifikat\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Gagal membaca sertifikat ke dalam memori: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Gagal menyiapkan struktur data PKCS#12: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#12\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Masukkan frasa sandi PKCS#12:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Gagal memroses berkas PKCS#12: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Gagal memuat sertifikat PKCS#12: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Pengimporan sertifikat X509 gagal: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Penataan sertifikat PKCS#12 gagal: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Tak bisa menginisialisasi hash MD5: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Galat hash MD5: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Kurang DEK-Info: header dari kunci terenkripsi OpenSSL\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Tak bisa menentukan tipe enkripsi PEM\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipe enkripsi PEM yang tak didukung: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Salt tak valid dalam berkas PEM yang terenkripsi\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Galat saat mengawa kode base64 berkas PEM terenkripsi: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Berkas PEM terenkripsi terlalu pendek\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Gagal menginisialisasi cipher untuk pendekripsian berkas PEM: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Gagal mendekripsi kunci PEM: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Pendekripsian kunci PEM gagal\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Masukkan frasa sandi PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Biner ini dibangun tanpa dukungan PKCS#12\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Memakai sertifikat PKCS#11 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Galat saat memuat sertifikat dari PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Memakai berkas sertifikat %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "Berkas PKCS#11 tak memuat sertifikat\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Tak ditemukan sertifikat dalam berkas" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Pemuatan sertifikat gagal: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Galat saat menginisialisasi struktur kunci pribadi: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Galat saat menginisialisasi struktur kunci PKCS#11: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Galat saat mengimpor URL PKCS#11 %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Memakai kunci PKCS#11 %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Galat saat mengimpor kunci PKCS#11 ke struktur kunci pribadi: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Memakai berkas kunci pribadi %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Gagal mengintepretasi berkas PEM\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Gagal memuat kunci privat PKCS#1: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Gagal memuat kunci privat sebagai PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#8\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Gagal menentukan jenis kunci privat %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Gagal memperoleh ID kunci: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Galat saat menandatangani data uji dengan kunci privat: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Galat saat memvalidasi tanda tangan terhadap sertifikat: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Tak ditemukan sertifikat SSL yang cocok dengan kunci privat\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Memakai sertifikat klien '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Pengaturan daftar pencabutan sertifikat gagal: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Gagal mengalokasikan memori untuk sertifikat\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "PERINGATAN: GnuTLS mengembalikan sert penerbit yang tak benar; otentikasi " "mungkin gagal!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Mendapat CA berikutnya '%s' dari PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Gagal mengalokasikan memori untuk sertifikat pendukung\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Menambah dukungan CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Penataan sertifikat gagal: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server tak menyajikan sertifikat\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Galat saat menginisialisasi struktur sert X509\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Galat ketika mengimpor sert server\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Galat saat memeriksa status sert server\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "sertifikat dicabut" #: gnutls.c:1970 msgid "signer not found" msgstr "penandatangan tak ditemukan" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "penandatangan bukan suatu sertifikat CA" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "algoritma tak aman" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "sertifikat belum diaktifkan" #: gnutls.c:1978 msgid "certificate expired" msgstr "sertifikat kadaluarsa" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "verifikasi tandatangan gagal" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "sertifikat tak cocok dengan nama host" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Gagal verifikasi sertifikat server: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Gagal mengalokasikan memori untuk sert cafile\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Gagal baca sert dari cafile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Gagal membuka berkas CA '%s': %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Pemuatan sertifikat gagal. Menggugurkan.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Gagal menata string prioritas TLS: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negosiasi SSL dengan %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Koneksi SSL dibatalkan\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Kegagalan koneksi SSL: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS kembalian tak fatal selama jabat tangan: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Tersambung ke HTTPS pada %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Renegosiasi SSL pada %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Diperlukan PIN untuk %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "PIN salah" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Ini adalah percobaan terakhir sebelum penguncian!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Hanya beberapa percobaan tersisa sebelum mengunci!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Masukkan PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Gagal untuk men-SHA1 data masukan untuk penandatanganan: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Fungsi tanda tangan TPM dipanggil untuk %d byte.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Gagal membuat objek hash TPM: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Gagal menata nilai dalam objek hash TPM: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Tandatangan hash TPM gagal: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Galat saat mengawa kode blob kunci TSS: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Galat dalam blob kunci TSS\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Gagal membuat konteks TPM: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Gagal menyambung konteks TPM: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Gagal memuat kunci SRK TPM: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Gagal memuat objek kebijakan SRK TPM: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Gagal menata PIN TPM: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Gagal memuat blob kunci TPM: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Masukkan PIN SRK TPM:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Gagal membuat objek kebijakan kunci: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Gagal menugaskan kebijakan ke kunci: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Masukkan PIN kunci TPM:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Gagal menata PIN kunci: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Galat saat mengimpor nama GSSAPI untuk otentikasi\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Galat saat menjangkitkan respons GSSAPI\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Mencoba otentikasi GSSAPI ke proksi\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Otentikasi GSSAPI telah lengkap\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI terlalu besar (%zd byte)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Sedang mengirim token GSSAPI berukuran %zu byte\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Gagal mengirim token otentikasi GSSAPI ke proksi: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Gagal menerima token otentikasi GSSAPI dari proksi: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Server SOCKS melaporkan kegagalan konteks GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Respons status GSSAPI yang tak dikenal (0x%02x) dari server SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat token GSSAPI berukuran %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Mengirim negosiasi proteksi GSSAPI %zu byte\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Gagal mengirim respons proteksi GSSAPI ke proksi: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Gagal menerima respons proteksi GSSAPI dari proksi: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat respons proteksi GSSAPI %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Respons proteksi GSSAPI yang tak valid dari proksi (%zu byte)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Proksi SOCKS menuntut integritas pesan, yang tak didukung\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proksi SOCKS menuntut kerahasiaan pesan, yang tak didukung\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proksi SOCKS menuntuk proteksi yang tak dikenal bertipe 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Mencoba otentikasi Dasar HTTP ke proksi\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proksi meminta otentikasi Dasar yang secara baku dinonaktifkan\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Tak ada lagi metoda otentikasi yang dapat dicoba\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Tak ada memori untuk mengalokasikan cookie\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Gagal mengurai tanggapan HTTP '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Mendapat respon HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Galat saat memroses respon HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Mengabaikan baris respon HTTP tak dikenal '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie yang tak valid ditawarkan: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Otentikasi sertifikat SSL gagal\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Tubuh respon punya ukuran negatif (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transfer-Encoding tak dikenal: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Galat saat membaca tubuh respon HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Galat saat mengambil tajuk penggalan\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Galat saat mengambil tubuh respon HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Galat dalam pengawakodean terpenggal. Berharap '', mendapat: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Tak bisa menerima tubuh HTTP 1.0 tanpa menutup koneksi\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Gagal mengurai URL terbelokkan '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Tak bisa mengikuti pengalihan ke URL bukan https '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Gagal mengalokasikan path baru bagi pengalihan relatif: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Hasil %d yang tak diharapkan dari server\n" #: http.c:1056 msgid "request granted" msgstr "permintaan diberikan" #: http.c:1057 msgid "general failure" msgstr "kegagalan umum" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "koneksi tidak diijinkan oleh ruleset" #: http.c:1059 msgid "network unreachable" msgstr "jaringan tak dapat dijangkau" #: http.c:1060 msgid "host unreachable" msgstr "host tak dapat dihubungi" #: http.c:1061 msgid "connection refused by destination host" msgstr "koneksi ditolak oleh host tujuan" #: http.c:1062 msgid "TTL expired" msgstr "TTL kadaluarsa" #: http.c:1063 msgid "command not supported / protocol error" msgstr "perintah tidak didukung / galat protokol" #: http.c:1064 msgid "address type not supported" msgstr "tipe alamat tidak didukung" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "Server SOCKS meminta nama pengguna/sandi tapi kami tak punya\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Nama pengguna dan sandi untuk otentikasi SOCKS mesti < 255 byte\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Galat saat menulis permintaan auth ke proksi SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Galat saat membaca respon auth dari proksi SOCKS: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Respon auth yang tak diharapkan dari proksi SOCKS: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Terotentikasi ke server SOCKS memakai sandi\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Otentikasi sandi ke server SOCKS gagal\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Server SOCKS meminta otentikasi GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "Server SOCKS meminta otentikasi sandi\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "Server SOCKS memerlukan otentikasi\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Server SOCKS meminta otentikasi yang tak dikenal bertipe %02x\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Meminta koneksi proksi SOCKS ke %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Galat saat menulis permintaan koneksi ke proksi SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Galat saat membaca respon koneksi dari proksi SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Respon koneksi yang tak diharapkan dari proksi SOCKS: %02x %02x\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Galat proksi SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Galat proksi SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipe alamat yang tak diharapkan %02x dalam respon koneksi SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Meminta koneksi proksi HTTP ke %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Pengiriman permintaan proksi gagal: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Permintaan CONNECT proksi gagal: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipe proksi '%s' tak dikenal\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Hanya proksi http atau socks(5) yang didukung\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Dibangun terhadap pustaka SSL tanpa dukungan DTLS Cisco\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Gagal mengurai URL server '%s\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Hanya https:// yang diijinkan bagi URL server\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Tak ada penangan formulir; tak bisa mengotentikasi.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() gagal: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Galat fatal dalam penanganan baris perintah\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Galat saat mengonversi masukan konsol: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Kegagalan alokasi bagi string dari stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Untuk bantuan atas OpenConnect, harap lihat halaman web di\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Memakai OpenSSL. Fitur yang ada:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Memakai GnuTLS. Fitur yang ada:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "MESIN OpenSSL tak ada" #: main.c:613 msgid "using OpenSSL" msgstr "menggunakan OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "PERINGATAN: Tak ada dukungan DTLS dalam biner ini. Kinerja akan terganggu.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Tak bisa memroses path executable \"%s\" ini" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokasi bagi path vpnc-script gagal\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Cara pakai: openconnect [opsi] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Klien terbuka bagi VPN Cisco AnyConnect, versi %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Baca opsi dari berkas konfig" #: main.c:710 msgid "Continue in background after startup" msgstr "Lanjutkan di latar belakang setelah awal mula" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Tulis PID daemon ke berkas ini" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Pakai sertifikat klien SSL SERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Peringatkan ketika masa hidup sertifikat < HARI" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Memakai berkas kunci pribadi SSL KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Memakai cookie WebVPN COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Baca cookie dari masukan standar" #: main.c:718 msgid "Enable compression (default)" msgstr "Aktifkan kompresi (baku)" #: main.c:719 msgid "Disable compression" msgstr "Matikan kompresi" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Atur interval Dead Peer Detection (Deteksi Peer Mati) minimum" #: main.c:721 msgid "Set login usergroup" msgstr "Tata grup log masuk" #: main.c:722 msgid "Display help text" msgstr "Tampilkan teks bantuan" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Memakai IFNAME untuk antar muka terowongan" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Pakai syslog untuk pesan-pesan kemajuan" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Sisipkan tanda waktu ke pesan-pesan kemajuan" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Lepas privilese setelah menyambung" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Lepas privilese selama eksekusi CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Jalankan SKRIP sebagai pengganti biner CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Minta MTU dari server" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Indikasikan MTU path dari/ke server" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Atur frasa sandi kunci atau PIN TPM SRK" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Frasa sandi kunci adalah fsid dari sistem berkas" #: main.c:737 msgid "Set proxy server" msgstr "Tata server proksi" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Atur metoda otentikasi proksi" #: main.c:739 msgid "Disable proxy" msgstr "Matikan proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Pakai libproxy untuk menata proksi secara otomatis" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(CATATAN: libproxy dimatikan dalam build ini)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Persyaratkan perfect forward secrecy" #: main.c:745 msgid "Less output" msgstr "Keluaran lebih sedikit" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Atur batas antrian paket ke LEN paket" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Baris perintah shell untuk memakai skrip konfig kompatibel vpnc" #: main.c:748 msgid "default" msgstr "baku" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Lewatkan trafik ke program 'skrip', bukan tun" #: main.c:752 msgid "Set login username" msgstr "Tata nama log masuk" #: main.c:753 msgid "Report version number" msgstr "Laporkan nomor versi" #: main.c:754 msgid "More output" msgstr "Lebih banyak keluaran" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Curahkan trafik otentikasi HTTP (mengimplikasikan --verbose)" #: main.c:756 msgid "XML config file" msgstr "Berkas konfig XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "Pilih otentikasi log masuk" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Hanya otentikasi dan cetak info log masuk" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Ambil cookie webvpn saja; jangan menyambung" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Cetak cookie webvpn sebelum menyambung" #: main.c:761 msgid "Cert file for server verification" msgstr "Berkas cert bagi verifikasi server" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Jangan meminta konektivitas IPv6" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cipher OpenSSL yang didukung untuk DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Matikan DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Nonfungsikan pemakaian ulang koneksi HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Matikan otentikasi sandi/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Jangan mempersyaratkan agar sert SSL server mesti valid" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Jangan coba otentikasi XML POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Jangan mengharapkan masukan pengguna; keluar bila itu diperlukan" #: main.c:771 msgid "Read password from standard input" msgstr "Baca kata sandi dari masukan standar" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Tipe token perangkat lunak: rsa, totp, atau hotp" #: main.c:773 msgid "Software token secret" msgstr "Rahasia token perangkat lunak" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(CATATAN: libstoken (RSA SecurID) dimatikan dalam build ini)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Tenggat waktu coba ulang koneksi dalam detik" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Sidik jari SHA1 sertifikat server" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP header ruas User-Agent:" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipe OS (linux,linux-64,win,…) untuk dilaporkan" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Atur port lokal bagi datagram DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Gagal mengalokasikan string\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Gagal memperoleh baris dari berkas konfigurasi: '%s'\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opsi tak dikenal di baris %d: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opsi '%s' tak meminta argumen pada baris %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opsi '%s' memerlukan argumen pada baris %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "PERINGATAN: Versi openconnect ini dibangun tanpa dukungan\n" " iconv tapi nampaknya Anda memakai set karakter legasi\n" " \"%s\". Bersiaplah mengalami keanehan.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "PERINGATAN: Versi openconnect ini adalah %s tapi\n" " pustaka libopenconnect adalah %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Gagal mengalokasikan struktur vpninfo\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Pengguna tidak sah \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Tak bisa memakai opsi 'config' di dalam berkas konfig\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Tak bisa membuka berkas konfig '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d terlalu kecil\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Mematikan penggunaan ulang semua koneksi HTTP karena opsi --no-http-" "keepalive.\n" "Bila ini membantu, harap laporkan ke .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Panjang antrian nol tak diijinkan; memakai 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versi %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Mode token perangkat lunak yang tak valid \"%s\"\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identitas OS tidak sah \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumen terlalu banyak pada baris perintah\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Tak ada server yang dinyatakan\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Versi openconnect ini dibangun tanpa dukungan libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Gagal membuka pipa cmd\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Gagal mendapat cookie WebVPN\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Pembuatan koneksi SSL gagal\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Penyiapan skrip tun gagal\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Penyiapan perangkat tun gagal\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Penyiapan DTLS gagal; memakai SSL sebagai gantinya\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Tak ada argumen --script yang diberikan; DNS dan routing tak ditata\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lihat http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Gagal membuka '%s' untuk menulis: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Menlanjutkan di latar belakang; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Pengguna meminta sambung ulang\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie ditolak saat koneksi; keluar.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Sesi diakhiri oleh server; keluar.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Pengguna membatalkan (SIGINT); keluar.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Pengguna melepas dari sesi (SIGHUP); keluar.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Galat tak dikenal; keluar.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Gagal membuka %s untuk menulis: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Gagal menulis konfig ke %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Sertifikat SSL server tak cocok: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Sertifikat dari server VPN \"%s\" gagal verifikasi.\n" "Alasan: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Masukkan '%s' untuk menerima, '%s' untuk menggugurkan; sebarang yang lain " "untuk menilik:" #: main.c:1661 main.c:1679 msgid "no" msgstr "tidak" #: main.c:1661 main.c:1667 msgid "yes" msgstr "ya" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Pilihan auth \"%s\" cocok dengan opsi berganda\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Pilihan auth \"%s\" tak tersedia\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Masukan pengguna diperlukan dalam mode non interaktif\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Gagal membuka berkas token untuk menulis: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Gagal menulis token: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "String token lunak tak valid\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Tak bisa membuka berkas ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect tak dibangun dengan dukungan libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Kegagalan umum dalam libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect tak dibangun dengan dukungan liboath\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Kegagalan umum dalam liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Pemanggil mengistirahatkan koneksi\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Tak ada pekerjaan; tidur selama %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects gagal: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() gagal: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() gagal: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Galat saat berkomunikasi dengan pembantu ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Mencoba otentikasi NTLM HTTP ke proksi (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Mencoba otentikasi NTLMv%d HTTP ke proksi\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Ok untuk menjangkitkan tokencode INITIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Ok untuk menjangkitkan tokencode NEXT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server menolak token lunak; berpindah ke entri manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Menjangkitkan kode token OATH TOTP\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Menjangkitkan kode token OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GALAT: %s() dipanggil dengan UTF-8 yang tak valid bagi argumen '%s'\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Gagal memasang sertifikat dalam konteks OpenSSL\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Gagal menulis ke soket SSL\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Gagal baca dari soket SSL\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Galat baca SSL %d (server mungkin menutup koneksi); menyambung ulang.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write gagal: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Kata sandi PEM terlalu panjang (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Sertifikat ekstra dari %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Mengurai PKCS#12 gagal (lihat galat di atas)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 tak memuat sertifikat!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 tak memuat kunci privat!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Tak bisa memuat mesin TPM.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Gagal init mesin TPM\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Gagal menata kata sandi SRK TPM\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Gagal memuat kunci privat TPM\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Gagal menambah kunci dari TPM\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Gagal membuka berkas sertifikat %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Pemuatan sertifikat gagal\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Gagal memroses semua sertifikat pendukung. Tetap mencoba...\n" #: openssl.c:710 msgid "PEM file" msgstr "berkas PEM" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Gagal membuat BIO bagi butir penyimpanan kunci '%s'\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Memuat kunci privat gagal (kata sandi salah?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Memuat kunci privat gagal (lihat galat di atas)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Gagal memuat sertifikat X509 dari penyimpanan kunci\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Gagal memakai sertifikat X509 dari penyimpanan kunci\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Gagal memakai kunci privat dari penyimpanan kunci\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Gagal membuka berkas kunci pribadi %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Memuat kunci privat gagal\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Gagal mengidentifikasi tipe kunci privat dalam '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Altname DNS cocok '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Tak ada yang cocok dengan altname '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Sertifikat memiliki altname GEN_IPADD dengan panjang palsu %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Cocok alamat %s '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Tak ada kecocokan bagi alamat %s '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' mengandung path tak kosong; mengabaikan\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Cocok URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Tidak ada yang cocok untuk URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Tak ada altname dalam sert pasangan cocok dengan '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Tak ada nama subjek dalam sert pasangan!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Gagal mengurai nama subjek dalam sert pasangan\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Subjek sert pasangan tak cocok ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Nama subjek sertifikat pasangan cocok '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Sert ekstra dari cafile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Galat dalam sert klien ruas notAfter\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Gagal baca sert dari berkas CA '%s'\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Gagal membuka berkas CA '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Kegagalan koneksi SSL\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Buang split buruk termasuk: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Buang split buruk selain: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Gagal spawn skrip '%s' bagi %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skrip '%s' berhenti secara abnormal (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skrip '%s' mengembalikan galat %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Koneksi soket dibatalkan\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Gagal untuk menyambung ulang ke proksi %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Gagal menyambung ulang ke host %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proksi dari libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo gagal untuk host '%s': %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Sedang mencoba menyambung ke proksi %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Sedang mencoba menyambung ke server %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Gagal mengalokasikan penyimpanan sockaddr\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Gagal menyambung ke host %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Menyambung ulang ke proksi %s\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "Tak bisa memperoleh ID sistem berkas bagi frasa sandi\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Gagal membuka berkas kunci pribadi '%s': %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Tanpa galat" #: ssl.c:588 msgid "Keystore locked" msgstr "Penyimpanan kunci terkunci" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Penyimpanan kunci tak terinisialisasi" #: ssl.c:590 msgid "System error" msgstr "Galat sistem" #: ssl.c:591 msgid "Protocol error" msgstr "Galat protokol" #: ssl.c:592 msgid "Permission denied" msgstr "Ijin ditolak" #: ssl.c:593 msgid "Key not found" msgstr "Kunci tak ditemukan" #: ssl.c:594 msgid "Value corrupted" msgstr "Nilai rusak" #: ssl.c:595 msgid "Undefined action" msgstr "Aksi yang tak didefinisikan" #: ssl.c:599 msgid "Wrong password" msgstr "Sandi salah" #: ssl.c:600 msgid "Unknown error" msgstr "Galat tak dikenal" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() dipakai dengan mode '%s' yang tak didukung\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie tak valid lagi, mengakhiri sesi\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "tidur %dd, tenggang waktu tersisa %dd\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI terlalu besar (%ld byte)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Mengirim token SSPI berukuran %lu byte\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Gagal mengirim token otentikasi SSPI ke proksi: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Gagal menerima token otentikasi SSPI dari proksi: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "Server SOCKS melaporkan kegagalan konteks SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Respons status SSPI yang tak dikenal (0x%02x) dari server SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat token SSPI %lu byte: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() gagal: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() gagal: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Hasil EncryptMessage() terlalu besar (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Mengirim negosiasi proteksi SSPI %u byte\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Gagal mengirim respons proteksi SSPI ke proksi: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Gagal menerima respons proteksi SSPI dari proksi: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Mendapat respons proteksi SSPI %d byte: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage gagal: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Respons proteksi SSPI yang tak valid dari proksi (%lu byte)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Masukkan kredensial untuk membuka kunci token perangkat lunak." #: stoken.c:82 msgid "Device ID:" msgstr "ID Perangkat:" #: stoken.c:89 msgid "Password:" msgstr "Kata Sandi:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Pengguna mem-bypass token lunak.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Semua ruas diperlukan; coba lagi.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Kegagalan umum dalam libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Kata sandi atau ID perangkat tak benar; coba lagi.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Init token lunak sukses.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Masukkan PIN token perangkat lunak." #: stoken.c:189 msgid "PIN:" msgstr "PIN: " #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Format PIN tak valid; coba lagi.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Menjangkitkan kode token RSA\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Galat saat mengakses kunci registri bagi adaptor jaringan\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Mengabaikan antar muka TAP \"%s\" yang tak cocok\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Tak ditemukan adaptor Windows-TAP. Apakah driver terpasang?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Gagal membuka %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Membuka perangkat tun: %s\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Gagal memperoleh versi driver TAP: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Galat: Diperlukan driver TAP-Windows v9.9 atau lebih (ditemukan %ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Gagal menata alamat IP TAP: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Gagal menata status media TAP: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Gagal membaca dari perangkat TAP: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Gagal melengkapi baca dari perangkat TAP: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Menulis %ld byte ke tun\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Menunggun menulis tun…\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Menulis %ld byte ke tun setelah menunggu\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Gagal menulis ke perangkat TAP: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Span skrip tunnel belum didukung pada Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Tak bisa membuka /dev/tun untuk plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Tak bisa push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Tak bisa menata ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Tak bisa membuka %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Tak bisa plumb %s untuk IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "buka /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Gagal membuat tun baru" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Gagal meletakkan deskriptor berkas tun ke dalam mode message-discard" #: tun.c:196 msgid "open net" msgstr "buka net" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Gagal membuka perangkat tun: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nama antar muka '%s' tak valid; mesti sesuai pola 'tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Tak bisa membuka '%s': %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair gagal: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "fork gagal: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(skrip)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Paket tak dikenal (len %d) diterima: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Gagal menulis paket datang: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Gagal membuka %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Gagal fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Gagal mengalokasikan %d byte untuk %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Gagal baca %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Memperlakukan host \"%s\" sebagai nama host mentah\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Gagal menghitung SHA1 berkas yang ada\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 berkas konfig XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Gagal mengurai berkas konfig XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" memiliki alamat \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" memiliki UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Host \"%s\" tidak terdaftar dalam konfig; memperlakukan sebagai nama host " "mentah\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/gl.po0000664000076400007640000021673612502026115012305 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Galician (http://www.transifex.net/projects/p/meego/team/" "gl/)\n" "Language: gl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Produciuse un fallo ao estabelecer o uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Produciuse un fallo ao inicializar DTLSv1 CTX\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Fallo de asignación para a cadea desde stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Ao usar OpenSSL. Existen estas características:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Ao usar GnuTLS. Existen estas características:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "MOTOR OpenSSL non presente" #: main.c:613 msgid "using OpenSSL" msgstr "usando OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "AVISO: non existe compatibilidade con DTLS. O rendemento pode verse " "perxudicado.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opcións] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "Abrir cliente para Cisco AnyConnect VPN, versión %s\n" #: main.c:708 msgid "Read options from config file" msgstr "Ler opcións desde un ficheiro de configuración" #: main.c:710 msgid "Continue in background after startup" msgstr "Continuar en segundo plano despois do inicio" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Escribir o PID do daemon neste ficheiro" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Usar o certificado CERT do cliente SSL" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar cando a vida do certificado < DÍAS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Usar ficheiro de chave privada SSL KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Usar WebVPN cookie COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Ler cookie desde a entrada estándar" #: main.c:718 msgid "Enable compression (default)" msgstr "Activar compresión (predeterminado)" #: main.c:719 msgid "Disable compression" msgstr "Desactivar compresión" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "Estabelecer o grupo de usuario de inicio de sesión" #: main.c:722 msgid "Display help text" msgstr "Mostrar o texto de axuda" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME para a interface de túnel" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Usar syslog para as mensaxes de progreso" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Quitar privilexios despois de conectarse" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Quitar privilexios durante a execución de CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Executar SCRIPT no lugar do binario CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Solicitar MTU desde o servidor" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Indica a ruta MTU ao/desde o servidor" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Estabelecer a frase de paso da chave ou PIN do TPM SRK" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "A frase de paso da chave é o fsid do sistema de ficheiros" #: main.c:737 msgid "Set proxy server" msgstr "Estabelecer servidor proxy" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Desactivar proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar automaticamente o proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desactivado para esta compilación)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "Menos saída" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "predeterminado" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Pasar o tráfico ao programa «script», non tun" #: main.c:752 msgid "Set login username" msgstr "Estabelecer o nome de usuario de inicio de sesión" #: main.c:753 msgid "Report version number" msgstr "Informar do número de versión" #: main.c:754 msgid "More output" msgstr "Máis saída" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "Ficheiro de configuración XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "Escoller selección da autenticación do inicio de sesión " #: main.c:758 msgid "Authenticate only and print login info" msgstr "Só autenticar e imprimir a información de inicio de sesión" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "Ficheiro de certificado para a verificación do servidor" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Non preguntar pola conectividade de IPv6" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "Desactivar DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Desactivar a reutilización da conexión HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Desactivar a autenticación por contrasinal/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Non requirir que o certificado SSL do servidor sexa válido" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Non tentar a autenticación XML por POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Non agardar entrada do usuario; saír se se require" #: main.c:771 msgid "Read password from standard input" msgstr "Ler contrasinal da entrada estándar" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "Token de software segredo" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libtoken (RSA SecurID) desactivado para esta compilación)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Tempo de espera do reintento de conexión en segundos" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Pegada dixital SHA1 do certificado do servidor" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Campo da cabeceira HTTP User-Agent:" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Estabelecer o porto local para os datagramas de DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" "Produciuse un fallo ao obter a liña desde o ficheiro de configuración: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opción non recoñecida na liña %d: «%s»\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A opción «%s» non recolle un argumento na liña %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A opción «%s» require un argumento na liña %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Produciuse un fallo na asignación da estrutura vpninfo.\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Usuario «%s» non válido\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Non foi posíbel usar a opción «config» dendo do ficheiro de configuración\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Non é posíbel abrir o ficheiro de configuración «%s»: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeno\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Non se permite a lonxitude cola cero; usando 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versión %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de token de software «%s» non válido\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identidade do SO «%s» non válida\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos na liña de ordes\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Non se especificou ningún servidor\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Esta versión de openconnect foi compilada sen compatibilidade para libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Produciuse un fallo ao obter a cookie de WebVPN\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Produciuse un fallo na creación da conexión SSL\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Produciuse un fallo na configuración do dispositivo tun\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Produciuse un fallo na configuración de DTLS; usando SSL no lugar\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Non se forneceu ningún argumento --script; DNS o enrutado non están " "configurados\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Vexa http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Produciuse un erro ao abrir «%s» para escritura: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuando en segundo plando; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Produciuse un erro ao abrir %s para escritura: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Produciuse un fallo ao escribir a configuración en %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Non foi posíbel verificar o certificado do servidor VPN «%s».\n" "Razón: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Escriba «%s» para aceptar, «%s» para abortar; calquera outra cousa para ver: " #: main.c:1661 main.c:1679 msgid "no" msgstr "non" #: main.c:1661 main.c:1667 msgid "yes" msgstr "si" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Elección de autenticación «%s» non dispoñíbel\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Entrada de usuario requirida no modo non-interactivo\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "A cadea do token de software non é válida\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Non é posíbel abrir o ficheiro ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect non foi construido con compatibilidade de libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Fallo xeran en libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect non foi construido con compatibilidade de liboath\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Fallo xeran en liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Tratando equipo «%s» como un nome de equipo en bruto\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Produciuse un fallo ao xerar o SHA1 do ficheiro existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 do ficheiro de configuración XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Produciuse un erro ao analizar o ficheiro de configuración XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "O equipo «%s» ten o enderezo «%s»\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "O equipo «%s» ten o UserGroup «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "O equipo «%s» non está na lista de config; tratándoo como un nome de equipo " "en plano\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/de.po0000664000076400007640000030056612502026115012266 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: German \n" "Language: de\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Eingabefeld-Methode=»%s« kann nicht verarbeitet werden, Aktion=»%s«\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "OTP Token-Code kann nicht erzeugt werden. Token wird abgeschaltet\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Formularauswahl hat keinen Namen\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "Name %s nicht in Eingabe\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Kein Eingabetyp im Formular\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Kein Eingabename im Formular\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unbekannter Eingabetyp %s im Formular\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Leere Antwort vom Server\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Verarbeitung der Serverantwort ist gescheitert\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Antwort lautete: »%s«\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr " wurde empfangen als es nicht erwartet wurde.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "XML-Antwort hat keinen »auth«-Knoten\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Passwortanfrage, aber »--no-passwd« ist gesetzt\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" "XML-Profile wird nicht herunter geladen, weil SHA1 bereits übereinstimmt\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Öffnen der HTTPS-Verbindung nach %s schlug fehl\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" "GET-Anfrage für neue Konfigurationsdatei konnte nicht gesendet werden\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Heruntergeladene Konfigurationsdatei entspricht nicht der erwarteten SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Neues XML-Profil heruntergeladen\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Fehler: Ausführen des »Cisco Secure Desktop«-Trojaners auf Windows ist noch " "nicht implementiert.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fehler: Der Server bat einen CSD-Rechnerscan auszuführen.\n" "Die müssen ein passendes Argument für »--csd-wrapper« angeben.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fehler: Server bat um das Herunterladen und Ausführen eines »Cisco Secure " "Desktop«-Trojaners.\n" "Dieses Merkmal ist aus Sicherheitsgründen deaktiviert. Möglicherweise wollen " "Sie es aber nun aktivieren.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Versuch, das Linux CSD Trojaner-Skript auszuführen.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "In temporären Ordner »%s« konnte nicht geschrieben werden: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Öffnen der temporären CSD-Skriptdatei schlug fehl: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Schreiben der temporären CSD-Skriptdatei schlug fehl: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Festlegen der Benutzerkennung %ld schlug fehl\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Ungültige Benutzerkennung = %ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Wechseln in den Ordner »%s« der CSD-Datei schlug fehl: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warnung: Sie führen unsicheren CSD-Code mit Systemadministrator-Rechen aus\n" "\t Verwenden Sie die Befehlszeilenoption »--csd-user«\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD-Skript %s konnte nicht ausgeführt werden\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Unbekannte Antwort vom Server\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Der Server forderte ein SSL Client-Zertifikat an, nachdem eines übergeben " "wurde\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Server forderte ein SSL Client-Zertifikat an. Es ist keines eingerichtet\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST aktiviert\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s wird ach einer Sekunde aktualisiert …\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(Fehler 0x%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Fehler beim Beschreiben des Fehlers!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEHLER: Sockets konnten nicht initialisiert werden\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITISCHER FEHLER: DTLS-Hauptschlüssel ist nicht initialisiert. Bitte " "melden Sie dies.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fehler bei der Erstellung der HTTPS CONNECT-Anfrage\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Fehler beim Holen der HTTP-Antwort\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-Dienst ist nicht verfügbar, Grund: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Unpassende HTTP CONNECT-Antwort erhalten: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT-Antwort erhalten: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Kein Speicher für Optionen\n" #: cstp.c:351 http.c:421 msgid "" msgstr "<übergangen>" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Sitzungskennung hat keine 64 Zeichen; ist: »%s«\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unbekannte CSTP-Inhaltskodierung %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Kein MTU empfangen. Abbruch\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Keine IP-Adresse empfangen. Abbruch\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-Konfiguration erhalten, aber die MTU %d ist zu klein.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IP-Adresse (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IP-Netzmaske (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IPv6-Adresse (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "Neuverbinden ergab eine andere herkömmliche IPv6-Netzmaske (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP verbunden. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP-Inhaltskodierung %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Einrichten der Kompression schlug fehl\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Anfordern des deflate-Pufferspeichers schlug fehl\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "»inflate« fehlgeschlagen\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "»deflate« fehlgeschlagen %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unerwartete Paketlänge. SSL_read gab %d zurück, aber Paket hat\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD-Anfrage erhalten\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD-Antwort erhalten\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "CSTP-Keepalive empfangen\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Unkomprimiertes Datenpaket mit %d Byte erhalten\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Abbruch der Serververbindung empfangen: %02x »%s«\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimiertes Paket im !deflate-Modus erhalten\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "Server-Beenden-Paket empfangen\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unbekanntes Paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL schrieb zu wenige Bytes! Angefragt wurden %d, gesendet %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Erneuter CSTP-Schlüsselaustausch fällig\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Neuverbinden fehlgeschlagen\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "CSTP DPD senden\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "CSTP-Keepalive senden\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Unkomprimiertes Datenpaket mit %d Byte wird gesendet\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE-Paket senden: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Versuch einer Prüfsummen-Legitimierung zum Proxy\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialisierung der DTLSv1-Sitzung gescheitert\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialisierung der DTLSv1-CTX gescheitert\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Festlegen der DTLS-Chiffrierliste schlug fehl\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Nicht genau ein DTLS-Schlüssel\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() gescheitert mit alter Protokollversion 0x%x\n" "Verwenden Sie eine ältere OpenSSL-Version als 0.9.8m?\n" "Siehe http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Verwenden Sie die Befehlszeilenoption --no-dtls\n" "um diese Meldung zu unterdrücken\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS-Verbindung aufgebaut (mit OpenSSL). Schiffrierwerk %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Ihre OpenSSL-Version ist älter als jene, gegen die gebaut wurde, daher wird " "DTLS scheitern!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Zeitüberschreitung bei DTLS-Handshake\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Dies ist vermutlich, weil Ihr OpenSSL defekt ist\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-Handshake schlug fehl: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Unbekannte DTLS-Parameter für angefragte CipherSuite »%s«\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Festlegen der DTLS-Priorität schlug fehl: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS-Sitzungsparameter konnten nicht festgelegt werden: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Festlegen der DTLS-MTU schlug fehl: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS-Verbindung aufgebaut (mit GnuTLS).Schiffrierwerk %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-Handshake schlug fehl: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Verhindert eine Firewall das Senden von UDP-Paketen?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "Versuch einer DTLS-Verbindung mit bestehendem Dateideskriptor\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Keine DTLS-Adresse\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server bot keine DTLS-Chiffrieroption an\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Kein DTLS bei Verbindung über Proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS-Option %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initialisiert. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Versuch einer neuen DTLS-Verbindung\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS-Paket 0x%02x mit %d Byte empfangen\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "DTLS-DPD-Anfrage erhalten\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "DPD-Antwort konnte nicht gesendet werden. Verbindungsabbruch wird erwartet\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "DTLS-DPD-Antwort erhalten\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "DTLS-Keepalive erhalten\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unbekannter DTLS-Pakettyp %02x, Länge %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Erneuter DTLS-Schlüsselaustausch fällig\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" "Erneuerung des DTLS-Handshakes schlug fehl; Verbindung wird erneut " "aufgebaut.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "DTLS DPD senden\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" "DPD-Anfrage konnte nicht gesendet werden. Verbindungsabbruch wird erwartet\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive senden\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "keepalive-Anfrage konnte nicht gesendet werden. Verbindungsabbruch wird " "erwartet\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS-Schreibfehler %d. SSL wird ersatzweise verwendet\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS-Schreibfehler: %s. SSL wird ersatzweise verwendet\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS-Paket mit %d Byte gesendet; DTLS send gab %d zurück\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL-Schreibvorgang abgebrochen\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Schreiben in SSL-Socket schlug fehl: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL-Lesevorgang abgebrochen\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "SSL-Socket-Verbindung abgebrochen\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Lesen vom SSL-Socket schlug fehl: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL-Lesefehler: %s; Neuverbinden läuft.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "»SSL_send« fehlgeschlagen: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Ablaufzeitpunkt des Zertifikats konnte nicht ermittelt werden\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Client-Zertifikat ist abgelaufen am" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Client-Zertifikat läuft bald ab am" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" "Laden des Objekts »%s« aus dem Schlüsselspeicher ist fehlgeschlagen: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Öffnen der Schlüssel-/Zertifikatsdatei %s schlug fehl: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Abfragen der Schlüssel-/Zertifikatsdatei %s schlug fehl: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Anfordern von Pufferspeicher schlug fehl\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Lesen des Zertifikats in den Speicher schlug fehl: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12-Datenstruktur konnte nicht angelegt werden: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12-Zertifikatdatei konnte nicht entschlüsselt werden\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Geben Sie das PKCS#12-Passwort ein:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Verarbeiten der PKCS#12-Datei schlug fehl: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Laden des PKCS#12-Zertifikats schlug fehl: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importieren des X509-Zertifikats schlug fehl: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Festlegen des PKCS#11-Zertifikats schlug fehl: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5-Prüfsumme konnte nicht initialisiert werden: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5-Prüfsummenfehler: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Fehlende DEK-Info: Kopf des OpenSSL-Chiffrierschlüssels\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "PEM-Verschlüsselungstyp konnte nicht ermittelt werden\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nicht unterstützter PEM-Verschlüsselungstyp: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ungültiges Salt in der verschlüsselten PEM-Datei\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" "Fehler beim Dekodieren der verschlüsselten PEM-Datei nach base64: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Verschlüsselte PEM-Datei ist zu kurz\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Initialisieren des Schlüssels zur Entschlüsselung der PEM-Datei schlug fehl: " "%s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Die Entschlüsselung des PEM-Schlüssels scheiterte: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Entschlüsselung des PEM-Schlüssels scheiterte\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Geben Sie das PEM-Kennwort ein:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Diese Version wurde ohne Systemschlüssel-Unterstützung erstellt\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Dieses Binary wurde ohne PKCS#11-Unterstützung erstellt\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11-Zertifikat %s wird verwendet\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Systemzertifikat »%s« wird verwendet\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fehler beim Laden des Zertifikats von PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fehler beim Laden des Systemzertifikats: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Zertifikatsdatei %s wird verwendet\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-Datei enthielt kein Zertifikat\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Kein Zertifikat gefunden in Datei" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Laden des Zertifikats ist gescheitert: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Systemschlüssel %s wird verwendet\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fehler beim Initialisieren der privaten Schlüsselstruktur: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fehler beim Importieren des Systemschlüssels %s: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11 Schlüsseladresse %s wird versucht\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fehler beim Initialisieren der PKCS#11-Schlüsselstruktur: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fehler beim Importieren der PKCS#11-Adresse %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11-Schlüssel %s wird verwendet\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Fehler beim Importieren des PKCS#11-Schlüssels in private Schlüsselstruktur: " "%s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Private Schlüsseldatei %s wird verwendet\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" "Diese Version von Openconnect wurde ohne Unterstützung für TPM erstellt\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Interpretieren der PEM-Datei fehlgeschlagen\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Laden des privaten PKCS#1-Schlüssels scheiterte: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Laden des geheimen Schlüssels als PKCS#8 ist gescheitert: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8-Zertifikatdatei konnte nicht entschlüsselt werden\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Bestimmung des Typs des privaten Schlüssels %s schlug fehl\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ermitteln der Schlüsselkennung fehlgeschlagen: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fehler beim Signieren der Testdaten mit dem geheimen Schlüssel: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fehler bei der Überprüfung der Signatur anhand des Zertifikats: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Kein dem geheimen Schlüssel entsprechendes SSL-Zertifikat gefunden\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Client-Zertifikat »%s« wird verwendet\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Festlegen der Zertifikat-Wiederrufsliste schlug fehl: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Speicher für das Zertifikat konnte nicht reserviert werden\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "WARNUNG: GnuTLS gab falsche Herausgeber-Zertifikate zurück; Legitimierung " "könnte fehlschlagen!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Nächste CA »%s« von PKCS11 erhalten\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" "Belegen von Speicher für die Unterstützung von Zertifikaten schlug fehl\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Unterstützende CA wird hinzugefügt : %s\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Festlegen des Zertifikats ist gescheitert: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server zeigte kein Zertifikat vor\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Fehler beim Initialisieren der X.509-Zertifikatstruktur\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Fehler beim Importieren des Zertifikats des Servers\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Streuwert konnte nicht für das Server-Zertifikat berechnet werden\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Fehler beim Prüfen des Status des Server-Zertifikats\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "Zertifikat widerrufen" #: gnutls.c:1970 msgid "signer not found" msgstr "Signierer nicht gefunden" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "Signierer ist kein CA-Zertifikat" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "Unsicherer Algorithmus" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "Das Zertifikat ist noch nicht aktiviert" #: gnutls.c:1978 msgid "certificate expired" msgstr "Zertifikat abgelaufen" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "Überprüfung der Signatur fehlgeschlagen" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "Zertifikat passt nicht zum Rechnernamen" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Prüfen des Server-Zertifikats schlug fehl: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Anfordern von Speicher für cafile-Zertifikate schlug fehl\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Lesen von Zertifikaten aus CA-Datei ist fehlgeschlagen: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Öffnen der CA-Datei »%s« fehlgeschlagen : %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Laden des Zertifikats schlug fehl. Abbruch.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "TLS-Prioritätszeichenkette konnte nicht festgelegt werden: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-Verhandlung mit %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL-Verbindung abgebrochen\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-Verbindung versagt: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS nicht-fatale Rückgabe während Handshake: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Verbunden mit HTTPS auf %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL wird auf %s neu ausgehandelt\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Für %s wird eine PIN benötigt" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Falsche PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Dies ist der letzte Versuch vor der Sperrung!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Nur noch wenige Versuche, bevor Sperrung erfolgt!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "PIN eingeben:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" "Bilden der SHA1-Prüfsumme für die Eingabedaten zum Signieren schlug fehl: " "%s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-Signierfunktion aufgerufen für %d Byte.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM-Hash-Objekt konnte nicht erstellt werden: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Festlegen eines Werts im TPM-Hash-Objekt schlug fehl: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM Hash-Signatur schlug fehl: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fehler beim Dekodieren der TSS-Schlüssel-Daten: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Fehler in den TSS-Schlüssel-Daten\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Erstellen des TPM-Kontexts fehlgeschlagen: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Verbinden des TPM-Kontexts fehlgeschlagen: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Laden des TPM SRK-Schlüssels scheiterte: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Laden des TPM SRK Richtlinien-Objekts ist gescheitert: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Festlegen der TPM-PIN fehlgeschlagen: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Laden des privaten TPM-Schlüssels scheiterte: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN eingeben:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Schlüssel-Richtlinienobjekte konnten nicht erstellt werden: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Zuweisen der Richtlinie zum Schlüssel ist fehlgeschlagen: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "PIN des TPM-Schlüssels eingeben:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Festlegen der Schlüssel-PIN fehlgeschlagen: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fehler beim Importieren des GSSAPI-Namens zur Legitimierung:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fehler beim Erstellen der GSSAPI-Antwort:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Versuch der GSSAPI-Legitimierung zum Proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-Authentifizierung abgeschlossen\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-Token zu groß (%zd Byte)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "GSSAPI-Token von %zu Byte wird gesendet\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Senden des GSSAPI-Legitimierungs-Token an Proxy fehlgeschlagen: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Empfangen des GSSAPI-Legitimierungs-Token von Proxy fehlgeschlagen: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-Server meldete GSSAPI-Kontext ist fehlgeschlagen\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Unbekannte GSSAPI-Statusantwort (0x%02x) von SOCKS-Server\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-Token von %zu Byte erhalten: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "GSSAPI-Schutzaushandlung von %zu Byte wird gesendet\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Senden der GSSAPI-Schutzaushandlung an Proxy fehlgeschlagen: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Erhalten der GSSAPI-Schutzaushandlung von Proxy fehlgeschlagen: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-Schutzantwort von %zu Byte erhalten: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ungültige GSSAPI-Schutzantwort von Proxy (%zu Byte)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Der SOCKS-Proxy verlangt Nachrichtenintegrität, was aber nicht unterstützt " "wird\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "Der SOCKS-Proxy verlangt Nachrichtenvertraulichkeit, was aber nicht " "unterstützt wird\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Der SOCKS-Proxy verlangt zum Schutz den unbekannten Typ 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Grundlegende HTTP-Legitimierung zum Proxy wird versucht\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für GSSAPI erstellt\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Keine weiteren möglichen Legitimierungsmethoden\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Kein Speicher zum Reservieren für Cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Verarbeitung der HTTP-Antwort »%s« ist gescheitert\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP-Antwort erhalten: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Fehler beim Verarbeitung der HTTP-Antwort\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Unbekannte Zeile »%s« in HTTP-Antwort wird ignoriert\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ungültiger Cookie angeboten: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Prüfung des SSL-Zertifikats ist gescheitert\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Textkörper der Antwort hat negative Größe (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unbekannte Zeichensatzkodierung: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-Nachrichtenrumpf: %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Fehler beim Lesen des Textkörpers der HTTP-Antwort\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Fehler beim Holen des gestückelten Headers\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Fehler beim Holen des Textkörpers der HTTP-Antwort\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Fehler beim gestückelten Entschlüsseln. »« erwartet, »%s« bekommen" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "HTTP 1.0-Rumpf kann nicht ohne Schließen der Verbindung empfangen werden\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Verarbeiten der Umleitungsadresse »%s« schlug fehl: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Folgen der Umleitung zu nicht-https-Adresse »%s« ist nicht möglich\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Anfordern eines neuen Pfades für relative Umleitung schlug fehl: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unerwartetes %d-Ergebnis vom Server\n" #: http.c:1056 msgid "request granted" msgstr "Anforderung stattgegeben" #: http.c:1057 msgid "general failure" msgstr "Allgemeiner Fehler" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "Verbindung ist aufgrund des Regelwerks nicht erlaubt" #: http.c:1059 msgid "network unreachable" msgstr "Das Netzwerk ist nicht erreichbar" #: http.c:1060 msgid "host unreachable" msgstr "Rechner ist nicht erreichbar" #: http.c:1061 msgid "connection refused by destination host" msgstr "Verbindung wird vom Zielrechner verweigert" #: http.c:1062 msgid "TTL expired" msgstr "TTL abgelaufen" #: http.c:1063 msgid "command not supported / protocol error" msgstr "Befehl nicht unterstützt / Protokollfehler" #: http.c:1064 msgid "address type not supported" msgstr "Der Adresstyp wird nicht unterstützt" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS-Server verlangte Benutzername/Passwort. Beides ist aber nicht " "vorhanden.\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Benutzername und Password müssen für SOCKS-Legitimierung < 255 Byte sein\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fehler beim Schreiben der auth-Anforderung an SOCKS-Proxy: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fehler beim Lesen der auth-Anforderung von SOCKS-Proxy: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "UNerwartete auth-Antwort von SOCKS-Proxy: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Bei SOCKS-Server mit Passwort legitimiert\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Passwort-Legitimierung mit SOCKS-Server fehlgeschlagen\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-Server verlangte GSSAPI-Legitimierung\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-Server verlangte Passwort-Legitimierung\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-Server benötigt Legitimierung\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-Server forderte unbekannte Legitimierungsmethode %02x an\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Anfordern von SOCKS Proxy-Verbindung zu %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fehler beim Schreiben der Verbindungsanforderung an SOCKS-Proxy: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fehler beim Lesen der Verbindungsantwort von SOCKS-Proxy: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unerwartete Verbindungsantwort vom SOCKS-Proxy: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS Proxy-Fehler %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS Proxy-Fehler %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unerwarteter Adresstyp %02x in SOCKS-Verbindungsantwort\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Anfordern von HTTP Proxy-Verbindung zu %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Senden der Proxy-Anfrage ist gescheitert: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy-CONNECT-Anfrage ist gescheitert: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unbekannter Proxy-Typ »%s«\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Es werden nur http- oder socks(5)-Proxies unterstützt\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Mit einer SSL-Bibliothek ohne Cisco DTLS-Unterstützung erstellt\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Verarbeiten der Serveradresse »%s« schlug fehl\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Nur https:// erlaubt für Server-Adresse\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" "Verarbeitung des Formulars nicht möglich, Legitimierung kann nicht " "ausgeführt werden.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() schlug fehl: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Schwerwiegender Fehler in der Abarbeitung der Befehlszeile\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() schlug fehl: %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Fehler beim Umwandeln der Konsoleneingabe: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Zuweisungsfehler für Zeichenkette aus der Standardeingabe\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Bitte lesen Sie für Hilfe zu OpenConnect die Webseite\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL wird verwendet. Vorhandene Funktionsmerkmale:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS wird verwendet. Vorhandene Funktionsmerkmale:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL-ENGINE nicht vorhanden" #: main.c:613 msgid "using OpenSSL" msgstr "OpenSSL wird verwendet" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "WARNUNG: Keine DTLS-Unterstützung verfügbar. Die Leistung wird dadurch " "beeinträchtigt.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kann ausführbaren Pfad »%s« nicht verarbeiten" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Anfordern des vpnc-script-Pfad schlug fehl\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Aufruf: openconnect [Optionen] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Open client für Cisco AnyConnect VPN, Version %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Optionen aus Konfigurationsdatei lesen" #: main.c:710 msgid "Continue in background after startup" msgstr "Nach Start im Hintergrund weiterlaufen" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "PID des Daemons in diese Datei schreiben" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "SSL Client-Zertifikat CERT verwenden" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Warnen, wenn die Lebensdauer des Zertifikats unter DAYS liegt" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Private SSL-Schlüsseldatei KEY verwenden" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "WebVPN-Cookie COOKIE verwenden" #: main.c:717 msgid "Read cookie from standard input" msgstr "Cookie von Standardeingabe lesen" #: main.c:718 msgid "Enable compression (default)" msgstr "Kompression einschalten (Vorgabe)" #: main.c:719 msgid "Disable compression" msgstr "Kompression abschalten" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Minimalintervall zum Erkennen von »Dead Peers« festlegen" #: main.c:721 msgid "Set login usergroup" msgstr "Benutzergruppe für die Anmeldung festlegen" #: main.c:722 msgid "Display help text" msgstr "Hilfetext zeigen" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "IFNAME für Tunnel-Schnittstelle verwenden" #: main.c:725 msgid "Use syslog for progress messages" msgstr "syslog für Fortschrittsmeldungen verwenden" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Zeitstempel der Fortschrittsnachricht voranstellen" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Privilegien nach Verbinden ablegen" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Privilegien während CSD-Ausführung ablegen" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "SCRIPT an Stelle der CSD-Binärdatei ausführen" #: main.c:733 msgid "Request MTU from server" msgstr "MTU vom Server anfordern" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Path MTU vom/zum Server angeben" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Schlüsselkennwort oder TPM-SRK-PIN setzen" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Schlüsselkennwort ist fsid des Dateisystems" #: main.c:737 msgid "Set proxy server" msgstr "Proxy-Server festlegen" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Legitimierungsmethoden für Proxy festlegen" #: main.c:739 msgid "Disable proxy" msgstr "Proxy deaktivieren" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "libproxy zur automatischen Konfiguration des Proxys verwenden" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(HINWEIS: libproxy wurde bei der Erstellung deaktiviert)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "»perfect forward secrecy« verlangen" #: main.c:745 msgid "Less output" msgstr "Weniger Ausgabe" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Warteschlangenbegrenzung auf LEN Pakete setzen" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Shell-Befehlszeile für die Verwendung eines vpnc-kompatiblen " "Konfigurationsskripts" #: main.c:748 msgid "default" msgstr "Vorgabe" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Verkehr an »Skript«-Programm weiterleiten, nicht tun" #: main.c:752 msgid "Set login username" msgstr "Benutzername für die Anmeldung festlegen" #: main.c:753 msgid "Report version number" msgstr "Versionsnummer ausgeben" #: main.c:754 msgid "More output" msgstr "Mehr Ausgabe" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "HTTP Authentifizierungs-Verkehr abspeichern (impliziert --verbose" #: main.c:756 msgid "XML config file" msgstr "XML-Konfigurationsdatei" #: main.c:757 msgid "Choose authentication login selection" msgstr "Wählen Sie den Legitimierungs-Anmeldeabschnitt" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Nur legitimieren und Anmeldeinformationen ausgeben" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Nur webvpn-Cookie holen, nicht verbinden" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Vor dem Verbinden webvpn-Cookie ausgeben" #: main.c:761 msgid "Cert file for server verification" msgstr "Zertifikatdatei für Server-Überprüfung" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6-Verbindung nicht anfordern" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-Schlüssel zur Unterstützung für DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "DTLS abschalten" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Wiederverwendung von HTTP-Verbindungen abschalten" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Legitimierung mit Passwort/SecurID ausschalten" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Gültigkeit des SSL-Serverzertifikats nicht voraussetzen" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "XML POST-Authentifizierung nicht versuchen" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Keine Benutzereingabe erwarten; abbrechen, falls erforderlich" #: main.c:771 msgid "Read password from standard input" msgstr "Passwort von Standardeingabe lesen" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Software Token-Typ: rsa, totp oder hotp" #: main.c:773 msgid "Software token secret" msgstr "Software-Token-Geheimnis" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(HINWEIS: libstoken (RSA SecurID) wurde bei der Erstellung deaktiviert)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(HINWEIS: Yubikey OATH wurde bei der Erstellung deaktiviert)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Wartezeit für erneuten Verbindungsversuch in Sekunden" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1-Fingerabdruck des Serverzertifikats" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP-Kopf User-Agent: Feld" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "zu berichtender Typ des Betriebssystems (linux,linux-64,win,...)" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Lokalen Port für DTLS-Datagramme festlegen" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Anfordern der Zeichnkette ist fehlgeschlagen\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Zeile aus der Konfigurationsdatei konnte nicht geholt werden: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unbekannte Option in Zeile %d: »%s«\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Option »%s« akzeptiert kein Argument in Zeile %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Option »%s« erfordert ein Argument in Zeile %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "WARNUNG: Diese Version von »openconnect« wurde ohne »iconv«-Unterstützung " "erstellt. Sie verwenden anscheinend den veralteten Zeichensatz »%s«. " "Erwarten Sie seltsames Verhalten.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WARNUNG: Dies ist Version %s von openconnect, aber\n" " die Bibliothek libopenconnect ist %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Zuweisen der vpninfo-Struktur ist fehlgeschlagen\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Ungültiger Benutzer »%s«\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Option »config« darf nicht in einer Konfigurationsdatei verwendet werden\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Konfigurationsdatei »%s« kann nicht geöffnet werden: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d ist zu klein\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Wiederverwendung jeglicher HTTP-Verbindungen wird wegen der Option »--no-" "http-keepalive« abgeschaltet.\n" "Falls dies hilft, so berichten Sie bitte davon auf .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Warteschlangenlänge Null ist nicht erlaubt. 1 wird verwendet\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect Version %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ungültiger Software-Token-Modus »%s«\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Ungültige Betriebssystemidentität »%s«\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Zu viele Argumente auf der Befehlszeile\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Kein Server angegeben\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Diese Version von openconnect wurde ohne Unterstützung für libproxy " "erstellt\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Fehler beim Öffnen der cmd-Weiterleitung\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Erlangen eines WebVPN-Cookie schlug fehl\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Erstellen einer SSL-Verbindung schlug fehl\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Einrichten des tun-Skripts schlug fehl\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Einrichten des tun-Geräts schlug fehl\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Einrichten von DTLS schlug fehl. Stattdessen wird SSL verwendet\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Kein »--script«-Argument angegeben, DNS und Routing sind nicht konfiguriert\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Siehe http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Öffnen von »%s« zum Schreiben schlug fehl: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsetzung im Hintergrund; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Benutzer forderte eine Neuverbindung an\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Sitzung wurde durch Server beendet. Abbruch.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Abgebrochen durch Benutzer (SIGINT). Abbruch.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Benutzer hat sich aus Sitzung ausgeklinkt (SIGHUP). Abbruch.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Unbekannter Fehler. Abbruch.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Öffnen von %s zum Schreiben schlug fehl: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Schreiben der Konfiguration nach %s schlug fehl: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "SSL-Zertifikat des Servers passt nicht: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Gültigkeit des Zertifikats des VPN-Servers »%s« konnte nicht bestätigt " "werden.\n" "Grund: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Geben Sie »%s« zum Akzeptieren ein, oder »%s« zum Abbrechen. Alles andere, " "um Folgendes anzusehen: " #: main.c:1661 main.c:1679 msgid "no" msgstr "nein" #: main.c:1661 main.c:1667 msgid "yes" msgstr "ja" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Serverschlüssel-Streuwert: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Legitimierungsmöglichkeit »%s« passt zu mehreren Optionen\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Legitimierungsmöglichkeit »%s« ist nicht verfügbar\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Benutzereingabe im nicht-interaktiven Modus erforderlich\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Öffnen der Token-Datei zum Schreiben schlug fehl: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Schreiben des Tokens schlug fehl: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Zeichenkette für Soft-Token ist ungültig\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "~/.stokenrc kann nicht geöffnet werden\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect wurde ohne Unterstützung für libstoken erstellt\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Allgemeiner Fehler in libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect wurde ohne Unterstützung für liboath erstellt\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Allgemeiner Fehler in liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Aufrufer hat die Sitzung angehalten\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Es gibt nichts zu tun. Schlafen für %d ms …\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects schlug fehl: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() schlug fehl: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() schlug fehl: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fehler bei der Kommunikation mit »ntlm_auth helper«\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Versuche HTTP-NTLM-Legitimierung am Proxy (Einmalanmeldung)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTTP NTLMv%d-Legitimierung zum Proxy wird versucht\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für PSKC erstellt\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "OK zum Erzeugen des ANFÄNGLICHEN Tokencodes\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "OK zum Erzeugen des NÄCHSTEN Tokencodes\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Server hat den Soft-Token abgewiesen, es wird zur manuellen Eingabe " "gewechselt\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP Token-Code wird erzeugt\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP Token-Code wird erzeugt\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEHLER: %s() aufgerufen mit ungültigem UTF-8 für das Argument »%s«\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Fehler beim Installieren des Zertifikats im OpenSSL-Kontext\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Schreiben in SSL-Socket schlug fehl\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Lesen vom SSL-Socket schlug fehl\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL-Lesefehler %d (Server hat wahrscheinlich die Verbindung geschlossen), " "wird erneut verbunden.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "»SSL_write« fehlgeschlagen: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-Passwort ist zu lang (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Zusätzliches Zertifikat von %s: »%s«\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Verarbeiten von PKCS#12 ist fehlgeschlagen (siehe obere Fehler)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 enthält kein Zertifikat!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 enthält keinen privaten Schlüssel!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "TPM-Engine kann nicht geladen werden.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Initialisieren der TPM-Engine fehlgeschlagen\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "TPM-SRK-Passwort konnte nicht gesetzt werden\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Laden des privaten TPM-Schlüssels scheiterte\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Hinzufügen von TPM scheiterte\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Öffnen der Zertifikatsdatei %s schlug fehl: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Laden des Zertifikats ist gescheitert\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "PEM-Datei" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Erstellen des BIO für das Schlüsselspeicher-Objekt »%s« schlug fehl\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" "Laden des privaten Schlüssels ist fehlgeschlagen (falsches Kennwort?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" "Laden des geheimen Schlüssels ist gescheitert (siehe vorherige Fehler)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" "Laden des X509-Zertifikats aus dem Schlüsselspeicher ist fehlgeschlagen\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" "Verwenden des X509-Zertifikats aus dem Schlüsselspeicher ist fehlgeschlagen\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" "Verwenden des privaten Schlüssels aus dem Schlüsselspeicher ist " "fehlgeschlagen\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Öffnen der privaten Schlüsseldatei %s schlug fehl: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Laden des privaten Schlüssels schlug fehl\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Identifizierung des geheimen Schlüsseltyps in »%s« ist gescheitert\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Übereinstimmung für alternativen DNS-Namen »%s«\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Keine Übereinstimmung für alternativen Namen »%s«\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "Zertifikat hat den alternativen Namen GEN_IPADD mit unsinniger Länge %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Übereinstimmende Adresse %s »%s«\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Keine Übereinstimmung für %s-Adresse »%s«\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Adresse »%s« hat einen nicht-leeren Pfad; wird ignoriert\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Adresse »%s« stimmt überein\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Keine Übereinstimmung für Adresse »%s«\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Kein alternativer Name in Zertifikat des Partners stimmt überein mit »%s«\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Kein Betreff im Zertifikat des Partners!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Verarbeiten des Betreffs im Zertifikat des Partners schlug fehl\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" "Betreff des Zertifikats des Partners stimmt nicht überein (»%s« != »%s«)\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Betreff »%s« des Zertifikats des Partners stimmt überein\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Zusätzliches Zertifikat von CA-Datei: »%s«\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Fehler im Feld »notAfter« des Client-Zertifikats\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Lesen von Zertifikaten aus der CA-Datei »%s« ist fehlgeschlagen\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Öffnen der CA-Datei »%s« fehlgeschlagen\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL-Verbindung fehlgeschlagen\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Entfernen des schlechten »split include«: »%s«\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Entfernen des schlechten »split exclude«: »%s«\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Erzeugen des Skripts »%s« für »%s« ist gescheitert: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript »%s« wurde außerplanmäßig abgebrochen (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript »%s« gab Fehler %d zurück\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket-Verbindung abgebrochen\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Neuverbindung zum Proxy %s ist gescheitert\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Neuverbindung zum Rechner %s ist gescheitert\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy von libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo für Rechner »%s« gescheitert: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Verbindungsversuch mit Proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Verbindungsversuch mit Server %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Zuweisen des sockaddr-Speichers ist fehlgeschlagen.\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Verbindung zum Server %s fehlgeschlagen\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Neuverbinden mit Proxy %s\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Öffnen der privaten Schlüsseldatei »%s« schlug fehl: %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Kein Fehler" #: ssl.c:588 msgid "Keystore locked" msgstr "Schlüsselspeicher gesperrt" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Schlüsselspeicher nicht initialisiert" #: ssl.c:590 msgid "System error" msgstr "Systemfehler" #: ssl.c:591 msgid "Protocol error" msgstr "Protokollfehler" #: ssl.c:592 msgid "Permission denied" msgstr "Zugriff verweigert" #: ssl.c:593 msgid "Key not found" msgstr "Schlüssel nicht gefunden" #: ssl.c:594 msgid "Value corrupted" msgstr "Wert defekt" #: ssl.c:595 msgid "Undefined action" msgstr "Undefinierte Aktion" #: ssl.c:599 msgid "Wrong password" msgstr "Falsches Passwort" #: ssl.c:600 msgid "Unknown error" msgstr "Unbekannter Fehler" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie ist nicht mehr gültig. Sitzung wird beendet\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "Wartezeit %ds, verbleibender Timeout %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-Token ist zu groß (%ld Byte)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "SSPI-Token von %lu Byte wird gesendet\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Senden des SSPI-Legitimierungs-Token an Proxy fehlgeschlagen: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Empfangen des SSPI-Legitimierungs-Token von Proxy fehlgeschlagen: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-Server meldete SSPI-Kontext ist fehlgeschlagen\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Unbekannte SSPI-Statusantwort (0x%02x) von SOCKS-Server\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "SSPI-Token mit %lu Byte erhalten: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() schlug fehl: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage schlug fehl: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "ergebnis von EncryptMessage() zu groß (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "SSPI-Schutzaushandlung von %u Byte wird gesendet\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Senden der SSPI-Schutzaushandlung an Proxy fehlgeschlagen: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Erhalten der SSPI-Schutzaushandlung von Proxy fehlgeschlagen: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "SSPI-Schutzantwort von %d Byte erhalten: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage schlug fehl: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Geben Sie die Anmeldedaten ein, um den Software-Token zu entsperren." #: stoken.c:82 msgid "Device ID:" msgstr "Gerätekennung:" #: stoken.c:89 msgid "Password:" msgstr "Passwort:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Benutzer hat den Soft-Token umgangen.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Alle Felder werden benötigt. Bitte versuchen Sie es erneut.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Allgemeiner Fehler in libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Gerätekennung oder Passwort war inkorrekt, versuchen Sie es erneut.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Initialisierung des Soft-Token war erfolgreich.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Geben Sie den PIN des Software-Token ein." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Ungültiges PIN-Format; versuchen Sie es erneut.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA Token-Code wird erzeugt\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Fehler beim Zugriff auf Registrierungsschlüssel für Netzwerk-Adapter\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Keine Windows-TAP-Adapter gefunden. Ist der Treiber installiert?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Öffnen von »%s« fehlgeschlagen\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "tun-Gerät %s geöffnet\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Ermitteln der TAP-Treiberversion schlug fehl: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Fehler: Windows-TAP-Treiber v9.9 oder neuer ist notwendig (%ld.%ld " "gefunden)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Festlegen der TAP IP-Adressen fehlgeschlagen: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Festlegen des TAP Medienstatus fehlgeschlagen: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Lesen vom TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Abschließen des Lesens von TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Schreiben auf das TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "/dev/tun konnte nicht für die Verbindung geöffnet werden" #: tun.c:92 msgid "Can't push IP" msgstr "IP kann nicht weitergeleitet werden" #: tun.c:102 msgid "Can't set ifname" msgstr "ifname kann nicht festgelegt werden" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "%s kann nicht geöffnet werden: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Verbindung %s für IPv%d gescheitert: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Neues tun konnte nicht erstellt werden" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Umstellen des tun-Dateideskriptors in den Nachrichten-Verwerfen-Modus ist " "fehlgeschlagen" #: tun.c:196 msgid "open net" msgstr "Offenes Netz" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Öffnen des tun-Geräts ist gescheitert: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Ungültiger Schnittstellenname »%s«; muss »utun%%d« oder »tun%%d« " "entsprechen\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Öffnen des Socket SYSPROTO_CONTROL schlug fehl: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ungültiger Schnittstellenname »%s«; muss »tun%%d« entsprechen\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "»%s« kann nicht geöffnet werden: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "Socket-Paar fehlgeschlagen: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "fork fehlgeschlagen: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unbekanntes Paket empfangen (Länge %d) : %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Schreiben des eingehenden Pakets schlug fehl: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Öffnen von %s fehlgeschlagen: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() für %s schlug fehl: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Anfordern von %d Byte für %s schlug fehl\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Lesen von %s fehlgeschlagen: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Rechner »%s« wird als nackter Rechnername angesehen\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Fehler beim Bilden von SHA1 der bestehenden Datei\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-Konfigurationsdatei SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Fehler beim Verarbeiten der XML-Konfigurationsdatei %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Rechner »%s« besitzt Adresse »%s«\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Rechner »%s« besitzt UserGroup »%s«\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Rechner »%s« ist nicht in der Konfiguration aufgeführt. Er wird als nackter " "Rechnername angesehen\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "»Applet wählen«-Befehl" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "Entsperren-Befehl" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "PC/SC-Kontext wurde hergestellt\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Anfragen der Leserliste ist fehlgeschlagen: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Verbundener PC/SC-Leser »%s«\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "»Schlüssel auflisten«-Befehl" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s Schlüssel »%s« auf »%s« wurde gefunden\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Yubikey Token-Code wird erzeugt\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "Berechnen-Befehl" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/sr@latin.po0000664000076400007640000030353312502026115013447 00000000000000# Language network-manager-openconnect-master translations for F package. # Copyright (C) 2011 THE F'S COPYRIGHT HOLDER # This file is distributed under the same license as the F package. # Miroslav Nikolić , 2011. msgid "" msgstr "" "Project-Id-Version: F 677-CF0E\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-05-15 20:01+0200\n" "Last-Translator: Miroslav Nikolić \n" "Language-Team: Serbian \n" "Language: Serbian (sr)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Virtaal 0.5.2\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ne mogu da radim sa načinom=„%s“ obrasca, radnja=„%s“\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nisam uspeo da stvorim OTP kod modula; isključujem modul\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Izbor obrasca nema naziv\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "naziv „%s“ nije ulaz\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Nema vrste ulaza za obrazac\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Nema naziva ulaza u obrascu\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nepoznata vrsta ulaza „%s“ u obrascu\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Prazan odgovor sa servera\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Nisam uspeo da obradim odgovor servera\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Odgovor je bio:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Primih kada nije očekivan.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "IksML odgovor nema čvor „auth“\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zatražena mi je lozinka ali je postavljeno „--no-passwd“\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Ne preuzimam IksML profil jer SHA1 već odgovara\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nisam uspeo da otvorim HTTPS vezu sa „%s“\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Nisam uspeo da pošaljem „GET“ zahtev za novo podešavanje\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Preuzeta datoteka podešavanja ne odgovara željenom SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Preuzet je novi IkML profil\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Greška: Pokretanje trojanca „Cisko bezbedne radne površi“ na Vindouzu još " "nije primenjeno.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Greška: Server je zatražio da pokrenemo CSD pregled domaćina.\n" "Morate da obezbedite odgovarajući „--csd-wrapper“ argument.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Greška: Server je zatražio da preuzmemo i pokrenemo trojanca „Cisko bezbedne " "radne površi“.\n" "Ova okolnost je isključena po osnovi iz bezbednosnih razloga, tako da biste " "možda želeli da je uključite.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Pokušavam da pokrenem skriptu Linuksovog CSD trojanca.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Privremeni direktorijum „%s“ nije upisiv: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nisam uspeo da otvorim privremenu datoteku CSD skripte: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nisam uspeo da zapišem privremenu datoteku CSD skripte: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Nisam uspeo da podesim jib %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Neispravan korisnički jib=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nisam uspeo da pređem u lični CSD direktorijum „%s“: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Upozorenje: pokrenuli ste nebezbedni CSD kod sa administratorskim " "ovlašćenjima\n" "\t Koristite opciju „--csd-user“\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nisam uspeo da izvršim CSD skriptu „%s“\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Nepoznat odgovor sa servera\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Server je zatražio uverenje SSL klijenta nakon što je dostavljeno jedno\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server je zatražio uverenje SSL klijenta; nijedno nije podešeno\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "IksML POST je uključen\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osvežavam „%s“ nakon 1 sekunde...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(greška 0h%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Greška prilikom opisivanja greške!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GREŠKA: Ne mogu da pokrenem priključnice\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO prim por %d, posl por %d, por ogl %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAHSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIČNA GREŠKA: Glavna tajna DTLS-a nije pokrenuta. Izvestite o ovome.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Greška stvaranja zahteva za HTTPS POVEZIVANJE\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Greška dovlačenja HTTPS odgovora\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN usluga nije dostupna; razlog: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Dobih neodgovarajući odgovor HTTP POVEZIVANJA: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Dobih odgovor POVEZIVANJA: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Nema memorije za opcije\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "IB sesije H-DTLS-a nije 64 znaka; već: „%s“\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nepoznato kodiranje CSTP sadržaja %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "MTU nije primljen. Prekidam\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Nije primljena IP adresa. Prekidam\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Primljeno je IPv6 podešavanje ali MTU %d je premali.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju Staru IP adresu (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Ponovno povezivanje je dalo drugačiju Staru IP mrežnu masku (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju IPv6 adresu (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju IPv6 mrežnu masku (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP je povezan. DPD %d, Održi živim %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP komplet šifrera: %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Podešavanje pakovanja nije uspelo\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Dodela međumemorije izduvavanja nije uspela\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "naduvavanje nije uspelo\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "izduvavanje nije uspelo %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "Nije uspela raspodela\n" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Primljen je kratak paket (%d bajta)\n" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Neočekivana dužina paketa. SSL_čitanje je dalo %d ali paket je\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Dobih CSTP DPD zahtev\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Dobih CSTP DPD odgovor\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Dobih CSTP Održi živim\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Primih paket nezapakovanih podataka od %d bajta\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Primih prekid veze sa servera: %02x „%s“\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Sažeti paket je primljen u „!deflate“ režimu\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "primljen je serverov paket okončavanja\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nepoznat paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL je zapisao premalo bajtova! Tražio je %d, poslao je %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Istek promene ključa CSTP-a\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Ponovno rukovanje nije uspelo; pokušavam novi tunel\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Otkrivanje mrtvog parnjaka CSTP-a je otkrilo mrtvog parnjaka!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Ponovno povezivanje nije uspelo\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Poslah CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Poslah CSTP Održi živim\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Šaljem paket nezapakovanih podataka od %d bajta\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslah paket ODLSKA: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokušavam svarivanje potvrđivanja identiteta sa posrednikom\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Nije uspelo pokretanje DTLSv1 sesije\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Nije uspelo pokretanje DTLSv1 CTH-a\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Nije uspelo postavljanje spiska DTLS šifrera\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Nije baš jedan DTLS šifrer\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Funkcija „SSL_set_session()“ nije uspela sa starim izdanjem protokola 0x%x\n" "Da li koristite izdanje OpenSSL-a starije od 0.9.8m?\n" "Vidite “http://rt.openssl.org/Ticket/Display.html?id=1751“\n" "Koristite opciju „--no-dtls“ da izbegnete ovu poruku\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "Uspostavljena je DTLS veza (koristim Otvoreni SSL). Komplet šifrera %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Vaš Otvoreni SSL je stariji od onog koji ste izgradili s njim, tako da DTLS " "možda neće uspeti!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Isteklo je vreme DTLS rukovanja\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Verovatno zato što je oštećen vaš Otvoreni SSL\n" "Vidite „http://rt.openssl.org/Ticket/Display.html?id=2984“\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Nije uspelo DTLS rukovanje: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nepoznati DTLS parametri za zatraženi Komplet šifrera „%s“\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nisam uspeo da postavim hitnost DTLS-a: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nisam uspeo da postavim parametre DTLS sesije: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nisam uspeo da postavim DTLS MTU: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Uspostavljena je DTLS veza (koristim GnuTLS). Komplet šifrera %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Nije uspelo DTLS rukovanje: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Da li vas mrežna barijera sprečava da pošaljete UDP pakete?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS veza je pokušana sa postojećim fd-om\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Nema DTLS adrese\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server je nije ponudio opciju DTLS šifrera\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Nema DTLS-a kada ste povezani putem posrednika\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opcija DTLS-a „%s“: %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS je pokrenut. DPD %d, Održi živim %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Pokušaj novu DTLS vezu\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Primljen je DTLS paket 0x%02x od %d bajta\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Dobih DTLS DPD zahtev\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem DPD odgovor. Očekujte prekid veze\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Dobih DTLS DPD odgovor\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Dobih DTLS Održi živim\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nepoznata vrsta DTLS paketa %02x, dužina %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Istek promene ključa DTLS-a\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Nije uspelo ponovno DTLS rukovanje; pnovo se povezujem.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Otkrivanje mrtvog parnjaka DTLS-a je otkrilo mrtvog parnjaka!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Poslah DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem DPD zahtev. Očekujte prekid veze\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Poslah DTLS Održi živim\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem zahtev održi živim. Očekujte prekid veze\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS je dobio grešku pisanja %d. Prebacujem se na SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS je dobio grešku pisanja: %s. Prebacujem se na SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Poslao sam DTLS paket od %d bajta; DTLS-ovo slanje je dalo %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Otkazano je SSL pisanje\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nisam uspeo da pišem na SSL priključnicu: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Otkazano je SSL čitanje\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "SSL priključnica nije lepo zatvorena\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nisam uspeo da čitam sa SSL priključnice: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Greška SSL čitanj: %s; ponovo se povezujem.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Nije uspelo SSL slanje: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Ne mogu da izvučem vreme isteka uverenja\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Uverenje klijenta je isteklo u" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Uverenje klijenta uskoro ističe" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nisam uspeo da učitam „%s“ iz smeštaja ključa: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku ključa/uverenja „%s“: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nisam uspeo da dobavim podatke datoteke ključa/uverenja „%s“: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Nisam uspeo da dodelim međumemoriju uverenja\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nisam uspeo da učitam uverenje u memoriju: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nisam uspeo da postavim strukturu PKCS#12 podataka: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nisam uspeo da dešifrujem datoteku PKCS#12 uverenja\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Unesite PKCS#12 lozinku:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nisam uspeo da obradim PKCS#12 datoteku: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nisam uspeo da učitam PKCS#12 uverenje: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Nisam uspeo da uvezem H509 uverenje: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nisam uspeo da postavim PKCS#11 uverenje: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ne mogu da pokrenem MD5 heš: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Greška MD5 heša: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" "Nedostaje zaglavlje „DEK-Info:“ iz ključa šifrovanog Otvorenim SSl-om\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Ne mogu da odredim vrstu PEM šifrovanja\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepodržana vrsta PEM šifrovanja: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neispravan prisolak u šifrovanoj PEM datoteci\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Greška šifrovane PEM datoteke osnove64-dekodiranja: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Šifrovana PEM datoteka je prekratka\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Nisam uspeo da pokrenem šifrera za dešifrovanje PEM datoteke: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nisam uspeo da dešifrujem PEM ključ: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Nije uspelo dešifrovanje PEM ključa\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Unesite PEM lozinku:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Ova izvršna je izgrađena bez podrške ključa sistema\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Ova izvršna je izgrađena bez podrške PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Koristim PKCS#11 uverenje „%s“\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Koristim sistemsko uverenje „%s“\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Greška učitavanja uverenja iz PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Greška učitavanja sistemskog uverenja: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Koristim datoteku uverenja „%s“\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 datoteka ne sadrži uverenje\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Nisam pronašao uverenje u datoteci" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nisam uspeo da uvezem uverenje: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Koristim sistemski ključ „%s“\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Greška pokretanja strukture ličnog ključa: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Greška uvoza sistemskog ključa „%s“: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Pokušavam adresu PKCS#11 ključa „%s“\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Greška pokretanja strukture PKCS#11 ključa: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Greška uvoza PKCS#11 adrese „%s“: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Koristim PKCS#11 ključ „%s“\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Greška uvoza PKCS#11 ključa u strukturu ličnog ključa: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Koristim datoteku ličnog ključa „%s“\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez TPM podrške\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Nisam uspeo da protumačim PEM datoteku\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nisam uspeo da učitam PKCS#1 lični ključ: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nisam uspeo da učitam lični ključ kao PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nisam uspeo da dešifrujem datoteku PKCS#8 uverenja\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nisam uspeo da odredim vrstu ličnog ključa „%s“\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nisam uspeo da dobavim IB ključa: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Greška potpisivanja probnih podataka ličnim ključem: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Greška potvrđivanja potpisa naspram uverenja: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Nisam našao SSL uverenje koje odgovara ličnom ključu\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Koristim uverenje klijenta „%s“\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Podešavanje spiska oporavka uverenja nije uspelo: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Nisam uspeo da dodelim memoriju za uverenje\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "UPOZORENJE: GnuTLS je vratio netačno uverenje izdavača; potvrđivanje " "identiteta možda neće uspeti!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Dobih sledećeg izdavača uverenja „%s“ iz PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nisam uspeo da dodelim memoriju za podržavanje uverenja\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodajem podržavajuće „%s“ izdavača uverenja\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nisam uspeo da podesim uverenje: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server nije predstavio nijedno uverenje\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Greška pokretanja strukture X509 uverenja\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Greška uvoza serverskog uverenja\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Ne mogu da izračunam heš serverskog uverenja\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Greška provere stanja uverenja servera\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "uverenje je opozvano" #: gnutls.c:1970 msgid "signer not found" msgstr "potpisnik nije pronađen" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "potpisnik nije uverenje izdavača uverenja" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "nebezbedni algoritam" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "uverenje još nije aktivirano" #: gnutls.c:1978 msgid "certificate expired" msgstr "uverenje je isteklo" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "provera potpisa nije uspela" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "uverenje ne odgovara nazivu domaćina" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Nije uspela provera uverenja servera: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" "Nisam uspeo da dodelim memoriju za uverenja datoteke izdavača uverenja\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Nisam uspeo da pročitam uverenja iz datoteke izdavača uverenja: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nisam uspeo da otvorim datoteku izdavača uverenja „%s“: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Nisam uspeo da učitam uverenje. Prekidam.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Nisam uspeo da postavim nisku hitnosti TLS-a: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL pregovaranje sa „%s“\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL veza je otkazana\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Neuspeh SSL veze: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Ne-kobni rezultat GnuTLS-a za vreme rukovanja: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Povezani ste na HTTPS sa „%s“\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Ponovo je dogovoren SSL na „%s“\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Potreban je PIN za %s“" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Pogrešan PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Ovo je poslednji pokušaj pre zaključavanja!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Ostalo je samo nekoliko pokušaja pre zaključavanja!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Unesite PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Nisam uspeo da odradim SHA1 ulaznih podataka za potpisivanje: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Funkcija TPM znaka je pozvana za %d bajta.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nisam uspeo da napravim TPM heš objekat: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nisam uspeo da podesim TPM heš objekat: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Nije uspeo TPM heš potpis: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Greška dekodiranja bloba TSS ključa: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Greška u blobu TSS ključa\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nisam uspeo da napravim TPM kontekst: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nisam uspeo da povežem TPM kontekst: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nisam uspeo da učitam TPM SRK ključ: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nisam uspeo da učitam objekt TPM SRK politike: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nisam uspeo da podesim TPM PIN: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nisam uspeo da učitam blob TPM ključa: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Unesite TPM SRK PIN:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nisam uspeo da napravim objekat politike ključa: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nisam uspeo da dodelim politiku ključu: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Unesite PIN TPM ključa:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nisam uspeo da podesim PIN ključa: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Greška uvoza GSSAPI naziva za potvrđivanje identiteta:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Greška stvaranja GSSAPI odgovora:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokušavam GSSAPI potvrđivanje identiteta sa posrednikom\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI potvrđivanje identiteta je obavljeno\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI modul je prevelik (%zd bajta)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Šaljem GSSAPI modul od %zu bajta\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Nisam uspeo da pošaljem GSSAPI modul potvrđivanja identiteta posredniku: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Nisam uspeo da primim GSSAPI modul potvrđivanja identiteta od posrednika: " "%s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS server je izvestio o neuspehu GSSAPI konteksta\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat odgovor GSSAPI stanja (0h%02x) sa SOCKS servera\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobih GSSAPI modul od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Šaljem pregovor GSSAPI zaštite od %zu bajta\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nisam uspeo da pošaljem odgovor GSSAPI zaštite posredniku: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nisam uspeo da primim odgovor GSSAPI zaštite od posrednika: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobih odgovor GSSAPI zaštite od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Neispravan odgovor GSSAPI zaštite sa posrednika (%zu bajta)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS posrednik traži celovitost poruke, što nije podržano\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS posrednik traži poverljivost poruke, što nije podržano\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS posrednik traži nepoznatu vrstu zaštite 0h%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokušavam HTTP Osnovno potvrđivanje identiteta sa posrednikom\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez GSSAPI podrške\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Posrednik zahteva Osnovno potvrđivanje identiteta koje je po osnovi " "isključeno\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nema više načina potvrđivanja identiteta\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Nema memorije za dodelu kolačića\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nisam uspeo da obradim HTTP odgovor „%s“\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Dobih HTTP odgovor: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Greška obrade HTTP odgovora\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Zanemarujem nepoznati red HTTP odgovora „%s“\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ponuđen je neispravan kolačić: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Nije uspelo potvrđivanje identiteta SSL uverenja\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Telo odgovora ima negativnu veličinu (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nepoznato prenosno-kodiranje: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP telo %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Greška čitanja tela HTTP odgovora\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Greška dovlačenja zaglavlja delića\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Greška dovlačenja tela HTTP odgovora\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Greška u iskomadanom dekodiranju. Očekivah „“, dobih: „%s“" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ne mogu da primim HTTP 1.0 telo bez zatvaranja veze\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nisam uspeo da obradim preusmerenu adresu „%s“: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ne mogu da pratim preusmerenje na ne-https adrese „%s“\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Nije uspelo dodeljivanje nove putanje za relativno preusmerenje: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekivan %d rezultat sa servera\n" #: http.c:1056 msgid "request granted" msgstr "zahtev je odobren" #: http.c:1057 msgid "general failure" msgstr "opšti neuspeh" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "veza nije dozvoljena skupom pravila" #: http.c:1059 msgid "network unreachable" msgstr "mreža je nedostižna" #: http.c:1060 msgid "host unreachable" msgstr "domaćin je nedostižan" #: http.c:1061 msgid "connection refused by destination host" msgstr "vezu je odbio odredišni domaćin" #: http.c:1062 msgid "TTL expired" msgstr "TTL je isteklo" #: http.c:1063 msgid "command not supported / protocol error" msgstr "naredba nije podržana / greška protokola" #: http.c:1064 msgid "address type not supported" msgstr "vrsta adrese nije podržana" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS server je zatražio korisničko ime/lozinku ali mi nemamo nijedno\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Korisničko ime i lozinka za SOCKS potvrđivanje identiteta moraju biti < 255 " "bajta\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Greška pisanja zahteva potvrđivanja identiteta na SOCKS posredniku: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Greška čitanja zahteva potvrđivanja identiteta sa SOCKS posrednika: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Neočekivan odgovor potvrđivanja identiteta sa SOCKS posrednika: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Potvrdili ste identitet na SOCKS posredniku koristeći lozinku\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Nije uspelo potvrđivanje identiteta lozinkom na SOCKS serveru\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS server zahteva GSSAPI potvrđivanje identiteta\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS server zahteva potvrđivanje identiteta lozinkom\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "SOCKS server zahteva potvrđivanje identiteta\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS server zahteva nepoznatu vrstu potvrđivanja identiteta %02x\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Zahtevam vezu SOCKS posrednika sa %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Greška pisanja zahteva povezivanja sa SOCKS posrednikom: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Greška čitanja odgovora veze sa SOCKS posrednika: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekivan odgovor veze sa SOCKS posrednika: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Greška SOCKS posrednika %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Greška SOCKS posrednika %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekivana vrsta adrese %02x u odgovoru SOCKS veze\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Zahtevam vezu HTTP posrednika sa %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Nisam uspeo da pošaljem zahtev posrednika: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Zahtev POVEZIVANJA posrednika nije uspeo: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nepoznata vrsta posrednika „%s“\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Podržani su samo http ili socks(5) posrednici\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgrađeno je SSL bibliotekom bez Cisko DTLS podrške\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nisam uspeo da obradim adresu servera „%s“\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Dozvoljeno je samo „https://“ za adresu servera\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Nema rukovaoca obrascem; ne mogu da potvrdim identitet.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Nije uspela funkcija linije naredbi u argument: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kobna greška u radu sa linijom naredbi\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Nije uspela funkcija čitanja konzole: %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Greška pretvaranja ulaza konzole: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Neuspeh dodeljvanja za nisku sa standardnog ulaza\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Za ispomoć sa Otvorenim povezivanjem, pogledajte veb stranicu na\n" " „http://www.infradead.org/openconnect/mail.html“\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Koristim OpenSSL. Prisutne funkcije:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Koristim GnuTLS. Prisutne funkcije:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Nije prisutan POGON OtvorenogSSL-a" #: main.c:613 msgid "using OpenSSL" msgstr "koristim OtvoreniSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "UPOZORENJE: Nema DTLS podrške u ovoj izvršnoj. Delotvornost će biti " "umanjena.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdul)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ne mogu da obradim putanju ove izvršne „%s“" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Dodela za putanju vpnc-skripte nije uspela\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Upotreba: openconnect [opcije] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Otvoreni klijent za Cisko Eni Konekt VPN, izdanje %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Čita opcije iz datoteke podešavanja" #: main.c:710 msgid "Continue in background after startup" msgstr "Nastavlja u pozadini nakon pokretanja" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Piše PIB pozadinca u ovu datoteku" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Koristi uverenje UVER SSL klijenta" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Upozorava kada je životni vek uverenja < DANA" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Koristi KLJUČ datoteke ličnog ključa SSL-a" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Koristi kolačić KOLAČIĆ VebVPN-a" #: main.c:717 msgid "Read cookie from standard input" msgstr "Čita kolačić sa standardnog ulaza" #: main.c:718 msgid "Enable compression (default)" msgstr "Uključuje sažimanje (osnovno)" #: main.c:719 msgid "Disable compression" msgstr "Isključuje sažimanje" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Podešava najmanji period otkrivanja neaktivnih parnjaka" #: main.c:721 msgid "Set login usergroup" msgstr "Podešava korisničku grupu prijavljivanja" #: main.c:722 msgid "Display help text" msgstr "Prikazuje tekst pomoći" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Koristi AKONAZIV za uređaj tunela" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Koristi sistemski dnevnik za poruke napredovanja" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Dodaje datum i vreme porukama napredovanja" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Odbacuje ovlašćenja nakon povezivanja" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Odbacuje ovlašćenja za vreme izvršavanja CSD-a" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Pokreće SKRIPTU umesto CSD izvršne" #: main.c:733 msgid "Request MTU from server" msgstr "Zahteva MTU sa servera" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Ukazuje na MTU putanju do/od servera" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Podešava lozinku ključa ili TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Lozinka ključa je ib sistema datoteka ili sistem datoteka" #: main.c:737 msgid "Set proxy server" msgstr "Podešava posrednički server" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Podešava načine potvrđivanja identiteta posrednika" #: main.c:739 msgid "Disable proxy" msgstr "Isključuje posrednika" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Koristi „libproxy“ da samostalno podesi posrednika" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NAPOMENA: „libproxy“ je isključena u ovoj izgradnji)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Zahteva savršenu tajnost prosleđivanja" #: main.c:745 msgid "Less output" msgstr "Manje izlaza" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Podešava ograničenje reda paketa na DUŽINU paketa" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Linija naredbe školjke za korišćenje vpnc-saglasne skripte podešavanja" #: main.c:748 msgid "default" msgstr "osnovno" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Prosleđujem saobraćaj programu „script“, a ne tunu" #: main.c:752 msgid "Set login username" msgstr "Podešava korisničko ime prijavljivanja" #: main.c:753 msgid "Report version number" msgstr "Izveštava o broju izdanja" #: main.c:754 msgid "More output" msgstr "Više izlaza" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" "Ispisuje saobraćaj HTTP potvrđivanja identiteta (podrazumeva „--verbose“)" #: main.c:756 msgid "XML config file" msgstr "IksML datoteka podešavanja" #: main.c:757 msgid "Choose authentication login selection" msgstr "Bira izbor prijave potvrđivanja identiteta" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Samo potvrđuje identitet i ispisuje podatke o prijavi" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Samo dobavlja vebvpn kolačić; ne povezuje se" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Ispsiuje vebvpn kolačić pre povezivanja" #: main.c:761 msgid "Cert file for server verification" msgstr "Datoteka uverenja za proveru servera" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Ne traži IPv6 povezivost" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Šifreri OtvorenogSSL-a za podršku DTLS-a" #: main.c:764 msgid "Disable DTLS" msgstr "Isključuje DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Isključuje ponovno korišćenje HTTP veze" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Isključuje potvrđivanje identiteta lozinkom/Bezbednim IB-om" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Ne zahteva da SSL uverenje servera bude ispravno" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "Isključuje osnovne sistemske izdavače uverenja" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Ne pokušava IksML POST potvrđivanje identiteta" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Ne očekuje korisnički unos; izlazi ako je zatražen" #: main.c:771 msgid "Read password from standard input" msgstr "Čita lozinku sa standardnog ulaza" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Vrsta softverskog modula: „rsa“, „totp“ ili „hotp“" #: main.c:773 msgid "Software token secret" msgstr "Tajna softverskog modula" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(NAPOMENA: „libstoken“ (RSA Bezbedni IB) je isključena u ovoj izgradnji)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NAPOMENA: „Yubikey“ OATH je isključen u ovoj izgradnji)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Vremenski rok ponovnog povezivanja u sekundama" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 otisak serverskog uverenja" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Korisnik-Agent HTTP zaglavlja: nije uspelo" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Vrsta operativnog sistema (linux,linux-64,win,...) za izveštavanje" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Podešava mesni priključnik za DTLS datagrame" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Nisam uspeo da dodelim nisku\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nisam uspeo da dobavim red iz datoteke podešavanja: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nepoznata opcija u %d. redu: „%s“\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcija „%s“ ne uzima argument u %d. redu\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcija „%s“ zahteva argument u %d. redu\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UPOZORENJE: Ovo izdanje otvorenog povezivanja je izgrađeno bez ikonv\n" " podrške ali izgleda da koristite nasleđeni znak\n" " podesite „%s“. Očekujte neočekivano.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UPOZORENJE: Ovo izdanje „openconnect“-a je %s ali\n" " biblioteka „libopenconnect“ je %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nisam uspeo da dodelim strukturu vpnpodataka\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Neispravan korisnik „%s“\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ne možete koristiti opciju „config“ unutar datoteke podešavanja\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ne mogu da otvorim datoteku podešavanja „%s“: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d je premalo\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Isključujem ponovno korišćenje svih HTTP veza zbog opcije „--no-http-" "keepalive“.\n" "Ako ovo pomogne, izvestite o tome na „“.\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulta dužina reda nije dozvoljena; koristim 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "Otvoreno povezivanje izdanje %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neispravan režim softverskog modula „%s“\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Neispravan odrednik OS-a „%s“\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Previše argumenata na liniji naredbi\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nije naveden server\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ovo izdanje otvorenog povezivanja je izgrađeno bez podrške biblioteke " "posrednika\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Greška otvaranja spojke naredbe\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nisam uspeo da dobijem VebVPN kolačić\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nije uspelo stvaranje SSL veze\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Podešavanje tun skripte nije uspelo\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Podešavanje tun uređaja nije uspelo\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Nije uspelo podešavanje DTLS-a; koristim SSL\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Nije dostavljen argument „--script“; DNS i upućivanje nisu podešeni\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Pogledajte „http://www.infradead.org/openconnect/vpnc-script.html“\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nisam uspeo da otvorim „%s“ radi upisa: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Nastavljam rad u pozadini, pib %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Korisnik je zatražio ponovno povezivanje\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Kolačić je odbačen pri ponovnom povezivanju; izlazim.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Server je okončao sesiju; izlazim.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Korisnik je otkazao (SIGINT); izlazim.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Korisnik se otkačio sa sesije (SIGHUP); izlazim.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Nepoznata greška; izlazim.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nisam uspeo da otvorim „%s“ radi upisa: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nisam uspeo da upišem podešavanja u „%s“: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Serversko SSL uverenje ne odgovara: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Nije uspelo potvrđivanje uverenja sa VPN servera „%s“.\n" "Razlog: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Unesite „%s“ da prihvatite, „%s“ da prekinete; bilo šta drugo da pregledate: " #: main.c:1661 main.c:1679 msgid "no" msgstr "ne" #: main.c:1661 main.c:1667 msgid "yes" msgstr "da" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Heš serverskog ključa: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Izbor potvrđivanja identiteta „%s“ se poklapa sa više opcija\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Izbor potvrđivanja „%s“ nije dostupan\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Korisnički ulaz je zatražen u nemeđudejstvenom režimu\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nisam uspeo da otvorim datoteku modula radi upisa: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Nisam uspeo da zapišem modul: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Niska softverskog modula je neispravna\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ne mogu da otvorim datoteku „~/.stokenrc“\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom „libstoken“-a\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Opšti neuspeh u „libstoken“-u\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom „liboath“-a\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Opšti neuspeh u „liboath“-u\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "Nisam našao modul Jubi ključa\n" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom Jubi ključa\n" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Opšti neuspeh Jubi ključa: %s\n" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Pozivnik je pauzirao vezu\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Besposlen sam; odspavaću %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Čekanje na više objekata nije uspelo: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Pokretanje konteksta bezbednosti nije uspelo: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Rukovanje nabavkom uverenja nije uspelo: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Greška u razgovoru sa „ntlm_auth“ pomoćnikom\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Pokušavam HTTP NTML potvrđivanje identiteta sa posrednikom (jedna-prijava)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Pokušavam HTTP NTLMv%d potvrđivanje identiteta sa posrednikom\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PSKC podrške\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Moguće je stvaranje POČETNOG koda modula\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Moguće je stvaranje SLEDEĆEG koda modula\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server odbija softverski modul; prelazim na ručni unos\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Stvaram kod OATH TOTP modula\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Stvaram kod OATH HOTP modula\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GREŠKA: „%s()“ je pozvano sa neispravnim UTF-8 za argument „%s“\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nisam uspeo da uspostavim libp11 PKCS#11 kontekst:\n" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "Nisam uspeo da učitam modul PKCS#11 dostavljača (p11-kit-proxy.so):\n" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "PIN je zaključan\n" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "PIN je istekao\n" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "Drugi korisnik je već prijavljen\n" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nepoznata greška prijavljivanja na PKCS#11 modul\n" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prijavljen sam na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim uverenja u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nađoh %d uverenja u priključku „%s“\n" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nisam uspeo da obradim PKCS#11 putanju „%s“\n" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nisam uspeo da nabrojim PKCS#11 priključke\n" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Prijavljujem se na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 nije dovukla sadržaj H.509 uverenja\n" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nisam uspeo da instaliram uverenje u OpenSSL kontekst\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim ključeve u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nađoh %d ključa u priključku „%s“\n" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nisam uspeo da napravim primerak ličnog ključa iz PKCS#11\n" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "Dodavanje ključa iz PKCS#11 nije uspelo\n" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PKCS#11 podrške\n" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Nisam uspeo da pišem na SSL priključnicu\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Nisam uspeo da čitam sa SSL priključnice\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Greška SSL čitanja %d (server je verovatno zatvorio vezu); ponovo se " "povezujem.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "Nije uspelo SSL_pisanje: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nepoznata vrsta zahteva KS SSL-a %d\n" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM lozinka je preduga (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatno uverenje iz „%s“: %s\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Nije uspela obrada PKCS#12 (vidite greške iznad)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 ne sadrži uverenje!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 ne sadrži lični ključ!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Ne mogu da učitam TPM pogon.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Nisam uspeo da pokrenem TPM pogon\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Nisam uspeo da podesim TPM SRK lozinku\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Nisam uspeo da učitam TPM lični ključ\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Dodavanje ključa iz TPM-a nije uspelo\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku uverenja „%s“: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Nisam uspeo da učitam uverenje\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Nisam uspeo da obradim sva podržavajuća uverenja. Ipak pokušavam...\n" #: openssl.c:710 msgid "PEM file" msgstr "PEM datoteka" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nisam uspeo da napravim BIO za stavku smeštaja ključeva „%s“\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Učitavanje ličnog ključa nije uspelo (pogrešna lozinka?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Učitavanje ličnog ključa nije uspelo (vidite greške iznad)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nisam uspeo da učitam H509 uverenje iz smeštaja ključa\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nisam uspeo da koristim H509 uverenje iz smeštaja ključa\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Nisam uspeo da koristim lični ključ iz smeštaja ključa\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku ličnog ključa „%s“: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Učitavanje ličnog ključa nije uspelo\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nisam uspeo da odredim vrstu ličnog ključa u „%s“\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Poklopih DNS zamenski naziv „%s“\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Nema poklapanja za zamenski naziv „%s“\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Uverenje ima zamenski naziv „GEN_IPADD“ sa prividnom dužinom %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Poklopljena je %s adresa „%s“\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nema poklapanja za %s adresu „%s“\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Putanja „%s“ ima ne-praznu putanju; zanemarujem\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Odgovarajuća putanja „%s“\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Nema poklapanja za putanju „%s“\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nema odgovarajućeg zamenskog naziva u uverenju parnjaka „%s“\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Nema naziva teme u uverenju parnjaka!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Nisam uspeo da obradim naziv teme u uverenju parnjaka\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Tema uverenja parnjaka ne odgovara ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odgovarajući naziv teme uverenja parnjaka „%s“\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatno uverenje iz datoteke izdavača uverenja: %s\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Greška u polju nije_nakon u uverenju klijenta\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nisam uspeo da pročitam uverenja iz datoteke izdavača uverenja „%s“\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nisam uspeo da otvorim datoteku izdavača uverenja „%s“\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Neuspeh SSL veze\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odbacujem uključivanja loše podele: „%s“\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odbacujem isključivanja loše podele: „%s“\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nisam uspeo da izrodim skriptu „%s“ za %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skripta „%s“ je izašla neispravno (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skripta „%s“ je dala grešku %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Povezivanje priključnice je otkazano\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Nisam uspeo ponovo da se povežem sa posrednikom „%s“\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Nisam uspeo ponovo da se povežem sa domaćinom „%s“\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Posrednik iz biblioteke posrednika: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Dobavljanje podataka adrese nije uspelo za domaćina „%s“: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponovo se povezujem na DinDNS server koristeći prethodno pričuvanu IP " "adresu\n" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokušavam da se povežem sa posrednikom %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokušavam da se povežem sa serverom %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Nisam uspeo da dodelim smeštaj adrese priključnice\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "Zaboravljam ne-delotvornu adresu prehodnog parnjaka\n" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nisam uspeo da se povežem sa domaćinom „%s“\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Ponovo se povezujem sa posrednikom „%s“\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "Ne mogu da dobijem IB sistema datoteka za lozinku\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Nisam uspeo da otvorim datoteku ličnog ključa „%s“: %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Nema greške" #: ssl.c:588 msgid "Keystore locked" msgstr "Smeštaj ključa je zaključan" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Smeštaj ključa nije pokrenut" #: ssl.c:590 msgid "System error" msgstr "Greška sistema" #: ssl.c:591 msgid "Protocol error" msgstr "Greška protokola" #: ssl.c:592 msgid "Permission denied" msgstr "Pristup je odbijen" #: ssl.c:593 msgid "Key not found" msgstr "Nisam našao ključ" #: ssl.c:594 msgid "Value corrupted" msgstr "Vrednost je oštećena" #: ssl.c:595 msgid "Undefined action" msgstr "Neodređena radnja" #: ssl.c:599 msgid "Wrong password" msgstr "Pogrešna lozinka" #: ssl.c:600 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "„openconnect_fopen_utf8()“ je korišćeno sa nepodržanim režimom „%s“\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Kolačić nije više ispravan, završavam sesiju\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spavam %d sek., preostalo vreme isteka %d sek.\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI modul je prevelik (%ld bajta)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Šaljem SSPI modul od %lu bajta\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Nisam uspeo da pošaljem SSPI modul potvrđivanja identiteta posredniku: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Nisam uspeo da primim SSPI modul potvrđivanja identiteta od posrednika: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS server je izvestio o neuspehu SSPI konteksta\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat odgovor SSPI stanja (0h%02x) sa SOCKS servera\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Dobih SSPI modul od %lu bajta: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Propitivanje kontekstnih atributa nije uspelo: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Šifrovanje poruke nije uspelo: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Rezultat šifrovane poruke je prevelik (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Šaljem pregovor SSPI zaštite od %u bajta\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nisam uspeo da pošaljem odgovor SSPI zaštite posredniku: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nisam uspeo da primim odgovor SSPI zaštite od posrednika: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Dobih odgovor SSPI zaštite od %d bajta: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Dešifrovanje poruke nije uspelo: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neispravan odgovor SSPI zaštite sa posrednika (%lu bajta)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Unesite uverenja za otključavanje softverskog modula." #: stoken.c:82 msgid "Device ID:" msgstr "IB uređaja:" #: stoken.c:89 msgid "Password:" msgstr "Lozinka:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Korisnik je zaobišao softverski modul.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Sva polja su obavezna; pokušajte opet.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Opšti neuspeh u „libstoken“-u.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Neispravan IB uređaja ili lozinka; pokušajte ponovo.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Pokretanje softverskog modula je uspelo.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Unesite PIN softverskog modula." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Neispravan zapis PIN-a; pokušajte ponovo.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Stvaram kod RSA modula\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Greška pristupa ključu registra za mrežnim prilagođivačima\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Zanemarujem ne-podudarajući TAP uređaj „%s“\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Nisam našao Vindouz-TAP prilagođivače. Da li je instaliran upravljački " "program?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Nisam uspeo da otvorim „%s“\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Otvorio sam tun uređaj „%s“\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nisam uspeo da dobijem izdanje TAP upravljačkog programa: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Greška: Potreban je upravljački program TAP-Vindouza v9.9 ili veći (nađoh " "%ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nisam uspeo da podesim TAP IP adrese: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nisam uspeo da podesim stanje TAP medija: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP uređaj je prekinuo povezivost. Prekidam vezu.\n" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nisam uspeo da čitam sa TAP uređaja: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nisam uspeo da dovršim čitanje sa TAP uređaja: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Zapisah %ld bajta na tunu\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Čekam na zapisivanje tuna...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Zapisah %ld bajta na tunu nakon čekanja\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nisam uspeo da pišem na TAP uređaj: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Izrađanje tunelskih skripti još nije podržano na Vindouzu\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ne mogu da otvorim „/dev/tun“ za omreženje" #: tun.c:92 msgid "Can't push IP" msgstr "Ne mogu da poguram IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ne mogu da podesim „ifname“" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Ne mogu da otvorim „%s“: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ne mogu da omrežim „%s“ za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otvaram „/dev/tun“" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nisam uspeo da napravim novi tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Nisam uspeo da stavim opisnik tun datoteke u režim odbacivanja poruke" #: tun.c:196 msgid "open net" msgstr "otvaram mrežu" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Ne mogu da otvorim tun uređaj: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „utun%%d“ ili „tun%%d“\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nisam uspeo da otvorim „SYSPROTO_CONTROL“ priključnicu: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nisam uspeo da propitam ib kontrole utuna: %s\n" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "Nisam uspeo da dodelim naziv utun uređaja\n" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nisam uspeo da povežem utun jedinicu: %s\n" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „tun%%d“\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ne mogu da otvorim „%s“: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "Nije uspelo uparivanje utičnice: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "iscepljivanje nije uspelo: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(skripta)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Primljen je nepoznat paket (dužine %d): %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nisam uspeo da zapišem pristigli paket: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nisam uspeo da otvorim „%s“: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Ne mogu da dobijem podatke o „%s“: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nisam uspeo da dodelim %d bajta za „%s“\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nisam uspeo da pročitam „%s“: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Smatram domaćina „%s“ za sirovi naziv domaćina\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Nisam uspeo da SHA1 postojeću datoteku\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 datoteke IksML podešavanja: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nisam uspeo da obradim datoteku IksML podešavanja „%s“\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Domaćin „%s“ ima adresu „%s“\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Domaćin „%s“ ima korisničku grupu „%s“\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Domaćin „%s“ nije naveden u podešavanjima; smatram ga sirovim nazivom " "domaćina\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nisam uspeo da pošaljem „%s“ do programčeta „ykneo-oath“: %s\n" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neispravan kratak odgovor za „%s“ od programčeta „ykneo-oath“\n" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Neuspeli odgovor za „%s“: %04x\n" #: yubikey.c:158 msgid "select applet command" msgstr "izaberi naredbu programčeta" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nepoznat odgovor od programčeta „ykneo-oath“\n" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Našao sam programče „ykneo-oath“ i%d.%d.%d.\n" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "Potreban je PIN za OATH programče Jubi ključa" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "PIN Jubi ključa:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nisam uspeo da izračunam odgovor otključavanja Jubi ključa\n" #: yubikey.c:256 msgid "unlock command" msgstr "naredba otključavanja" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nisam uspeo da uspostavim PC/SC kontekst: %s\n" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "PC/SC kontekst je upsostavljen\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nisam uspeo da propitam spisak čitača: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nisam uspeo da se povežem sa PC/SC čitačem „%s“: %s\n" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Povezan je PC/SC čitač „%s“\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup čitaču „%s“: %s\n" #: yubikey.c:398 msgid "list keys command" msgstr "naredba spiska ključeva" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nađoh %s/%s kljzč „%s“ na „%s“\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nisam našao modul „%s“ na Jubi ključu „%s“. Tražim drugi Jubi ključ...\n" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odbija modul Jubi ključa; prelazim na ručni unos\n" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Stvaram kod modula Jubi ključa\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup Jubi ključu: %s\n" #: yubikey.c:600 msgid "calculate command" msgstr "naredba izračunavanja" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nepoznat odgovor sa Jubi ključa prilikom stvaranja koda modula\n" openconnect-7.06/po/en_US.po0000664000076400007640000023122412502026115012701 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Margie Foster , 2011, 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: English (United States) (http://www.transifex.com/projects/p/" "meego/language/en_US/)\n" "Language: en_US\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Cannot handle form method='%s', action='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Form choice has no name\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "name %s not input\n" #: auth.c:186 msgid "No input type in form\n" msgstr "No input type in form\n" #: auth.c:198 msgid "No input name in form\n" msgstr "No input name in form\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unknown input type %s in form\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Failed to parse server response\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Response was:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Asked for password but '--no-passwd' set\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Failed to open HTTPS connection to %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloaded config file did not match intended SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Trying to run Linux CSD trojan script.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Failed to open temporary CSD script file: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Failed to write temporary CSD script file: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Failed to change to CSD home directory '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Failed to exec CSD script %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Unknown response from server\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Refreshing %s after 1 second...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Error fetching HTTPS response\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN service unavailable; reason: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Got inappropriate HTTP CONNECT response: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Got CONNECT response: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "No memory for options\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unknown CSTP-Content-Encoding %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "No IP address received. Aborting\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconnect gave different Legacy IP address (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconnect gave different Legacy IP netmask (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconnect gave different IPv6 address (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconnect gave different IPv6 netmask (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connected. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Compression setup failed\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Allocation of deflate buffer failed\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "inflate failed\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate failed %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unexpected packet length. SSL_read returned %d but packet is\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Got CSTP DPD request\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Got CSTP DPD response\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Got CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Received uncompressed data packet of %d bytes\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Received server disconnect: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Compressed packet received in !deflate mode\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "received server terminate packet\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL wrote too few bytes! Asked for %d, sent %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detected dead peer!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Reconnect failed\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sending uncompressed data packet of %d bytes\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE packet: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialize DTLSv1 session failed\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialize DTLSv1 CTX failed\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Set DTLS cipher list failed\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Not precisely one DTLS cipher\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Your OpenSSL is older than the one you built against, so DTLS may fail!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake timed out\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake failed: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "No DTLS address\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server offered no DTLS cipher option\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "No DTLS when connected via proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS option %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Attempt new DTLS connection\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Received DTLS packet 0x%02x of %d bytes\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Got DTLS DPD request\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Failed to send DPD response. Expect disconnect\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Got DTLS DPD response\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Got DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unknown DTLS packet type %02x, len %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detected dead peer!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS got write error %d. Falling back to SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL write canceled\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL read canceled\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Client certificate has expired at" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Client certificate expires soon at" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Using certificate file %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "This version of OpenConnect was built without TPM support\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "certificate does not match hostname" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Server certificate verify failed: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Loading certificate failed. Aborting.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL negotiation with %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL connection canceled\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Connected to HTTPS on %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "No memory for allocating cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Failed to parse HTTP response '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Got HTTP response: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Error processing HTTP response\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignoring unknown HTTP response line '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Invalid cookie offered: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "SSL certificate authentication failed\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Response body has negative size (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unknown Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Error reading HTTP response body\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Error fetching chunk header\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Error fetching HTTP response body\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Error in chunked decoding. Expected '', got: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Cannot receive HTTP 1.0 body without closing connection\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Failed to parse redirected URL '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allocating new path for relative redirect failed: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unexpected %d result from server\n" #: http.c:1056 msgid "request granted" msgstr "request granted" #: http.c:1057 msgid "general failure" msgstr "general failure" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "connection not allowed by ruleset" #: http.c:1059 msgid "network unreachable" msgstr "network unreachable" #: http.c:1060 msgid "host unreachable" msgstr "host unreachable" #: http.c:1061 msgid "connection refused by destination host" msgstr "connection refused by destination host" #: http.c:1062 msgid "TTL expired" msgstr "TTL expired" #: http.c:1063 msgid "command not supported / protocol error" msgstr "command not supported / protocol error" #: http.c:1064 msgid "address type not supported" msgstr "address type not supported" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error writing auth request to SOCKS proxy: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error reading auth response from SOCKS proxy: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unexpected auth response from SOCKS proxy: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requesting SOCKS proxy connection to %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error writing connect request to SOCKS proxy: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error reading connect response from SOCKS proxy: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unexpected connect response from SOCKS proxy: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy error %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy error %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unexpected address type %02x in SOCKS connect response\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requesting HTTP proxy connection to %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Sending proxy request failed: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unknown proxy type '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Only http or socks(5) proxies supported\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Failed to parse server URL '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Only https:// permitted for server URL\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allocation failure for string from stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Usage: openconnect [options] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "Continue in background after startup" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Write the daemon's PID to this file" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Use SSL client certificate CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Warn when certificate lifetime < DAYS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Use SSL private key file KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Use WebVPN cookie COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Read cookie from standard input" #: main.c:718 msgid "Enable compression (default)" msgstr "Enable compression (default)" #: main.c:719 msgid "Disable compression" msgstr "Disable compression" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Set minimum Dead Peer Detection interval" #: main.c:721 msgid "Set login usergroup" msgstr "Set login usergroup" #: main.c:722 msgid "Display help text" msgstr "Display help text" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Use IFNAME for tunnel interface" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Use syslog for progress messages" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Drop privileges after connecting" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Drop privileges during CSD execution" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Run SCRIPT instead of CSD binary" #: main.c:733 msgid "Request MTU from server" msgstr "Request MTU from server" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Set key passphrase or TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Key passphrase is fsid of file system" #: main.c:737 msgid "Set proxy server" msgstr "Set proxy server" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Disable proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Use libproxy to automatically configure proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: libproxy disabled in this build)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "Less output" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Set packet queue limit to LEN pkts" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shell command line for using a vpnc-compatible config script" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Pass traffic to 'script' program, not tun" #: main.c:752 msgid "Set login username" msgstr "Set login username" #: main.c:753 msgid "Report version number" msgstr "Report version number" #: main.c:754 msgid "More output" msgstr "More output" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "XML config file" #: main.c:757 msgid "Choose authentication login selection" msgstr "Choose authentication login selection" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Fetch webvpn cookie only; don't connect" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Print webvpn cookie before connecting" #: main.c:761 msgid "Cert file for server verification" msgstr "Cert file for server verification" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Do not ask for IPv6 connectivity" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL ciphers to support for DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Disable DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Disable HTTP connection re-use" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Disable password/SecurID authentication" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Do not require server SSL cert to be valid" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Do not expect user input; exit if it is required" #: main.c:771 msgid "Read password from standard input" msgstr "Read password from standard input" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Connection retry timeout in seconds" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Server's certificate SHA1 fingerprint" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Failed to allocate vpninfo structure\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Invalid user \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d too small\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Queue length zero not permitted; using 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "No server specified\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "This version of openconnect was built without libproxy support\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Failed to obtain WebVPN cookie\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Creating SSL connection failed\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Set up tun device failed\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Set up DTLS failed; using SSL instead\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "No --script argument provided; DNS and routing are not configured\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "See http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Failed to open '%s' for write: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuing in background; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "USer canceled (SIGINT); exiting;\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Failed to open %s for write: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Failed to write config to %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certificate didn't match: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "no" #: main.c:1661 main.c:1667 msgid "yes" msgstr "yes" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth choice \"%s\" not available\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "No work to do; sleeping for %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL read error %d (server probably closed connection); reconnecting.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write failed: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert from %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Parse PKCS#12 failed (see above errors)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 contained no certificate!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 contained no private key!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Can't load TPM engine.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Failed to init TPM engine\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Failed to set TPM SRK password\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Failed to load TPM private key\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Add key from TPM failed\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Failed to open certificate file %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Loading certificate failed\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Loading private key failed (wrong passphrase?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Loading private key failed (see above errors)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Failed to open private key file %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Failed to identify private key type in '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "No match for altname '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificate has GEN_IPADD altname with bogus length %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matched %s address '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "No match for %s address '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' has non-empty path; ignoring\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Matched URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "No match for URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No altname in peer cert matched '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "No subject name in peer cert!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Failed to parse subject name in peer cert\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert subject mismatch ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matched peer certificate subject name '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert from cafile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Error in client cert notAfter field\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Failed to open CA file '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL connection failure\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Discard bad split include: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Discard bad split exclude: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Failed to spawn script '%s' for %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket connect canceled\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Failed to reconnect to proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Failed to reconnect to host %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy from libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo failed for host '%s': %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Failed to allocate sockaddr storage\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Failed to connect to host %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sleep %ds, remaining timeout %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "Can't push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Can't set ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Can't open %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Can't plumb %s for IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Failed to create new tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Failed to put tun file descriptor into message-discard mode" #: tun.c:196 msgid "open net" msgstr "open net" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Failed to open tun device: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Failed to write incoming packet: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Treating host \"%s\" as a raw hostname\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config file SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Failed to parse XML config file %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" has address \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" has UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" not listed in config; treating as raw hostname\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/sl.po0000664000076400007640000026021712502026115012312 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Slovenian \n" "Language: sl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=(n%100==1 ? 0 : n%100==2 ? 1 : n%100==3 || n" "%100==4 ? 2 : 3);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ni mogoče obravnavati obrazca method='%s', action='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Izbor obrazca je brez imena.\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "ime %s ni vnosno ime\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Ni vnosnega vrste v obrazcu.\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Ni vnosnega imena v obrazcu.\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Neznana vnosna vrsta %s v obrazcu\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Prazen odgovor strežnika\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Razčlenjevanje odgovora strežnika je spodletelo.\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Odziv je: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Prejet , ko ni bil pričakovan.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "Odziv XML je brez vozlišča \"auth\".\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zahtevano je geslo, vendar je uporabljena zastavica '--no-passwd'\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Napaka med odpiranjem povezave HTTPS %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Pošiljanje zahteve GET za novo nastavitev je spodletela.\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Prejeta datoteka nastavitev ni skladna z razpršilom SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Napaka: strežnik zahteva zagon pregleda gostitelja CSD\n" "Podati je treba ustrezni parameter --csd-wrapper.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Napaka: strežnik zahteva prejem in zagon trojanskega datoteke 'Cisco Secure " "Desktop'.\n" "Ta možnost je iz varnostnih razlogov privzeto onemogočena. Če želite možnost " "uporabljati, jo omogočite.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Poskus poganjanja trojanskega skripta CSD za Linux.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Odpiranje začasne datoteke skripta CSD je spodletelo: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Zapisovanje začasne datoteke skripta CSD je spodletelo: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Nastavljanje UID %ld je spodletelo.\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Neveljavne UID uporabnika uid=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Sprememba domače mape CSD '%s' je spodletela: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Opozorilo: kodo CSD, ki ni varna, zaganjate s skrbniškimi dovoljenji.\n" "\t Uporabite možnost ukazne vrstice \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Izvajanje skripta CSD %s je spodletelo.\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Neznan odgovor s strežnika.\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Strežnik je zahteval potrdilo odjemalca SSL, ko je bilo že posredovano\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Strežnik je zahteval potrdilo odjemalca SSL; nobeno ni nastavljeno\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "Omogočena zmožnost XML POST\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osveževanje %s po steklo po 1 sekundi ...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Napaka med pridobivanjem odziva HTTP\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Storitev VPN ni na voljo; razlog: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Prejet neustrezen odziv HTTP CONNECT: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Prejet je odziv CONNECT: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Ni pomnilnika za možnosti\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "ID seje X-DTLS-Session-ID ni dolžine 64 znakov, ampak: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Neznano kodiranje vsebine CSTP %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "MTU ni bil prejet. Opravilo bo prekinjeno.\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Ni prejetega nobenega naslova IP. Opravilo je preklicano.\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljen drugačen opuščen naslov IP (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljena drugačna opuščena maska omrežja IP (%s != " "%s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "S ponovno povezavo je pridobljen drugačen naslov IPv6 (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljena drugačna maska omrežja IPv6 (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Vzpostavljena je povezava CSTP. DPD %d, KEEPALIVE %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Nastavitev stiskanja je spodletela\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Dodelitev medpomnilnika za stiskanje je spodletela\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "razširjanje je spodletelo\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "razširjanje je spodletelo %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Nepričakovana dolžina paketa. SSL_read je vrnil %d, paket pa je\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Prejeta zahteva DPD CSTP\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Pridobljen je odziv CSTP DPD\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Prejet je ukaz KEEPALIVE CSTP\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Prejet je ne-stisnjen paket podatkov velikosti %d bajtov\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Prejeta prekinitev povezave s strežnikom: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Prejet stisnjen paket v načinu !deflate\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "Prejet paket prekinitve strežnika\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Neznan paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL je zapisal premalo bajtov! Zahtevanih je %d, poslanih pa %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Protokol CSTP zahteva ponovno preverjanje ključa\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" "Zaznava mrtvih omrežnih soležnikov CSTP je zaznala mrtvega omrežnega " "soležnika!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Ponovna povezava je spodletela\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Pošlji zahtevo CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Pošlji zahtevo CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Pošiljanje ne-stisnjenega paketa podatkov velikosti %d bajtov\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Pošlji paket BYE: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Začenjanje seje DTLSv1 je spodletela\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Začenjanje DTLSv1 CTX je spodletelo.\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Nastavljanje seznama šifer DTLS je spodletelo.\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Ni natanko ena šifra DTLS.\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Predmet SSL_set_session() je spodletel s staro različico protokola 0x%x\n" "Ali je v uporabi različica programa OpenSSL, ki je starejša od različice " "0.9.8m?\n" "Za več podrobnosti si oglejte http://rt.openssl.org/Ticket/Display.html?" "id=1751\n" "Z uporabo zastavice --no-dtls v argumentu ukaza, se izognete temu sporočilu\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Različica OpenSSL je starejša kot tisti, s katero je bil program izgrajen, " "zato lahko DTLS spodleti!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Izmenjava signalov DTLS je presegla dovoljeni čas\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Vzrok je najbrž v vašem okvarjenem OpenSSL.\n" "Oglejte si http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Izmenjava signalov DTLS je spodletela: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Neznani parametri DTLS za zahtevani CipherSuite '%s'\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nastavljanje prednosti DTLS je spodletelo: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nastavljanje parametrov seje DTLS je spodletelo: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nastavljanje MTU za DTLS je spodletelo: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Izmenjava signalov DTLS je spodletela: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Ni naslova DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Strežnik ni ponudil možnosti šifer DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Pri povezavi prek posredniškega strežnika, DTLS ni na voljo.\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Možnost DTLS %s: %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS začet. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Poskus nove povezave DTLS\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Prejet je paket DTLS 0x%02x velikosti %d bajtov\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Prejeta zahteva DPD DTLS\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "Pošiljanje odziva DPD je spodletelo. Pričakovana je prekinitev povezave.\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Prejet je odziv DTLS DPD\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Prejet je ukaz KEEPALIVE DTLS\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Neznana vrsta paketa DTLS %02x, dolžina je %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Ponovno uporaba ključa DTLS je potekla.\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Zaznava nedejavnih soležnikov je vrnila zadetke nedejavnih povezav!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Pošlji DPD DTLS\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" "Pošiljanje zahteve DPD je spodletelo. Pričakujte prekinitev povezave.\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Pošlji KEEPALIVE DTLS\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Pošiljanje zahteve KEEPALIVE je spodletelo. Pričakujte prekinitev povezave.\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "Prejeta napaka pisanja DTLS %d. Opravilo bo povrnjeno na SSL.\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "Prejeta napaka pisanja DTLS: %s. Opravilo bo povrnjeno na SSL.\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" "Poslan je bil paket DTLS dolžine %d bajtov; vrnjen paket DTLS pa je %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Zapisovanje SSL je bilo preklicano\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Pisanje v vtič SSL je spodletelo: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Branje SSL je bilo preklicano\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Branje z vtiča SSL je spodletelo: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Napaka branja SSL: %s; sledi ponovna povezava.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Pošiljanje SSL je spodletelo: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Datuma poteka potrdila ni mogoče izluščiti.\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Potrdilo odjemalca je poteklo dne" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Potrdilo odjemalca poteče ob" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nalaganje '%s' iz shrambe ključev je spodletelo: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Odpiranje datoteke ključa/potrdila %s je spodletelo: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Ustvarjanje datoteke ključa/potrdila %s je spodletelo: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Dodeljevanje medpomnilnika potrdil je spodletelo\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Branje potrdila v pomnilnik je spodletelo: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Vzpostavitev podatkovne strukture PKCS#12 je spodletela: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Odšifriranje datoteke PKCS#12 je spodletelo\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Vnos šifrirnega gesla PKCS#12:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Obdelava datoteke PKCS#12 je spodletela: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nalaganje potrdila PKCS#12 je spodletelo: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Uvažanje potrdila X509 je spodletelo: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nastavljanje potrdila PKCS#11 je spodletelo: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Razprtšila MD5 ni mogoče začeti: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Napaka razpršila MD5: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Manjkajoči podatki DEK: glava iz šifriranega ključa OpenSSL\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Vrste šifriranja PEM ni mogoče razpoznati\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepodprta vrsta šifriranja PEM: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neveljaven salt v šifrirani datoteki PEM\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Napaka pri odkodiranju BASE64 šifrirane datoteke PEM: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Šifrirana datoteka PEM je prekratka\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Začenjanje šifre za dešifriranje datoteke PEM je spodletelo: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Odšifriranje ključa PEM je spodletelo: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Odšifriranje ključa PEM je spodletelo\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Vnos šifrirnega gesla PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Ta program je izgrajen brez podpore za PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Uporabljeno je potrdilo PKCS#12 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Napaka pri nalaganju potrdila iz PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Uporabljena bo datoteka potrdila %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "Datoteka PKCS#11 ne vsebuje potrdil\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "V datoteki ni mogoče najti potrdila" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nalaganje potrdila je spodletelo: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Napaka pri začenjanju strukture osebnih ključev: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Napaka pri začenjanju strukture ključev PKCS#11: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Napaka pri uvozu naslova URL %s PKCS#11: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Uporabljen je ključ PKCS#11 %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Napaka pri uvozu ključa PKCS#11 v strukturo osebnih ključev: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Uporaba datoteke zasebnega ključa %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ta različica programa OpenConnect je izgrajena brez podpore za TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Tolmačenje datoteke PEM je spodletelo\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nalaganje zasebnega ključa PKCS#1 je spodletelo: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nalaganje osebnega ključa kot PKCS#8 je spodletelo: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Odšifriranje datoteke potrdila PKCS#8 je spodletelo\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ni mogoče določiti vrste zasebnega ključa %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Pridobivanje ID ključa je spodletelo: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Napaka pri podpisovanju preizkusnih podatkov z osebnim ključem: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Napaka pri overjanju podpisa s potrdilom: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Z zasebnim ključem se ne ujema nobeno potrdilo SSL\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Uporabljeno bo potrdilo odjemalca '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Določanje seznama preklicev potrdil je spodletelo: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "OPOZORILO: program GnuTLS je vrnil nepravilno potrdilo izdajatelja; overitev " "bo najverjetneje spodletela!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Dodeljevanje pomnilnika podpornim potrdilom je spodletelo\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodajanje podpornega CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nastavljanje potrdila je spodletelo: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Strežnik ni javil podatkov o potrdilu\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Napaka pri začenjanju strukture potrdil X509\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Napaka med uvažanjem potrdila strežnika\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Napaka pri preverjanju stanja potrdila strežnika\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "potrdilo je preklicano" #: gnutls.c:1970 msgid "signer not found" msgstr "podpisnika ni mogoče najti" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "podpisnik ni overitelj potrdila CA" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "algoritem ni varen" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "potrdilo še ni omogočeno" #: gnutls.c:1978 msgid "certificate expired" msgstr "potrdilo je preteklo" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "preverjanje podpisa je spodletelo" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "potrdilo se ne ujema z imenom gostitelja" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Preverjanje potrdila strežnika je spodletelo: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Dodeljevanje pomnilnika podpornim potrdilom je spodletelo\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Ni mogoče prebrati potrdil iz datoteke cafile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Odpiranje datoteke CA '%s' je spodletelo: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Nalaganje potrdila je spodletelo. Opravilo je prekinjeno.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Niza prednosti TLS ni mogoče nastaviti: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Poteka pogajanje SSL z %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Povezava SSL je preklicana\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Povezava SSL je spodletela: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Vrnjena je ne-usodna napaka GnuTLS med izmenjavo signalov: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Vzpostavljena je povezava s HTTPS na %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Za %s je zahtevana koda PIN" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Napačna koda PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "To je zadnji poskus pred zaklepom!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Ostaja le še nekaj poskusov do zaklepa!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Koda PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" "Preverjanje razpršila SHA1 vhodnih podatkov za podpisovanje je spodletelo: " "%s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Funkcija podpisovanja TPM je pričakovala %d bajtov.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Ustvarjanje predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nastavljanje vrednosti predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Ustvarjanje predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Napaka odkodiranja binarnem paketu ključa TSS: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Napaka v binarnem paketu ključa TSS\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Ustvarjanje vsebine TPM je spodletelo: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Povezovanje vsebine TPM je spodletelo: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nalaganje ključa TPM SRK je spodletelo: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nalaganje predmeta pravil TPM SRK je spodletelo: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Natavljanje kode PIN TPM je spodletelo: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nalaganje ključa BLOB TPM je spodletelo: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Vnesite kodo PIN TPM SRK:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Ustvarjanje predmeta pravil ključa je spodletelo: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Dodelitev pravil ključu je spodletela: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Vnos ključa PIN TPM:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nastavljanje ključa PIN je spodletelo: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Ni pomnilnika za dodeljevanje piškotkov\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Razčlenjevanje odgovora HTTP '%s' je spodletelo\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Prejet je odziv HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Napaka pri obdelavi odgovora HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Prezrta bo neznana vrstica odziva HTTP '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ponujen je neveljaven piškotek: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Overitev potrdila SSL je spodletela.\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Telo odgovora ima negativno velikost (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Neznano kodiranje prenosa: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Telo HTTP %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Napaka branja telesa odziva HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Napaka pri pridobivanju glave sporočila\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Napaka branja telesa odziva HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Napaka odkodiranja po kosih. Pričakovan je znak '', prejet pa: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Telesa HTTP različice 1.0 brez zapiranja povezave ni mogoče prejeti.\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Razčlenjevanje preusmeritvenega naslova URL '%s' je spodletelo: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" "Preusmeritvi na naslov URL '%s', ki ni vrste HTTPS, ni mogoče slediti\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Dodeljevanje nove poti za relativno preusmeritev je spodletelo: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Nepričakovan odgovor strežnika %d.\n" #: http.c:1056 msgid "request granted" msgstr "zahteva je odobrena" #: http.c:1057 msgid "general failure" msgstr "splošna napaka" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "nabor pravil ne dovoljuje povezave" #: http.c:1059 msgid "network unreachable" msgstr "omrežje ni dosegljivo" #: http.c:1060 msgid "host unreachable" msgstr "gostitelj ni dosegljiv" #: http.c:1061 msgid "connection refused by destination host" msgstr "povezava je zavrnjena na ciljnem gostitelju" #: http.c:1062 msgid "TTL expired" msgstr "Potrdilo TTL je preteklo" #: http.c:1063 msgid "command not supported / protocol error" msgstr "ukaz ni podprt; napaka protokola" #: http.c:1064 msgid "address type not supported" msgstr "vrsta naslova ni ni podprta." #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Napaka pisanja odziva auth s posredniškega strežnika SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Napaka branja odziva auth s posredniškega strežnika SOCKS: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Nepričakovan odziv povezave posredniškega strežnika SOCKS: %02x %02x...\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Poslana je zahteva povezave s posredniškim strežnikom SOCKS %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Napaka zapisovanja zahtev povezave s posredniškim strežnikom SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Napaka branja odzivov povezave s posredniškega strežnika SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Nepričakovan odziv povezave posredniškega strežnika SOCKS: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Napaka posredniškega strežnika SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Napaka posredniškega strežnika SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nepričakovana vrsta naslova %02x v odzivu povezave SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Poslana je zahteva povezave s posredniškim strežnikom HTTP %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Pošiljanje zahteve posredniškega strežnika je spodletelo: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Neznana vrsta posredniškega strežnika '%s'.\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Podprti so le posredniški strežniki HTTP in SOCKS(5)\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgrajeno na osnovi knjižnice SSL brez podpore za Cisco DTLS.\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Napaka med razčlenjevanjem naslova URL strežnika '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Za strežniški naslov URL je dovoljen le protokol https://\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Ni ročnika obrazca; vnosov ni mogoče overiti\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Napaka dodeljevanja za niz s standardnega vhoda\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Uporaba OpenSSL. Možnosti vključujejo:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Uporaba GnuTLS. Možnosti vključujejo:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Programnik OpenSSL ni na voljo" #: main.c:613 msgid "using OpenSSL" msgstr "uporaba OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "OPOZORILO: V tej izvajalni datoteki DTLS ni podprt. Delovanje bo zato " "okrnjeno.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uporaba: openconnect [možnosti] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Odprti odjemalec za Cisco AnyConnect VPN, različica %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Preberi možnosti iz nastavitvene datoteke" #: main.c:710 msgid "Continue in background after startup" msgstr "Po zagonu nadaljuj v ozadju" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Zapiši PID ozadnjega programa v navedeno datoteko" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Uporabi potrdilo SSL CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Opozori, ko je življenjska doba potrdila manj kot določeno število dni" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Uporabi zasebno datoteko KEY ključa SSL" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Uporabi piškotek PIŠKOTEK WebVPN." #: main.c:717 msgid "Read cookie from standard input" msgstr "Preberi piškotek z navadnega vhoda" #: main.c:718 msgid "Enable compression (default)" msgstr "Omogoči stiskanje podatkov (privzeto)" #: main.c:719 msgid "Disable compression" msgstr "Omnemogoči stiskanje" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Določite najmanjši interval zaznave nedejavnih soležnikov" #: main.c:721 msgid "Set login usergroup" msgstr "Nastavi prijavno uporabniško skupino" #: main.c:722 msgid "Display help text" msgstr "Pokaži besedilo pomoči" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Za vmesnik tunela uporabi IFNAME" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Uporabi sistem syslog za obdelavo sporočil" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Opusti dovoljenja po povezavi" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Opusti dovoljenja med izvajanjem CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Izvedi SCRIPT namesto programa CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Zahtevaj podatek MTU s srežnika" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Nakaži pot MTU z/na strežnik" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nastavi šifrirno frazo ali kodo PIN za TPM SRK" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Šifrirno geslo ključa je fsid datotečnega sistema" #: main.c:737 msgid "Set proxy server" msgstr "Nastavi posredniški strežnik" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Onemogoči posredniški strežnik" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Uporabi libproxy za samodejno nastavljanje posredniškega strežnika" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(Opomba: knjižnica libproxy je v tej izgradnji onemogočena)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "Manj podroben odvod" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Nastavi omejitev vrste paketov na LEN paketov" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Ukazna vrstica v lupini za uporabo prilagoditvenega skripta, združljivega z " "vpnc" #: main.c:748 msgid "default" msgstr "privzeto" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Prepusti promet programu 'script', ne pa TUN" #: main.c:752 msgid "Set login username" msgstr "Nastavi prijavno uporabniško ime" #: main.c:753 msgid "Report version number" msgstr "Pošli poročilo o različici" #: main.c:754 msgid "More output" msgstr "Več podrobnosti odvoda" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" "Zapiši pretok podatkov overitve HTTP (omogoči podroben izpis z zastavico --" "verbose" #: main.c:756 msgid "XML config file" msgstr "Nastavitvena datoteka XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "Izbor načina overitvene prijave" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Le overi in izpiši podrobnosti prijave" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Pridobi piškotek WEBVPN brez povezave" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Pred povezavo izpiši vsebino piškotka WEBVPN" #: main.c:761 msgid "Cert file for server verification" msgstr "Datoteka potrdila za preverjanje istovetnosti strežnika" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Ne zahtevaj povezave IPv6" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Šifre OpenSSL za podporo DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Onemogoči DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Onemogoči ponovno uporabo povezave HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Onemogoči overitev gesla/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Ne zahtevaj veljavnosti potrdila strežnika SSL" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Ne izvajaj overitev preko XML POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Ne pričakuj odziva uporabnika; prekini, če je obvezen" #: main.c:771 msgid "Read password from standard input" msgstr "Preberi geslo z navadnega vhoda" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "Skrivnost programskega žetona" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(Opomba: knjižnica libstoken (RSA SecurID) je v tej izgradnji onemogočena)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Časovni zamik ponovnega vzpostavljanja povezave v sekundah" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Prstni odtis potrdila SHA1 strežnika" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Glava HTTP uporabniškega posrednika: polje" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Določite krajevna vrata za datagrame DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Pridobivanje vrstice iz nastavitvene datoteke je spodletelo: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Neprepoznana možnost v vrstici %d: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Možnost '%s' ne sprejme argumenta v vrstici %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Možnost '%s' zahteva argument v vrstici %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Strukture vpninfo ni mogoče dodeliti.\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Neveljaven uporabnik \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Možnosti 'config' ni mogoče uporabiti znotraj nastavitvene datoteke\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ni mogoče odpreti nastavitvene datoteke '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "Vrednost MTU %d je premajhna.\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Zaradi uporabe možnosti --no-http-keepalive je onemogočena ponovna uporaba " "povezav HTTP.\n" "V kolikor možnost deluje, pošljite poročilo na .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Ničelna dolžina uvrstitve ni dovoljena; uporabljena bo 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "Različica OpenConnect %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neveljaven način programskega žetona \"%s\"\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Neveljavna istovetnost OS \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Navedenih je preveč argumentov v ukazni vrstici.\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Ni določenega strežnika\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ta različica openconnect je zgrajena brez podpore libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Pridobivanje piškotka WebVPN je spodletelo\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Ustvarjanje povezave SSL je spodletelo.\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Nastavitev naprave je spodletela\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Nastavitev DTLS je spodletela; namesto tega bo uporabljen SSL\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Ni navedenega argumenta --script; Vrednosti DNS in nastavitve preusmerjanja " "niso nastavljene.\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Oglejte si http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Datoteke '%s' ni mogoče odpreti za pisanje: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Izvajanje programa je poslano v ozadje; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Datoteke %s ni mogoče odpreti za pisanje: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Zapisovanje nastavitev v %s je spodletelo: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Potrdilo SSL strežnika se ne ujema: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Overjanje potrdila strežnika VPN \"%s\" je spodletelo.\n" "Vzrok: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Vnesite '%s' za sprejem, '%s' za prekinitev; vse drugo za pogled: " #: main.c:1661 main.c:1679 msgid "no" msgstr "ne" #: main.c:1661 main.c:1667 msgid "yes" msgstr "da" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Izbira overitve \"%s\" ni na voljo.\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Zahtevano je uporabniško posredovanje v načinu brez posredovanja.\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Uporabniški prstni odtis je neveljaven\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ni mogoče odpreti datoteke ~/.stokenrc.\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Program OpenConnect ni izgrajen s podporo za libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Splošna napaka v knjižnici libstoken.\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Program OpenConnect ni izgrajen s podporo za liboath\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Splošna napaka v knjižnici liboath.\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "V pričakovanju novih nalog; stanje nedejavnosti je %d ms ...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Zahtevana je potrditev za ustvarjanje ZAŽETNE kode žetona.\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Zahtevana je potrditev za ustvarjanje NASLEDNJE kode žetona.\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Strežnik zavrača uporabniški prstni odtis; preklopljen bo način za ročni " "vnos.\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Poteka ustvarjanje kode žetona OATH TOTP.\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Pisanje v vtič SSL je spodletelo\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Branje iz vtiča SSL je spodletelo\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Napaka branja SSL %d (strežnik je najverjetneje zaprl povezavo); sledi " "ponovna povezava.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "Pisanje SSL je spodletelo: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Geslo PEM je predolgo (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatno potrdilo %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" "Razčlenjevanje Parse PKCS#12 je spodletelo (napaka je navedena zgoraj)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 ne vsebuje potrdil!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 ne vsebuje osebnega ključa!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Programnika TPM ni mogoče naložiti.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Začenjanje programnika TPM je spodletelo.\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Nastavljanje gesla TPM SRK je spodletelo\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Nalaganje zasebnega ključa TPM je spodletelo\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Dodajanje ključa iz TPM je spodletelo\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Odpiranje datoteke potrdila %s je spodletelo: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Nalaganje potrdila je spodletelo\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Ustvarjanje pravil BIO za predmet shrambe ključa '%s'\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nalaganje zasebnega ključa je spodletelo (napačno šifrirno geslo?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Nalaganje zasebnega ključa je spodletelo (glejte napake zgoraj)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nalaganje potrdila X509 iz shrambe ključev je spodletelo\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Uporaba potrdila X509 iz shrambe ključev je spodletela\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Uporaba zasebnega ključa iz shrambe ključev je spodletelo\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Odpiranje zasebne datoteke ključa %s je spodletelo: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Določevanje vrste zasebnega ključa v '%s' je spodletelo\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Ujemajoče altname DNS '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Ni zadetkov za altname '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "Potrdilo ima določena drugotna imena GEN_IPADD z nedovoljeno dolžino %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Skladnih je %s naslovov '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ni zadetkov za %s z naslovom '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Naslov URI '%s' nima prazne poti; naslov bo prezrt.\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Ujemajoči naslov URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Ni zadetkov za naslov URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nobeno izmed navedenih drugotnih imen v potrdilu ni skladno z '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Ni imena zadeve v potrdilu soležnika!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Razčlenjevanje imena zadeve v potrdilu soležnika je spodletelo.\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Neskladno potrdilo zadeve soležnika ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Skladno je ime zadeve v potrdilu soležnika '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatno potrdilo iz datoteke potrdil: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Napaka v polju potrdila odjemalca notAfter\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Branje potrdil iz datoteke CA '%s' je spodletelo\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Odpiranje datoteke CA '%s' je spodletelo\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Povezava SSL je spodletela\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Opusti slabo deljenja z vključevanjem: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Opusti slabo deljenje z izključevanjem: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Oživljanje skripta '%s' za %s je spodletelo: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript '%s' je zaključen z napako (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript '%s' je vrnil napako %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Povezava z vtičem je spodletela\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Ponovna povezava z gostiteljem %s je spodletela.\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Ponovna povezava z gostiteljem %s je spodletela.\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Posredniški strežnik iz libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Ukaz getaddrinfo za gostitelja '%s' je spodletel: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Vzpostavlja se povezava s posredniškim strežnikom %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Vzpostavlja se povezava s strežnikom %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Dodeljevanje shrambe sockaddr je spodletelo\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Povezava z gostiteljem %s je spodletela.\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Brez napake" #: ssl.c:588 msgid "Keystore locked" msgstr "Shramba ključev je zaklenjena" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Shramba ključev ni začeta" #: ssl.c:590 msgid "System error" msgstr "Sistemska napaka" #: ssl.c:591 msgid "Protocol error" msgstr "Napaka v protokolu" #: ssl.c:592 msgid "Permission denied" msgstr "Dovoljenje je zavrnjeno" #: ssl.c:593 msgid "Key not found" msgstr "Ključa ni mogoče najti" #: ssl.c:594 msgid "Value corrupted" msgstr "Vrednost je okvarjena" #: ssl.c:595 msgid "Undefined action" msgstr "Nedoločeno dejanje" #: ssl.c:599 msgid "Wrong password" msgstr "Napačno geslo" #: ssl.c:600 msgid "Unknown error" msgstr "Neznana napaka" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "v mirovanju %ds, preostaja še %ds.\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Vnos poveril za odklep uporabniškega prstnega odtisa." #: stoken.c:82 msgid "Device ID:" msgstr "ID naprave:" #: stoken.c:89 msgid "Password:" msgstr "Geslo:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Uporabnik je obšel uporabniški prstni odtis.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Zahtevana so vsa polja; poskusite znova.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Splošna napaka v knjižnici libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Neveljaven ID naprave ali pa ni veljavno geslo; poskusite znova.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Začenjanje uporabniškega prstnega odtisa je bilo uspešno.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN: " #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Napačno geslo PIN, poskusite znova.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Poteka ustvarjanje kode žetona RSA.\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ni mogoče izvesti /dev/tun za razpeljavo" #: tun.c:92 msgid "Can't push IP" msgstr "Ni mogoče objaviti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ni mogoče nastaviti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Ni mogoče odpreti %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ni mogoče razpeljati %s za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Ni mogoče ustvariti novega naprave tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Podajanje opisnika datoteke TUN v načunu izločanja sporočil je spodletela." #: tun.c:196 msgid "open net" msgstr "open net" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Odpiranje naprave tun je spodletelo: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Neveljavno ime vmesnika '%s'; skladno mora biti z imenom 'tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ni mogoče odpreti '%s': %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(skript)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Prejet je neznan paket (len %d): %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Zapisovanje prihajajočega paketa je spodletelo: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Gostitelj \"%s\" je obravnavan kot ime gostitelja.\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Določevanje razpršila SHA1 obstoječe datoteke je spodletelo\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Nastavitvena datoteka XML SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Razčlenjevanje nastavitvene datoteke XML %s je spodletelo.\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Gostitelj \"%s\" je na naslovu \"%s\".\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Gostitelj \"%s\" vključuje uporabniško skupino \"%s\".\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Gostitelj \"%s\" v datoteki config ni naveden; obravnavan bo kot " "neoblikovano ime gostitelja\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/zh_CN.po0000664000076400007640000021171512502026115012674 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # , 2011. # Wylmer Wang , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Chinese (China) (http://www.transifex.com/projects/p/meego/" "language/zh_CN/)\n" "Language: zh_CN\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "无法处理表单,方法=“%s”,操作=“%s”\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "表单选择没有名字\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "名称 %s 不是输入控件\n" #: auth.c:186 msgid "No input type in form\n" msgstr "表单中没有输入类型\n" #: auth.c:198 msgid "No input name in form\n" msgstr "表单中没有输入名称\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "表单中没有输入类型 %s\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "解析服务器响应失败\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "响应为:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "请求密码,但设置了“--no-password”\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "打开到 %s 的 HTTPS 连接失败\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "未知的服务器响应\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "获取 HTTPS 响应出错\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN 服务不可用,原因:%s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "收到不正确的 HTTP CONNECT 响应:%s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "收到CONNECT响应:%s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "选项的内存不足\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "未知的 CSTP-Content-Encoding %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "未收到 IP 地址。中止\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "重连给出了不同的旧 IP 地址(%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "重连给出了不同的旧 IP 网络掩码(%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "重连给出了不同的旧 IPv6 地址(%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "重连给出了不同的旧 IPv6 网络掩码(%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP 已连接。DPD %d, 保持连接 %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "压缩设置失败\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "重新分配缩小的缓存失败\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "缩减失败\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "包长度不对。SSL_read 返回 %d 但包长是\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "收到 CSTP DPD 请求\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "收到 CSTP DPD 响应\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "收到 CSTP 保持在线信号\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "收到未压缩的数据包,长度 %d 字节\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "收到服务器断开:%02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "在非 deflate 模式下收到了压缩包\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "收到服务器终止包\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "未知的包 %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL 写入的字节过少!请求 %d,发送了 %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "重连失败\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "发送 CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "发送 CSTP 保持在线信号\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS 握手超时\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS 握手失败:%d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS 选项 %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "尝试新的 DTLS 连接\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "收到 DTLS DPD 请求\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "收到 DTLS DPD 响应\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "发送 DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "收到 HTTP 响应:%s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "处理 HTTP 响应出错\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "常规错误" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "网络不可达" #: http.c:1060 msgid "host unreachable" msgstr "主机不可达" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "TTL 过期" #: http.c:1063 msgid "command not supported / protocol error" msgstr "命令不支持/协议错误" #: http.c:1064 msgid "address type not supported" msgstr "不支持的地址类型" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "启用压缩(默认;)" #: main.c:719 msgid "Disable compression" msgstr "禁用压缩" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "设置登录的用户组" #: main.c:722 msgid "Display help text" msgstr "显示帮助文本" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "设置代理服务器" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "禁用代理" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "简化输出" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "设置登录用户名" #: main.c:753 msgid "Report version number" msgstr "报告版本号" #: main.c:754 msgid "More output" msgstr "更多输出" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "XML 配置文件" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "取消" #: main.c:1661 main.c:1667 msgid "yes" msgstr "确定" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "认证选择“%s”不可用\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL 读取错误 %d (服务器可能断开了连接);正在重连。\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write 失败:%d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr ";<错误>" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL连接失败\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "睡眠 %ds,剩余超时 %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "开放网络" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(脚本;)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/pa.po0000664000076400007640000021564712502026115012303 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Panjabi (Punjabi) \n" "Language: pa\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "ਨਾਂ %s ਇੰਪੁੱਟ ਨਹੀਂ\n" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "ਜਵਾਬ ਸੀ: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "uid %ld ਸੈੱਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "ਸਰਵਰ ਤੋਂ ਅਣਜਾਣ ਜਵਾਬ\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 ਸਕਿੰਟ ਦੇ ਬਾਅਦ %s ਤਾਜ਼ਾ ਕੀਤਾ ਜਾ ਰਿਹਾ ਹੈ...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "ਸਰਟੀਫਿਕੇਟ ਸੈੱਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "ਸਰਟੀਫਿਕੇਟ ਵਾਪਸ ਲਿਆ" #: gnutls.c:1970 msgid "signer not found" msgstr "ਦਸਤਖਤੀ ਨਹੀਂ ਲੱਭਿਆ" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "ਅਸੁਰੱਖਿਅਤ ਐਲੋਗਰਿਥਮ" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "ਸਰਟੀਫਿਕੇਟ ਹਾਲੇ ਐਕਟੀਵੇਟ ਨਹੀਂ ਹੈ" #: gnutls.c:1978 msgid "certificate expired" msgstr "ਸਰਟੀਫਿਕੇਟ ਮਿਆਦ ਪੁੱਗੀ" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "ਦਸਤਖਤ ਜਾਂਚ ਫੇਲ੍ਹ ਹੋਈ" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਫੇਲ੍ਹ ਹੋਇਆ: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "%s ਲਈ ਪਿੰਨ ਚਾਹੀਦਾ ਹੈ" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "ਗਲਤ ਪਿੰਨ" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "PIN ਦਿਓ:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN ਦਿਓ:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "ਅਣਜਾਣ ਟਰਾਂਸਫਰ-ਇੰਕੋਡਿੰਗ: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP ਮੁੱਖ ਭਾਗ %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "ਆਮ ਫੇਲ੍ਹ" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "ਨੈੱਟਵਰਕ ਪਹੁੰਚ 'ਚ ਨਹੀਂ" #: http.c:1060 msgid "host unreachable" msgstr "ਹੋਸਟ ਪਹੁੰਚ 'ਚ ਨਹੀਂ" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "TTL ਮਿਆਦ ਪੁੱਗੀ" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "ਪਰੋਟੋਕਾਲ ਟਾਈਪ ਸਹਾਇਕ ਨਹੀਂ ਹੈ" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS ਪਰਾਕਸੀ ਗਲਤੀ %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS ਪਰਾਕਸੀ ਗਲਤੀ %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "ਅਣਜਾਣ ਪਰਾਕਸੀ ਕਿਸਮ '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL ਦੀ ਵਰਤੋਂ। ਮੌਜੂਦਾ ਫੀਚਰ:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS ਦੀ ਵਰਤੋਂ। ਮੌਜੂਦਾ ਫੀਚਰ:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ਇੰਜਣ ਮੌਜੂਦ ਨਹੀਂ" #: main.c:613 msgid "using OpenSSL" msgstr "OpenSSL ਦੀ ਵਰਤੋਂ" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "ਵਰਤੋਂ: openconnect [options] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "ਕੰਪਰੈਸ਼ਨ ਵਰਤੋਂ (ਡਿਫਾਲਟ)" #: main.c:719 msgid "Disable compression" msgstr "ਕੰਪਰੈਸ਼ਨ ਆਯੋਗ" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "ਲਾਗਇ ਯੂਜ਼ਰ-ਗਰੁੱਪ ਸੈੱਟ ਕਰੋ" #: main.c:722 msgid "Display help text" msgstr "ਮੱਦਦ ਟੈਕਸਟ ਵੇਖਾਓ" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "ਤਰੱਕੀ ਸੁਨੇਹਿਆਂ ਲਈ syslog ਵਰਤੋਂ" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "ਘੱਟ ਆਉਟਪੁੱਟ" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "ਡਿਫਾਲਟ" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "ਲਾਗਇਨ ਯੂਜ਼ਰ-ਨਾਂ ਸੈੱਟ ਕਰੋ" #: main.c:753 msgid "Report version number" msgstr "ਵਰਜਨ ਨੰਬਰ ਰਿਪੋਰਟ ਕਰੋ" #: main.c:754 msgid "More output" msgstr "ਹੋਰ ਆਉਟਪੁੱਟ" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "ਸਰਵਰ ਜਾਂਚ ਲਈ ਸਰਟ ਫਾਇਲ" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "DTLS ਆਯੋਗ" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "HTTP ਕੁਨੈਕਸ਼ਨ ਮੁੜ-ਵਰਤਣਾ ਆਯੋਗ" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "ਸਟੈਂਡਰਡ ਆਉਟਪੁੱਟ ਤੋਂ ਪਾਸਵਰਡ ਪੜ੍ਹੋ" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "ਗਲਤ ਯੂਜ਼ਰ \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "'%s' ਸੰਰਚਨਾ ਫਾਇਲ ਨੂੰ ਖੋਲ੍ਹਿਆ ਨਹੀਂ ਜਾ ਸਕਦਾ: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d ਬਹੁਤ ਛੋਟਾ ਹੈ\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect ਵਰਜਨ %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "ਕਮਾਂਡ ਲਾਈਨ ਲਈ ਬਹੁਤ ਸਾਰੇ ਆਰਗੂਮੈਂਟ\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "ਕੋਈ ਸਰਵਰ ਨਹੀਂ ਦਿੱਤਾ\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "WebVPN ਕੂਕੀਜ਼ ਲੈਣ ਲਈ ਫੇਲ੍ਹ\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਬਣਾਉਣ ਲਈ ਫੇਲ੍ਹ\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "DTLS ਸੈਟਅੱਪ ਲਈ ਫੇਲ੍ਹ; ਇਸ ਦੀ ਬਜਾਏ SSL ਵਰਤੋਂ\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "http://www.infradead.org/openconnect/vpnc-script.html ਵੇਖੋ\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "'%s ਨੂੰ ਲਿਖਣ ਲਈ ਖੋਲ੍ਹਣ ਵਾਸਤੇ ਫੇਲ੍ਹ: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "ਬੈਕਗਰਾਊਂਡ ਵਿੱਚ ਜਾਰੀ; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "%s ਨੂੰ ਲਿਖਣ ਲਈ ਖੋਲ੍ਹਣ ਵਾਸਤੇ ਫੇਲ੍ਹ: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "%s ਲਈ ਸੰਰਚਨਾ ਫਾਇਲ ਲਿਖਣ ਲਈ ਫੇਲ੍ਹ: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "ਨਹੀਂ" #: main.c:1661 main.c:1667 msgid "yes" msgstr "ਹਾਂ" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "<ਗਲਤੀ>" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਫੇਲ੍ਹ ਹੋਇਆ\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "ਸਾਕਟ ਕੁਨੈਕਸ਼ਨ ਰੱਦ ਕੀਤਾ\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "%s ਹੋਸਟ ਨਾਲ ਕੁਨੈਕਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ ਹੈ\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "ਕੋਈ ਗਲਤੀ ਨਹੀਂ" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "ਸਿਸਟਮ ਗਲਤੀ" #: ssl.c:591 msgid "Protocol error" msgstr "ਪਰੋਟੋਕਾਲ ਗਲਤੀ" #: ssl.c:592 msgid "Permission denied" msgstr "ਅਧਿਕਾਰ ਪਾਬੰਦੀ ਹੈ" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "ਗਲਤ ਪਾਸਵਰਡ" #: ssl.c:600 msgid "Unknown error" msgstr "ਅਣਜਾਣ ਗਲਤੀ" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun ਖੋਲ੍ਹੋ" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "(ਸਕ੍ਰਿਪਟ)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "ਹੋਸਟ \"%s\" ਨੂੰ ਰਾਅ ਹੋਸਟ-ਨਾਂ ਵਜੋਂ ਮੰਨੋ\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "SHA1 ਮੌਜੂਦਾ ਫਾਇਲ ਲਈ ਫੇਲ੍ਹ\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ %s ਪਾਰਸ ਕਰਨ ਲਈ ਫੇਲ੍ਹ\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "ਹੋਸਟ \"%s\" ਦਾ ਐਡਰੈਸ \"%s\" ਹੈ\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "ਹੋਸਟ \"%s\" ਦਾ ਯੂਜ਼ਰ-ਗਰੁੱਪ \"%s\" ਹੈ\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/pl.po0000664000076400007640000020655512502026115012314 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Polish (http://www.transifex.net/projects/p/meego/team/pl/)\n" "Language: pl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 " "|| n%100>=20) ? 1 : 2)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Wymagany jest kod PIN dla %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Błędny kod PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "To ostatnia próba przed zablokowaniem." #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Pozostało tylko kilka prób przed zablokowaniem." #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Proszę wprowadzić kod PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Nieprawidłowy użytkownik \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect wersja %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "Połączono %s jako %s%s%s, używając %s%s\n" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" "Proszę zobaczyć http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Wpisanie \"%s\" zaakceptuje, \"%s\" przerwie, inne wartości spowodują " "wyświetlenie: " #: main.c:1661 main.c:1679 msgid "no" msgstr "nie" #: main.c:1661 main.c:1667 msgid "yes" msgstr "tak" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "Identyfikator urządzenia:" #: stoken.c:89 msgid "Password:" msgstr "Hasło:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/zh_TW.po0000664000076400007640000020607212502026115012726 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Cheng-Chia Tseng , 2011-2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-12-14 15:03+0000\n" "Last-Translator: Cheng-Chia Tseng \n" "Language-Team: Chinese (Taiwan) (http://www.transifex.com/projects/p/meego/" "language/zh_TW/)\n" "Language: zh_TW\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "表單選擇沒有名稱\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "名稱 %s 未輸入\n" #: auth.c:186 msgid "No input type in form\n" msgstr "表單內無輸入類型\n" #: auth.c:198 msgid "No input name in form\n" msgstr "表單內無輸入名稱\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "表單中有未知輸入類型 %s\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "無法解析伺服器回應\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "回應為:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "" #: main.c:1661 main.c:1667 msgid "yes" msgstr "" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/el.po0000664000076400007640000032234312502026115012273 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Greek (http://www.transifex.net/projects/p/meego/team/el/)\n" "Language: el\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Αδύνατος ο χειρισμός μεθόδου μορφής='%s', ενέργεια='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Η επιλογή μορφής δεν έχει κανένα όνομα\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "Χωρίς όνομα %s στην είσοδο\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Χωρίς τύπο εισόδου στη μορφή\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Χωρίς όνομα εισόδου στη μορφή\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Άγνωστος τύπος εισόδου %s στη μορφή\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Κενή απάντηση από διακομιστή\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Αποτυχία ανάλυσης απάντησης διακομιστή.\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Η απάντηση ήταν:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Λήψη , ενώ δεν αναμενόταν.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "Η απάντηση XML δεν έχει κανένα κόμβο \"πιστοποίησης\"\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Ζητήθηκε κωδικός πρόσβασης, αλλά έχει οριστεί '--no-passwd'\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Αποτυχία ανοίγματος σύνδεσης HTTPS σε %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Αποτυχία αποστολής αιτήματος GET για νέα διαμόρφωση\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Το μεταφορτωμένο αρχείο ρυθμίσεων δεν ταιριάζει με το προοριζόμενο SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Σφάλμα: Η εκτέλεση του δούρειου ίππου 'Cisco Secure Desktop' σε Windows δεν " "έχει ακόμα υλοποιηθεί.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Σφάλμα: Ο διακομιστής ζήτησε την εκτέλεση της σάρωσης οικοδεσπότη CSD.\n" "Χρειάζεται να δώσετε ένα κατάλληλο όρισμα --csd-wrapper.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Σφάλμα: Ο διακομιστής ζήτησε τη μεταφόρτωση και εκτέλεση ενός δούρειου ίππου " "'ασφαλούς επιφάνειας εργασίας Cisco'.\n" "Αυτή η διευκόλυνση είναι ανενεργή από προεπιλογή για λόγους ασφάλειας, έτσι " "μπορεί να θέλετε να την ενεργοποιήσετε.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Προσπάθεια εκτέλεσης σεναρίου δούρειου ίππου CSD Λίνουξ.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Αποτυχία ανοίγματος προσωρινού αρχείου σεναρίου CSD: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Αποτυχία εγγραφής προσωρινού αρχείου σεναρίου CSD: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Αποτυχία ορισμού uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Άκυρο uid=%ld χρήστη\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Αποτυχία αλλαγής σε προσωπικό κατάλογο CSD '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Προειδοποίηση: εκτελείτε επισφαλή κώδικα CSD με δικαιώματα υπερχρήστη\n" " Χρησιμοποιήστε την επιλογή γραμμής εντολών \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Αποτυχία εκτέλεσης σεναρίου CSD %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Άγνωστη απάντηση από διακομιστή\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Ο διακομιστής ζήτησε πιστοποιητικό πελάτη SSL μετά την παροχή ενός\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Ο διακομιστής ζήτησε πιστοποιητικό πελάτη SSL· κανένα δεν ρυθμίστηκε\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "Ενεργοποίηση POST XML\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Ανανέωση του %s μετά από 1 δευτερόλεπτο...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ΣΦΑΛΜΑ: Αδύνατη η αρχικοποίηση υποδοχών\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Σφάλμα κατά την προσκόμιση απάντησης HTTPS\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Η υπηρεσία VPN δεν είναι διαθέσιμη· αιτία: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Λήψη ακατάλληλης απάντησης HTTP CONNECT: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Λήψη απάντησης CONNECT: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Χωρίς μνήμη για επιλογές\n" #: cstp.c:351 http.c:421 msgid "" msgstr "<παραλειπόμενο>" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" "Το αναγνωριστικό συνεδρίας X-DTLS δεν είναι 64 χαρακτήρες· είναι: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Άγνωστη κωδικοποίηση περιεχομένου CSTP %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Δεν ελήφθη MTU. Ματαίωση\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Δεν ελήφθη διεύθυνση IP. Ματαίωση\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "Η επανασύνδεση έδωσε διαφορετική κληρονομημένη διεύθυνση IP (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Η επανασύνδεση έδωσε διαφορετική κληρονομημένη μάσκα δικτύου IP (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Η επανασύνδεση έδωσε διαφορετική διεύθυνση IPv6 (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Η επανασύνδεση έδωσε διαφορετική μάσκα δικτύου IPv6 (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Συνδέθηκε το CSTP. DPD %d, διατήρηση σύνδεσης %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Αποτυχία ρύθμισης συμπίεσης\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Αποτυχία κατανομής ενδιάμεσης μνήμης συμπίεσης\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "Αποτυχία αποσυμπίεσης\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "Αποτυχία συμπίεσης %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Αναπάντεχο μήκος πακέτου. Η ανάγνωση_SSL επέστρεψε %d αλλά το πακέτο είναι\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Λήψη αιτήματος DPD CSTP\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Λήψη απάντησης DPD CSTP\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Λήψη διατήρησης σύνδεσης του CSTP\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Λήψη πακέτου ασυμπίεστων δεδομένων από %d οκτάδες\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Λήψη αποσύνδεσης διακομιστή: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Λήψη συμπιεσμένου πακέτου! κατάσταση συμπίεσης\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "Λήψη πακέτου τερματισμού διακομιστή\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Άγνωστο πακέτο %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "Το SSL έγραψε υπερβολικά λίγες οκτάδες! Ζητήθηκαν %d, στάλθηκαν %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Αναμενόμενη αλλαγή κλειδιού CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Η αναγνώριση νεκρού ομότιμου CSTP ανίχνευσε νεκρό ομότιμο!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Αποτυχία επανασύνδεσης\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Αποστολή DPD CSTP\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Αποστολή διατήρησης σύνδεσης CSTP\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Αποστολή πακέτου ασυμπίεστων δεδομένων από %d οκτάδες\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Αποστολή πακέτου BYE: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Αποτυχία αρχικοποίησης της συνεδρίας DTLSv1\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Αποτυχία αρχικοποίησης του DTLSv1 CTX\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Αποτυχία ορισμού λίστας κρυπτογράφησης DTLS\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Δεν είναι ακριβώς μία κρυπτογράφηση DTLS\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Αποτυχία του SSL_set_session() με την παλιά έκδοση πρωτοκόλλου 0x%x\n" "Χρησιμοποιείτε έκδοση του OpenSSL παλιότερη από 0.9.8m;\n" "Δείτε http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Χρησιμοποιήστε την επιλογή γραμμής εντολών --no-dtls για την αποφυγή αυτού " "του μηνύματος\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Επίτευξη σύνδεσης DTLS (με χρήση του OpenSSL). Ciphersuite %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Το OpenSSL σας είναι παλιότερο από αυτό στο οποίο δομείτε, έτσι το DTLS " "μπορεί να αποτύχει!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Λήξη χρόνου χειραψίας DTLS\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Αυτό συμβαίνει προφανώς επειδή το OpenSSL σας έχει αλλοιωθεί\n" "Δείτε http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Αποτυχία χειραψίας DTLS: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Άγνωστες παράμετροι DTLS για το ζητούμενο CipherSuite '%s'\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Αποτυχία ορισμού προτεραιότητας DTLS: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Αποτυχία ορισμού παραμέτρων συνεδρίας DTLS: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Αποτυχία ορισμού DTLS MTU: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Επίτευξη σύνδεσης DTLS (με χρήση του GnuTLS). Ciphersuite %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Αποτυχία χειραψίας DTLS: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Χωρίς διεύθυνση DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Ο διακομιστής δεν προσέφερε επιλογή κρυπτογράφησης DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Χωρίς DTLS κατά τη σύνδεση μέσα από μεσολαβητή\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Επιλογή DTLS %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "Αρχικοποίηση DTLS. DPD %d, διατήρηση σύνδεσης %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Προσπάθεια νέας σύνδεσης DTLS\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Ελήφθη πακέτο DTLS 0x%02x από %d οκτάδες\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Λήψη αιτήματος DPD DTLS\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Αποτυχία αποστολής απάντησης DPD. Αναμένεται αποσύνδεση\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Λήψη απάντησης DPD DTLS\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Λήψη διατήρησης σύνδεσης του DTLS\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Άγνωστος τύπος πακέτου DTLS %02x, μήκος %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Αναμενόμενη αλλαγή κλειδιού DTLS\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Η αναγνώριση νεκρού ομότιμου DTLS ανίχνευσε νεκρό ομότιμο!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Αποστολή DPD DTLS\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Αποτυχία αποστολής αιτήματος DPD. Αναμένεται αποσύνδεση\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Αποστολή διατήρησης σύνδεσης DTLS\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Αποτυχία αποστολής αιτήματος διατήρησης σύνδεσης. Αναμένεται αποσύνδεση\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "Το DTLS έλαβε σφάλμα εγγραφής %d. Υποχώρηση σε SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "Το DTLS έλαβε σφάλμα εγγραφής %s. Υποχώρηση σε SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Αποστολή πακέτου DTLS από %d οκτάδες· η αποστολή DTLS επέστρεψε %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Ακύρωση εγγραφής SSL\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Αποτυχία εγγραφής στην υποδοχή SSL: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Ακύρωση ανάγνωσης SSL\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Αποτυχία ανάγνωσης από την υποδοχή SSL: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Σφάλμα ανάγνωσης SSL: %s· επανασυνδέεται.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Αποτυχία αποστολής SSL: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Αδύνατη η εξαγωγή χρόνου λήξης του πιστοποιητικού\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Το πιστοποιητικό πελάτη έχει λήξει στις" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Το πιστοποιητικό πελάτη λήγει σύντομα στις" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Αποτυχία φόρτωσης στοιχείου '%s' από την αποθήκη κλειδιών: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου κλειδιού/πιστοποιητικού %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Αποτυχία stat αρχείου κλειδιού/πιστοποιητικού %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Αποτυχία κατανομής ενδιάμεσης μνήμης πιστοποιητικού\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικού στη μνήμη: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Αποτυχία ρύθμισης δομής δεδομένων PKCS#12: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Αποτυχία αποκρυπτογράφησης αρχείου πιστοποιητικού PKCS#12\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Εισαγωγή συνθηματικού PKCS#12:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Αποτυχία επεξεργασίας αρχείου PKCS#12: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού PKCS#12: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Αποτυχία εισαγωγής πιστοποιητικού X509: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Αποτυχία ρύθμισης πιστοποιητικού PKCS#11: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Αδύνατη η αρχικοποίηση του κατακερματισμού MD5: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Σφάλμα κατακερματισμού MD5: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" "Λείπουν πληροφορίες DEK: η κεφαλίδα από το κρυπτογραφημένο κλειδί OpenSSL\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Αδύνατος ο προσδιορισμός τύπου κρυπτογράφησης PEM\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Μη υποστηριζόμενος τύπος κρυπτογράφησης PEM: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Άκυρο αλάτι σε κρυπτογραφημένο αρχείο PEM\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Σφάλμα κρυπτογραφημένου αρχείου PEM με αποκωδικοποίηση βάση64: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Το κρυπτογραφημένο αρχείο PEM είναι υπερβολικά σύντομο\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Αποτυχία αρχικοποίησης κρυπτογράφησης για αποκρυπτογράφηση αρχείου PEM: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Αποτυχία αποκρυπτογράφησης κλειδιού PEM: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Αποτυχία αποκρυπτογράφησης κλειδιού PEM\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Εισαγωγή συνθηματικού PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Αυτό το δυαδικό δημιουργήθηκε χωρίς υποστήριξη PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Χρήση πιστοποιητικού PKCS#11 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Σφάλμα κατά τη φόρτωση πιστοποιητικού από PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Χρήση αρχείου πιστοποιητικού %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "Το αρχείο PKCS#11 δεν περιείχε κανένα πιστοποιητικό\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Δεν βρέθηκε κανένα πιστοποιητικό στο αρχείο" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Σφάλμα κατά την αρχικοποίηση δομής ιδιωτικού κλειδιού: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Σφάλμα κατά την αρχικοποίηση δομής κλειδιού PKCS#11: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Σφάλμα κατά την εισαγωγή URL PKCS#11 %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Χρήση κλειδιού %s PKCS#11\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Σφάλμα εισαγωγής του κλειδιού PKCS#11 στην δομή ιδιωτικού κλειδιού: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Χρήση αρχείου ιδιωτικού κλειδιού %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Αυτή η έκδοση του openconnect δομήθηκε χωρίς υποστήριξη TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Αποτυχία ερμηνείας του αρχείου PEM\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού PKCS#1: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού ως PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Αποτυχία αποκρυπτογράφησης αρχείου πιστοποιητικού PKCS#8\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Αποτυχία προσδιορισμού τύπου ιδιωτικού κλειδιού %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Αποτυχία λήψης αναγνωριστικού κλειδιού: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Σφάλμα υπογραφής δεδομένων ελέγχου με ιδιωτικό κλειδί: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Σφάλμα εγκυρότητας υπογραφής στο πιστοποιητικό: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" "Δεν βρέθηκε κανένα πιστοποιητικό SSL που να ταιριάζει με το ιδιωτικό κλειδί\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Χρήση πιστοποιητικού πελάτη '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Αποτυχία ορισμού λίστας ανάκλησης πιστοποιητικού: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Αποτυχία κατανομής μνήμης για πιστοποιητικό\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ΠΡΟΕΙΔΟΠΟΙΗΣΗ: Το GnuTLS επέστρεψε εσφαλμένα πιστοποιητικά εκδότη· η " "επικύρωση μπορεί να αποτύχει!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Ελήφθη επόμενο CA '%s' από το PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Αποτυχία κατανομής μνήμης για υποστήριξη πιστοποιητικών\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Προσθήκη υποστήριξης CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Αποτυχία ορισμού πιστοποιητικού: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Ο διακομιστής δεν παρουσίασε κανένα πιστοποιητικό\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Σφάλμα αρχικοποίησης δομής πιστοποιητικού X509\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Σφάλμα εισαγωγής πιστοποιητικού διακομιστή\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Σφάλμα ελέγχου κατάστασης πιστοποιητικού διακομιστή\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "Το πιστοποιητικό ανακλήθηκε" #: gnutls.c:1970 msgid "signer not found" msgstr "Ο υπογράφων δεν βρέθηκε" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "Ο υπογράφων δεν έχει πιστοποιητικό CA" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "Επισφαλής αλγόριθμος" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "Το πιστοποιητικό δεν έχει ακόμη ενεργοποιηθεί" #: gnutls.c:1978 msgid "certificate expired" msgstr "Το πιστοποιητικό έληξε" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "Αποτυχία επιβεβαίωσης υπογραφής" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "Το πιστοποιητικό δεν ταιριάζει με το όνομα του οικοδεσπότη." #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Αποτυχία επιβεβαίωσης πιστοποιητικού διακομιστή: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Αποτυχία κατανομής μνήμης για πιστοποιητικά αρχείου ca\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικών από αρχείο ca: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Αποτυχία ανοίγματος αρχείου CA '%s': %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού. Ματαίωση.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Αποτυχία ορισμού συμβολοσειράς προτεραιότητας TLS: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Διαπραγμάτευση SSL με %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Ακύρωση σύνδεσης SSL\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Αποτυχία σύνδεσης SSL: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS μη μοιραία επιστροφή κατά τη διάρκεια χειραψίας: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Σύνδεση με HTTPS στο %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Διαπραγμάτευση SSL με %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Απαιτείται PIN για το %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Εσφαλμένο PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Αυτή είναι η τελική προσπάθεια πριν το κλείδωμα!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Μόνο λίγες προσπάθειες έμειναν πριν το κλείδωμα!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Εισαγωγή PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Αποτυχία δεδομένων εισαγωγής στο SHA1 για υπογραφή: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Η συνάρτηση υπογραφής κάλεσε %d οκτάδες.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Αποτυχία δημιουργίας αντικειμένου κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Αποτυχία ορισμού τιμής σε αντικείμενο κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Αποτυχία υπογραφής κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" "Σφάλμα αποκωδικοποίησης κλειδιού TSS μεγάλου δυαδικού αντικειμένου: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Σφάλμα στο κλειδί TSS μεγάλου δυαδικού αντικειμένου\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Αποτυχία δημιουργίας περιεχομένου TPM: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Αποτυχία σύνδεσης περιεχομένου TPM: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Αποτυχία φόρτωσης κλειδιού SRK TPM: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Αποτυχία φόρτωσης αντικειμένου πολιτικής SRK TPM: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Αποτυχία ορισμού PIN TPM: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Αποτυχία φόρτωσης κλειδιού TPM μεγάλου δυαδικού αντικειμένου: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Εισαγωγή PIN SRK TPM:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Αποτυχία δημιουργίας αντικειμένου πολιτικής κλειδιού: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Αποτυχία απόδοσης πολιτικής στο κλειδί: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Εισαγωγή PIN κλειδιού TPM:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Αποτυχία ορισμού PIN κλειδιού: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Χωρίς μνήμη για κατανομή μπισκότων\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Αποτυχία ανάλυσης απάντησης HTTP '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Λήψη απάντησης HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Σφάλμα επεξεργασίας απόκρισης HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Παράβλεψη άγνωστης γραμμής απάντησης HTTP '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Προσφορά άκυρου μπισκότου: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Αποτυχία επικύρωσης πιστοποιητικού SSL\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Το σώμα της απόκρισης έχει αρνητικό μέγεθος (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Άγνωστη κωδικοποίηση μεταφοράς: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Σώμα HTTP %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Σφάλμα κατά την ανάγνωση σώματος απάντησης HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Σφάλμα κατά την προσκόμιση κεφαλίδας τμήματος\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Σφάλμα κατά την προσκόμιση σώματος απάντησης HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Σφάλμα στην τμηματική αποκωδικοποίηση. Αναμενόταν '', ελήφθη '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Αδύνατη η λήψη σώματος HTTP 1.0 χωρίς κλείσιμο της σύνδεσης\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Αποτυχία ανάλυσης ανακατεύθυνσης URL '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Αδύνατη η παρακολούθηση ανακατεύθυνσης σε μη https URL '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Αποτυχία κατανομής νέας διαδρομής για σχετική ανακατεύθυνση: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Αναπάντεχο αποτέλεσμα %d από διακομιστή\n" #: http.c:1056 msgid "request granted" msgstr "Δόθηκε αίτημα" #: http.c:1057 msgid "general failure" msgstr "Γενική αποτυχία" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "Η σύνδεση δεν επιτρέπεται από το σύνολο των κανόνων." #: http.c:1059 msgid "network unreachable" msgstr "Απροσπέλαστο δίκτυο" #: http.c:1060 msgid "host unreachable" msgstr "Απροσπέλαστος οικοδεσπότης" #: http.c:1061 msgid "connection refused by destination host" msgstr "Άρνηση σύνδεσης από τον οικοδεσπότη προορισμού" #: http.c:1062 msgid "TTL expired" msgstr "Έληξε το TTL" #: http.c:1063 msgid "command not supported / protocol error" msgstr "Εντολή που δεν υποστηρίζεται / σφάλμα πρωτοκόλλου" #: http.c:1064 msgid "address type not supported" msgstr "Δεν υποστηρίζεται αυτός ο τύπος διεύθυνσης" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την εγγραφή αιτήματος πιστοποίησης σε μεσολαβητή SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την ανάγνωση απάντησης πιστοποίησης από τον μεσολαβητή SOCKS: " "%s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Αναπάντεχη απάντηση πιστοποίησης από τον μεσολαβητή SOCKS: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Αίτημα σύνδεσης μεσολαβητή SOCKS στο %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Σφάλμα κατά την εγγραφή αιτήματος σύνδεσης σε μεσολαβητή SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την ανάγνωση απάντησης σύνδεσης από τον μεσολαβητή SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Αναπάντεχη απάντηση σύνδεσης από τον μεσολαβητή SOCKS: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Σφάλμα μεσολαβητή SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Σφάλμα μεσολαβητή SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Αναπάντεχος τύπος διεύθυνσης %02x σε απάντηση σύνδεσης SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Αίτημα σύνδεσης μεσολαβητή HTTP στο %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Αποτυχία αιτήματος αποστολής μεσολαβητή: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Άγνωστος τύπος μεσολαβητή '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Υποστηρίζονται μόνο μεσολαβητές http ή socks(5)\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Δόμηση στη βιβλιοθήκη SSL χωρίς υποστήριξη DTLS Cisco\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Αποτυχία ανάλυσης διακομιστή URL '%s'.\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Μόνο https:// επιτρέπονται για διακομιστή URL\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Χωρίς χειριστή μορφής· αδύνατη η πιστοποίηση.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Αποτυχία κατανομής για συμβολοσειρά από την τυπική είσοδο\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Χρήση του OpenSSL. Τα γνωρίσματα παρουσιάζουν:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Χρήση του GnuTLS. Τα γνωρίσματα παρουσιάζουν:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Το OpenSSL ENGINE δεν είναι παρόν" #: main.c:613 msgid "using OpenSSL" msgstr "χρησιμοποιώντας OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "ΠΡΟΕΙΔΟΠΟΙΗΣΗ: Χωρίς υποστήριξη DTLS σε αυτό το δυαδικό. Η απόδοση θα " "εξασθενίσει.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (τυπική είσοδος)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Χρήση: openconnect [επιλογές] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Άνοιγμα πελάτη για Cisco AnyConnect VPN, έκδοση %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Ανάγνωση επιλογών από το αρχείο ρυθμίσεων" #: main.c:710 msgid "Continue in background after startup" msgstr "Συνέχιση στο παρασκήνιο μετά την έναρξη" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Εγγραφή του PID του δαίμονα σε αυτό το αρχείο" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Χρήση του πιστοποιητικού πελάτη SSL CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Προειδοποίηση όταν ο χρόνος ζωής του πιστοποιητικού < ΗΜΕΡΕΣ" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Χρήση αρχείου ιδιωτικού κλειδιού SSL KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Χρήση μπισκότου WebVPN COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Ανάγνωση μπισκότου από την τυπική είσοδο" #: main.c:718 msgid "Enable compression (default)" msgstr "Ενεργοποίηση συμπίεσης (προεπιλογή)" #: main.c:719 msgid "Disable compression" msgstr "Απενεργοποίηση συμπίεσης" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Ορισμός ελάχιστου διαστήματος αναγνώρισης νεκρού ομότιμου" #: main.c:721 msgid "Set login usergroup" msgstr "Ορισμός σύνδεσης ομάδας χρηστών" #: main.c:722 msgid "Display help text" msgstr "Εμφάνιση κειμένου βοήθειας" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Χρήση IFNAME για διεπαφή δρομολόγησης" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Χρήση του syslog για μηνύματα προόδου" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Πρόταξη χρονικής σήμανσης σε μηνύματα προόδου" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Απόρριψη προνομίων μετά τη σύνδεση" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Απόρριψη προνομίων κατά τη διάρκεια εκτέλεσης του CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Εκτέλεση SCRIPT αντί για δυαδικό CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Αίτημα MTU από τον διακομιστή" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Υπόδειξη διαδρομής MTU προς/από διακομιστή" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ορισμός συνθηματικού κλειδιού ή TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Το συνθηματικό του κλειδιού είναι fsid του συστήματος αρχείων" #: main.c:737 msgid "Set proxy server" msgstr "Ορισμός διακομιστή μεσολάβησης" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Απενεργοποίηση μεσολαβητή" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Χρήση του libproxy για αυτόματη ρύθμιση του μεσολαβητή" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(ΣΗΜΕΙΩΣΗ: απενεργοποιήθηκε το libproxy σε αυτή τη δόμηση)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Απαιτείται τέλεια προώθηση μυστικότητας" #: main.c:745 msgid "Less output" msgstr "Λιγότερη έξοδος" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Ορισμός ορίου ουράς πακέτου σε LEN πακέτα" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Γραμμή εντολών κελύφους για χρήση ενός συμβατού με vpnc σεναρίου ρυθμίσεων" #: main.c:748 msgid "default" msgstr "προεπιλογή" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Πέρασμα κυκλοφορίας σε πρόγραμμα 'σεναρίου', όχι tun" #: main.c:752 msgid "Set login username" msgstr "Ορισμός ονόματος χρήστη της σύνδεσης" #: main.c:753 msgid "Report version number" msgstr "Αναφορά αριθμού έκδοσης" #: main.c:754 msgid "More output" msgstr "Περισσότερη έξοδος" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Αποτύπωση κυκλοφορίας πιστοποίησης HTTP (υπονοεί --verbose" #: main.c:756 msgid "XML config file" msgstr "Αρχείο ρυθμίσεων XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "Επιλέξτε επικύρωση επιλογής σύνδεσης" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Πιστοποίηση μόνο και εκτύπωση πληροφοριών σύνδεσης" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Προσκόμιση μόνο μπισκότου webvpn· όχι σύνδεση" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Εκτύπωση μπισκότου webvpn πριν την σύνδεση" #: main.c:761 msgid "Cert file for server verification" msgstr "Αρχείο πιστοποίησης για επιβεβαίωση διακομιστή" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Μην ζητάτε συνδεσιμότητα IPv6" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Το OpenSSL κρυπτογραφεί για υποστήριξη του DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Απενεργοποίηση DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Απενεργοποίηση επαναχρησιμοποίησης σύνδεσης HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Απενεργοποίηση επικύρωσης κωδικού πρόσβασης/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Να μην απαιτείται πιστοποιητικό SSL διακομιστή για να είναι έγκυρο" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Να μην προσπαθείτε πιστοποίηση XML POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Να μην αναμένεται είσοδος χρήστη· έξοδος αν απαιτείται" #: main.c:771 msgid "Read password from standard input" msgstr "Ανάγνωση κωδικού πρόσβασης από την τυπική είσοδο" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Τύποι διακριτικού λογισμικού: rsa, totp ή hotp" #: main.c:773 msgid "Software token secret" msgstr "Μυστικό διακριτικό λογισμικού" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(ΣΗΜΕΙΩΣΗ: απενεργοποίηση του libstoken (RSA SecurID) σε αυτή τη δόμηση)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Όριο χρόνου επαναπροσπάθειας σύνδεσης σε δευτερόλεπτα" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Δακτυλικό αποτύπωμα πιστοποιητικού SHA1 του διακομιστή" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Κεφαλίδα HTTP μεσολαβητή χρήστη: πεδίο" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Τύπος λειτουργικού (Λίνουξ, λίνουξ-64, win,...) για αναφορά" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Ορισμός τοπικής θύρας για αυτοδύναμα πακέτα DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Αποτυχία κατανομής συμβολοσειράς\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Αποτυχία λήψης γραμμής από το αρχείο ρυθμίσεων: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Άγνωστη επιλογή στη γραμμή %d: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Η επιλογή '%s' δεν παίρνει όρισμα στη γραμμή %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Η επιλογή '%s' απαιτεί όρισμα στη γραμμή %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Αποτυχία κατανομής δομής vpninfo\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Άκυρος χρήστης \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Αδύνατη η χρήση της επιλογής 'config' μέσα στο αρχείο ρυθμίσεων\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Αδύνατο το άνοιγμα του αρχείου ρυθμίσεων '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "Το %d MTU είναι υπερβολικά μικρό\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Απενεργοποίηση όλων των επαναχρησιμοποιήσεων σύνδεσης HTTP λόγω της επιλογής " "--no-http-keepalive.\n" "Αν αυτό βοηθά, παρακαλούμε αναφερθείτε στο .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Δεν επιτρέπεται μήκος ουράς μηδέν· χρησιμοποιείται 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "Έκδοση OpenConnect %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Άκυρη κατάσταση διακριτικού λογισμικού \"%s\"\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Άκυρη ταυτότητα λειτουργικού \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Υπερβολικά ορίσματα στη γραμμή εντολών\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Δεν ορίστηκε διακομιστής\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Αυτή η έκδοση του openconnect δομήθηκε χωρίς υποστήριξη libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Σφάλμα κατά το άνοιγμα διοχέτευσης cmd\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Αποτυχία λήψης μπισκότου WebVPN\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Αποτυχία δημιουργίας σύνδεσης SSL\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Αποτυχία ρύθμισης δέσμης ενεργειών tun\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Αποτυχία εγκατάστασης συσκευής tun\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Αποτυχία εγκατάστασης DTLS· χρήση SSL στη θέση του\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Δεν παρέχεται όρισμα --script· το DNS και η δρομολόγηση δεν είναι " "ρυθμισμένα\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Δείτε http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Αποτυχία ανοίγματος του '%s' για εγγραφή: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Συνέχιση στο παρασκήνιο, ταυτότητα διεργασίας (pid) %d.\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Αποτυχία ανοίγματος του %s για εγγραφή: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Αποτυχία εγγραφής ρύθμισης στο %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Το πιστοποιητικό SSL του διακομιστή δεν συμφωνεί: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Αποτυχία επιβεβαίωσης πιστοποιητικού από τον διακομιστή VPN \"%s\".\n" "Αιτία: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Εισαγωγή '%s' για αποδοχή, '%s' για ματαίωση, ο,τιδήποτε άλλο για προβολή: " #: main.c:1661 main.c:1679 msgid "no" msgstr "όχι" #: main.c:1661 main.c:1667 msgid "yes" msgstr "ναι" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Η επιλογή πιστοποίησης \"%s\" ταιριάζει με πολλαπλές επιλογές\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Η επιλογή πιστοποίησης \"%s\" δεν είναι διαθέσιμη\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Η απαιτούμενη είσοδος χρήστη είναι σε μη διαδραστική κατάσταση\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Η συμβολοσειρά χαλαρού διακριτικού είναι άκυρη\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Αδύνατο το άνοιγμα του αρχείου ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Το OpenConnect δεν δομήθηκε με υποστήριξη libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Γενική αποτυχία στο libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Το OpenConnect δεν δομήθηκε με υποστήριξη liboath\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Γενική αποτυχία στο libstoken\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Ο καλών διέκοψε τη σύνδεση\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Χωρίς εργασία· ύπνος για %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Εντάξει για τη δημιουργία ΑΡΧΙΚΟΥ κώδικα διακριτικού\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Εντάξει για τη δημιουργία ΕΠΟΜΕΝΟΥ κώδικα διακριτικού\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Ο διακομιστής απορρίπτει το χαλαρό διακριτικό· αλλαγή στη χειροκίνητη " "καταχώριση\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Δημιουργείται κώδικας διακριτικού TOTP OATH\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Δημιουργείται κώδικας διακριτικού OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Αποτυχία εγγραφής στην υποδοχή SSL\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Αποτυχία ανάγνωσης από την υποδοχή SSL\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Σφάλμα ανάγνωσης SSL %d (ο διακομιστής προφανώς έκλεισε τη σύνδεση)· " "επανασυνδέεται.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "Αποτυχία εγγραφής_SSL: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Ο κωδικός πρόσβασης PEM είναι υπερβολικά μεγάλος (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Πρόσθετο πιστοποιητικό από το %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Αποτυχία ανάλυσης PKCS#12 (δείτε παραπάνω σφάλματα)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "Το PKCS#12 δεν περιείχε κανένα πιστοποιητικό!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "Το PKCS#12 δεν περιείχε κανένα ιδιωτικό κλειδί!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Αδύνατη η φόρτωση μηχανής TPM.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Αποτυχία αρχικοποίησης μηχανής TPM\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Αποτυχία ορισμού κωδικού πρόσβασης TPM SRK\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού TPM\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Αποτυχία προσθήκης κλειδιού από το TPM\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου πιστοποιητικού %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Αποτυχία δημιουργίας BIO για το στοιχείο αποθήκης κλειδιών '%s'\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Η φόρτωση ιδιωτικού κλειδιού απέτυχε (εσφαλμένο συνθηματικό;)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού (δείτε τα παραπάνω σφάλματα)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού X509 από την αποθήκη κλειδιών\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Αποτυχία χρησιμοποίησης πιστοποιητικού X509 από την αποθήκη κλειδιών\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Αποτυχία χρήσης ιδιωτικού κλειδιού από την αποθήκη κλειδιών\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου ιδιωτικού κλειδιού %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Αποτυχία ταυτοποίησης τύπου ιδιωτικού κλειδιού στο '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Το εναλλακτικό όνομα του DNS '%s' συμφώνησε\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Χωρίς συμφωνία για το εναλλακτικό όνομα '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Το πιστοποιητικό έχει εναλλακτικό όνομα GEN_IPADD με πλαστό μήκος %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Συμφωνία με %s διεύθυνση '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Χωρίς συμφωνία για τη διεύθυνση %s '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Το URI '%s' έχει μη κενή διαδρομή· παράβλεψη\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Συμφωνία με URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Χωρίς συμφωνία για το URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Κανένα εναλλακτικό όνομα στο πιστοποιητικό ομότιμου δεν ταίριαξε με το '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Χωρίς όνομα θέματος στο πιστοποιητικό ομότιμου!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Αποτυχία ανάλυσης ονόματος θέματος στο πιστοποιητικό ομότιμου\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Ασυμφωνία θέματος πιστοποιητικού ομότιμου ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Συμφωνία ονόματος θέματος πιστοποιητικού ομότιμου '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Πρόσθετο πιστοποιητικό από το cafile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Σφάλμα στο πεδίο πιστοποιητικού πελάτη notAfter\n" #: openssl.c:1362 msgid "" msgstr "<σφάλμα>" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικών από το αρχείο CA '%s'\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Αποτυχία ανοίγματος αρχείου CA '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Αποτυχία σύνδεσης SSL\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Απόρριψη εσφαλμένης διαίρεσης περιλαμβανομένου του: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Απόρριψη εσφαλμένης διαίρεσης αποκλειομένου του: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Αποτυχία παραγωγής σεναρίου '%s' για το %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Το σενάριο '%s' εξήλθε ανώμαλα (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Το σενάριο '%s' επέστρεψε σφάλμα %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Ακύρωση σύνδεσης υποδοχής\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Αποτυχία επανασύνδεσης στον μεσολαβητή %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Αποτυχία επανασύνδεσης στον οικοδεσπότη %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Μεσολαβητής από libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Αποτυχία getaddrinfo για οικοδεσπότη '%s': %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Προσπάθεια σύνδεσης στον μεσολαβητή %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Προσπάθεια σύνδεσης στον μεσολαβητή %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Αποτυχία κατανομής αποθήκευσης sockaddr\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Αποτυχία σύνδεσης με τον οικοδεσπότη %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Χωρίς σφάλμα" #: ssl.c:588 msgid "Keystore locked" msgstr "Η αποθήκη κλειδιών κλειδώθηκε" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Η αποθήκη κλειδιών δεν αρχικοποιήθηκε" #: ssl.c:590 msgid "System error" msgstr "Σφάλμα συστήματος" #: ssl.c:591 msgid "Protocol error" msgstr "Σφάλμα πρωτοκόλλου" #: ssl.c:592 msgid "Permission denied" msgstr "Άρνηση πρόσβασης" #: ssl.c:593 msgid "Key not found" msgstr "Δεν βρέθηκε κλειδί" #: ssl.c:594 msgid "Value corrupted" msgstr "Αλλοιωμένη τιμή" #: ssl.c:595 msgid "Undefined action" msgstr "Αόριστη ενέργεια" #: ssl.c:599 msgid "Wrong password" msgstr "Εσφαλμένος κωδικός πρόσβασης" #: ssl.c:600 msgid "Unknown error" msgstr "Άγνωστο σφάλμα" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Το μπισκότο δεν είναι πια έγκυρο, τερματισμός συνεδρίας\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "ύπνος %ds, όριο χρόνου που απομένει %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Εισαγωγή διαπιστευτηρίων για ξεκλείδωμα διακριτικού λογισμικού." #: stoken.c:82 msgid "Device ID:" msgstr "Αναγνωριστικό συσκευής:" #: stoken.c:89 msgid "Password:" msgstr "Κωδικός πρόσβασης:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Ο χρήστης παρέκαμψε το χαλαρό διακριτικό.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Απαιτούνται όλα τα πεδία· δοκιμάστε ξανά.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Γενική αποτυχία στο libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Εσφαλμένο αναγνωριστικό συσκευής ή κωδικός πρόσβασης· δοκιμάστε ξανά.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Η αρχικοποίηση του χαλαρού διακριτικού ήταν πετυχημένη.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Άκυρη μορφή PIN· δοκιμάστε ξανά.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Δημιουργείται κώδικας διακριτικού RSA\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Δεν βρέθηκαν υποδοχείς Windows-TAP. Είναι εγκατεστημένος ο οδηγός;\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Αποτυχία ανοίγματος του %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Σφάλμα: Απαιτείται ο οδηγός TAP για Windows με έκδοση v9.9 ή μεγαλύτερη " "(βρέθηκε %ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Αποτυχία ορισμού διεύθυνσης IP για το TAP : %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Αποτυχία ανάγνωσης από την συσκευή TAP: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Αποτυχία ολοκλήρωσης της ανάγνωσης από την συσκευή TAP: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Γράφτηκαν %ld bytes στο tun\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Αναμονή για εγγραφή στο tun...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Γράφτηκαν %ld bytes στο tun μετά την αναμονή\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Αποτυχία εγγραφής στην συσκευή TAP: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Αδύνατο το άνοιγμα /dev/tun για σωλήνωση" #: tun.c:92 msgid "Can't push IP" msgstr "Αδύνατη η προώθηση IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Αδύνατος ο ορισμός του ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Αδύνατο το άνοιγμα του %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Αδύνατη η σωλήνωση του %s για IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "άνοιγμα /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Αποτυχία δημιουργίας νέου tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Αποτυχία τοποθέτησης του περιγραφέα αρχείου tun σε μήνυμα κατάστασης " "απόρριψης" #: tun.c:196 msgid "open net" msgstr "άνοιγμα δικτύου" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Αποτυχία ανοίγματος συσκευής tun: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Άκυρο όνομα διεπαφής '%s'· πρέπει να ταιριάζει με 'tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Αδύνατο το άνοιγμα του '%s': %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "Αποτυχία του socketpair: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "Αποτυχία διακλάδωσης: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(σενάριο)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Λήψη άγνωστου πακέτου (μήκους %d): %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Αποτυχία εγγραφής εισερχόμενου πακέτου: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" "Αντιμετώπιση του οικοδεσπότη \"%s\" ως ακατέργαστου ονόματος οικοδεσπότη\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Το υπάρχον αρχείο απέτυχε στο SHA1\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Το αρχείο ρυθμίσεων του XML στο SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Αποτυχία ανάλυσης του αρχείου ρυθμίσεων XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Ο οικοδεσπότης \"%s\" έχει διεύθυνση \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Ο οικοδεσπότης \"%s\" έχει UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Ο οικοδεσπότης \"%s\" δεν αναφέρεται στις ρυθμίσεις· αντιμετωπίζεται ως " "ακατέργαστο όνομα οικοδεσπότη\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/ChangeLog0000664000076400007640000000146212424411475013113 000000000000002014-10-30 gettextize * Makefile.in.in: New file, from gettext-0.19.2. * Rules-quot: Upgrade to gettext-0.19.2. * POTFILES.in: New file. 2011-10-31 gettextize * Makefile.in.in: Upgrade to gettext-0.18.1. 2011-10-31 gettextize * Makefile.in.in: New file, from gettext-0.18.1. 2011-10-31 gettextize * Makefile.in.in: Upgrade to gettext-0.18.1. * boldquot.sed: New file, from gettext-0.18.1. * en@boldquot.header: New file, from gettext-0.18.1. * en@quot.header: New file, from gettext-0.18.1. * insert-header.sin: New file, from gettext-0.18.1. * quot.sed: New file, from gettext-0.18.1. * remove-potcdate.sin: New file, from gettext-0.18.1. * Rules-quot: New file, from gettext-0.18.1. openconnect-7.06/po/hu.po0000664000076400007640000031137612502026115012313 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Hungarian (http://www.transifex.net/projects/p/meego/team/" "hu/)\n" "Language: hu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nem kezelhetők az űrlap method='%s', action='%s' értékei\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nem sikerült az OTP tokenkód előállítása, a token letiltásra kerül\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Az űrlap választásának nincs neve\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "a(z) %s név nem bemenet\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Nincs bemenettípus az űrlapon\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Nincs bemenetnév az űrlapon\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Ismeretlen %s bemenettípus az űrlapon\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Üres válasz a kiszolgálótól\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Nem sikerült a kiszolgáló válaszának feldolgozása\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "A válasz ez volt: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr " érkezett, amikor nem várták.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "Az XML válasznak nincs „auth” csomópontja\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Jelszót kértek, de „--no-passwd” van beállítva\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Nem kerül letöltésre az XML profil, mert az SHA1 már egyezik\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nem sikerült a HTTPS kapcsolat megnyitása ehhez: %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Nem sikerült GET kérést küldeni az új beállításhoz\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "A letöltött beállítófájl nem egyezett a szándékolt SHA1-gyel\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Új XML profil letöltve\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Hiba: A „Cisco Secure Desktop” trójai futtatása még nincs megvalósítva " "Windowson.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Hiba: A kiszolgáló CSD gépkeresés futtatására kért minket.\n" "Meg kell adnia egy megfelelő --csd-wrapper argumentumot.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Hiba: A kiszolgáló egy „Cisco Secure Desktop” trójai letöltésre és " "futtatására kért meg minket.\n" "Ez a szolgáltatás biztonsági okokból alapértelmezetten le van tiltva, ezért " "érdemes lenne engedélyeznie azt.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD trójai parancsfájl futtatásának kísérlete.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "A(z) „%s” átmeneti könyvtár nem írható: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nem sikerült megnyitni az átmeneti CSD parancsfájlt: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nem sikerült írni az átmeneti CSD parancsfájlt: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "A(z) %ld uid beállítása nem sikerült\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Érvénytelen felhasználó uid=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nem sikerült átváltani a(z) „%s” CSD saját könyvtárra: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Figyelem: nem biztonságos CSD kódot futtat rendszergazdai jogosultságokkal\n" "\t Használja a „--csd-user” parancssori kapcsolót\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nem sikerült végrehajtani a következő CSD parancsfájlt: %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Érvénytelen válasz a kiszolgálótól\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "A kiszolgáló azután kérte a kliens SSL tanúsítványát, miután meg lett adva " "egy\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "A kiszolgáló a kliens SSL tanúsítványát kérte; egyik sem volt beállítva\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST engedélyezve\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s frissítése 1 másodperc múlva…\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(hiba 0x%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Hiba történt a hiba leírása során!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "HIBA: Nem lehet előkészíteni a foglalatokat\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIKUS HIBA: A DTLS mestertitok nincs előkészítve. Kérjük ezt jelentse.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Hiba a HTTPS CONNECT kérés létrehozásakor\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Hiba a HTTPS válasz lekérésekor\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "A VPN szolgáltatás nem érhető el; ok: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Nem megfelelő HTTP CONNECT válasz érkezett: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT válasz érkezett: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Nincs memória a kapcsolókhoz\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "Az X-DTLS-Session-ID nem 64 karakteres; értéke: „%s”\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Ismeretlen CSTP tartalomkódolás: %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Nem érkezett MTU. Megszakítás\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Nem érkezett IP-cím. Megszakítás\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6 beállítás érkezett, de a(z) %d MTU túl kicsi.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Az újracsatlakozás eltérő örökölt IP-címet adott (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Az újracsatlakozás eltérő örökölt IP hálózati maszkot adott (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Az újracsatlakozás eltérő IPv6-címet adott (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Az újracsatlakozás eltérő IPv6 hálózati maszkot adott (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP kapcsolódva. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP titkosító alkalmazáscsomag: %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Tömörítés beállítás sikertelen\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "A deflate puffer lefoglalása meghiúsult\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "inflate meghiúsult\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate meghiúsult: %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Váratlan csomaghossz. Az SSL_read visszatérési értéke %d, de a csomag\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD kérés érkezett\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD válasz érkezett\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive érkezett\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d bájt tömörítetlen adatcsomag érkezett\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Kiszolgáló leválasztás érkezett: %02x „%s”\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Tömörített csomag érkezett !deflate módban\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "kiszolgáló megszakítás csomag érkezett\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Ismeretlen csomag: %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "Az SSL túl kevés bájtot írt! %d volt a kérés, %d lett elküldve\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP kulcsmegújítás esedékes\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Újra kézfogás sikertelen, új alagút kísérlete\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "A CSTP halott csomópont felderítés halott csomópontot észlelt!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Újracsatlakozás sikertelen\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "CSTP DPD küldése\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive küldése\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d bájt tömörítetlen adatcsomag küldése\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE csomag küldése: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Digest hitelesítési kísérlet a proxyra\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "A DTLSv1 munkamenet előkészítése nem sikerült\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "A DTLSv1 CTX előkészítése nem sikerült\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "A DTLS titkosítólista beállítása nem sikerült\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Nem pontosan egy DTLS titkosító\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Az SSL_set_session() meghiúsult a régi 0x%x protokollverzióval\n" "Az OpenSSL 0.9.8m verziójánál régebbit használ?\n" "Nézze meg a http://rt.openssl.org/Ticket/Display.html?id=1751 oldalt\n" "Használja a --no-dtls parancssori kapcsolót ezen üzenet elkerüléséhez\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "DTLS kapcsolat kiépítve (OpenSSL használatával). Titkosító alkalmazáscsomag: " "%s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Az OpenSSL verziója régebbi, mint amellyel szemben kiépítette, így a DTLS " "meghiúsulhat!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "A DTLS kézfogás túllépte az időkorlátot\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ez valószínűleg azért lehet, mert az OpenSSL törött\n" "Nézze meg a http://rt.openssl.org/Ticket/Display.html?id=2984 oldalt\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "A DTLS kézfogás meghiúsult: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Ismeretlen DTLS paraméterek a kért „%s” CipherSuite esetén\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nem sikerült a DTLS prioritás beállítása: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nem sikerült a DTLS munkamenet paraméterek beállítása: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nem sikerült a DTLS MTU beállítása: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" "DTLS kapcsolat kiépítve (GnuTLS használatával). Titkosító alkalmazáscsomag: " "%s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "A DTLS kézfogás meghiúsult: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Egy tűzfal akadályozza az UDP csomagok küldését?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS csatlakozási kísérlet egy meglévő fd-vel\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Nincs DTLS cím\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "A kiszolgáló nem ajánlott DTLS titkosító lehetőséget\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Nincs DTLS proxy-n keresztüli csatlakozáskor\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS kapcsoló: %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS előkészítve. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Új DTLS csatlakozási kísérlet\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Fogadott DTLS csomag 0x%02x / %d bájt\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD kérés érkezett\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nem sikerült a DPD válasz küldése. Leválasztás várható\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD válasz érkezett\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive érkezett\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Ismeretlen DTLS csomagtípus: %02x, hossz: %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLS kulcsmegújítás esedékes\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS újra kézfogás sikertelen, újracsatlakozás.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "A DTLS halott csomópont felderítés halott csomópontot észlelt!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "DTLS DPD küldése\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nem sikerült a DPD kérés küldése. Leválasztás várható\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive küldése\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nem sikerült az életben tartás kérés küldése. Leválasztás várható\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "A DTLS írási hibát kapott: %d. Visszatérés SSL-re\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "A DTLS írási hibát kapott: %s. Visszatérés SSL-re\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d bájt DTLS csomag küldése; a DTLS küldés visszatérése: %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL írás megszakítva\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nem sikerült írni az SSL foglalatba: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL olvasás megszakítva\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "Az SSL foglalat nem tisztán záródott be\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nem sikerült olvasni az SSL foglalatból: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL olvasási hiba: %s; újracsatlakozás.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL küldés sikertelen: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Nem sikerült kinyerni a tanúsítvány lejárati idejét\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "A kliens tanúsítvány érvényessége lejárt" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "A kliens tanúsítvány hamarosan lejár" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" "Nem sikerült betölteni a(z) „%s” elemet a következő kulcstartóról: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s kulcs/tanúsítvány fájl megnyitása: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s kulcs/tanúsítvány fájl elérése: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Nem sikerült lefoglalni a tanúsítvány puffert\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nem sikerült a tanúsítvány beolvasása a memóriába: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nem sikerült beállítani a PKCS#12 adatszerkezetet: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nem sikerült visszafejteni a PKCS#12 tanúsítvány fájlt\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 jelmondat megadása:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nem sikerült feldolgozni a PKCS#12 fájlt: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nem sikerült betölteni a PKCS#12 tanúsítványt: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Az X509 tanúsítvány importálása nem sikerült: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "A PKCS#11 tanúsítvány beállítása nem sikerült: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nem sikerült az MD5 hash előkészítése: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash hiba: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Hiányzó DEK-Info: fejléc a titkosított OpenSSL kulcsból\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Nem lehet meghatározni a PEM titkosítás típusát\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nem támogatott PEM titkosítási típus: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Érvénytelen só a titkosított PEM fájlban\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Hiba a base64 dekódolt titkosított PEM fájlban: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "A titkosított PEM fájl túl rövid\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Nem sikerült a titkosító előkészítése a PEM fájl visszafejtéséhez: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nem sikerült visszafejteni a PEM kulcsot: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "A PEM kulcs visszafejtése nem sikerült\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "PEM jelmondat megadása:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Ez a program rendszerkulcs támogatás nélkül készült\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Ez a program PKCS#11 támogatás nélkül készült\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "A következő PKCS#11 tanúsítvány használata: %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Rendszertanúsítvány használata: %s\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Hiba a tanúsítvány betöltésekor a PKCS#11 fájlból: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Hiba a rendszertanúsítvány betöltésekor: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "A következő tanúsítványfájl használata: %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "A PKCS#11 fájl nem tartalmazott tanúsítványt\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Nem található tanúsítvány a fájlban" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "A tanúsítvány betöltése nem sikerült: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Rendszerkulcs használata: %s\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Hiba a személyes kulcs szerkezet előkészítésekor: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Hiba a(z) %s rendszerkulcs importálásakor: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "A(z) %s PKCS#11 kulcs URL próbája\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Hiba a PKCS#11 kulcs szerkezet előkészítésekor: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Hiba a(z) %s PKCS#11 URL importálásakor: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "A következő PKCS#11 kulcs használata: %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Hiba a PKCS#11 kulcs importálásakor a személyes kulcs szerkezetbe: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "A következő személyes kulcs fájl használata: %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Az OpenConnect ezen verziója TPM támogatás nélkül készült\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Nem sikerült értelmezni a PEM fájlt\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nem sikerült betölteni a PKCS#1 személyes kulcsot: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nem sikerült betölteni a személyes kulcsot PKCS#8-ként: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nem sikerült visszafejteni a PKCS#8 tanúsítvány fájlt\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nem sikerült meghatározni a személyes kulcs típusát: %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nem sikerült lekérni a kulcsazonosítót: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Hiba a tesztadatok aláírásakor a személyes kulccsal: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Hiba az aláírás hitelesítésekor a tanúsítvány ellenében: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Nem található SSL tanúsítvány a személyes kulcs egyezésére\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "A következő klienstanúsítvány használata: „%s”\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "A tanúsítvány visszavonási lista beállítása nem sikerült: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Nem sikerült memóriát lefoglalni a tanúsítványhoz\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "FIGYELEM: a GnuTLS helytelen kibocsátó tanúsítványokkal tért vissza; a " "hitelesítés meghiúsulhat!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "A következő „%s” CA lekérve a PKCS11-ből\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nem sikerült memóriát lefoglalni a tanúsítványok támogatásához\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Támogatott CA hozzáadása: „%s”\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "A tanúsítvány beállítása nem sikerült: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "A kiszolgáló nem mutatott be tanúsítványt\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Hiba az X509 tanúsítvány szerkezet előkészítésekor\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Hiba a kiszolgáló tanúsítványának importálásakor\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Nem sikerült kiszámolni a kiszolgáló tanúsítványának hash értékét\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Hiba a kiszolgáló tanúsítványállapotának ellenőrzésekor\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "tanúsítvány visszavonva" #: gnutls.c:1970 msgid "signer not found" msgstr "aláíró nem található" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "az aláíró nem hitelesítésszolgáltatói tanúsítvány" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "nem biztonságos algoritmus" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "a tanúsítvány még nincs aktiválva" #: gnutls.c:1978 msgid "certificate expired" msgstr "a tanúsítvány lejárt" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "az aláírás ellenőrzése sikertelen" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "a tanúsítvány nem egyezik a gépnévvel" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "A kiszolgáló tanúsítványának ellenőrzése meghiúsult: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" "Nem sikerült memóriát lefoglalni a hitelesítés-szolgáltató fájl " "tanúsítványokhoz\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" "Nem sikerült a tanúsítványok olvasása a hitelesítés-szolgáltató fájlból: " "„%s”\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nem sikerült megnyitni a(z) „%s” CA fájlt: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "A tanúsítvány betöltése nem sikerült. Megszakítás.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Nem sikerült a TLS prioritás szöveg beállítása: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL egyeztetés ezzel: %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Az SSL kapcsolat megszakítva\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Az SSL kapcsolat meghiúsult: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Nem végzetes GnuTLS visszatérés a kézfogás közben: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Kapcsolódva HTTPS-hez ezen: %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL újraegyeztetés ezen: %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN-kód szükséges ehhez: %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Hibás PIN-kód" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Ez az utolsó próbálkozás a zárolás előtt!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Már csak néhány próbálkozás van a zárolás előtt!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Adja meg a PIN-kódot:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "A bemeneti adatok SHA1 ellenőrzése nem sikerült az aláíráshoz: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM aláírás függvény meghívva %d bájthoz.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nem sikerült a TPM hash objektum létrehozása: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nem sikerült értéket beállítani a TPM hash objektumban: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "A TPM hash aláírás nem sikerült: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Hiba a TSS kulcs bináris visszafejtésekor: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Hiba a TSS kulcs binárisban\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nem sikerült a TPM környezet létrehozása: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nem sikerült a TPM környezet csatlakoztatása: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nem sikerült a TPM SRK kulcs betöltése: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nem sikerült a TPM SRK házirendobjektum betöltése: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nem sikerült a TPM PIN-kód beállítása: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nem sikerült a TPM kulcs bináris betöltése: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Adja meg a TPM SRK PIN-kódját:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nem sikerült a kulcsházirend objektum létrehozása: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nem sikerült a házirend hozzárendelése a kulcshoz: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Adja meg a TPM kulcs PIN-kódját:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nem sikerült a kulcs PIN-kódjának beállítása: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Hiba a GSSAPI név importálásakor a hitelesítéshez:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Hiba a GSSAPI válasz előállításakor:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "GSSAPI hitelesítési kísérlet a proxyra\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI hitelesítés befejezve\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "A GSSAPI token túl nagy (%zd bájt)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "%zu bájt GSSAPI token küldése\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Nem sikerült elküldeni a GSSAPI hitelesítési tokent a proxynak: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Nem sikerült fogadni a GSSAPI hitelesítési tokent a proxytól: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "A SOCKS kiszolgáló GSSAPI környezet hibát jelentett\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Ismeretlen GSSAPI állapotválasz (0x%02x) a SOCKS kiszolgálótól\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bájt GSSAPI token érkezett: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "%zu bájt GSSAPI védelemegyeztetés küldése\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nem sikerült elküldeni a GSSAPI védelem választ a proxynak: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nem sikerült fogadni a GSSAPI védelem választ a proxytól: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bájt GSSAPI védelem válasz érkezett: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Érvénytelen GSSAPI védelem válasz a proxytól (%zu bájt)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "A SOCKS proxy üzenet sértetlenséget igényel, amely nem támogatott\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "A SOCKS proxy üzenet titoktartást igényel, amely nem támogatott\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "A SOCKS proxy ismeretlen 0x%02x típusú védelmet igényel\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Alap HTML hitelesítési kísérlet a proxyra\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Az OpenConnect ezen verziója GSSAPI támogatás nélkül készült\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "A proxy Basic hitelesítést kért, amely alapértelmezetten le van tiltva\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nincs több kipróbálható hitelesítési eljárás\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Nincs memória a sütik lefoglalásához\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nem sikerült feldolgozni a következő HTTP választ: „%s”\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP válasz érkezett: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Hiba a HTTP válasz feldolgozásakor\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ismeretlen HTTP válasz sor mellőzése: „%s”\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Érvénytelen sütit ajánlottak: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Az SSL tanúsítvány hitelesítése nem sikerült\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "A választörzsnek negatív mérete van (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Ismeretlen átviteli kódolás: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP törzs %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Hiba a HTTP válasz törzsének olvasásakor\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Hiba a fejléc darabjának lekérésekor\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Hiba a HTTP válasz törzsének lekérésekor\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Hiba a darabolt dekódolásban. „” várt, „%s” érkezett" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Nem fogadható HTTP 1.0 törzs a kapcsolat lezárása nélkül\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nem sikerült feldolgozni az átirányított „%s” URL-t: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Nem követhető az átirányítás nem HTTPS URL-re: „%s”\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Új útvonal lefoglalása a relatív átirányításhoz nem sikerült: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Váratlan %d eredmény a kiszolgálótól\n" #: http.c:1056 msgid "request granted" msgstr "kérés megadva" #: http.c:1057 msgid "general failure" msgstr "általános hiba" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "a kapcsolatot a szabálykészlet nem engedélyezi" #: http.c:1059 msgid "network unreachable" msgstr "a hálózat elérhetetlen" #: http.c:1060 msgid "host unreachable" msgstr "a gép elérhetetlen" #: http.c:1061 msgid "connection refused by destination host" msgstr "a célgép visszautasította a kapcsolatot" #: http.c:1062 msgid "TTL expired" msgstr "TTL lejárt" #: http.c:1063 msgid "command not supported / protocol error" msgstr "a parancs nem támogatott / protokollhiba" #: http.c:1064 msgid "address type not supported" msgstr "a címtípus nem támogatott" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "A SOCKS kiszolgáló felhasználónevet/jelszót kért, de nekünk nincs olyan\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "A SOCKS hitelesítés felhasználónevének és jelszavának < 255 bájtnak kell " "lennie\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy hitelesítési kérésének írásakor: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy hitelesítési válaszának olvasásakor: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Váratlan hitelesítési válasz a következő SOCKS proxy-tól: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Hitelesítés a SOCKS kiszolgálóra jelszó használatával\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "A jelszavas hitelesítés a SOCKS kiszolgálóra nem sikerült\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "A SOCKS kiszolgáló GSSAPI hitelesítést kért\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "A SOCKS kiszolgáló jelszavas hitelesítést kért\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "A SOCKS kiszolgálóhoz hitelesítés szükséges\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "A SOCKS kiszolgáló ismeretlen %02x hitelesítéstípust kért\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS proxy csatlakozási kérés ide: %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy csatlakozási kérésének írásakor: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy csatlakozási válaszának olvasásakor: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Váratlan csatlakozási válasz a következő SOCKS proxy-tól: %02x %02x…\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy hiba %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy hiba %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Váratlan %02x címtípus a SOCKS proxy csatlakozási válaszában\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP proxy csatlakozási kérés ide: %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "A proxy kérés küldése nem sikerült: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "A proxy CSATLAKOZÁS kérés nem sikerült: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Ismeretlen proxy típus: „%s”\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Csak http vagy socks(5) proxyk támogatottak\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "A Cisco DTLS támogatás nélküli SSL könyvtárral szemben készítve\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nem sikerült a kiszolgáló URL feldolgozása: „%s”\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Csak https:// engedélyezett a kiszolgáló URL-hez\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Nincs űrlapkezelő, nem lehet hitelesíteni.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() sikertelen: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Végzetes hiba a parancssor kezelésében\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() sikertelen: %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Hiba a konzolbemenet átalakításakor: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Lefoglalási hiba a szabványos bemenetről érkező szöveghez\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Ha segítségre van szüksége az OpenConnect programhoz, tekintse meg a\n" " http://www.infradead.org/openconnect/mail.html címen lévő oldalt.\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL használata. A következő jellemzői vannak:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS használata. A következő jellemzői vannak:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Az OpenSSL MOTOR nincs jelen" #: main.c:613 msgid "using OpenSSL" msgstr "OpenSSL használata" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "FIGYELEM: Nincs DTLS támogatás ebben a programban. A teljesítmény károsodni " "fog.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (szabványos bemenet)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nem dolgozható fel ez a végrehajtható útvonal: „%s”" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "A vpnc-script útvonal lefoglalása nem sikerült\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Használat: openconnect [kapcsolók] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Nyílt kliens a Cisco AnyConnect VPN-hez, verzió: %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Beállítások olvasása a beállítófájlból" #: main.c:710 msgid "Continue in background after startup" msgstr "Indítás után folytatás a háttérben" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "A démon PID értékének írása ebbe a fájlba" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "A CERT SSL kliens tanúsítvány használata" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Figyelmeztetés, ha a tanúsítvány élettartama < DAYS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "A KEY SSL személyes kulcsfájl használata" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "A COOKIE WebVPN süti használata" #: main.c:717 msgid "Read cookie from standard input" msgstr "Süti olvasása a szabványos bemenetről" #: main.c:718 msgid "Enable compression (default)" msgstr "Tömörítés engedélyezése (alapértelmezett)" #: main.c:719 msgid "Disable compression" msgstr "Tömörítés letiltása" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Legkisebb halott csomópont észlelési időköz beállítása" #: main.c:721 msgid "Set login usergroup" msgstr "Bejelentkezési felhasználói csoport beállítása" #: main.c:722 msgid "Display help text" msgstr "Súgószöveg megjelenítése" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "IFNAME használata az alagút csatolóhoz" #: main.c:725 msgid "Use syslog for progress messages" msgstr "A syslog használata folyamatüzenetekhez" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Időbélyeg eléfűzése az üzenetek múlásához" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Jogosultságok eldobása csatlakozás után" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Jogosultságok eldobása CSD végrehajtás közben" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "SCRIPT futtatása a CSD program helyett" #: main.c:733 msgid "Request MTU from server" msgstr "MTU kérése a kiszolgálóról" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Az MTU útvonal jelzése a kiszolgálóhoz/kiszolgálóról" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Kulcsjelszó vagy TPM SRK PIN beállítása" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "A kulcs jelszava a fájlrendszer fsid értéke" #: main.c:737 msgid "Set proxy server" msgstr "Proxykiszolgáló beállítása" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Proxy hitelesítési eljárások beállítása" #: main.c:739 msgid "Disable proxy" msgstr "Proxy letiltása" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "A libproxy használata a proxy automatikus beállításához" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(MEGJEGYZÉS: a libproxy le van tiltva ebben a verzióban)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Tökéletes továbbító titkosságot igényel" #: main.c:745 msgid "Less output" msgstr "Kevesebb kimenet" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "A csomag várakozási sor korlát beállítása LEN pkts értékre" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Héj parancssor egy vpnc-kompatibilis beállítófájl használatához" #: main.c:748 msgid "default" msgstr "alapértelmezett" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Forgalom átadása a „script” programnak, nem a tun-nak" #: main.c:752 msgid "Set login username" msgstr "Bejelentkező felhasználónév beállítása" #: main.c:753 msgid "Report version number" msgstr "Verziószám jelentése" #: main.c:754 msgid "More output" msgstr "Több kimenet" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" "A HTTP hitelesítési forgalom kiírása (magába foglalja a --verbose kapcsolót" #: main.c:756 msgid "XML config file" msgstr "XML beállítófájl" #: main.c:757 msgid "Choose authentication login selection" msgstr "Hitelesítési bejelentkezés kijelölés kiválasztása" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Csak hitelesítés és bejelentkezési információk kiírása" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Csak a webvpn süti lekérése, ne csatlakozzon" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "A webvpn süti kiírása csatlakozás előtt" #: main.c:761 msgid "Cert file for server verification" msgstr "Tanúsítványfájl a kiszolgáló ellenőrzéséhez" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Ne kérdje IPv6 kapcsolatnál" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL titkosítók a DTLS támogatásához" #: main.c:764 msgid "Disable DTLS" msgstr "DTLS letiltása" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "HTTP kapcsolat újrahasználatának letiltása" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Jelszavas/SecurID hitelesítés letiltása" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Ne követelje meg a kiszolgáló SSL tanúsítványának érvényességét" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "Az alapértelmezett rendszertanúsítvány szolgáltatók letiltása" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Ne próbálkozzon XML POST hitelesítéssel" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Ne várjon felhasználói bemenetet; kilépés, ha azt megkövetelik" #: main.c:771 msgid "Read password from standard input" msgstr "Jelszó olvasása a szabványos bemenetről" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Szoftveres token típusa: rsa, totp vagy hotp" #: main.c:773 msgid "Software token secret" msgstr "Szoftveres token titok" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(MEGJEGYZÉS: a libstoken (RSA SecurID) le van tiltva ebben a verzióban)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(MEGJEGYZÉS: a Yubikey OATH le van tiltva ebben a verzióban)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Csatlakozás újrapróbálkozási időkorlátja másodpercben" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "A kiszolgáló tanúsítványának SHA1 ujjlenyomata" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP fejléc User-Agent: mező" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "A jelentendő operációs rendszer típus (linux,linux-64,win,…)" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Helyi port beállítása a DTLS datagrammokhoz" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Nem sikerült lefoglalni szöveget\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nem sikerült a sor lekérése a beállítófájlból: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Ismeretlen kapcsoló a(z) %d. sorban: „%s”\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A(z) „%s” kapcsoló nem fogad el argumentumot a(z) %d. sorban\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A(z) „%s” kapcsolóhoz argumentum szükséges a(z) %d. sorban\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "FIGYELEM: Az openconnect ezen verziója iconv támogatás nélkül\n" " készült, de úgy tűnik, hogy az örökölt „%s” karakterkészletet\n" " használja. Furcsaság várható.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "FIGYELEM: Az openconnect ezen verziója %s, de\n" " a libopenconnect függvénykönyvár %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nem sikerült lefoglalni a vpninfo szerkezetet\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Érvénytelen felhasználó: „%s”\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nem használható a „config” kapcsoló a beállítófájlon belül\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nem sikerült a(z) „%s” beállítófájl megnyitása: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "A(z) %d. MTU túl kicsi\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Minden HTTP kapcsolat újrafelhasználás letiltása a --no-http-keepalive " "miatt.\n" "Ha ez segít, jelentse a címre.\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "A nulla hosszú sor nem engedélyezett; 1 használata\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verzió: %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Érvénytelen szoftveres token mód: „%s”\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Érvénytelen OS identitás: „%s”\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Túl sok argumentum a parancssorban\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nincs megadva kiszolgáló\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Az openconnect ezen verziója libproxy támogatás nélkül készült\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Hiba a cmd cső megnyitásakor\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nem sikerült megszerezni a WebVPN sütit\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Az SSL kapcsolat létrehozása nem sikerült\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "A tun parancsfájl beállítása nem sikerült\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "A tun eszköz beállítása nem sikerült\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "A DTLS beállítása nem sikerült; SSL használata helyette\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nincs --script argumentum megadva; a DNS és az útválasztás nincs beállítva\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lásd: http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nem sikerült a(z) „%s” megnyitása írásra: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Folytatás a háttérben; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "A felhasználó újracsatlakozást kért\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "A sütit visszautasították az újracsatlakozáskor; kilépés.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "A kiszolgáló megszakította a munkamenetet; kilépés.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Felhasználói megszakítás (SIGINT); kilépés.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "A felhasználó le lett választva a munkamenetről (SIGHUP); kilépés.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Ismeretlen hiba, kilépés.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nem sikerült a(z) „%s” megnyitása írásra: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nem sikerült a beállítás írása ebbe: %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "A kiszolgáló SSL tanúsítványa nem egyezett: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "A(z) „%s” VPN-kiszolgáló által küldött tanúsítvány ellenőrzése nem " "sikerült.\n" "Ok: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "„%s” beírása az elfogadáshoz, „%s” a megszakításhoz; bármi más a " "megtekintéshez: " #: main.c:1661 main.c:1679 msgid "no" msgstr "nem" #: main.c:1661 main.c:1667 msgid "yes" msgstr "igen" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Kiszolgáló kulcs hash: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "A(z) „%s” hitelesítés-választás több kapcsolóra illeszkedik\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "A(z) „%s” hitelesítés-választás nem érhető el\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Felhasználói bemenet szükséges nem interaktív módban\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nem sikerült megnyitni a tokenfájlt írásra: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Nem sikerült a token írása: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "A szoftveres token szöveg érvénytelen\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nem nyitható meg a ~/.stokenrc fájl\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Az OpenConnect nem libstoken támogatással készült\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Általános hiba a libstoken könyvtárban\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Az OpenConnect nem liboath támogatással készült\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Általános hiba a liboath könyvtárban\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey token nem található\n" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Az OpenConnect nem Yubikey támogatással készült\n" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Általános Yubikey hiba: %s\n" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "A hívó szüneteltette a kapcsolatot\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nincs tennivalója; alvás %d ms-ra…\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects sikertelen: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() sikertelen: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() sikertelen: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Hiba az ntlm_auth segítővel való kommunikációkor\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "HTML NTLM hitelesítési kísérlet a proxyra (egyszeres bejelentkezés)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTML NTLMv%d hitelesítési kísérlet a proxyra\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Az OpenConnect ezen verziója PSKC támogatás nélkül készült\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "OK a KEZDETI tokenkód előállításához\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "OK a KÖVETKEZŐ tokenkód előállításához\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "A kiszolgáló visszautasította a szoftveres tokent; átváltás kézi bevitelre\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP tokenkód előállítása\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP tokenkód előállítása\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" "HIBA: %s() érvénytelen UTF-8 értékkel lett meghívva a(z) „%s” argumentumnál\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nem sikerült libp11 PKCS#11 környezetet létesíteni:\n" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" "Nem sikerült betölteni a PKCS#11-et biztosító modult (p11-kit-proxy.so):\n" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "PIN-kód zárolva\n" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "PIN-kód lejárt\n" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "Egy másik felhasználó már bejelentkezett\n" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Ismeretlen hiba a PKCS#11 tokenbe való bejelentkezéskor\n" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Bejelentkezve a következő PKCS#11 tárolóhelyre: „%s”\n" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" "Nem sikerült a tanúsítványok felsorolása a következő PKCS#11 tárolóhelyen: " "„%s”\n" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d tanúsítvány található a következő tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nem sikerült a következő PKCS#11 URI feldolgozása: „%s”\n" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nem sikerült felsorolni a PKCS#11 tárolóhelyeket\n" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Bejelentkezés a következő PKCS#11 tárolóhelyre: „%s”\n" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "A tanúsítvány X.509 tartalmát nem kérte le a libp11\n" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nem sikerült a tanúsítvány telepítése az OpenSSL környezetben\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" "Nem sikerült a kulcsok felsorolása a következő PKCS#11 tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d kulcs található a következő tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nem sikerült példányosítani a személyes kulcsot a PKCS#11-ből\n" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "A kulcs hozzáadása nem sikerült a PKCS#11-ből\n" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Az OpenConnect ezen verziója PKCS#11 támogatás nélkül készült\n" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Nem sikerült írni az SSL foglalatba\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Nem sikerült olvasni az SSL foglalatból\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL olvasási hiba: %d (a kiszolgáló valószínűleg lezárta a kapcsolatot); " "újracsatlakozás.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write sikertelen: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Kezeletlen SSL UI kéréstípus: %d\n" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "A PEM jelszó túl hosszú (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "További tanúsítvány innen: %s: „%s”\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "A PKCS#12 feldolgozása nem sikerült (lásd a fenti hibákat)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "A PKCS#12 nem tartalmazott tanúsítványt!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "A PKCS#12 nem tartalmazott személyes kulcsot!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Nem sikerült betölteni a TPM motort.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Nem sikerült előkészíteni a TPM motort\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Nem sikerült beállítani a TPM SRK jelszót\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Nem sikerült betölteni a TPM személyes kulcsot\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "A kulcs hozzáadása nem sikerült a TPM-ből\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s tanúsítványfájl megnyitása: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "A tanúsítvány betöltése nem sikerült\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Nem sikerült minden támogatott tanúsítvány feldolgozása. Azért megpróbálom…\n" #: openssl.c:710 msgid "PEM file" msgstr "PEM fájl" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nem sikerült a BIO létrehozása a következő kulcstartó elemnél: „%s”\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "A személyes kulcs betöltése nem sikerült (rossz jelmondat?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "A személyes kulcs betöltése nem sikerült (lásd a fenti hibákat)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nem sikerült betölteni az X509 tanúsítványt a kulcstartóról\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nem sikerült az X509 tanúsítvány használata a kulcstartóról\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Nem sikerült a személyes kulcs használata a kulcstartóról\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "A(z) %s személyes kulcsfájl megnyitása nem sikerült: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "A személyes kulcs betöltése nem sikerült\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nem sikerült azonosítani a személyes kulcs típusát ebben: „%s”\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Egyező DNS altname: „%s”\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Nincs egyezés a következő altname értékre: „%s”\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "A tanúsítványnak GEN_IPADD altname értéke van hamis hosszal: %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Egyező %s cím: „%s”\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nincs egyezés a(z) %s címmel: „%s”\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "A(z) „%s” URI nem üres útvonallal rendelkezik; mellőzés\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Egyező URI: „%s”\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Nincs egyezés a következő URI-ra: „%s”\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Nincs altname érték a következőre illeszkedő csomópont tanúsítványában: " "„%s”\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Nincs tárgynév a csomópont tanúsítványában!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Nem sikerült a tárgynév feldolgozása a csomópont tanúsítványában\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "A csomópont tanúsítvány tárgya nem megfelelő („%s” != „%s”)\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Egyező csomópont tanúsítvány tárgynév: „%s”\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "További tanúsítvány a hitelesítés-szolgáltató fájlból: „%s”\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Hiba a kliens tanúsítvány notAfter mezőjében\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nem sikerült a tanúsítványok olvasása a CA fájlból: „%s”\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nem sikerült megnyitni a CA fájlt: „%s”\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Az SSL kapcsolat meghiúsult\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Rossz felosztott felvétel eldobása: „%s”\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Rossz felosztott kizárás eldobása: „%s”\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nem sikerült a(z) „%s” parancsfájl elindítása ehhez: %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "A(z) „%s” parancsfájl nem megfelelő módon lépett ki (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "A(z) „%s” parancsfájl a következő hibakóddal tért vissza: %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Foglalat-csatlakozás megszakítva\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Nem sikerült újracsatlakozni a proxy-hoz: %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Nem sikerült újracsatlakozni a géphez: %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy a libproxy könyvtárból: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "A getaddrinfo meghiúsult a(z) „%s” gépnél: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Újracsatlakozás a DynDNS kiszolgálóhoz az előzőleg gyorsítótárazott IP-cím " "használatával\n" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Kapcsolódási kísérlet a következő proxy-hoz: %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Kapcsolódási kísérlet a következő kiszolgálóhoz: %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Nem sikerült lefoglalni a sockaddr tárolót\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "A nem funkcionális előző csomópont címének elfelejtése\n" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nem sikerült kapcsolódni a következő géphez: %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Újracsatlakozás a proxyhoz: „%s”\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nem sikerült beszerezni a fájlrendszer azonosítót a jelszóhoz\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "A(z) „%s” személyes kulcsfájl megnyitása nem sikerült: %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Nincs hiba" #: ssl.c:588 msgid "Keystore locked" msgstr "Kulcstároló zárolva" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Kulcstároló nincs előkészítve" #: ssl.c:590 msgid "System error" msgstr "Rendszerhiba" #: ssl.c:591 msgid "Protocol error" msgstr "Protokollhiba" #: ssl.c:592 msgid "Permission denied" msgstr "Hozzáférés megtagadva" #: ssl.c:593 msgid "Key not found" msgstr "Kulcs nem található" #: ssl.c:594 msgid "Value corrupted" msgstr "Sérült érték" #: ssl.c:595 msgid "Undefined action" msgstr "Meghatározatlan művelet" #: ssl.c:599 msgid "Wrong password" msgstr "Hibás jelszó" #: ssl.c:600 msgid "Unknown error" msgstr "Ismeretlen hiba" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" "Az openconnect_fopen_utf8() nem támogatott móddal lett használva: „%s”\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "A süti nem érvényes többé, munkamenet befejezése\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "alvás: %dmp, hátralévő időkorlát: %dmp\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Az SSPI token túl nagy (%ld bájt)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "%lu bájt SSPI token küldése\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Nem sikerült elküldeni az SSPI hitelesítési tokent a proxynak: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Nem sikerült fogadni az SSPI hitelesítési tokent a proxytól: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "A SOCKS kiszolgáló SSPI környezet hibát jelentett\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Ismeretlen SSPI állapotválasz (0x%02x) a SOCKS kiszolgálótól\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "%lu bájt SSPI token érkezett: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() sikertelen: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() sikertelen: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Az EncryptMessage() eredménye túl nagy (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "%u bájt SSPI védelemegyeztetés küldése\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nem sikerült elküldeni az SSPI védelem választ a proxynak: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nem sikerült fogadni az SSPI védelem választ a proxytól: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "%d bájt SSPI védelem válasz érkezett: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage sikertelen: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Érvénytelen SSPI védelem válasz a proxytól (%lu bájt)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Adja meg a hitelesítési adatokat a szoftveres token feloldásához." #: stoken.c:82 msgid "Device ID:" msgstr "Eszközazonosító:" #: stoken.c:89 msgid "Password:" msgstr "Jelszó:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "A felhasználó megkerülte a szoftveres tokent.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Minden mező kötelező, próbálja újra.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Általános hiba a libstoken könyvtárban.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Hibás eszközazonosító vagy jelszó, próbálja újra.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "A szoftveres token előkészítése sikeres volt.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Adja meg a szoftveres token PIN-kódját." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Érvénytelen PIN-formátum, próbálja újra.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA tokenkód előállítása\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Hiba a hálózati adatperek rendszerleíró kulcsához való hozzáféréskor\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Nem egyező „%s” TAP felület mellőzése\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Nem találhatók Windows-TAP adapterek. Telepítve van az illesztőprogram?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Nem sikerült megnyitni: %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Megnyitott tun eszköz: %s\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nem sikerült megszerezni a TAP illesztőprogram verzióját: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Hiba: TAP-Windows illesztőprogram v9.9 vagy újabb szükséges (%ld.%ld " "található)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nem sikerült beállítani a TAP IP-címeket: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nem sikerült beállítani a TAP médiaállapotot: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "A TAP eszköz megszakította a kapcsolódási lehetőséget. Leválasztás.\n" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nem sikerült olvasni a TAP eszközről: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nem sikerült befejezni az olvasást a TAP eszközről: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bájt kiírva a tun eszközre\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Várakozás a tun írásra…\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld bájt kiírva a tun eszközre a várakozás után\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nem sikerült írni a TAP eszközre: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Alagút parancsfájlok indítása még nem támogatott Windows rendszeren\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nem sikerült a /dev/tun megnyitása az átvizsgáláshoz" #: tun.c:92 msgid "Can't push IP" msgstr "Nem sikerült az IP küldése" #: tun.c:102 msgid "Can't set ifname" msgstr "Nem sikerült az ifname beállítása" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nem sikerült a(z) %s megnyitása: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nem sikerült a(z) %s átvizsgálása IPv%d esetén: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun megnyitása" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nem sikerült az új tun létrehozása" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Nem sikerült a tun fájlleíró átállítása message-discard módba" #: tun.c:196 msgid "open net" msgstr "net megnyitása" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nem sikerült megnyitni a tun eszközt: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Érvénytelen „%s” nevű csatoló; egyeznie kell ezzel: „utun%%d” vagy „tun%%d”\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nem sikerült megnyitni a SYSPROTO_CONTROL foglalatot: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nem sikerült lekérdezni az utun vezérlő azonosítót: %s\n" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "Nem sikerült lefoglalni az utun eszköz nevét\n" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nem sikerült kapcsolódni az utun egységhez: %s\n" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Érvénytelen „%s” nevű csatoló; egyeznie kell ezzel: „tun%%d”\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "A(z) „%s” nem nyitható meg: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair sikertelen: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "fork sikertelen: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(parancsfájl)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Ismeretlen csomag (hossz: %d) érkezett: %02x %02x %02x %02x…\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nem sikerült a bejövő csomag írása: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nem sikerült megnyitni: %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Nem sikerült az fstat() %s hívás: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nem sikerült %d bájtot lefoglalni ehhez: %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nem sikerült beolvasni: %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "A(z) „%s” gép kezelése nyers gépnévként\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "A meglévő fájl SHA1 ellenőrzése nem sikerült\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML beállítófájl SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nem sikerült feldolgozni az XML beállítófájlt: %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "A(z) „%s” gépnek „%s” címe van\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "A „%s” gépnek „%s” felhasználói csoportja van\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "A(z) „%s” gép nincs felsorolva a beállításban; nyers gépnévként lesz " "kezelve\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nem sikerült a(z) „%s” küldése a ykneo-oath kisalkalmazásnak: %s\n" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Érvénytelen rövid válasz a ykneo-oath kisalkalmazástól ehhez: „%s”\n" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Hibás válasz ehhez: „%s”: %04x\n" #: yubikey.c:158 msgid "select applet command" msgstr "kisalkalmazás parancs kiválasztása" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Azonosítatlan válasz a ykneo-oath kisalkalmazástól\n" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "%d.%d.%d. verziójú ykneo-oath kisalkalmazás található\n" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "PIN-kód szükséges a Yubikey OATH kisalkalmazáshoz" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "Yubikey PIN-kód:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nem sikerült kiszámítani a Yubikey feloldási választ\n" #: yubikey.c:256 msgid "unlock command" msgstr "feloldási parancs" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nem sikerült PC/SC környezetet létesíteni: %s\n" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "PC/SC környezet kiépítve\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nem sikerült lekérdezni az olvasólistát: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nem sikerült kapcsolódni a(z) „%s” PC/SC olvasóhoz: %s\n" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Kapcsolódva a(z) „%s” PC/SC olvasóhoz\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" "Nem sikerült kizárólagos hozzáférést szerezni a(z) „%s” olvasóhoz: %s\n" #: yubikey.c:398 msgid "list keys command" msgstr "kulcsok listázása parancs" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s „%s” kulcs található ezen: „%s”\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "A(z) „%s” token nem található ezen a Yubikey-en: „%s”. Másik Yubikey " "keresése…\n" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "A kiszolgáló visszautasította a Yubikey tokent; átváltás kézi bevitelre\n" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Yubikey tokenkód előállítása\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nem sikerült kizárólagos hozzáférést szerezni a Yubikey-hez: %s\n" #: yubikey.c:600 msgid "calculate command" msgstr "kiszámítás parancs" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Azonosítatlan válasz a Yubikey-től a tokenkód előállításakor\n" openconnect-7.06/po/pt_BR.po0000664000076400007640000027772612502026115012717 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2013-01-18 22:04+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Portuguese (Brazil) \n" "Language: pt_BR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Não foi possível lidar com method=\"%s\" e action=\"%s\" da forma\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falhou ao gerar código de token OTP; desabilitando token\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Escolha da forma não possui nome\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "nome %s não inserido\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Nenhum tipo de entrada na forma\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Nenhum nome de entrada na forma\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada desconhecida %s na forma\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Resposta vazia do servidor\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Falhou ao analisar resposta do servidor\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Resposta foi: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Recebeu quando não esperava.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "Resposta XML não possui nó de \"auth\"\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Requisitou senha, mas \"--no-passwd\" está definido\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Não será baixado perfil XML porque SHA1 já corresponde\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falhou ao abrir conexão HTTPS para %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Falhou ao enviar requisição GET para nova configuração\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Arquivo de configuração baixado não confere com SHA1 esperado\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Baixado novo perfil XML\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Erro: A execução do trojan \"Cisco Secure Desktop\" no Windows não está " "implementada ainda.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Erro: O servidor solicitou que nós executemos hostscan de CSD.\n" "Você precisa fornecer um argumento --csd-wrapper adequado.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Erro. O servidor solicitou baixar e executar um trojan de 'Cisco Secure " "Desktop'.\n" "Esta funcionalidade está desabilitada por padrão por motivos de segurança. " "Então, talvez você queira habilitá-la.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Tentando executar o script trojan CSD para Linux.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "O diretório temporário \"%s\" não pode ser escrito: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falhou ao abrir arquivo de script CSD temporário: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falhou ao escrever arquivo de script CSD temporário: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Falha ao definir uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "uid=%ld de usuário inválido\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falhou ao mudar para o diretório inicial do CSD \"%s\": %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: você está executando um código de CSD inseguro com privilégios de " "root\n" "\t Use a opção de linha de comando \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falhou ao executar script CSD %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Servidor requisitou certificado de cliente SSL após um ter sido fornecido\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "O servidor requisitou um certificado de cliente SSL, mas nenhum foi " "configurado\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST habilitado\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Renovando %s após 1 segundo...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(erro 0x%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Erro ao descrever erro!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ERRO: Não foi possível inicializar sockets\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERRO CRÍTICO: segredo mestre DTLS está não inicializado. Por favor, relate " "isso.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Erro ao criar requisição de HTTPS CONNECT\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Erro ao obter resposta HTTPS\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Serviço VPN indisponível - motivo: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obteve resposta HTTP CONNECT inapropriável: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obteve resposta CONNECT: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Sem memória suficiente para as opções\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID não tem 64 caracteres - tem: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding desconhecido %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Nenhum MTU foi recebido. Abortando\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Nenhum endereço IP recebido. Abortando\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Configuração IPv6 recebido, mas MTU %d é muito pequeno.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconexão deu um endereço IP legado diferente (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconexão deu uma máscara de rede IP legado diferente (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconexão deu uma máscara de rede IPv6 diferente (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconexão deu um endereço IPv6 diferente (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP conectado. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Ciphersuite CTSP: %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Configuração da compressão falhou\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Alocação da buffer de deflate falhou\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "falhou ao inflar\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate falhou %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Tamanho de pacote inesperado. SSL_read retornou %d, mas o pacote é\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Obtendo requisição DPD de CSTP\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Obteve resposta DPD CSTP\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Obteve keepalive CSTP\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Recebeu pacote de dados sem compressão de %d bytes\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Recebeu desconexão do servidor: %02x \"%s\"\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Pacote comprimido recebido em modo !deflate\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "recebeu pacote de terminação do servidor\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pacote desconhecido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL não escreveu bytes suficiente! Perguntou por %d, enviou %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Renovação da chave CSTP falhou\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Re-negociação falhou; tentando novo túnel\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection CSTP detectou par morto!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Reconexão falhou\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Enviar DPD CSTP\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Enviar keepalive CSTP\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Enviando pacote de %d bytes comm dados não comprimidos\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar pacote BYE: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Tentando autenticação Digest ao proxy\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "A inicialização da sessão de DTLSv1 falhou\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inicialização de DTLSv1 CTX falhou\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "A definição da lista de cifras DTLS falhou\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Não exatamente uma cifra DTLS\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falhou com versão antiga de protocolo 0x%x\n" "Você está usando uma versão do OpenSSL mais antiga do que 0.9.8m?\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use a opção de linha de comando --no-dtls para evitar esta mensagem\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Conexão DTLS estabelecida (usando OpenSSL). Ciphersuite %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Seu OpenSSL é mais antigo do que aquele com o qual se compilou o OpenConnect " "e, portanto, DTLS pode falhar!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Limite de tempo para negociação DTLS\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Isso é provavelmente porque o seu OpenSSL está quebrado\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "A negociação DTLS falhou: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parâmetros DTLS desconhecidos para a CipherSuite requisitada \"%s\"\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Falhou ao definir a prioridade DTLS: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falhou ao definir os parâmetros de sessão DTLS: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falhou ao definir o MTU DTLS: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Conexão DTLS estabelecida (usando GnuTLS). Ciphersuite %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Negociação DTLS falhou: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Há algum firewall impedindo que você envie pacotes UDP?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "Conexão DTLS tentada com um descritor de arquivo existente\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Nenhum endereço DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "O servidor ofereceu nenhuma opção de cifra DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Nenhum DTLS quando conectado via proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opção DTLS %s: %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializado. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Tentar nova conexão DTLS\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recebido pacote DTLS 0x%02x de %d bytes\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Obteve requisição de DPD DTLS\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falhou ao enviar resposta de DPD. Esperar desconexão\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Obteve resposta de DPD DTLS\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Obteve keepalive DTLS\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipo de pacote DTLS desconhecido %02x, tamanho %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Renovação da chave DTLS expirou\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "A re-negociação DTLS falhou - reconectando.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection DTLS detectou par morto!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Enviar DPD DTLS\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falha ao enviar requisição DPD. Esperar desconexão\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Enviar keepalive DTLS\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falhou ao enviar requisição de keepalive. Esperar desconexão\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita %d. Voltando para SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita: %s. Voltando para SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Enviou pacote DTLS de %d bytes - Envio de DTLS retornou %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Escrita SSL cancelada\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Falhou ao escrever em socket SSL: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Leitura SSL cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "Socket SSL fechado inadequadamente\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Falhou ao ler de socket SSL: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Erro de leitura SSL: %s - reconectando.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Falha de leitura SSL: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Não foi possível extrair o tempo de expiração do certificado\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Certificado do cliente expirou em" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Certificado do cliente expira em breve em" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falhou ao carregar item \"%s\" da keystore: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falhou ao abrir o arquivo de chave/certificado %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falhou ao obter estado do arquivo de chave/certificado %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Falhou ao alocar buffer do certificado\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falha ao ler certificado para a memória: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falhou ao configurar estrutura de dados PKCS#12: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falhou ao descriptografar arquivo de certificado PKCS#12\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Digite uma frase secreta PKCS#12:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falhou ao processar arquivo PKCS#12: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falhou ao ler certificado PKCS#12: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importação de certificado X509 falhou: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Configuração de certificado PKCS#11 falhou: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Não foi possível inicializar o hash MD5: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Erro no hash MD5: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Faltando o cabeçalho DEK-Info: da chave criptografada em OpenSSL\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Não foi possível determinar o tipo de criptografia de PEM\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de criptografia PEM não suportada: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal inválido no arquivo PEM criptografado\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Erro na decodificação base64 de arquivo PEM criptografado: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Arquivo PEM criptografado muito curto\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Falhou ao inicializar cifra para descriptografar arquivo PEM: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falhou ao descriptografar chave PEM: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Descriptografia de chave PEM falhou\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Digita a frase secreta de PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Esse binário compilado sem suporte a chave do sistema\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Esse binário compilado sem suporte a PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Usando certificado do sistema %s\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Erro no carregamento de certificado de PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Erro no carregamento de certificado do sistema: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Usando arquivo de certificado %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "O arquivo PKCS#11 continha nenhum certificado\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Nenhum certificado encontrado no arquivo" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "O carregamento de certificado falhou: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Usando chave do sistema %s\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Erro na inicialização da estrutura de chave privada: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Erro na importação da chave de sistema %s: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Tentando a URL de chave PKCS#11 %s\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Erro na inicialização da estrutura de chave PKCS#11: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Erro na importação da URL PKCS#11 %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Usando chave PKCS#11 %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Erro na importação de chave PKCS#11 para a estrutura de chave privada: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Usando arquivo de chave privada %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Falhou ao interpretar arquivo PEM\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falhou ao carregar chave privada PKCS#1: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falhou ao carregar chave privada como PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falhou ao descriptografar arquivo de certificado PKCS#8\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falhou ao determinar o tipo da chave privada %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falhou ao obter ID da chave: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Erro na assinatura de dados de teste com a chave privada: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Erro na validação da assinatura contra certificado: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Nenhum certificado SSL encontrado para conferir a chave privada\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Usando certificado \"%s\" do cliente\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "A configuração da lista de revogação de certificados falhou: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Ocorreu falha ao alocar memória para certificado\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "AVISO: GnuTLS retornou certificados de emissor incorreto - a autenticação " "pode falhar!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Próxima AC \"%s\" obtida de PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falhou em alocar memória para certificados de apoio\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Adicionando AC de apoio \"%s\"\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "A configuração de certificado falhou: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "O servidor apresentou nenhum certificado\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Erro na inicialização da estrutura de certificado X509\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Erro na importação do certificado do servidor\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Não foi possível calcular hash do certificado do servidor\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Erro na verificação do estado do certificado do servidor\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "certificado revogado" #: gnutls.c:1970 msgid "signer not found" msgstr "assinado não encontrado" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "assinador não é um certificado de AC" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certificado não ativado ainda" #: gnutls.c:1978 msgid "certificate expired" msgstr "certificado expirou" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "verificação da assinatura falhou" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "certificado não confere com o hostname" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Verificação do certificado do servidor falhou: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falhou ao alocar memória para certificados do CAfile\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falhou ao ler certificados do CAfile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falhou ao abrir o CAfile \"%s\": %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Carregamento do certificado falhou. Abortando.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Falhou ao definir string de prioridade TLS: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociação SSL com %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Conexão SSL cancelada\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Falha de conexão SSL: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Retorno não fatal do GnuTLS durante negociação: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Conectado a HTTPS em %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Renegociou SSL em %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN necessário para %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "PIN incorreto" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Essa é a tentativa final antes de travar!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Somente poucas tentativas restantes antes de travar!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Insira o PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Falhou em executar SHA1 nos dados de entrada para assinatura: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "A função de assinatura do TPM solicitou %d bytes.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falhou ao criar objeto de hash TPM: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falhou ao definir valor em objeto de hashs TPM: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Assinatura de hash TPM falhou: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Erro na decodificação de blob de chave TSS: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Erro no blob de chave TSS\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falhou ao criar contexto TPM: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falhou ao conectar contexto TPM: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falhou ao carregar chave de SRK TPM: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falhou ao carregar objeto de política de SRK TPM: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falhou ao definir PIN TPM: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falhou ao carregar blob de chave TPM: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Digite o PIN de SRK TPM:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falhou ao criar objeto de política de chaves: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falhou ao atribuir política a chave: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Digite o PIN da chave TPM:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falhou ao definir o PIN de chave: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Erro ao importar nome GSSAPI para autenticação:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Erro ao gerar resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Tentando autenticação GSSAPI ao proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Autenticação GSSAPI concluída\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI muito grande (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Enviando token GSSPAI de %zu bytes\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falhou ao enviar autenticação GSSAPI para o proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falhou ao receber o token de autenticação GSSAPI do proxy %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "O servidor SOCKS relatou falha de contexto GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de status GSSPI desconhecido (0x%02x) do servidor SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obteve token GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Enviando negociação de proteção GSSAPI de %zu bytes\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falhou ao enviar resposta de proteção GSSAPI ao proxy %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falhou ao receber resposta de proteção GSSAPI do proxy %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obteve resposta de proteção GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Resposta de proteção GSSAPI inválida do proxy (%zu bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "O proxy SOCKS demanda uma integridade de mensagem, o que não é suportado\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "O proxy SOCKS demanda uma confidencialidade de mensagem, o que não é " "suportado\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "O proxy SOCKS demanda um tipo de proteção desconhecida 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Tentando autenticação Básica de HTTP para o proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "O proxy requisitou autenticação Básica, a qual está desabilitada por padrão\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Sem mais métodos de autenticação para tentar\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Nenhuma memória para alocação de cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falhou ao analisar resposta HTTP \"%s\"\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obteve resposta HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Erro no processamento da resposta HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorando linha de resposta HTTP desconhecida \"%s\"\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie inválido oferecido: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Autenticação de certificado SSL falhou\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Corpo da resposta possui tamanho negativo (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transfer-Encoding negativo: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Corpo de HTTP %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Erro na leitura do corpo da resposta HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Erro ao obter cabeçalho do bloco\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Erro ao obter corpo de resposta HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Erro na decodificação fragmentada. Esperava \"\", obteve: \"%s\"" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Não foi possível receber corpo de HTTP 1.0 sem fechar a conexão\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falhou ao analisar URL redirecionada \"%s\": %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Não foi possível seguir o redirecionamento para URL não https \"%s\"\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "A alocação de novo caminho para redirecionamento relativo falhou: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado inesperado %d do servidor\n" #: http.c:1056 msgid "request granted" msgstr "requisição concedida" #: http.c:1057 msgid "general failure" msgstr "falha geral" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "conexão não permitida pelo conjunto de regras" #: http.c:1059 msgid "network unreachable" msgstr "a rede está inacessível" #: http.c:1060 msgid "host unreachable" msgstr "o host está inacessível" #: http.c:1061 msgid "connection refused by destination host" msgstr "Conexão recusada pelo host de destino" #: http.c:1062 msgid "TTL expired" msgstr "TTL expirou" #: http.c:1063 msgid "command not supported / protocol error" msgstr "comando não suportado / erro de protocolo" #: http.c:1064 msgid "address type not supported" msgstr "tipo de endereço não suportado" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "O servidor SOCKS requisitou nome de usuário e senha, mas temos nenhum\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Nome de usuário e senha para autenticação SOCKS devem ser < 255 bytes\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Erro na escrita de requisição de autenticação para proxy SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Erro na leitura de reposta de autenticação de proxy SOCKS: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Resposta de autenticação inesperada de proxy SOCKS: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticou para o servidor SOCKS usando senha\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Autenticação por senha para o servidor SOCKS falhou\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "O servidor SOCKS requisitou autenticação por GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "O servidor SOCKS requisitou autenticação por senha\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "O servidor SOCKS requer autenticação\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "O servidor SOCKS requisitou tipo de autenticação desconhecida %02x\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requisitando conexão ao proxy SOCKS para %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Erro na escrita de requisição de conexão para proxy SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Erro na leitura de resposta de conexão de proxy SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Resposta de conexão inesperada de proxy SOCKS: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Erro de proxy SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Erro de proxy SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de endereço %02x inesperado na resposta de conexão SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requisitando conexão proxy HTTP para %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Envio de requisição proxy falhou: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Requisição de proxy CONNECT falhou: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy desconhecido \"%s\"\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Somente proxy http ou socks(5) são suportados\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado com biblioteca SSL sem suporte a DTLS da Cisco\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falhou ao analisar URL do servidor \"%s\"\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Somente https:// é permitido como URL de servidor\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "nenhum manipulador de forma - não foi possível autenticar.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() falhou: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Erro fatal ao manipular a linha de comando\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() falhou: %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Erro ao converter a entrada de console: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falha ao alocar de string da stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para assistência com OpenConnect, por favor veja a página web em\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Usando OpenSSL. Recursos presentes:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Usando GnuTLS. Recursos presentes:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE não presente" #: main.c:613 msgid "using OpenSSL" msgstr "usando OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "AVISO: nenhum suporte a DTLS neste binário. A performance será prejudicada.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Não foi possível processar este caminho de executável \"%s\"" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alocação para caminho de vpnc-script falhou\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opções] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Cliente aberto para Cisco AnyConnect VPN, versão %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Lê as opções do arquivo de configuração" #: main.c:710 msgid "Continue in background after startup" msgstr "Continua em plano de fundo após inicialização" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Escreve o PID do daemon neste arquivo" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Usa o certificado CERT do cliente SSL" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisa quando o tempo de vida do certificado < DAYS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Usa o arquivo KEY de chave privada SSL" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Usa o cookie COOKIE de WebVPN" #: main.c:717 msgid "Read cookie from standard input" msgstr "Lê o cookie da entrada padrão" #: main.c:718 msgid "Enable compression (default)" msgstr "Habilita compressão (padrão)" #: main.c:719 msgid "Disable compression" msgstr "Desabilita compressão" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Define um intervalo mínimo de Dead Peer Detection" #: main.c:721 msgid "Set login usergroup" msgstr "Define o grupo de usuário do login" #: main.c:722 msgid "Display help text" msgstr "Exibe o texto de ajuda" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Usa IFNAME para a interface do túnel" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Usa syslog para as mensagens de progresso" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Prefixa marca de tempo nas mensagens de progresso" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Descarta privilégios após conexão" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Descarta privilégios durante execução de CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Executa SCRIPT ao invés do binário do CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Requisita MTU do servidor" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Indica MTU do caminho de/para o servidor" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Define a frase secreta chave ou TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Frase secreta chave é fsid do sistema de arquivos" #: main.c:737 msgid "Set proxy server" msgstr "Define o servidor proxy" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Define os métodos de autenticação de proxy" #: main.c:739 msgid "Disable proxy" msgstr "Desabilita o proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Usa libproxy para configurar automaticamente o proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desabilitado nesta compilação)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Exige perfect forward secrecy (PFS)" #: main.c:745 msgid "Less output" msgstr "Menos saída" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Define limite da fila de pacotes para LEN pkts" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Linha de comando shell para usar um script de configuração compatível com " "vpnc" #: main.c:748 msgid "default" msgstr "padrão" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Passa tráfego para o programa \"script\", ao invés do tun" #: main.c:752 msgid "Set login username" msgstr "Define o nome de usuário do login" #: main.c:753 msgid "Report version number" msgstr "Informa o número da versão" #: main.c:754 msgid "More output" msgstr "Mais saída" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Despeja o tráfego de autenticação HTTP (--verbose implícito)" #: main.c:756 msgid "XML config file" msgstr "Arquivo de configuração XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "Escolhe a seleção de login para autenticação" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Só autentica e imprime informação de login" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Só obtém cookie de webvpn - não conecta" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Imprime o cookie de webvpn antes de conectar." #: main.c:761 msgid "Cert file for server verification" msgstr "Arquivo de certificado para verificação do servidor" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Não solicita conectividade em IPv6" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cifras de OpenSSL a serem suportadas para DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Desabilita DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Desabilita reuso de conexão HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Desabilita autenticação por senha/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Não exige que o certificado SSL do servidor seja válido" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "Desabilita autoridades certificadoras padrão do sistema" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Não tenta autenticação XML POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Não espera entrada do usuário - sai se for requisitado" #: main.c:771 msgid "Read password from standard input" msgstr "Lê senha da entrada padrão" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Tipo de token de software: rsa, totp ou hotp" #: main.c:773 msgid "Software token secret" msgstr "Segredo de token de software" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) desabilitado nesta compilação)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH desabilitado nesta compilação)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Limite de tempo em segundos para nova tentativa de conexão" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Impressão digital SHA1 do certificado do servidor" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Campo User-Agent: do cabeçalho de HTTP" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipo de SO (linux,linux-64,mac,win,...) para informar" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Define a porta local para datagramas DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Falhou ao alocar string\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falha ao obter linha de arquivo de configuração: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opção não reconhecida na linha %d: \"%s\"\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opção \"%s\" não leva um argumento na linha %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opção \"%s\" requer um argumento na linha %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVISO: Essa versão do openconnect foi compilada sem suporte\n" " a iconv, mas você parece estar usando o conjunto de\n" " caracteres legado \"%s\". Espere coisas estranhas.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVISO: Essa versão do openconnect é %s, mas\n" " a biblioteca libopenconnect é %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falha ao alocar a estrutura de vpninfo\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Usuário inválido \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Não é possível usar \"config\" dentro do arquivo de configuração\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Não foi possível usar o arquivo de configuração \"%s\": %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d é muito pequeno\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Desabilitando todo reuso de conexões HTTP por causa da opção --no-http-" "keepalive.\n" "Se isso ajuda, por favor relate para .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Fila com tamanho zero não é permitido - usando 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versão %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de token de software \" %s\" inválido\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identidade do SO inválida \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumentos demais na linha de comando\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nenhum servidor especificado\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Essa versão do openconnect foi compilada sem suporte a libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Erro ao abrir redirecionamento de comando\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Falha ao obter um cookie de WebVPN\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "A criação da conexão SSL falhou\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "A configuração de script tun falhou\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "A configuração de um dispositivo tun falhou\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "A configuração de DTLS falhou - usando SSL em vez disso\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nenhum argumento --script fornecido - DNS e roteamento não estão " "configurados\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Veja http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falha ao abrir \"%s\" para escrita: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuando em plano de fundo - pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Usuário requisitou reconexão\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie rejeitado na reconexão; saindo.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Sessão terminada pelo servidor; saindo.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Usuário cancelado (SIGINT); saindo.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Usuário desanexado da sessão (SIGHUP); saindo.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Erro desconhecido; saída.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falha ao abrir %s para escrita: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falha ao escrever a configuração para %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Certificado SSL do servidor não correspondem: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificado do servidor VPN \"%s\" falhou na verificação.\n" "Motivo: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Digite \"%s\" para aceitar, \"%s\" para abortar ou qualquer outra coisa para " "visualizar: " #: main.c:1661 main.c:1679 msgid "no" msgstr "não" #: main.c:1661 main.c:1667 msgid "yes" msgstr "sim" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Hash da chave do servidor: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Escolha de autenticação \"%s\" corresponde a múltiplas opções\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Escolha de autenticação \"%s\" não disponível\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Entrada do usuário requisitada em modo não interativo\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falhou ao abrir arquivo de token para escrita: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Falhou ao escrever token: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "String de token de software é inválida\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Não foi possível abrir o arquivo ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect não foi compilado com suporte a libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Falha geral no libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect não foi compilado com suporte a libauth\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Falha geral no libauth\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey não encontrado\n" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect não foi compilado com suporte a Yubikey\n" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Falha geral no Yubikey: %s\n" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Chamador parou a conexão\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nenhum trabalho para fazer - dormindo por %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects falhou: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() falhou: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() falhou: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Erro na comunicação com auxiliar ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Tentando autenticação HTTP NTLM para o proxy (sigle-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Tentando autenticação HTTP NTLMv%d para o proxy\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "OK para gerar tokencode INITIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "OK para gerar tokencode NEXT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "O servidor está rejeitando o token de software - alternando para entrada " "manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Gerando código de token TOTP OATH\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Gerando código de token HOTP OATH\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERRO: %s() chamado com UTF-8 inválido para \"%s\" argumento\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falhou ao instalar certificado em contexto OpenSSL\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Falhou ao escrever para socket SSL\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Falhou ao escrever de socket SSL\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Erro de leitura SSL %d (servidor provavelmente fechou a conexão) - " "reconectando.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write falhou: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo de requisição de UI SSL não lidada %d\n" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Senha de PEM muito longa (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra de %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Análise de PKCS#12 falhou (veja os erros acima)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 continha nenhum certificado!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 continha nenhuma chave privada!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Não foi possível carregar mecanismo de TMP.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Falhou ao inicializar mecanismo de TMP\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Falhou ao definir senha de SRK TPM\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Falhou ao carregar chave privada de TPM\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Adição de chave de TPM falhou\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falhou ao abrir arquivo de certificado %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Carregamento de certificado falhou\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falhou ao processar todos os certificados suportados. Tentando mesmo " "assim...\n" #: openssl.c:710 msgid "PEM file" msgstr "Arquivo PEM" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falhou ao criar BIO para item da keystore \"%s\"\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Carregamento de chave privada falhou (frase secreta incorreta?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Carregamento de chave privada falhou (veja os erros acima)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falhou ao carregar certificado X509 da keystore\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Falhou ao usar certificado X509 da keystore\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Falhou ao usar chave privada da keystore\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falhou ao abrir arquivo de chave privada %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Carregamento de chaves privadas falhou\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Falhou ao identificar o tipo de chave privada em \"%s\"\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Correspondeu ao altname DNS de \"%s\"\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Não corresponder para altname de \"%s\"\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "O certificado tem um altname GEN_IPADD com tamanho falho %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Correspondeu o endereço %s a \"%s\"\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nenhuma correspondência para endereço %s de \"%s\"\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "A URI \"%s\" possui caminho não vazio - ignorando\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Correspondeu a URI \"%s\"\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Nenhuma correspondência com URI \"%s\"\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nenhum altname no certificado do par correspondeu \"%s\"\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Nenhum nome do sujeito no certificado do par!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Falhou ao analisar nome do sujeito no certificado do par\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Sujeito do certificado do par não confere (\"%s\" != \"%s\")\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Correspondeu ao nome do sujeito \"%s\" do certificado do par\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra do CAfile: \"%s\"\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Erro no campo notAfter do certificado do cliente\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falhou ao ler certificados do CAfile \"%s\"\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falhou ao abrir o CAfile \"%s\"\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Falha de conexão SSL\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descartar inclusão de split incorreta: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descartar exclusão de split incorreta: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falhou ao executar o script \"%s\" para %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "O script \"%s\" saiu anormalmente (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "O script \"%s\" retornou erro %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Conexão de socket cancelada\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Falhou ao reconectar ao proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Falhou ao reconectar ao host %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo falhou para o host \"%s\": %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Reconectando ao servidor DynDNS usando endereço IP anteriormente em cache\n" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Tentando conectar ao proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Tentando conectar ao servidor %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Falhou ao alocar armazenamento de sockaddr\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "Esquecendo de endereço de par anteriormente não funcional\n" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falhou ao conectar ao host %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Reconectando ao proxy %s\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "Não foi possível obter o ID de sistema de arquivos para palavra frase\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falhou ao abrir o arquivo de chaves privadas \"%s\": %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Nenhum erro" #: ssl.c:588 msgid "Keystore locked" msgstr "Keystore travada" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Keystore não inicializada" #: ssl.c:590 msgid "System error" msgstr "Erro de sistema" #: ssl.c:591 msgid "Protocol error" msgstr "Erro de protocolo" #: ssl.c:592 msgid "Permission denied" msgstr "Permissão negada" #: ssl.c:593 msgid "Key not found" msgstr "Chave não encontrada" #: ssl.c:594 msgid "Value corrupted" msgstr "Valor corrompido" #: ssl.c:595 msgid "Undefined action" msgstr "Ação não definida" #: ssl.c:599 msgid "Wrong password" msgstr "Senha incorreta" #: ssl.c:600 msgid "Unknown error" msgstr "Erro desconhecido" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() usado como modo sem suporte \"%s\"\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "O cookie não é mais válido, finalizando sessão\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormir por %ds, tempo limite restante %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI muito grande (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Enviando token SSPI de de %lu bytes\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falhou ao enviar um token de autenticação SSPI para o proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falhou ao receber um token de autenticação SSPI do proxy %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "O servidor SOCKS relatou uma falha de contexto SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de status SSPI (0x%02x) desconhecida do servidor SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obteve token SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() falhou: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() falhou: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() muito grande (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Enviando negociação de proteção SSPI de %u bytes\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falhou ao enviar resposta de proteção SSPI ao proxy %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falhou ao receber resposta de proteção SSPI do proxy %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Obteve resposta de proteção SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage falhou: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Resposta de proteção SSPI inválida do proxy (%lu bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Digite as credenciais para destravar o token de software." #: stoken.c:82 msgid "Device ID:" msgstr "ID de dispositivo:" #: stoken.c:89 msgid "Password:" msgstr "Senha:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "O usuário contornou o token de software.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Todos os campos são necessários - tente novamente.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Falha geral no libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ID ou senha incorretos para o dispositivo - tente novamente.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Inicialização do token de software concluiu com sucesso.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Insira o PIN do token." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Formato inválido de PIN - tente novamente.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Gerando código de token RSA\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Erro ao acessar chave de registro de adaptadores de rede\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorando interface TAP não correspondente \"%s\"\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Nenhum adaptador TAP do Windows encontrado. O driver está instalado?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Falha ao abrir %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Abriu dispositivo tun %s\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falhou ao obter versão do driver TAP: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Erro: Driver de TAP do Windows versão v9.9 ou mais recente é necessário " "(encontrou %ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falhou ao definir endereços IP TAP: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falhou ao definir status de mídia TAP: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Dispositivo TAP abortou conectividade. Desconectando.\n" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falhou ao ler do dispositivo TAP: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falhou ao completar leitura do dispositivo TAP: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escreveu %ld bytes para tun\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Esperando o tun escrever...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escreveu %ld bytes para tun após espera\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falhou ao escrever no dispositivo TAP: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Scripts de criação de túnel não têm suporte no Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Não foi possível abrir /dev/tun para canalização" #: tun.c:92 msgid "Can't push IP" msgstr "Não foi possível enviar IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Não foi possível configurar ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Não foi possível abrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Não foi possível canalizar %s para IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falhou ao criar novo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Falhou ao colocar descritor de arquivo tun no modo message-discard" #: tun.c:196 msgid "open net" msgstr "rede aberta" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falhou ao abrir dispositivo tun: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nome inválido de interface \"%s\"; deve corresponder a \"utun%%d\" ou \"tun" "%%d\"\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falhou ao abrir socket SYSPROTO_CONTROL: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falhou ao consultar id de controle utun: %s\n" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "Falhou ao alocar nome do dispositivo utun: %s\n" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falhou ao conectar a unidade utun: %s\n" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nome inválido de interface \"%s\" - deve corresponder a \"tun%%d\"\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Não foi possível abrir \"%s\": %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" # é uma função - socketpair() #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair falhou: %s\n" # é uma função - fork() #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "fork falhou: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pacote desconhecido (tamanho %d) recebido: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falhou ao escrever pacote de entrada: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falhou ao abrir %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falhou ao fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falhou ao alocar %d bytes para %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falhou ao ler %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Tratando o host \"%s\" como um hostname simples\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falha ao executar SHA1 em arquivo existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 de arquivo de configuração XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falha ao analisar arquivo de configuração XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "O host \"%s\" possui endereço \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "O host \"%s\" possui UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "O host \"%s\" não está listado na configuração - tratando-o como um hostname " "simples\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falhou ao enviar \"%s\" para miniaplicativo ykneo-oath: %s\n" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Reposta curta inválida para \"%s\" do miniaplicativo ykneo-oath\n" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falhou ao responder a \"%s\": %04x\n" #: yubikey.c:158 msgid "select applet command" msgstr "comando select applet" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta não reconhecida do miniaplicativo ykneo-oath\n" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrado miniaplicativo ykneo-oath v%d.%d.%d.\n" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "PIN necessário para o miniaplicativo Yubikey OATH" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falhou ao calcular resposta de destravamento de Yubikey\n" #: yubikey.c:256 msgid "unlock command" msgstr "comando unlock" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falhou ao estabelecer contexto PC/SC: %s\n" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "Contexto PC/SC estabelecido\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falhou ao consultar lista de leitores: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falhou ao conectar ao leitor PC/SC \"%s\": %s\n" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Conectado ao leitor PC/SC \"%s\"\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falhou ao obter acesso exclusivo para ler \"%s\": %s\n" #: yubikey.c:398 msgid "list keys command" msgstr "comando list keys" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada a chave de %s/%s \"%s\" em \"%s\"\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token \"%s\" não encontrado no Yubikey '%s'. Pesquisando por outro " "Yubikey...\n" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "O servidor está rejeitando o token Yubikey - alternando para entrada manual\n" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Gerando código de token Yubikey\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falhou ao obter acesso exclusivo ao Yubikey: %s\n" #: yubikey.c:600 msgid "calculate command" msgstr "comando calculate" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Resposta não reconhecida do Yubikey ao gerar código de token\n" openconnect-7.06/po/Makefile.in0000664000076400007640000003547012502026423013404 00000000000000# Makefile.in generated by automake 1.14.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2013 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = test -n '$(MAKEFILE_LIST)' && test -n '$(MAKELEVEL)' am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = po DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/Makefile.am ChangeLog ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac DATA = $(noinst_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DTLS_SSL_CFLAGS = @DTLS_SSL_CFLAGS@ DTLS_SSL_LIBS = @DTLS_SSL_LIBS@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_DTLS_PC = @SSL_DTLS_PC@ SSL_LIBS = @SSL_LIBS@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ MOFILES = $(LINGUAS:%=%.mo) POFILES = $(LINGUAS:%=%.po) noinst_DATA = $(MOFILES) SUFFIXES = .mo EXTRA_DIST = $(POFILES) LINGUAS DISTCLEANFILES = $(PACKAGE).pot all: all-am .SUFFIXES: .SUFFIXES: .mo .po $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign po/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign po/Makefile .PRECIOUS: Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool clean-local mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) install-data-hook install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) uninstall-hook .MAKE: install-am install-data-am install-strip uninstall-am .PHONY: all all-am check check-am clean clean-generic clean-libtool \ clean-local cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-data-hook install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-strip installcheck \ installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-hook .po.mo: rm -f && $(MSGFMT) -o $@ $< clean-local: rm -f $(MOFILES) install-data-hook: all linguas="$(LINGUAS)"; \ for l in $$linguas; do \ dir="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES"; \ $(mkdir_p) $$dir; \ echo Installing $$l.mo to $$dir/$(PACKAGE).mo ; \ $(INSTALL_DATA) $$l.mo $$dir/$(PACKAGE).mo; \ done uninstall-hook: linguas="$(LINGUAS)"; \ for l in $$linguas; do \ file="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES/$(PACKAGE).mo"; \ if [ -r "$$file" ]; then \ echo "Removing $$file"; rm -f "$$file"; \ fi ; \ done # $(PACKAGE).pot is built by a rule in the parent directory Makefile # This rule isn't needed but is here for convenience if manually invoked .PHONY: $(PACKAGE).pot $(PACKAGE).pot: $(MAKE) -C .. po/$@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-7.06/po/cs.po0000664000076400007640000030254212502026115012277 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # fri , 2011,2013 # fri , 2011 # fri , 2013 # fri , 2011-2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2014-02-21 01:11+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Czech (http://www.transifex.com/projects/p/meego/language/" "cs/)\n" "Language: cs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2;\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nepodařilo se zvládnout formulář metoda='%s', činnost='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Selhalo generování kódu OTP tokenu, deaktivuje se token\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Výběr formuláře nemá žádný název\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "název %s ne vstup\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Žádný typ vstupu ve formuláři\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Žádný název vstupu ve formuláři\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Neznámý typ vstupu %s ve formuláři\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Prázdná odpověď od serveru\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Nepodařilo se zpracovat odpověď serveru\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Odpověď byla:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Obdrženo přestože nebylo požadováno.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "Odpověď XML nemá žádný uzel \"auth\" \n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Žádáno heslo ale nastaveno '--no-passwd'\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Profil XML se nenahrává, protože SHA1 již souhlasí\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nepodařilo se otevřít spojení HTTPS s %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Selhalo odeslání požadavku GET pro novou konfiguraci\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Stažený soubor s nastavením neodpovídá zamýšlenému SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Nahrán nový profil XML\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Chyba: Běh „Cisco Secure Desktop“ ve Windows ještě není implementován.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Chyba: Server žádá o spuštění CSD hostscan.\n" "Musíte poskytnout odpovídající argument --csd-wrapper.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Chyba: Server nás požádal o stažení a spuštění trojana 'Cisco Secure " "Desktop'.\n" "tato dovednost je zakázána ve výchozím nastavení z důvodů bezpečnosti, takže " "ji možná budete chtít povolit.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Pokus o spuštění trojského skriptu CSD pro Linux.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Do dočasné složky „%s“ nelze zapsat: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nepodařilo se otevřít dočasný soubor se skriptem CSD: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nepodařilo se zapsat dočasný soubor se skriptem CSD: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Nepodařilo se nastavit uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Neplatné uživatelské uid %ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nepodařilo se provést změnu na domovský adresář CSD '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Varování: spouštíte nezabezpečený kód CSD s oprávněním správce systému\n" "\t Použít volbu pro příkazový řádek \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nepodařilo se spustit skript CSD %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Neznámá odpověď od serveru\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server požadoval certifikát SSL klienta poté co byl předložen\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server požadoval certifikát SSL klienta, žádný nebyl nastaven\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST povolen\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Obnova %s po 1 sekundě...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(chyba 0x%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Chyba při popisování chyby)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "CHYBA: Nelze inicializovat sokety\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITICKÁ CHYBA: Hlavní klíč DTLSDTLS je neinicializovaný. Nahlaste to " "prosím.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Chyba při vytváření požadavku HTTPS CONNECT\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Chyba při natahování odpovědi HTTPS\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Služba VPN nedostupná, důvod: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obdržena nevhodná odpověď SPOJENÍ HTTP: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obdržena odpověď SPOJENÍ : %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Žádná paměť pro volby\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Sezení-ID ne 64 znaků; je: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Neznámé kódování obsahu DTLS %s\n" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Neznámé kódování-obsahu-CSTP %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Nepřijato žádné MTU. Ruší se\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Nepřijata žádná adresa IP. Ruší se\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Konfigurace IPv6 byla získána, ale MTU %d je příliš malé.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Znovuzapojení dalo jinou adresu Legacy IP (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Znovuzapojení dalo jinou síťovou masku Legacy IP (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Znovuzapojení dalo jinou adresu IPv6 (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Znovuzapojení dalo jinou síťovou masku IPv6 (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP spojeno. DPD %d, (udržet naživu) Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Šifrování CSTP: %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Nastavení zabalení se nezdařilo\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Přidělení deflate vyrovnávací paměti se nezdařilo\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "nafouknutí se nepodařilo\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekomprimace LZS selhala: %s\n" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Přijat komprimovaný paket dat %s, %d bajtů (bylo %d)\n" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate se nezdařilo %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "Přidělení paměti selhalo\n" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Přijat krátký paket (%d bajtů)\n" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Neočekávaná délka paketu. SSL_čtení vrátilo %d ale paket je\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Obdržen požadavek CSTP DPD\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Obdržena odpověď CSTP DPD\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Obdrženo CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Přijat nezabalený paket dat %d bytů\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Přijato odpojení serveru: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Přijat zabalený paket v režimu !deflate\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "Přijat paket pro ukončení serveru\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Neznámý paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL napsalo příliš mnoho bytů! Požádáno o %d, posláno %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Naplánování znovuzanesení CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Opětovné navázání selhalo, pokus o new-tunnel\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP odhalování mrtvého protějšku zjistilo mrtvý protějšek!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Znovupřipojení se nezdařilo\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Poslat CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Poslat CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Posílá se nezabalený paket dat %d bytů\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslat BYE paket: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou Digest\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Inicializace DTLSv1 sezení se nepodařila\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inicializace DTLSv1 CTX se nepodařila\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Nastavení seznamu šifrování DTLS se nezdařilo\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Ne přesně jedno šifrování DTLS\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() selhalo se starou verzí protokolu 0x%x\n" "Používáte verzi OpenSSL starší než 0.9.8m?\n" "Podívejte se na http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Použijte volbu pro příkazový řádek --no-dtls pro vyhnutí se této zprávě\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS spojení sestaveno (použito OpenSSL). Šifrování: %s\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Vaše OpenSSL je starší než to, které jste sestavil, takže DTLS může selhat!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Podání ruky DTLS překročilo čas\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Důvodem je pravděpodobně počkození vašeho OpenSSL\n" "Viz http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Podání ruky DTLS se nezdařilo: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Neznámé parametry DTLS pro požadované CipherSuite „%s“\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nezdařilo se nastavit DTLS prioritu: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nezdařilo se nastavení parametrů DTLS relace: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nezdařilo se nastavit DTLS MTU: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS spojení sestaveno (použito GnuTLS). Šifrování: %s\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Navázání DTLS se nezdařilo: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Firewall vám nedovoluje odesílání paketů UDP?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "Pokus o DTLS připojení s existujícím fd\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Žádná adresa DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server nenabídl žádnou volbu pro zašifrování DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Žádné DTLS, když spojeno přes proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Volba DTLS %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializováno. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Pokus o nové spojení DTLS\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Přijat DTLS paket 0x%02x %dd bytů\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Obdržen požadavek DTLS DPD\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nepodařilo se poslat odpověď DPD. Očekává se odpojení\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Obdržena odpověď DTLS DPD\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Obdrženo DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Přijat komprimovaný DTLS paket, přičemž komprese nebyla povolena\n" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Neznámý typ paketu DTLS %02x, len %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Naplánování znovuzanesení CSTP\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Opětovné navázání DTLS selhalo, připojuje se znovu.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS odhalování mrtvého protějšku zjistilo mrtvý protějšek!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Poslat DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nepodařilo se poslat požadavek DPD. Očekává se odpojení\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Poslat DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Nepodařilo se poslat požadavek na zachování spojení. Očekává se odpojení\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS dostalo chybu v zápisu %d. Ustupuje se k SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obdrželo chybu v zápisu: %s. Vrací se k SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Odesláno %d bytů v paketu DTLS ; odeslání DTLS vrátilo %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Zápis SSL zrušen\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nepodařilo se zapsat do soketu SSL: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Čtení SSL zrušeno\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "Soket SSL nebyl čistě uzavřen\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nepodařilo se číst ze soketu SSL: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Chyba čtení přes SSL: %s; znovu se připojuje.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Chyba odesílání přes SSL: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Nelze získat dobu vypršení certifikátu\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Osvědčení klienta vypršelo v" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Osvědčení klienta brzy vyprší v" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Selhalo načtení položky „%s“ z úložiště klíčů: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nepodařilo se otevřít soubor klíče/certifikátu %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Nepodařilo se zjistit informace o souboru s klíčem/certifikátem %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Nepodařilo se alokovat paměť pro certifikát\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Selhalo načtení certifikátu do paměti: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Selhalo nastavení datové struktury PKCS#12: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Selhalo dešifrování PKCS#12 souboru certifikátu\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Vložte heslo k PKCS#12:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Selhalo zpracování PKCS#12 souboru: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Selhalo nahrání PKCS#12 certifikátu : %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Selhal import X509 certifikátu: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nastavení PKCS#11 certifikátu selhalo: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nelze inicializovat haš MD5: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Chyba haše MD5: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Chybějící DEK-Info: hlavička zašifrovaného klíče OpenSSL\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Nelze určit způsob šifrování PEM\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepovolený způsob šifrování PEM: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neplatná sůl v šifrovaném souboru PEM\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Chyba base64 dekódování šifrovaného PEM souboru: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Šifrovaný PEM soubor je příliš krátký\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Selhala inicializace šifry pro dešifrování souboru PEM: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Selhalo dešifrování PEM klíče: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Selhalo dešifrování PEM klíče\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Vložte heslo k PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Program byl sestaven bez podpory systémového klíče\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Program byl sestaven bez podpory PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Používá se PKCS#11 certifikát %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Používá se systémový certifikát %s\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Chyba nahrání certifikátu z PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Chyba nahrání systémového certifikátu: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Používá se soubor s osvědčením %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "Soubor PKCS#11 neobsahoval certifikát\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "V souboru nebyl nalezen žádný certifikát" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nahrání certifikátu selhalo: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Používá se systémový klíč %s\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Chyba inicializace struktury soukromého klíče: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Chyba importu systémového klíče %s: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Zkouší se adresa URL klíče PKCS#11 %s\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Chyba inicializace PKCS#11 struktury klíče: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Chyba importu PKCS#11 URL %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Používá se PKCS#11 klíč %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Chyba importu PKCS#11 klíče do struktury soukromého klíče: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Používá se soubor soukromý klíč %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory pro TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Selhala interpretace PEM souboru\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Selhalo nahrání PKCS#1 soukromého klíče: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Selhalo nahrání soukromého klíče jako PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Selhalo dešifrování PKCS#8 souboru certifikátu\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Selhalo zjištění typu soukromého klíče %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nezdařilo se získání ID klíče: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Chyba podpisu testovacích dat soukromým klíčem: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Chyba ověření podpisu proti certifikátu: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Nebyl nalezen žádný SSL certifikát odpovídající soukromému klíči\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Používá se certifikát klienta „%s“\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Nastavení seznamu odvolaných certifikátů selhalo: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Nepodařilo se přidělit paměť pro certifikát\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "POZOR: GnuTLS vrátilo nekorektní ceritifkáty vydavatele; autentizace může " "selhat!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Získána další CA „%s“ z PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Selhala alokace paměti pro podpůrné certifikáty\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Přidává se podpůrná CA „%s“\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nastavení certifikátu selhalo: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server nepředložil žádný certifikát\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Chyba inicializace X509 struktury certifikátu\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Chyba při importu certifikátu serveru\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Nelze vypočítat haš certifikátu serveru\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Chyba kontroly stavu certifikátu serveru\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "odvolaný certifikát" #: gnutls.c:1970 msgid "signer not found" msgstr "podepisující nenalezen" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "podepisující není certifikát CA" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "ned;věryhodný algoritmus" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certifikát ještě nebyl aktivován" #: gnutls.c:1978 msgid "certificate expired" msgstr "platnost certifikátu vypršela" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "selhalo ověření podpisu" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "Osvědčení neodpovídá názvu hostitele" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" "Ověření osvědčení serveru se nezdařilo: %s\n" "\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Selhala alokace paměti pro cafile certifikáty\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Selhalo čtení certifikátů ze souboru ca: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nepodařilo se otevřít soubor CA '%s': %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Nahrání osvědčení se nezdařilo. Ruší se.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Selhalo nastavení řetězce TLS priority: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Jednání SSL s %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Spojení SSL bylo zrušeno\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Selhání spojení SSL: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS skončilo nekritickou chybou při navazování spojení: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Spojeno s HTTPS na %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Opětovné navázání SSL na %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Požadován PIN pro %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Nesprávný PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Toto je poslední pokus před uzamčením!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Do uzamčení zbývá pouze několik pokusů!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Zadat PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Selhal výpočet SHA1 pro podpis vstupních dat: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Podpisová funkce TPM požadovala %d bajtů.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Selhalo vytvoření objektu haše TMP: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Selhalo nastavení hodnoty v objektu haše TMP: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Podpisový haš TPM selhal: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Chyba při dekódování binárních data klíče TSS: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Chyba v binárních datech klíče TSS\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Vytvoření kontextu TPM selhalo: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Připojení kontextu TPM selhalo: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nahrání TPM SRK klíče selhalo:%s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Selhalo nahrání objektu politiky TPM SRK: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nastavení TPM PIN kódu selhalo: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Selhalo načtení binárních dat klíče TPM: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Zadejte TPM SRK PIN:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Selhalo vytvoření objektu se zásadami pro klíč: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Selhalo přiřazení politiky klíči: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Zadat PIN TPM klíče: " #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nastavení PIN klíče selhalo: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Chyba importu jména GSSAPI pro ověření:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Chyba generování odpovědi GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou GSSAPI\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Ověření GSSAPI dokončeno\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Příliš dlouhý token GSSAPI (%zd bajtů)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Odesílá se %zu bajtů tokenu GSSAPI\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Selhalo odeslání autentizačního tokenu GSSAPI na proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Selhalo získání autentizačního tokenu GSSAPI z proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Server SOCKS ohlásil selhání kontextu GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Neznámý stavový kód GSSAPI odpovědi (0x%02x) od serveru SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Získán token GSSAPI, %zu bajtů: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Posílá se vyjednání ochrany GSSAPI %zu bajtů\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Selhalo poslání odpovědi na ochranu GSSAPI k proxy: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Selhalo získání odpovědi GSSAPI ochrany z proxy: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Získána odpověd GSSAPI ochrany %zu bajtů: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Neplatná odpověď GSSAPI ochrany z proxy (%zu bajtů)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Prosy SOCKS požaduje integritu zprávy, která není podporována\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proxy SOCKS požaduje důvěrnost zprávy, která není podporována\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proxy SOCKS požaduje neznámý typ ochrany 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou HTTP Basic\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy vyžaduje ověření Basic, které je ale ve výchozím nastavení zakázáno\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Žádná další ověřovací metoda k vyzkoušení\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Žádná paměť pro přidělení sušenek\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nepodařilo se zpracovat odpověď HTTP '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obdržena odpověď HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Chyba při zpracovávaní odpovědi HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Přehlíží se odpověď neznámého HTTP, řádek '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Nabídnuta neplatná sušenka: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Ověření osvědčení SSL se nezdařilo\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Tělo odpovědi má zápornou velikost (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Neznámé kódování-přenosu: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Tělo HTTP %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Chyba při čtení těla odpovědi HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Chyba při natahování hlavičky kusu\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Chyba při natahování těla odpovědi HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Chyba rozkouskovaném dekódování. Očekáváno '', obdrženo: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Tělo HTTP 1.0 nelze přijmout bez zavření spojení\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nepodařilo se zpracovat přesměrovanou adresu (URL) '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Nelze následovat přesměrování na non-https URL '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Přidělení nové cesty pro relativní přesměrování se nezdařilo: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekávaný výsledek %d od serveru\n" #: http.c:1056 msgid "request granted" msgstr "Požadavek schválen" #: http.c:1057 msgid "general failure" msgstr "Obecné selhání" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "Spojení podle souboru pravidel nepovoleno" #: http.c:1059 msgid "network unreachable" msgstr "Síť nedosažitelná" #: http.c:1060 msgid "host unreachable" msgstr "Hostitel nedosažitelný" #: http.c:1061 msgid "connection refused by destination host" msgstr "Spojení cílovým hostitelem odmítnuto" #: http.c:1062 msgid "TTL expired" msgstr "TTL vypršel" #: http.c:1063 msgid "command not supported / protocol error" msgstr "Příkaz nepodporován/chyba protokolu" #: http.c:1064 msgid "address type not supported" msgstr "Typ adresy nepodporován" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "Server SOCKS požadoval uživatelské jméno/heslo, ale žádné není k dispozici\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Uživatelské jméno/heslo pro ověření SOCKS musí být < 255 bajtů\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Chyba při zápisu požadavku na ověření do proxy SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Chyba při čtení odpovědi týkající se ověřen z proxy SOCKS: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Neočekávaná odpověď týkající se ověřen z proxy SOCKS: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Ověřeno vůči serveru SOCKS s použitím hesla\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Ověření vůči serveru SOCKS pomocí hesla selhalo\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Server SOCSKS požadoval ověření GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "Server SOCKS požadoval ověření heslem\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "Server SOCKS požaduje ověření\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Server SOCKS požadoval neznámý typ ověření %02x\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Požadavek na spojení proxy SOCKS do %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Chyba při zápisu odpovědi spojení do proxy SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Chyba při čtení odpovědi spojení z proxy SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekávaná odpověď spojení z proxy SOCKS: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Chyba proxy SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Chyba proxy SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekávaný typ adresy %02x v odpovědi spojení SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Požadavek na spojení proxy HTTP do %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Poslání požadavku na proxy se nezdařilo: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Požadavek na SPOJENÍ proxy se nezdařil: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Neznámý typ proxy '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Podporovány pouze proxy HTTP nebo socks(5)\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Přeloženo s knihovnou SSL bez podpory Cisco DTLS\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nepodařilo se zpracovat URL serveru '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Pro URL serveru je povoleno pouze https://\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Není čím zpracovat formulář; nelze autentizovat.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Volání CommandLineToArgvW() selhalo: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kritická chyba při zpracování příkazové řádky\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Selhala funkce ReadConsole(): %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Chyba konverze vstupu konzole: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Nezdařila se alokace řetězce ze standardního vstupu\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pro pomoc s OpenConnect se prosím obraťte na webové stránky\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Používá se OpenSSSL. Dostupné vlastnosti:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Používá se GnuTLS. Dostupné vlastnosti:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL není k dispozici" #: main.c:613 msgid "using OpenSSL" msgstr "používá se OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "POZOR: program neobsauje podporu DTLS. Výkon bude snížen.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nelze zpracovat tuto cestu „%s“ ke spustitelným souborům" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokace cesty pro vpnc-script selhala\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Použití: openconnect [volby] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Otevřít klienta pro Cisco AnyConnect VPN, verze %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Načíst volby z konfiguračního souboru" #: main.c:710 msgid "Continue in background after startup" msgstr "Pokračovat po spuštění na pozadí" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Zapsat PID služby do tohoto souboru" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Použít certifikát klienta SSL CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Varovat, když je život certifikátu < DNY" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Použít soubor KEY se soukromým klíčem SSL" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Použít WebVPN cookie COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Číst cookie ze standardního vstupu" #: main.c:718 msgid "Enable compression (default)" msgstr "Povolit kompresi (výchozí)" #: main.c:719 msgid "Disable compression" msgstr "Zakázat kompresi" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Nastavit nejmenší interval Dead Peer Detection" #: main.c:721 msgid "Set login usergroup" msgstr "Nastavit uživatelskou skupinu přihlášení" #: main.c:722 msgid "Display help text" msgstr "Zobrazit text s nápovědou" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Použít IFNAME jako rozhraní tunelu" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Použít syslog pro záznam zpráv o průběhu" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Předřadit časové razítko ke zprávě o průběhu" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Po připojení zahodit oprávnění" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Zahodit oprávnění při spuštění CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Spusit SCRIPT místo programu CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Vyžádat MTU od serveru" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Zjistit MTU cesty na/z serveru" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nastavit heslovou frázi pro klíč nebo PIN pro TPM SRK" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Heslovou frází klíče je FSID souborového systému" #: main.c:737 msgid "Set proxy server" msgstr "Nastavit proxy server" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Nastavit ověřovací metodu proxy" #: main.c:739 msgid "Disable proxy" msgstr "Zakázat proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Použít libproxy pro automatickou konfiguraci proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "POZNÁMKA: libproxy je v tomto sestavení zakázáno)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Vyžaduje se perfect forward secrecy" #: main.c:745 msgid "Less output" msgstr "Stručnější výstup" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Nastavit limit fronty paketů na LEN paketů" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Příkazová řádka pro použití konfiguračního skriptu kompatibilního s vpnc" #: main.c:748 msgid "default" msgstr "výchozí" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Posílat provoz do 'skriptu', ne rozhraní tun" #: main.c:752 msgid "Set login username" msgstr "Nastavit přihlašovací uživatelské jméno" #: main.c:753 msgid "Report version number" msgstr "Nahlásit číslo verze" #: main.c:754 msgid "More output" msgstr "Podrobnější výstup" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Uložit autentizační provoz HTTP (vyplývá z --verbose" #: main.c:756 msgid "XML config file" msgstr "Soubor nastavení XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "Vybrat autentizační skupinu" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Pouze autentizovat a vypsat informace o přihlášení" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Pouze získat webvpn cookie, nepřipojovat" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Před připojením vypsat webvpn cookie" #: main.c:761 msgid "Cert file for server verification" msgstr "Soubor s certifikátem pro ověření serveru" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Nedotazovat se na IPv6 konektivitu" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Algoritmy OpenSSL podporované pro DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Zakázat DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Vypnout přepoužití HTTP spojení" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Zakázat ověření heslem/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Nepožadovat, aby byl certifikát SSL serveru platný" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "Zakázat výchozí systémové certifikační autority" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Nepokoušet se o autentizaci XML POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Nečekat uživatelský vstup, ukončit pokud je požadováno" #: main.c:771 msgid "Read password from standard input" msgstr "Číst heslo ze standardního vstupu" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Typ softwarového tokenu: rsa, totp nebo hotp" #: main.c:773 msgid "Software token secret" msgstr "Heslo softwarového tokenu" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(POZNÁMKA: knihovna libstoken (RSA SecurID) je v tomto sestavení vypnuta)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(POZNÁMKA: podpora Yubikey OATH je pro toto sestavení vypnuta)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Časový limit v sekundách pro opakování připojení" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 miniatura certifikátu serveru" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Pole User-Agent: HTTP hlavičky" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Typ OS (linux, linux-64, mac, win, …) k nahlášení" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Nastavit místní port pro datagramy DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Nepodařilo se alokovat řetězec\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Selhalo čtení řádky z konfiguračního souboru: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nerozpoznaná volba na řádku %d: „%s“\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Volba „%s“ nemůže mít argument na řádku %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Volba '%s' vyžaduje argument na řádce %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "POZOR: Tato verze openconnect byla sestavena bez podpory\n" " iconv. Vypadá to, že používáte zastaralou znakovou sadu\n" " „%s“. Je třeba očekávat neobvyklé chování.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "POZOR: openconnect je ve verzi %s,\n" "ale verze knihovny libopenconnect je %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nepodařilo se alokovat strukturu vpninfo\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Neplatný uživatel \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "V konfiguračním souboru nelze použít volbu 'config'\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nelze otevřít konfigurační soubor '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d je příliš malé\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Vypíná se přepoužití všech HTTP spojení kvůli předvolbě --no-http-" "keepalive.\n" "Pokud to pomůže, pošlete hlášení na adresu .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulová délka fronty není povolena; použije se 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verze%s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neplatný režim softwarového tokenu „%s“\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Neplatná identita OS \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Příliš mnoho argumentů v příkazové řádce\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nebyl zadán žádný server\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Tato verze openconnect byla sestavena bez podpory pro libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Chyba otevření příkazové roury\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nezdařilo se získat cookie WebVPN\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nepodařilo se vytvořit spojení SSL\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Selhalo nastavení skriptu tun\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Selhalo nastavení zařízení tun\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Nastavení DTLS selhalo; bude použito SSL\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Neposkytnut žádný argument --script; DNS a nasměrování nenastaveno\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Více na http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nepodařilo se otevřít '%s' pro zápis: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Pokračuje se na pozadí; PID %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Uživatel požadoval opětovné připojení\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie byla odmítnuta při opětovném připojení, končí se.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Sezení bylo uzavřeno serverem; končí se.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Přerušeno uživatelem (SIGINT); končí se.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Uživatel se odpojil od sezení (SIGHUP); končí se.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Neznámá chyba; končí se.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nepodařilo se otevřít %s pro zápis: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nepodařilo se zapsat nastavení do %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Osvědčení SSL serveru neodpovídá: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Pro osvědčení od serveru VPN \"%s\" se nepodařilo provést ověření.\n" "Důvod: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Zadejte „%s“ pro přijetí, „%s“ pro zrušení; cokoliv jiného k zobrazení:" #: main.c:1661 main.c:1679 msgid "no" msgstr "Ne" #: main.c:1661 main.c:1667 msgid "yes" msgstr "Ano" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Haš serverového klíče: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Výběr ověření „%s“ odpovídá více volbám\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Výběr ověření \"%s\" nedostupný\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Vyžadován uživatelský vstup v neinteraktivním režimu\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Selhalo otevření souboru tokenu pro zápis: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Selhal zápis tokenu: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Řetězec softwarového tokenu není platný\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nelze otevřít soubor ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nebyl sestaven s podporou libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Obecné selhání v knihovně libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nebyl sestaven s podporou liboath\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Obecné selhání v knihovně liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey nebyl nalezen\n" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect nebyl sestaven s podporou Yubikey\n" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Obecné selhání Yubikey: %s\n" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Protistrana pozastavila připojení\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Žádná práce k udělání; spánek po %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Funkce WaitForMultipleObjects selhala: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Volání InitializeSecurityContext() selhalo: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Volání AcquireCredentialsHandle() selhalo: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Chyba při komunikaci s pomocným modulem ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Probíhá pokus o ověření HTTP NTLM k proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Probíhá pokus o ověření HTTP NTLMv%d k proxy\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Kód tokenu INITAL v pořádku vygenerován\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Kód tokenu NEXT v pořádku vygenerován\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server odmítá softwarový token; přepíná se na ruční vstup\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generuje se kód tokenu OATH TOTP\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Generuje se kód tokenu OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "CHYBA:%s() voláno s neplatným UTF-8 u argumentu „%s“\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Vytvoření kontextu libp11 PKCS#11 selhalo:\n" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "Selhalo načtení modulu PKCS#11 poskytovatele (p11-kit-proxy.so):\n" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "PIN uzamčen\n" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "PIN vypršel\n" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "Už je přihlášen jiný uživatel\n" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Neznámá chyba při přihlašování k tokenu PKCS#11\n" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Přihlášen ke slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Selhal výčet certifikátů ve slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nalezeno %d certifikátů ve slotu „%s“\n" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nepodařilo se analyzovat adresu URI PKCS#11 „%s“\n" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Selhal výčet slotů PKCS#11\n" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Přihlašuje se ke slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Obsah X.509 certifikátu nebyl knihovnou libp11 získán\n" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Selhala instalace certifikátu v kontextu OpenSSL\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Selhal výčet klíčů ve slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nalezeno %d klíčů ve slotu „%s“\n" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Selhalo vytvoření instance soukromého klíče z PKCS#11\n" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "Přidání klíče z PKCS#11 se nepodařilo\n" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory PKCS#11\n" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Selhal zápis do soketu SSL\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Selhalo čtení ze soketu SSL\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Chyba při čtení SSL %d (server pravděpodobně zavřel spojení); Obnovuje se " "spojení.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_zápis se nezdařil: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Neobsloužený požadavek SSL UI typu %d\n" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Heslo PEM je příliš dlouhé (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Zvláštní osvědčení od %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Zpracování PKCS#12 se nezdařilo (podívejte se na chyby výše)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 neobsahoval žádné osvědčení!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 neobsahoval žádný soukromý klíč!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Nelze nahrát stroj TPM.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Nepodařilo se zapnout stroj TPM\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Nepodařilo se nastavit heslo TPM SRK \n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Nepodařilo se nahrát soukromý klíč TPM\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Přidání klíče z TPM se nepodařilo\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nepodařilo se otevřít soubor s osvědčením %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Nahrání osvědčení se nezdařilo\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Selhalo zpracování všech podpůrných certifikátů. Přesto se pokračuje…\n" #: openssl.c:710 msgid "PEM file" msgstr "Soubor PEM" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Selhlalo vytvoření BIO pro položku „%s“ v úložišti klíčů\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nahrání soukromého klíče se nezdařilo (chybné heslo?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Nahrání soukromého klíče se nezdařilo (podívejte se na chyby výše)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Selhalo nahrání X509 certifikátu z úložiště klíčů\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Selhalo použití X509 certifikátu z úložiště klíčů\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Selhalo použití soukromého klíče z úložiště klíčů\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nepodařilo se otevřít soubor soukromý klíč %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Nahrávání soukromého klíče selhalo\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nepodařilo se rozpoznat typ soukromého klíče v '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Shodující se DNS alternativní název '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Žádná shoda pro alternativní název '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Osvědčení má GEN_IPADD alternativní název se špatnou délkou %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Shodující se adresa %s '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Žádná shoda pro adresu %s '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' má neprázdnou cestu; přehlíží se\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Shodující se URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Žádná shoda pro URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Žádný odpovídající alternativní název v osvědčení protějšku '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Žádný název předmětu v osvědčení protějšku!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Nepodařilo se zpracovat název předmětu v osvědčení protějšku\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Neshoda v předmětu osvědčení protějšku ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odpovídající název předmětu osvědčení protějšku '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Zvláštní osvědčení od cafile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Chyba v poli notAfter osvědčení klienta\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Selhalo čtení certifikátů z CA souboru „%s“\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nepodařilo se otevřít soubor CA '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Selhání spojení SSL\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Zahodit špatné zahrnutí rozdělení: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Zahodit špatné vyloučení rozdělení: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Selhalo vytvoření skriptu „%s“ pro %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript „%s“ skončil neúspěšně (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript „%s“ vrátil chybu %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Připojení zásuvky bylo zrušeno\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Nepodařilo se znovu spojit s proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Nepodařilo se znovu spojit s hostitelem %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy z libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo selhalo pro hostitele '%s': %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Opětovné připojení k DynDNS serveru s použitím IP adresy z mezipaměti\n" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokus o připojení k proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokus o připojení k serveru %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Nepodařilo se přidělit skladiště sockaddr\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "Zapomíná se nefunkční adresa předchozího protějšku\n" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nepodařilo se spojit se s hostitelem %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Opětovné připojení k proxy %s\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "K heslu nebylo možné získat ID souborového systému\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Selhalo otevření souboru se soukromým klíčem „%s“: %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Žádná chyba" #: ssl.c:588 msgid "Keystore locked" msgstr "Úložiště klíčů uzamčeno" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Neinicializované úložiště klíčů" #: ssl.c:590 msgid "System error" msgstr "Systémová chyba" #: ssl.c:591 msgid "Protocol error" msgstr "Chyba protokolu" #: ssl.c:592 msgid "Permission denied" msgstr "Přístup odepřen" #: ssl.c:593 msgid "Key not found" msgstr "Klíč nebyl nalezen" #: ssl.c:594 msgid "Value corrupted" msgstr "Porušená hodnota" #: ssl.c:595 msgid "Undefined action" msgstr "Nedefinovaná akce" #: ssl.c:599 msgid "Wrong password" msgstr "Chybné heslo" #: ssl.c:600 msgid "Unknown error" msgstr "Neznámá chyba" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() použit s nepodporovaným režimem „%s“\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Doba platnosti cookie vypršela, sezení se ukončuje\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spánek %ds, zbývající oddechový čas %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI je příliš dlouhý (%ld bajtů)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Odesílá se token SSPI délky %lu bajtů\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Selhalo odeslání ověřovacího tokenu SSPI na proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Selhalo získání ověřovacího tokenu SSPI od proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "Server SOCKS ohlásil selhání kontextu SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Neznámý stavový kód odpovědi SSPI (0x%02x) od serveru SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Získán token SSPI délky %lu bajtů: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Volání QueryContextAttributes() selhalo: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Volání EncryptMessage() selhalo: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Výsledek volání EncryptMessage() je příliš dlouhý (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Posílá se vyjednání ochrany SSPI v délce %u bajtů\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Selhalo odeslání odpovědi ochrany SSPI na proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Selhalo získání odpovědi ochrany SSPI z proxy: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Získána odpověď ochrany SSPI v délce %d bajtů: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Volání DecryptMessage() selhalo: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neplatná odpověď ochrany SSPI od proxy (%lu bajtů)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Zadejte přihlašovací údaje pro odemčení softwarového tokenu." #: stoken.c:82 msgid "Device ID:" msgstr "ID zařízení:" #: stoken.c:89 msgid "Password:" msgstr "Heslo:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Uživatel obešel softwarový token.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Všechna pole jsou povinná, zkusit znovu.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Obecné selhání v knihovně libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Chybné ID zařízení nebo heslo, zkustit znovu.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Inicializace softwarového tokenu byla úspěšná.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Zadejte PIN softwarového tokenu." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Neplatný formát PIN kódu, zkuste to znovu.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generuje se kód tokenu RSA\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Chyba přístupu ke klíči registru pro síťové adaptéry\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Neodpovídající rozhraní TAP „%s“ je ignorováno\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Žádné adaptéry Windows-TAP nebyly nalezeny. Je nainstalován ovladač?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Nepodařilo se otevřít %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Otevřeno zařízení tun %s\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nepodařilo se získat verzi ovladače TAP: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: je požadován ovladač TAP-Windows ve verzi 9.9 nebo vyšší (nalezen %ld." "%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Selhalo nastavení IP adresy TAP: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Selhalo nastavení stavu média TAP: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Zařízení TAP přerušilo spojení. Odpojuje se.\n" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nepodařilo se číst ze zařízení TAP: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Úplně selhalo čtení z TAP zařízení: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Do tun zapsáno %ld bytů\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Čeká se na zápis do tun…\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Po čekání zapsáno %ld bytů do tun\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nepodařilo se zapsat do zařízení TAP: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Spouštění tunelovacích skriptů není na Windows zatím podporováno\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nelze otevřít /dev/tun pro tunelování" #: tun.c:92 msgid "Can't push IP" msgstr "Nelze protlačit IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nelze nastavit název rozhraní" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nelze otevřít %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nelze propojit %s pro IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "Otevřít /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nepodařilo se vytvořit nové tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Selhalo přepnutí popisovače souboru pro tun do režimu message-discard" #: tun.c:196 msgid "open net" msgstr "Otevřít síť" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nepodařilo se otevřít zařízení tun: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nepatný název rozhraní „%s“; musí být ve tvaru „utun%%d“ nebo „tun%%d“\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Selhalo otevření soketu SYSPROTO_CONTROL: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Selhal dotaz na utun control_id: %s\n" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "Nepodařilo se alokovat název zařízení utun\n" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Selhalo připojení jednotky utun: %s\n" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nepatný název rozhraní '%s'; musí odpovídat tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nemohu otevřít %s: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "spárování soketů selhal: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "rozvětvení selhalo: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(skript)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Přijat neznámý paket (len %d): %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Selhal zápis příchozího paketu: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Selhalo otevření %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Selhalo volání fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Selhala alokace %d bajtů pro %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Selhalo čtení %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Brát \"%s\" jako surové jméno hosta\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Selhal výpočet SHA1 stávajícího souboru\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Soubor s nastavením XML SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Selhalo zpracování konfiguračního souboru %s ve formátu XML\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Počítač \"%s\" má adresu \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Počítač \"%s\" má UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" není uveden v konfiguraci, brát jako surové jméno hosta\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nepodařilo se odeslat „%s“ do apletu ykneo-oath: %s\n" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neplatná krátká odpověď na „%s“ od apletu ykneo-oath\n" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Selhala odpověď „%s“: %04x\n" #: yubikey.c:158 msgid "select applet command" msgstr "příkaz volby apletu" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nerozpoznaná odpověď od apletu ykneo-oath\n" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Nalezen aplet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "Aplet Yubikey OATH vyžaduje PIN" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nepodařilo se vypočítat odemykací odpověď Yubikey\n" #: yubikey.c:256 msgid "unlock command" msgstr "příkaz odemčení" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Vytvoření kontextu PC/SC selhalo: %s\n" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "Vytvořen kontext PCS/SC\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Selhal dotaz do seznamu čteček: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Selhalo připojení k čtečce PC/SC „%s“: %s\n" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Připojena čtečka PC/SC „%s“\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Selhal pokus o získání výhradního přístupu ke čtečce „%s“: %s\n" #: yubikey.c:398 msgid "list keys command" msgstr "příkaz seznamu klíčů" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nalezeno %s/%s klíčů „%s“ v „%s“\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token „%s“ nebyl na Yubikey „%s“ nalezen. Hledá se jiný Yubikey…\n" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odmítá token Yubikey; přepíná se na ruční vstup\n" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Generuje se kód tokenu Yubikey\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Selhal pokus o získání výhradního přístupu k Yubikey: %s\n" #: yubikey.c:600 msgid "calculate command" msgstr "příkaz výpočtu" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nerozpoznaná odpověď od Yubikey při generování kódu tokenu\n" openconnect-7.06/po/sr.po0000664000076400007640000035406112502026115012321 00000000000000# Language network-manager-openconnect-master translations for F package. # Copyright (C) 2011 THE F'S COPYRIGHT HOLDER # This file is distributed under the same license as the F package. # Мирослав Николић , 2011. msgid "" msgstr "" "Project-Id-Version: F 677-CF0E\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-05-15 20:01+0200\n" "Last-Translator: Мирослав Николић \n" "Language-Team: Serbian \n" "Language: Serbian (sr)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Virtaal 0.5.2\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Не могу да радим са начином=„%s“ обрасца, радња=„%s“\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Нисам успео да створим ОТП код модула; искључујем модул\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Избор обрасца нема назив\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "назив „%s“ није улаз\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Нема врсте улаза за образац\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Нема назива улаза у обрасцу\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Непозната врста улаза „%s“ у обрасцу\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Празан одговор са сервера\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Нисам успео да обрадим одговор сервера\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Одговор је био:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Примих <захтев-уверења-клијента> када није очекиван.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "ИксМЛ одговор нема чвор „auth“\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Затражена ми је лозинка али је постављено „--no-passwd“\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Не преузимам ИксМЛ профил јер СХА1 већ одговара\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Нисам успео да отворим ХТТПС везу са „%s“\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Нисам успео да пошаљем „GET“ захтев за ново подешавање\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Преузета датотека подешавања не одговара жељеном СХА1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Преузет је нови ИкМЛ профил\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Грешка: Покретање тројанца „Циско безбедне радне површи“ на Виндоузу још " "није примењено.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Грешка: Сервер је затражио да покренемо ЦСД преглед домаћина.\n" "Морате да обезбедите одговарајући „--csd-wrapper“ аргумент.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Грешка: Сервер је затражио да преузмемо и покренемо тројанца „Циско безбедне " "радне површи“.\n" "Ова околност је искључена по основи из безбедносних разлога, тако да бисте " "можда желели да је укључите.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Покушавам да покренем скрипту Линуксовог ЦСД тројанца.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Привремени директоријум „%s“ није уписив: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Нисам успео да отворим привремену датотеку ЦСД скрипте: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Нисам успео да запишем привремену датотеку ЦСД скрипте: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Нисам успео да подесим јиб %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Неисправан кориснички јиб=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Нисам успео да пређем у лични ЦСД директоријум „%s“: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Упозорење: покренули сте небезбедни ЦСД код са администраторским " "овлашћењима\n" "\t Користите опцију „--csd-user“\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Нисам успео да извршим ЦСД скрипту „%s“\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Непознат одговор са сервера\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Сервер је затражио уверење ССЛ клијента након што је достављено једно\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Сервер је затражио уверење ССЛ клијента; ниједно није подешено\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "ИксМЛ ПОСТ је укључен\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Освежавам „%s“ након 1 секунде...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(грешка 0х%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Грешка приликом описивања грешке!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ГРЕШКА: Не могу да покренем прикључнице\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "ТЦП_ИНФО прим пор %d, посл пор %d, пор огл %d, пмту %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "ТЦП_МАХСЕГ %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "КРИТИЧНА ГРЕШКА: Главна тајна ДТЛС-а није покренута. Известите о овоме.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Грешка стварања захтева за ХТТПС ПОВЕЗИВАЊЕ\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Грешка довлачења ХТТПС одговора\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "ВПН услуга није доступна; разлог: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Добих неодговарајући одговор ХТТП ПОВЕЗИВАЊА: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Добих одговор ПОВЕЗИВАЊА: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Нема меморије за опције\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "ИБ сесије Х-ДТЛС-а није 64 знака; већ: „%s“\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Непознато кодирање ЦСТП садржаја %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "МТУ није примљен. Прекидам\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Није примљена ИП адреса. Прекидам\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Примљено је ИПв6 подешавање али МТУ %d је премали.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Поновно повезивање је дало другачију Стару ИП адресу (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Поновно повезивање је дало другачију Стару ИП мрежну маску (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Поновно повезивање је дало другачију ИПв6 адресу (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Поновно повезивање је дало другачију ИПв6 мрежну маску (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "ЦСТП је повезан. ДПД %d, Одржи живим %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "ЦСТП комплет шифрера: %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Подешавање паковања није успело\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Додела међумеморије издувавања није успела\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "надувавање није успело\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "издувавање није успело %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "Није успела расподела\n" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Примљен је кратак пакет (%d бајта)\n" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Неочекивана дужина пакета. ССЛ_читање је дало %d али пакет је\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Добих ЦСТП ДПД захтев\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Добих ЦСТП ДПД одговор\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Добих ЦСТП Одржи живим\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Примих пакет незапакованих података од %d бајта\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Примих прекид везе са сервера: %02x „%s“\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Сажети пакет је примљен у „!deflate“ режиму\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "примљен је серверов пакет окончавања\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Непознат пакет %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "ССЛ је записао премало бајтова! Тражио је %d, послао је %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Истек промене кључа ЦСТП-а\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Поновно руковање није успело; покушавам нови тунел\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Откривање мртвог парњака ЦСТП-а је открило мртвог парњака!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Поновно повезивање није успело\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Послах ЦСТП ДПД\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Послах ЦСТП Одржи живим\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Шаљем пакет незапакованих података од %d бајта\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Послах пакет ОДЛСКА: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Покушавам сваривање потврђивања идентитета са посредником\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Није успело покретање ДТЛСв1 сесије\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Није успело покретање ДТЛСв1 ЦТХ-а\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Није успело постављање списка ДТЛС шифрера\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Није баш један ДТЛС шифрер\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Функција „SSL_set_session()“ није успела са старим издањем протокола 0x%x\n" "Да ли користите издање ОпенССЛ-а старије од 0.9.8m?\n" "Видите “http://rt.openssl.org/Ticket/Display.html?id=1751“\n" "Користите опцију „--no-dtls“ да избегнете ову поруку\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "Успостављена је ДТЛС веза (користим Отворени ССЛ). Комплет шифрера %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Ваш Отворени ССЛ је старији од оног који сте изградили с њим, тако да ДТЛС " "можда неће успети!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Истекло је време ДТЛС руковања\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Вероватно зато што је оштећен ваш Отворени ССЛ\n" "Видите „http://rt.openssl.org/Ticket/Display.html?id=2984“\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Није успело ДТЛС руковање: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Непознати ДТЛС параметри за затражени Комплет шифрера „%s“\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Нисам успео да поставим хитност ДТЛС-а: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Нисам успео да поставим параметре ДТЛС сесије: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Нисам успео да поставим ДТЛС МТУ: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Успостављена је ДТЛС веза (користим ГнуТЛС). Комплет шифрера %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Није успело ДТЛС руковање: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Да ли вас мрежна баријера спречава да пошаљете УДП пакете?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "ДТЛС веза је покушана са постојећим фд-ом\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Нема ДТЛС адресе\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Сервер је није понудио опцију ДТЛС шифрера\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Нема ДТЛС-а када сте повезани путем посредника\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Опција ДТЛС-а „%s“: %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "ДТЛС је покренут. ДПД %d, Одржи живим %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Покушај нову ДТЛС везу\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Примљен је ДТЛС пакет 0x%02x од %d бајта\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Добих ДТЛС ДПД захтев\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Нисам успео да пошаљем ДПД одговор. Очекујте прекид везе\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Добих ДТЛС ДПД одговор\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Добих ДТЛС Одржи живим\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Непозната врста ДТЛС пакета %02x, дужина %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Истек промене кључа ДТЛС-а\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Није успело поновно ДТЛС руковање; пново се повезујем.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Откривање мртвог парњака ДТЛС-а је открило мртвог парњака!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Послах ДТЛС ДПД\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Нисам успео да пошаљем ДПД захтев. Очекујте прекид везе\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Послах ДТЛС Одржи живим\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Нисам успео да пошаљем захтев одржи живим. Очекујте прекид везе\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "ДТЛС је добио грешку писања %d. Пребацујем се на ССЛ\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "ДТЛС је добио грешку писања: %s. Пребацујем се на ССЛ\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Послао сам ДТЛС пакет од %d бајта; ДТЛС-ово слање је дало %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Отказано је ССЛ писање\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Нисам успео да пишем на ССЛ прикључницу: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Отказано је ССЛ читање\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "ССЛ прикључница није лепо затворена\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Нисам успео да читам са ССЛ прикључнице: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Грешка ССЛ читањ: %s; поново се повезујем.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Није успело ССЛ слање: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Не могу да извучем време истека уверења\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Уверење клијента је истекло у" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Уверење клијента ускоро истиче" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Нисам успео да учитам „%s“ из смештаја кључа: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Нисам успео да отворим датотеку кључа/уверења „%s“: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Нисам успео да добавим податке датотеке кључа/уверења „%s“: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Нисам успео да доделим међумеморију уверења\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Нисам успео да учитам уверење у меморију: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Нисам успео да поставим структуру ПКЦС#12 података: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Нисам успео да дешифрујем датотеку ПКЦС#12 уверења\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Унесите ПКЦС#12 лозинку:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Нисам успео да обрадим ПКЦС#12 датотеку: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Нисам успео да учитам ПКЦС#12 уверење: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Нисам успео да увезем Х509 уверење: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Нисам успео да поставим ПКЦС#11 уверење: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Не могу да покренем МД5 хеш: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Грешка МД5 хеша: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Недостаје заглавље „DEK-Info:“ из кључа шифрованог Отвореним ССл-ом\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Не могу да одредим врсту ПЕМ шифровања\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Неподржана врста ПЕМ шифровања: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Неисправан присолак у шифрованој ПЕМ датотеци\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Грешка шифроване ПЕМ датотеке основе64-декодирања: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Шифрована ПЕМ датотека је прекратка\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Нисам успео да покренем шифрера за дешифровање ПЕМ датотеке: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Нисам успео да дешифрујем ПЕМ кључ: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Није успело дешифровање ПЕМ кључа\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Унесите ПЕМ лозинку:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Ова извршна је изграђена без подршке кључа система\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Ова извршна је изграђена без подршке ПКЦС#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Користим ПКЦС#11 уверење „%s“\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Користим системско уверење „%s“\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Грешка учитавања уверења из ПКЦС#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Грешка учитавања системског уверења: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Користим датотеку уверења „%s“\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "ПКЦС#11 датотека не садржи уверење\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Нисам пронашао уверење у датотеци" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Нисам успео да увезем уверење: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Користим системски кључ „%s“\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Грешка покретања структуре личног кључа: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Грешка увоза системског кључа „%s“: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Покушавам адресу ПКЦС#11 кључа „%s“\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Грешка покретања структуре ПКЦС#11 кључа: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Грешка увоза ПКЦС#11 адресе „%s“: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Користим ПКЦС#11 кључ „%s“\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Грешка увоза ПКЦС#11 кључа у структуру личног кључа: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Користим датотеку личног кључа „%s“\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ТПМ подршке\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Нисам успео да протумачим ПЕМ датотеку\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Нисам успео да учитам ПКЦС#1 лични кључ: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Нисам успео да учитам лични кључ као ПКЦС#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Нисам успео да дешифрујем датотеку ПКЦС#8 уверења\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Нисам успео да одредим врсту личног кључа „%s“\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Нисам успео да добавим ИБ кључа: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Грешка потписивања пробних података личним кључем: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Грешка потврђивања потписа наспрам уверења: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Нисам нашао ССЛ уверење које одговара личном кључу\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Користим уверење клијента „%s“\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Подешавање списка опоравка уверења није успело: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Нисам успео да доделим меморију за уверење\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "УПОЗОРЕЊЕ: ГнуТЛС је вратио нетачно уверење издавача; потврђивање идентитета " "можда неће успети!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Добих следећег издавача уверења „%s“ из ПКЦС11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Нисам успео да доделим меморију за подржавање уверења\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Додајем подржавајуће „%s“ издавача уверења\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Нисам успео да подесим уверење: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Сервер није представио ниједно уверење\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Грешка покретања структуре X509 уверења\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Грешка увоза серверског уверења\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Не могу да израчунам хеш серверског уверења\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Грешка провере стања уверења сервера\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "уверење је опозвано" #: gnutls.c:1970 msgid "signer not found" msgstr "потписник није пронађен" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "потписник није уверење издавача уверења" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "небезбедни алгоритам" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "уверење још није активирано" #: gnutls.c:1978 msgid "certificate expired" msgstr "уверење је истекло" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "провера потписа није успела" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "уверење не одговара називу домаћина" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Није успела провера уверења сервера: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Нисам успео да доделим меморију за уверења датотеке издавача уверења\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Нисам успео да прочитам уверења из датотеке издавача уверења: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Нисам успео да отворим датотеку издавача уверења „%s“: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Нисам успео да учитам уверење. Прекидам.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Нисам успео да поставим ниску хитности ТЛС-а: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "ССЛ преговарање са „%s“\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "ССЛ веза је отказана\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Неуспех ССЛ везе: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Не-кобни резултат ГнуТЛС-а за време руковања: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Повезани сте на ХТТПС са „%s“\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Поново је договорен ССЛ на „%s“\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "Потребан је ПИН за %s“" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Погрешан ПИН" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Ово је последњи покушај пре закључавања!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Остало је само неколико покушаја пре закључавања!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Унесите ПИН:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Нисам успео да одрадим СХА1 улазних података за потписивање: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Функција ТПМ знака је позвана за %d бајта.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Нисам успео да направим ТПМ хеш објекат: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Нисам успео да подесим ТПМ хеш објекат: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Није успео ТПМ хеш потпис: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Грешка декодирања блоба ТСС кључа: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Грешка у блобу ТСС кључа\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Нисам успео да направим ТПМ контекст: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Нисам успео да повежем ТПМ контекст: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Нисам успео да учитам ТПМ СРК кључ: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Нисам успео да учитам објект ТПМ СРК политике: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Нисам успео да подесим ТПМ ПИН: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Нисам успео да учитам блоб ТПМ кључа: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Унесите ТПМ СРК ПИН:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Нисам успео да направим објекат политике кључа: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Нисам успео да доделим политику кључу: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Унесите ПИН ТПМ кључа:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Нисам успео да подесим ПИН кључа: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Грешка увоза ГССАПИ назива за потврђивање идентитета:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Грешка стварања ГССАПИ одговора:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Покушавам ГССАПИ потврђивање идентитета са посредником\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "ГССАПИ потврђивање идентитета је обављено\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "ГССАПИ модул је превелик (%zd бајта)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Шаљем ГССАПИ модул од %zu бајта\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Нисам успео да пошаљем ГССАПИ модул потврђивања идентитета посреднику: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Нисам успео да примим ГССАПИ модул потврђивања идентитета од посредника: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "СОЦКС сервер је известио о неуспеху ГССАПИ контекста\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Непознат одговор ГССАПИ стања (0х%02x) са СОЦКС сервера\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Добих ГССАПИ модул од %zu бајта: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Шаљем преговор ГССАПИ заштите од %zu бајта\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Нисам успео да пошаљем одговор ГССАПИ заштите посреднику: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Нисам успео да примим одговор ГССАПИ заштите од посредника: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Добих одговор ГССАПИ заштите од %zu бајта: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Неисправан одговор ГССАПИ заштите са посредника (%zu бајта)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "СОЦКС посредник тражи целовитост поруке, што није подржано\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "СОЦКС посредник тражи поверљивост поруке, што није подржано\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "СОЦКС посредник тражи непознату врсту заштите 0х%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Покушавам ХТТП Основно потврђивање идентитета са посредником\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ГССАПИ подршке\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Посредник захтева Основно потврђивање идентитета које је по основи " "искључено\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Нема више начина потврђивања идентитета\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Нема меморије за доделу колачића\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Нисам успео да обрадим ХТТП одговор „%s“\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Добих ХТТП одговор: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Грешка обраде ХТТП одговора\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Занемарујем непознати ред ХТТП одговора „%s“\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Понуђен је неисправан колачић: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Није успело потврђивање идентитета ССЛ уверења\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Тело одговора има негативну величину (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Непознато преносно-кодирање: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "ХТТП тело %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Грешка читања тела ХТТП одговора\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Грешка довлачења заглавља делића\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Грешка довлачења тела ХТТП одговора\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Грешка у искомаданом декодирању. Очекивах „“, добих: „%s“" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Не могу да примим ХТТП 1.0 тело без затварања везе\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Нисам успео да обрадим преусмерену адресу „%s“: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Не могу да пратим преусмерење на не-хттпс адресе „%s“\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Није успело додељивање нове путање за релативно преусмерење: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Неочекиван %d резултат са сервера\n" #: http.c:1056 msgid "request granted" msgstr "захтев је одобрен" #: http.c:1057 msgid "general failure" msgstr "општи неуспех" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "веза није дозвољена скупом правила" #: http.c:1059 msgid "network unreachable" msgstr "мрежа је недостижна" #: http.c:1060 msgid "host unreachable" msgstr "домаћин је недостижан" #: http.c:1061 msgid "connection refused by destination host" msgstr "везу је одбио одредишни домаћин" #: http.c:1062 msgid "TTL expired" msgstr "ТТЛ је истекло" #: http.c:1063 msgid "command not supported / protocol error" msgstr "наредба није подржана / грешка протокола" #: http.c:1064 msgid "address type not supported" msgstr "врста адресе није подржана" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "СОЦКС сервер је затражио корисничко име/лозинку али ми немамо ниједно\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Корисничко име и лозинка за СОЦКС потврђивање идентитета морају бити < 255 " "бајта\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Грешка писања захтева потврђивања идентитета на СОЦКС посреднику: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Грешка читања захтева потврђивања идентитета са СОЦКС посредника: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Неочекиван одговор потврђивања идентитета са СОЦКС посредника: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Потврдили сте идентитет на СОЦКС посреднику користећи лозинку\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Није успело потврђивање идентитета лозинком на СОЦКС серверу\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "СОЦКС сервер захтева ГССАПИ потврђивање идентитета\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "СОЦКС сервер захтева потврђивање идентитета лозинком\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "СОЦКС сервер захтева потврђивање идентитета\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "СОЦКС сервер захтева непознату врсту потврђивања идентитета %02x\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Захтевам везу СОЦКС посредника са %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Грешка писања захтева повезивања са СОЦКС посредником: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Грешка читања одговора везе са СОЦКС посредника: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Неочекиван одговор везе са СОЦКС посредника: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Грешка СОЦКС посредника %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Грешка СОЦКС посредника %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Неочекивана врста адресе %02x у одговору СОЦКС везе\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Захтевам везу ХТТП посредника са %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Нисам успео да пошаљем захтев посредника: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Захтев ПОВЕЗИВАЊА посредника није успео: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Непозната врста посредника „%s“\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Подржани су само хттп или соцкс(5) посредници\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Изграђено је ССЛ библиотеком без Циско ДТЛС подршке\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Нисам успео да обрадим адресу сервера „%s“\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Дозвољено је само „https://“ за адресу сервера\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Нема руковаоца обрасцем; не могу да потврдим идентитет.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Није успела функција линије наредби у аргумент: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Кобна грешка у раду са линијом наредби\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Није успела функција читања конзоле: %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Грешка претварања улаза конзоле: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Неуспех додељвања за ниску са стандардног улаза\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "За испомоћ са Отвореним повезивањем, погледајте веб страницу на\n" " „http://www.infradead.org/openconnect/mail.html“\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Користим ОпенССЛ. Присутне функције:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Користим ГнуТЛС. Присутне функције:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Није присутан ПОГОН ОтвореногССЛ-а" #: main.c:613 msgid "using OpenSSL" msgstr "користим ОтворениССЛ" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "УПОЗОРЕЊЕ: Нема ДТЛС подршке у овој извршној. Делотворност ће бити умањена.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (стдул)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Не могу да обрадим путању ове извршне „%s“" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Додела за путању впнц-скрипте није успела\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Употреба: openconnect [опције] <сервер>\n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Отворени клијент за Циско Ени Конект ВПН, издање %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Чита опције из датотеке подешавања" #: main.c:710 msgid "Continue in background after startup" msgstr "Наставља у позадини након покретања" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Пише ПИБ позадинца у ову датотеку" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Користи уверење УВЕР ССЛ клијента" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Упозорава када је животни век уверења < ДАНА" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Користи КЉУЧ датотеке личног кључа ССЛ-а" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Користи колачић КОЛАЧИЋ ВебВПН-а" #: main.c:717 msgid "Read cookie from standard input" msgstr "Чита колачић са стандардног улаза" #: main.c:718 msgid "Enable compression (default)" msgstr "Укључује сажимање (основно)" #: main.c:719 msgid "Disable compression" msgstr "Искључује сажимање" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Подешава најмањи период откривања неактивних парњака" #: main.c:721 msgid "Set login usergroup" msgstr "Подешава корисничку групу пријављивања" #: main.c:722 msgid "Display help text" msgstr "Приказује текст помоћи" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Користи АКОНАЗИВ за уређај тунела" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Користи системски дневник за поруке напредовања" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Додаје датум и време порукама напредовања" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Одбацује овлашћења након повезивања" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Одбацује овлашћења за време извршавања ЦСД-а" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Покреће СКРИПТУ уместо ЦСД извршне" #: main.c:733 msgid "Request MTU from server" msgstr "Захтева МТУ са сервера" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Указује на МТУ путању до/од сервера" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Подешава лозинку кључа или ТПМ СРК ПИН" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Лозинка кључа је иб система датотека или систем датотека" #: main.c:737 msgid "Set proxy server" msgstr "Подешава посреднички сервер" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Подешава начине потврђивања идентитета посредника" #: main.c:739 msgid "Disable proxy" msgstr "Искључује посредника" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Користи „libproxy“ да самостално подеси посредника" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(НАПОМЕНА: „libproxy“ је искључена у овој изградњи)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Захтева савршену тајност прослеђивања" #: main.c:745 msgid "Less output" msgstr "Мање излаза" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Подешава ограничење реда пакета на ДУЖИНУ пакета" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Линија наредбе шкољке за коришћење впнц-сагласне скрипте подешавања" #: main.c:748 msgid "default" msgstr "основно" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Прослеђујем саобраћај програму „script“, а не туну" #: main.c:752 msgid "Set login username" msgstr "Подешава корисничко име пријављивања" #: main.c:753 msgid "Report version number" msgstr "Извештава о броју издања" #: main.c:754 msgid "More output" msgstr "Више излаза" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" "Исписује саобраћај ХТТП потврђивања идентитета (подразумева „--verbose“)" #: main.c:756 msgid "XML config file" msgstr "ИксМЛ датотека подешавања" #: main.c:757 msgid "Choose authentication login selection" msgstr "Бира избор пријаве потврђивања идентитета" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Само потврђује идентитет и исписује податке о пријави" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Само добавља вебвпн колачић; не повезује се" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Испсиује вебвпн колачић пре повезивања" #: main.c:761 msgid "Cert file for server verification" msgstr "Датотека уверења за проверу сервера" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Не тражи ИПв6 повезивост" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Шифрери ОтвореногССЛ-а за подршку ДТЛС-а" #: main.c:764 msgid "Disable DTLS" msgstr "Искључује ДТЛС" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Искључује поновно коришћење ХТТП везе" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Искључује потврђивање идентитета лозинком/Безбедним ИБ-ом" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Не захтева да ССЛ уверење сервера буде исправно" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "Искључује основне системске издаваче уверења" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Не покушава ИксМЛ ПОСТ потврђивање идентитета" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Не очекује кориснички унос; излази ако је затражен" #: main.c:771 msgid "Read password from standard input" msgstr "Чита лозинку са стандардног улаза" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Врста софтверског модула: „rsa“, „totp“ или „hotp“" #: main.c:773 msgid "Software token secret" msgstr "Тајна софтверског модула" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(НАПОМЕНА: „libstoken“ (РСА Безбедни ИБ) је искључена у овој изградњи)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(НАПОМЕНА: „Yubikey“ ОАТХ је искључен у овој изградњи)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Временски рок поновног повезивања у секундама" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "СХА1 отисак серверског уверења" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Корисник-Агент ХТТП заглавља: није успело" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Врста оперативног система (linux,linux-64,win,...) за извештавање" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Подешава месни прикључник за ДТЛС датаграме" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Нисам успео да доделим ниску\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Нисам успео да добавим ред из датотеке подешавања: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Непозната опција у %d. реду: „%s“\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Опција „%s“ не узима аргумент у %d. реду\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Опција „%s“ захтева аргумент у %d. реду\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "УПОЗОРЕЊЕ: Ово издање отвореног повезивања је изграђено без иконв\n" " подршке али изгледа да користите наслеђени знак\n" " подесите „%s“. Очекујте неочекивано.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "УПОЗОРЕЊЕ: Ово издање „openconnect“-а је %s али\n" " библиотека „libopenconnect“ је %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Нисам успео да доделим структуру впнподатака\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Неисправан корисник „%s“\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Не можете користити опцију „config“ унутар датотеке подешавања\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Не могу да отворим датотеку подешавања „%s“: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "МТУ %d је премало\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Искључујем поновно коришћење свих ХТТП веза због опције „--no-http-" "keepalive“.\n" "Ако ово помогне, известите о томе на „“.\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Нулта дужина реда није дозвољена; користим 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "Отворено повезивање издање %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Неисправан режим софтверског модула „%s“\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Неисправан одредник ОС-а „%s“\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Превише аргумената на линији наредби\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Није наведен сервер\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ово издање отвореног повезивања је изграђено без подршке библиотеке " "посредника\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Грешка отварања спојке наредбе\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Нисам успео да добијем ВебВПН колачић\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Није успело стварање ССЛ везе\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Подешавање тун скрипте није успело\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Подешавање тун уређаја није успело\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Није успело подешавање ДТЛС-а; користим ССЛ\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Није достављен аргумент „--script“; ДНС и упућивање нису подешени\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Погледајте „http://www.infradead.org/openconnect/vpnc-script.html“\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Нисам успео да отворим „%s“ ради уписа: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Настављам рад у позадини, пиб %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Корисник је затражио поновно повезивање\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Колачић је одбачен при поновном повезивању; излазим.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Сервер је окончао сесију; излазим.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Корисник је отказао (SIGINT); излазим.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Корисник се откачио са сесије (SIGHUP); излазим.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Непозната грешка; излазим.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Нисам успео да отворим „%s“ ради уписа: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Нисам успео да упишем подешавања у „%s“: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Серверско ССЛ уверење не одговара: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Није успело потврђивање уверења са ВПН сервера „%s“.\n" "Разлог: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Унесите „%s“ да прихватите, „%s“ да прекинете; било шта друго да прегледате: " #: main.c:1661 main.c:1679 msgid "no" msgstr "не" #: main.c:1661 main.c:1667 msgid "yes" msgstr "да" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Хеш серверског кључа: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Избор потврђивања идентитета „%s“ се поклапа са више опција\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Избор потврђивања „%s“ није доступан\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Кориснички улаз је затражен у немеђудејственом режиму\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Нисам успео да отворим датотеку модула ради уписа: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Нисам успео да запишем модул: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Ниска софтверског модула је неисправна\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Не могу да отворим датотеку „~/.stokenrc“\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Отворено повезивање није изграђено са подршком „libstoken“-а\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Општи неуспех у „libstoken“-у\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Отворено повезивање није изграђено са подршком „liboath“-а\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Општи неуспех у „liboath“-у\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "Нисам нашао модул Јуби кључа\n" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Отворено повезивање није изграђено са подршком Јуби кључа\n" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Општи неуспех Јуби кључа: %s\n" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Позивник је паузирао везу\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Беспослен сам; одспаваћу %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Чекање на више објеката није успело: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Покретање контекста безбедности није успело: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Руковање набавком уверења није успело: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Грешка у разговору са „ntlm_auth“ помоћником\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Покушавам ХТТП НТМЛ потврђивање идентитета са посредником (једна-пријава)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Покушавам ХТТП НТЛМв%d потврђивање идентитета са посредником\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ПСКЦ подршке\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Могуће је стварање ПОЧЕТНОГ кода модула\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Могуће је стварање СЛЕДЕЋЕГ кода модула\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Сервер одбија софтверски модул; прелазим на ручни унос\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Стварам код ОАТХ ТОТП модула\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Стварам код ОАТХ ХОТП модула\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ГРЕШКА: „%s()“ је позвано са неисправним УТФ-8 за аргумент „%s“\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Нисам успео да успоставим либп11 ПКЦС#11 контекст:\n" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "Нисам успео да учитам модул ПКЦС#11 достављача (p11-kit-proxy.so):\n" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "ПИН је закључан\n" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "ПИН је истекао\n" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "Други корисник је већ пријављен\n" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Непозната грешка пријављивања на ПКЦС#11 модул\n" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Пријављен сам на ПКЦС#11 прикључак „%s“\n" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Нисам успео да набројим уверења у ПКЦС#11 прикључку „%s“\n" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Нађох %d уверења у прикључку „%s“\n" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Нисам успео да обрадим ПКЦС#11 путању „%s“\n" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Нисам успео да набројим ПКЦС#11 прикључке\n" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Пријављујем се на ПКЦС#11 прикључак „%s“\n" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "либп11 није довукла садржај Х.509 уверења\n" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Нисам успео да инсталирам уверење у ОпенССЛ контекст\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Нисам успео да набројим кључеве у ПКЦС#11 прикључку „%s“\n" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Нађох %d кључа у прикључку „%s“\n" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Нисам успео да направим примерак личног кључа из ПКЦС#11\n" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "Додавање кључа из ПКЦС#11 није успело\n" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ПКЦС#11 подршке\n" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Нисам успео да пишем на ССЛ прикључницу\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Нисам успео да читам са ССЛ прикључнице\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Грешка ССЛ читања %d (сервер је вероватно затворио везу); поново се " "повезујем.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "Није успело ССЛ_писање: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Непозната врста захтева КС ССЛ-а %d\n" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "ПЕМ лозинка је предуга (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Додатно уверење из „%s“: %s\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Није успела обрада ПКЦС#12 (видите грешке изнад)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "ПКЦС#12 не садржи уверење!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "ПКЦС#12 не садржи лични кључ!" #: openssl.c:545 msgid "PKCS#12" msgstr "ПКЦС#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Не могу да учитам ТПМ погон.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Нисам успео да покренем ТПМ погон\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Нисам успео да подесим ТПМ СРК лозинку\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Нисам успео да учитам ТПМ лични кључ\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Додавање кључа из ТПМ-а није успело\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Нисам успео да отворим датотеку уверења „%s“: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Нисам успео да учитам уверење\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Нисам успео да обрадим сва подржавајућа уверења. Ипак покушавам...\n" #: openssl.c:710 msgid "PEM file" msgstr "ПЕМ датотека" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Нисам успео да направим БИО за ставку смештаја кључева „%s“\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Учитавање личног кључа није успело (погрешна лозинка?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Учитавање личног кључа није успело (видите грешке изнад)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Нисам успео да учитам Х509 уверење из смештаја кључа\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Нисам успео да користим Х509 уверење из смештаја кључа\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Нисам успео да користим лични кључ из смештаја кључа\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Нисам успео да отворим датотеку личног кључа „%s“: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Учитавање личног кључа није успело\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Нисам успео да одредим врсту личног кључа у „%s“\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Поклопих ДНС заменски назив „%s“\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Нема поклапања за заменски назив „%s“\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Уверење има заменски назив „GEN_IPADD“ са привидном дужином %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Поклопљена је %s адреса „%s“\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Нема поклапања за %s адресу „%s“\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Путања „%s“ има не-празну путању; занемарујем\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Одговарајућа путања „%s“\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Нема поклапања за путању „%s“\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Нема одговарајућег заменског назива у уверењу парњака „%s“\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Нема назива теме у уверењу парњака!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Нисам успео да обрадим назив теме у уверењу парњака\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Тема уверења парњака не одговара ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Одговарајући назив теме уверења парњака „%s“\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Додатно уверење из датотеке издавача уверења: %s\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Грешка у пољу није_након у уверењу клијента\n" #: openssl.c:1362 msgid "" msgstr "<грешка>" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Нисам успео да прочитам уверења из датотеке издавача уверења „%s“\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Нисам успео да отворим датотеку издавача уверења „%s“\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Неуспех ССЛ везе\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Одбацујем укључивања лоше поделе: „%s“\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Одбацујем искључивања лоше поделе: „%s“\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Нисам успео да изродим скрипту „%s“ за %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Скрипта „%s“ је изашла неисправно (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Скрипта „%s“ је дала грешку %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Повезивање прикључнице је отказано\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Нисам успео поново да се повежем са посредником „%s“\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Нисам успео поново да се повежем са домаћином „%s“\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Посредник из библиотеке посредника: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Добављање података адресе није успело за домаћина „%s“: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Поново се повезујем на ДинДНС сервер користећи претходно причувану ИП " "адресу\n" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Покушавам да се повежем са посредником %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Покушавам да се повежем са сервером %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Нисам успео да доделим смештај адресе прикључнице\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "Заборављам не-делотворну адресу преходног парњака\n" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Нисам успео да се повежем са домаћином „%s“\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Поново се повезујем са посредником „%s“\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "Не могу да добијем ИБ система датотека за лозинку\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Нисам успео да отворим датотеку личног кључа „%s“: %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Нема грешке" #: ssl.c:588 msgid "Keystore locked" msgstr "Смештај кључа је закључан" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Смештај кључа није покренут" #: ssl.c:590 msgid "System error" msgstr "Грешка система" #: ssl.c:591 msgid "Protocol error" msgstr "Грешка протокола" #: ssl.c:592 msgid "Permission denied" msgstr "Приступ је одбијен" #: ssl.c:593 msgid "Key not found" msgstr "Нисам нашао кључ" #: ssl.c:594 msgid "Value corrupted" msgstr "Вредност је оштећена" #: ssl.c:595 msgid "Undefined action" msgstr "Неодређена радња" #: ssl.c:599 msgid "Wrong password" msgstr "Погрешна лозинка" #: ssl.c:600 msgid "Unknown error" msgstr "Непозната грешка" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "„openconnect_fopen_utf8()“ је коришћено са неподржаним режимом „%s“\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Колачић није више исправан, завршавам сесију\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "спавам %d сек., преостало време истека %d сек.\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "ССПИ модул је превелик (%ld бајта)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Шаљем ССПИ модул од %lu бајта\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Нисам успео да пошаљем ССПИ модул потврђивања идентитета посреднику: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Нисам успео да примим ССПИ модул потврђивања идентитета од посредника: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "СОЦКС сервер је известио о неуспеху ССПИ контекста\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Непознат одговор ССПИ стања (0х%02x) са СОЦКС сервера\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Добих ССПИ модул од %lu бајта: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Пропитивање контекстних атрибута није успело: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Шифровање поруке није успело: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Резултат шифроване поруке је превелик (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Шаљем преговор ССПИ заштите од %u бајта\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Нисам успео да пошаљем одговор ССПИ заштите посреднику: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Нисам успео да примим одговор ССПИ заштите од посредника: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Добих одговор ССПИ заштите од %d бајта: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Дешифровање поруке није успело: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Неисправан одговор ССПИ заштите са посредника (%lu бајта)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Унесите уверења за откључавање софтверског модула." #: stoken.c:82 msgid "Device ID:" msgstr "ИБ уређаја:" #: stoken.c:89 msgid "Password:" msgstr "Лозинка:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Корисник је заобишао софтверски модул.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Сва поља су обавезна; покушајте опет.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Општи неуспех у „libstoken“-у.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Неисправан ИБ уређаја или лозинка; покушајте поново.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Покретање софтверског модула је успело.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Унесите ПИН софтверског модула." #: stoken.c:189 msgid "PIN:" msgstr "ПИН:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Неисправан запис ПИН-а; покушајте поново.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Стварам код РСА модула\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Грешка приступа кључу регистра за мрежним прилагођивачима\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Занемарујем не-подударајући ТАП уређај „%s“\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Нисам нашао Виндоуз-ТАП прилагођиваче. Да ли је инсталиран управљачки " "програм?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Нисам успео да отворим „%s“\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Отворио сам тун уређај „%s“\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Нисам успео да добијем издање ТАП управљачког програма: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Грешка: Потребан је управљачки програм ТАП-Виндоуза v9.9 или већи (нађох %ld." "%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Нисам успео да подесим ТАП ИП адресе: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Нисам успео да подесим стање ТАП медија: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "ТАП уређај је прекинуо повезивост. Прекидам везу.\n" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Нисам успео да читам са ТАП уређаја: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Нисам успео да довршим читање са ТАП уређаја: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Записах %ld бајта на туну\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Чекам на записивање туна...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Записах %ld бајта на туну након чекања\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Нисам успео да пишем на ТАП уређај: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Израђање тунелских скрипти још није подржано на Виндоузу\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Не могу да отворим „/dev/tun“ за омрежење" #: tun.c:92 msgid "Can't push IP" msgstr "Не могу да погурам ИП" #: tun.c:102 msgid "Can't set ifname" msgstr "Не могу да подесим „ifname“" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Не могу да отворим „%s“: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Не могу да омрежим „%s“ за ИПв%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "отварам „/dev/tun“" #: tun.c:145 msgid "Failed to create new tun" msgstr "Нисам успео да направим нови тун" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Нисам успео да ставим описник тун датотеке у режим одбацивања поруке" #: tun.c:196 msgid "open net" msgstr "отварам мрежу" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Не могу да отворим тун уређај: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Неисправан назив уређаја „%s“; мора да буде „utun%%d“ или „tun%%d“\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Нисам успео да отворим „SYSPROTO_CONTROL“ прикључницу: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Нисам успео да пропитам иб контроле утуна: %s\n" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "Нисам успео да доделим назив утун уређаја\n" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Нисам успео да повежем утун јединицу: %s\n" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Неисправан назив уређаја „%s“; мора да буде „tun%%d“\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Не могу да отворим „%s“: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "Није успело упаривање утичнице: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "исцепљивање није успело: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(скрипта)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Примљен је непознат пакет (дужине %d): %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Нисам успео да запишем пристигли пакет: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Нисам успео да отворим „%s“: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Не могу да добијем податке о „%s“: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Нисам успео да доделим %d бајта за „%s“\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Нисам успео да прочитам „%s“: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Сматрам домаћина „%s“ за сирови назив домаћина\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Нисам успео да СХА1 постојећу датотеку\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "СХА1 датотеке ИксМЛ подешавања: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Нисам успео да обрадим датотеку ИксМЛ подешавања „%s“\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Домаћин „%s“ има адресу „%s“\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Домаћин „%s“ има корисничку групу „%s“\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Домаћин „%s“ није наведен у подешавањима; сматрам га сировим називом " "домаћина\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Нисам успео да пошаљем „%s“ до програмчета „ykneo-oath“: %s\n" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Неисправан кратак одговор за „%s“ од програмчета „ykneo-oath“\n" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Неуспели одговор за „%s“: %04x\n" #: yubikey.c:158 msgid "select applet command" msgstr "изабери наредбу програмчета" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Непознат одговор од програмчета „ykneo-oath“\n" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Нашао сам програмче „ykneo-oath“ и%d.%d.%d.\n" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "Потребан је ПИН за ОАТХ програмче Јуби кључа" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "ПИН Јуби кључа:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Нисам успео да израчунам одговор откључавања Јуби кључа\n" #: yubikey.c:256 msgid "unlock command" msgstr "наредба откључавања" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Нисам успео да успоставим ПЦ/СЦ контекст: %s\n" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "ПЦ/СЦ контекст је упсостављен\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Нисам успео да пропитам списак читача: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Нисам успео да се повежем са ПЦ/СЦ читачем „%s“: %s\n" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Повезан је ПЦ/СЦ читач „%s“\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Нисам успео да добијем искључиви приступ читачу „%s“: %s\n" #: yubikey.c:398 msgid "list keys command" msgstr "наредба списка кључева" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Нађох %s/%s кљзч „%s“ на „%s“\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Нисам нашао модул „%s“ на Јуби кључу „%s“. Тражим други Јуби кључ...\n" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Сервер одбија модул Јуби кључа; прелазим на ручни унос\n" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Стварам код модула Јуби кључа\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Нисам успео да добијем искључиви приступ Јуби кључу: %s\n" #: yubikey.c:600 msgid "calculate command" msgstr "наредба израчунавања" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Непознат одговор са Јуби кључа приликом стварања кода модула\n" openconnect-7.06/po/fi.po0000664000076400007640000020620012502026115012262 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Jussa Jutila , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-06-20 08:43+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Finnish \n" "Language: fi\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "HTTPS-yhteyden muodostus kohteeseen %s epäonnistui\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "IP-osoitetta ei saatu. Keskeytetään\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Uudelleenyhdistys epäonnistui\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Lähetä BYE-paketti: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Ei DTLS-osoitetta\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Ei DTLS:ää välityspalvelimen kautta yhdistettäessä\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Saatiin HTTP-vastaus: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Virhe käsiteltäessä HTTP-vastausta\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "" #: main.c:1661 main.c:1667 msgid "yes" msgstr "" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/lt.po0000664000076400007640000026061412502026115012314 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Lithuanian (http://www.transifex.net/projects/p/meego/team/" "lt/)\n" "Language: lt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n" "%100<10 || n%100>=20) ? 1 : 2)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Negalima apdoroti formos method='%s', action='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Formos pasirinkimas neturi pavadinimo\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "pavadinimas %s neturi įvesties\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Nėra įvesties tipo formoje\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Nėra įvesties pavadinimo formoje\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nežinomas įvesties tipas %s formoje\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Tuščias atsakymas iš serverio\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Nepavyko perskaityti serverio atsakymo\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Atsakymas buvo:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Gautas , nors jo nesitikėta.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "XML atsakymas neturi „auth“ viršūnės\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Prašyta slaptažodžio, bet nustatyta „--no-passwd“\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nepavyko atverti HTTPS ryšio į %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Nepavyko išsiųsti GET užklausos naujai konfigūracijai\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Parsiųstas konfigūracijos failas neatitiko siekiamo SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Klaida: „Cisco Secure Desktop“ trojos arklio vykdymas Windows sistemoje dar " "nerealizuotas.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Klaida: Serveris prašė vykdyti CSD serverio paiešką.\n" "Jums reikia pateikti tinkamą --csd-wrapper argumentą.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Klaida: serveris paprašė parsiųsti ir įvykdyti „Cisco Secure Desktop“ trojos " "arklį.\n" "Ši funkcija numatytai yra išjungta saugumo sumetimai, tad jūs galite norėti " "ją įjungti.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Bandoma vykdyti Linux CSD trojos arklio scenarijų.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nepavyko atverti laikinojo CSD scenarijaus failo: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nepavyko įrašyti laikinojo CSD scenarijaus failo: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Nepavyko nustatyti uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Netinkamas naudotojo uid=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nepavyko pakeisti CSD namų katalogo „%s“: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Įspėjimas: jūs vykdote nesaugų CSD kodą root teisėmis\n" "\t Naudokite komandų eilutės parametrą „--csd-user“\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nepavyko įvykdyti CSD scenarijaus %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Nežinomas atsakymas iš serverio\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serveris paprašė SSL kliento liudijimo po to, kai jis buvo pateiktas\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Serveris paprašė SSL kliento liudijimo; joks nebuvo sukonfigūruotas\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST įjungtas\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Atnaujinama %s po 1 sekundės...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "KLAIDA: nepavyksta inicializuoti lizdų\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Klaida parsiunčiant HTTPS atsakymą\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN tarnyba neprieinama; priežastis: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Gautas netinkamas HTTP CONNECT atsakymas: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Gautas CONNECT atsakymas: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Nėra atminties parametrams\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID ne 64 simboliai; yra: „%s“\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nežinomas CSTP-Content-Encoding %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Negauta MTU. Nutraukiama\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Negautas IP adresas. Nutraukiama\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Persijungimas gavo skirtingą seną IP adresą (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Persijungimas gavo skirtingą seną IP tinklo kaukę (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Persijungimas gavo skirtingą IPv6 adresą (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Persijungimas gavo skirtingą IPv6 tinklo kaukę (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Prisijungta prie CSTP. DPD %d, keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Nepavyko nustatyti suspaudimo\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Nepavyko išskirti buferio\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "buferis nepavyko\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "nepavyko išskleisti %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Nelauktas paketo ilgis. SSL_read grąžino %d, bet paketas yra\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Gauta CSTP DPD užklausa\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Gautas CSTP DPD atsakymas\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Gautas CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Gautas nespaustų duomenų paketas iš %d baitų\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Gautas serverio atsijungimas: %02x „%s“\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Suspaustas paketas gautas ne spaudimo veiksenoje\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "gautas serverio pabaigos paketas\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nežinomas paketas %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL įrašė per mažai baitų! Prašyta %d, išsiųsta %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Atliekamas CSTP raktų pakeitimas\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Pakartotinis rankos paspaudimas nepavyko; bandomas naujas tunelis\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTO negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Nepavyko persijungimas\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Siųsti CSTO DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Siųsti CSTO Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Siunčiamas nespaustų duomenų paketas iš %d baitų\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Siųsti BYE paketą: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Nepavyko inicializuoti DTLSv1 seanso\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Nepavyko inicializuoti DTLSv1 CTX\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Nepavyko nustatyti DTLS šifrų\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Ne vienintelis DTLS šifras\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() nepavyko su sena protokolo versija 0x%x\n" "Ar naudojate OpenSSL versiją senesnę nei 0.9.8m?\n" "Žiūrėkite http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Naudokite --no-dtls komandų eilutės parametrą šio pranešimo išvengimui\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Užmezgamas DTLS ryšys (naudojant OpenSSL). Šifrų rinkinys %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Jūsų OpenSSL yra senesnė, nei naudota kūrimui, todėl DTLS gali nepavykti!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS rankos paspaudimo laikas baigėsi\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Taip greičiausiai atsitiko, nes jūsų OpenSSL yra su klaidomis\n" "Žiūrėkite http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Nepavyko DTLS rankos paspaudimas: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nežinomi DTLS parametrai prašomam CipherSuite „%s“\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nepavyko nustatyti DTLS prioriteto: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nepavyko nustatyti DTLS sesijos prametrų: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nepavyko nustatyti DTLS MTU: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Užmegztas DTLS ryšys (naudojant GnuTLS). Šifrų rinkinys %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Nepavyko DTLS rankos paspaudimas: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS ryšys bandytas su esamu fd\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Nėra DTLS adreso\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Serveris nepasiūlė DTLS šifro parinkties\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Nėra DTLS jungiantis per tarpinį serverį\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS parametras %s: %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializuota. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Bandomas naujas DTLS ryšys\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Gautas DTKS paketas 0x%02x iš %d baitų\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Gauta DTLS DPD užklausa\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nepavyko išsiųsti DPD atsakymo. Tikėkitės atsijungimo\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Gautas DTLS DPD atsakymas\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Gautas DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nežinomas DTLS paketo tipas %02x, ilgis %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Atliekamas DTLS raktų pasikeitimas\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Nepavyko DTLS rankos paspaudimas; jungiamasi iš naujo.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Siųsti DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nepavyko siųsti DPD užklausos. Tikėkitės atsijungimo\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Siųsti DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nepavyko siųsti keepalive užklausos. Tikėkitės atsijungimo\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS gavo rašymo klaidą %d. Pereinama prie SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS gavo rašymo klaidą: %s. Pereinama prie SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Siunčiamas DTLS paketas iš %d baitų; DTLS siutimas grąžino %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL rašymas atšauktas\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nepavyko rašyti į SSL lizdą: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL skaitymas atšauktas\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "SSL lizdas netvarkingai užvertas\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nepavyko skaityti iš SSL lizdo: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL skaitymo klaida: %s; persijungiama.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Nepavyko SSL siuntimas: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Nepavyko išgauti liudijimo galiojimo pabaigos laiko\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Kliento liudijimo galiojimas baigėsi" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Kleinto liudijimas biags galioti" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nepavyko įkelti elemento „%s“ iš įvesties: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nepavyko atverti rakto/liudijimo failo %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nepavyko rakto/liudijimo failo %s stat: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Nepavyko išskirti liudijimo buferio\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nepavyko perskaityti liudijimo į atmintį: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nepavyko nustatyti PKCS#12 duomenų struktūros: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nepavyko dešifruoti PKCS#12 liudijimo failo\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Įveskite PKCS#12 slaptažodį:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nepavyko apdoroti PKCS#12 failo: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nepavyko įkelti PKCS#12 liudijimo: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Nepavyko importuoti X509 liudijimo: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nepavyko nustatyti PKCS#11 liudijimo: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nepavyko inicializuoti MD5 maišos: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 maišos klaida: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Trūksta DEK-Info: antraštė iš OpenSSL šifruoto rakto\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Nepavyko nustatyti PEM šifravimo tipo\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepalaikomas PEM šifravimo tipas: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Netinkamas šifruoto PEM failo druska\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Klaida šifruoto PEM failo base64 dešifravime: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Šifruotas PEM failas per trumpas\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Nepavyko inicializuoti šifro PEM failo dešifravimui: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nepavyko dešifruoti PEM rakto: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Nepavyko dešifruoti PEM rakto\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Įveskite PEM slaptažodį:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Ši programa sukurta be PKCS#12 palaikymo\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Naudojamas PKCS#11 liudijimas %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Klaida įkeliant liudijimą iš PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Naudojamas liudijimo failas %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 failas neturėjo liudijimo\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Nerasta liudijimų faile" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nepavyko įkelti liudijimo: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Klaida inicializuojant privataus rakto struktūrą: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Klaida inicializuotant PKCS#11 rakto struktūrą: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Klaida importuojant PKCS#11 URL %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Naudojamas PKCS#11 raktas %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Klaida importuojant PKCS#11 raktą į privataus rakto struktūrą: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Naudojamas privataus rakto failas %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ši OpenConnect versija sukurta be TPM palaikymo\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Nepavyko interpretuoti PEM failo\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nepavyko įkelti PKCS#1 privataus rakto: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nepavyko įkelti privataus rakto kaip PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nepavyko dešifruoti PKCS#8 liudijimo failo\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nepavyko nustatyti privataus rakto %s tipo\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nepavyko gauti rakto ID: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Klaida pasirašant testinius duomenis privačiu raktu: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Klaida tikrinant parašą su liudijimu: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Nerastas SSL liudijimas, atitinkantis privatų raktą\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Naudojamas kliento liudijimas „%s“\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Nepavyko nustatyti liudijimų atšaukimų sąrašo: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Nepavyko išskirti atminties liudijimui\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ĮSPĖJIMAS: GnuTLS grąžino neteisingus išdavėjų liudijimus; tapatybės " "patvirtinimas gali nepavykti!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Gauta kita LĮ „%s“ iš PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nepavyko išskirti atminties liudijimų palaikymui\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Pridedama palaikanti LĮ „%s“\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nepavyko nustatyti liudijimo: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Serveris nepateikė liudijimo\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Klaida inicializuojant X509 liudijimo struktūrą\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Klaida importuojant serverio liudijimą\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Klaida tikrinant serverio liudijimo būseną\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "liudijimas atšauktas" #: gnutls.c:1970 msgid "signer not found" msgstr "pasirašytojas nerastas" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "pasirašytojas nėra LĮ liudijimas" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "nesaugus algoritmas" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "liudijimas dar neaktyvuotas" #: gnutls.c:1978 msgid "certificate expired" msgstr "liudijimo galiojimas baigėsi" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "nepavyko patikrinti liudijimo" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "liudijimas neatitinka serverio vardo" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Nepavyko serverio liudijimo patikrinimas: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Klaida išskiriant atmintį cafile liudijimams\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Nepavyko perskaityti liudijimų iš cafile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nepavyko atverti LŠ failo „%s“: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Nepavyko įkelti liudijimo. Nutraukiama.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Nepavyko nustatyti TLS prioriteto eilutės: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL derybos su %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL ryšys nutrauktas\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL ryšio klaida: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS nelemtinga grįžimas rankos paspaudimo metu: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Prisijungta prie HTTPS %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Iš naujo užmezgamas SSL su %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "%s būtinas PIN" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Neteisingas PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Tai yra galutinis bandymas prie užrakinant!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Liko tik keli bandymai prieš užrakinimą!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Įveskite PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Nepavyko suskaičiuosi SHA1 įvesties duomeninms pasirašymui: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM pasirašymo funkcija iškviesta %d baitams.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nepavyko sukurti TPM maišos objekto: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nepavyko nustatyti vergtės TPM maišos objekte: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Nepavyko TPM maišos parašas: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Klaida dekoduojant TSS rakto duomenis: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Klaida TSS rakto duomenyse\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nepavyko sukurti TPM konteksto: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nepavyko prijungti TPM konteksto: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nepavyko įkelti TPM SRK rakto: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nepavyko įkelti TPM SRK politikos objekto: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nepavyko nustatyti TPM PIN: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nepavyko įkelti TPM rakto duomenų: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Įveskite TPM SRK PIN:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nepavyko sukurti rakto politikos objekto: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nepavyko priskirti politikos raktui: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Įveskite TPM rakto PIN:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nepavyko nustatyti rakto PIN: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Nėra atminties slapukams\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nepavyko perskaityti HTTP atsakymo „%s“\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Gautas HTTP atsakymas: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Klaida apdorojant HTTP atsakymą\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Nepaisoma nežinomo HTTP atsakymo eilutėje „%s“\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Pasiūlytas neteisingas slapukas: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "SSL liudijimo tapatybės patvirtinimas nepavyko\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Atsakymo pagrindinė dalis yra neigiamo dydžio (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nežinoma perdavimo koduotė: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP pagrindinė dalis %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Klaida skaitant HTTP atsakymo pagrindinę dalį\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Klaida parsiunčiant dalies antraštę\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Klaida parsiunčiant HTTP atsakymo pagrindinę dalį\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Klaida padalintame dekodavime. Tikėtasi „“, gauta: „%s“" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Negalima gauti HTTP 1.0 pagrindinės dalies neužveriant ryšio\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nepavyko perskaityti nukreiptojo URL „%s“: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Negalima sekti nukreipimu į ne https URL „%s“\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Nepavyko išskirti naujo kelio santykiniam nukreipimui: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Netikėtas %d rezultatas iš serverio\n" #: http.c:1056 msgid "request granted" msgstr "prašymas patvirtintas" #: http.c:1057 msgid "general failure" msgstr "bendroji klaida" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "ryšis neleistas pagal taisykles" #: http.c:1059 msgid "network unreachable" msgstr "tinklas nepasiekiamas" #: http.c:1060 msgid "host unreachable" msgstr "serveris nepasiekiamas" #: http.c:1061 msgid "connection refused by destination host" msgstr "ryšį atmetė paskirties serveris" #: http.c:1062 msgid "TTL expired" msgstr "TTL laikas baigėsi" #: http.c:1063 msgid "command not supported / protocol error" msgstr "komanda nepalaikoma / protokolo klaida" #: http.c:1064 msgid "address type not supported" msgstr "adreso tipas nepalaikomas" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Klaida rašant auth užklausą į SOCKS tarpinį serverį: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Klaida skaitant auth atsakymą iš SOCKS tarpinio serverio: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Netikėtas auth atsakymas iš SOCKS tarpinio serverio: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Prašomas SOCKS tarpinio serverio ryšio į %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Klaida rašant ryšio prašymą į SOCKS tarpinį serverį: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Klaida skaitant jungimosi atsakymą iš SOCKS tarpinio serverio: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Nelauktas jungimosi atsakymas iš SOCKS tarpinio serverio: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS tarpinio serverio klaida %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS tarpinio serverio klaida %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nelauktas adreso tipas %02x SOCKS jungimosi atsakyme\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Prašomas HTTP tarpinio serverio ryšio į %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Tarpinio serverio prašymo siuntimas nepavyko: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Tarpinio serverio CONNECT užklausa nepavyko: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nežinomas tarpinio serverio tipas „%s“\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Palaikomi tik http arba socks(5) tarpiniai serveriai\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Sukurta naudojant SSL biblioteką be Cisco DTLS palaikymo\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nepavyko perskaityti serverio URL „%s“\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Leidžiami tik https:// serverio URL\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Nėra formos apdorotojo; negalima patvirtinti tapatybės.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Nepavyko eilutės iš stdin išskyrimas\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Naudojama OpenSSL. Turimos savybės:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Naudojama GnuTLS. Turimos savybės:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL variklio nėra" #: main.c:613 msgid "using OpenSSL" msgstr "naudojama OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "ĮSPĖJIMAS: šioje programoje nėra DTLS palaikymo. Našumas bus blogesnis.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Negalima apdoroti šio vykdomojo failo kelio „%s“" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Nepavyko išskirti vpnc-script keliui\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Naudojimas: openconnect [parametrai] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "Atverti Cisco AnyConnect VPN klientą, versija %s\n" #: main.c:708 msgid "Read options from config file" msgstr "Skaityti parametrus iš konfigūracijos failo" #: main.c:710 msgid "Continue in background after startup" msgstr "Tęsti fone po paleidimo" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Įrašyti tarnybos PID į šį failą" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Naudoti SSL kliento liudijimą CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Įspėti, kai liudijimo galiojimas < DIENŲ" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Naudoti SSL privataus rakto failą RAKTAS" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Naudoti WebVPN slapuką SLAPUKAS" #: main.c:717 msgid "Read cookie from standard input" msgstr "Nuskaityti slapuką iš standartinės įvesties" #: main.c:718 msgid "Enable compression (default)" msgstr "Įjungti suspaudimą (numatyta)" #: main.c:719 msgid "Disable compression" msgstr "Išjungti suspaudimą" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Nustatyti mažiausią negyvų porininkų aptikimo intervalą" #: main.c:721 msgid "Set login usergroup" msgstr "Nustatyti prisijungimo naudotojo grupę" #: main.c:722 msgid "Display help text" msgstr "Rodyti pagalbos tekstą" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Naudoti IFNAME tunelio sąsajai" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Naudoti syslog eigos pranešimams" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Prie eigos pranešimų pridėti laiko žymą" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Atsisakyti privilegijų po prisijungimo" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Atsisakyti privilegijų vykdant CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Vykdyti SCENARIJŲ vietoj CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Užklausti MTU iš serverio" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Nurodyti kelią MTU į/iš serverio" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nustatyti rakto slaptažodį arba TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Rakto slaptažodis yra failų sistemos fsid" #: main.c:737 msgid "Set proxy server" msgstr "Nustatyti tarpinį serverį" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Išjungti tarpinį serverį" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Naudoti libproxy automatiniam tarpinio serverio konfigūravimui" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(PASTABA: libproxy išjungtas šioje programoje)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Reikalauti tobulo pirminio slaptumo" #: main.c:745 msgid "Less output" msgstr "Mažiau išvesties" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Nustatyti paketų eilės ribą į LEN paketų" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Apvalkalo komandų eilutė vpnc-suderinamam konfigūracijos scenarijui naudoti" #: main.c:748 msgid "default" msgstr "numatyta" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Siųsti srautą į „scenarijaus“ programą, ne tun" #: main.c:752 msgid "Set login username" msgstr "Nustatyti prisijungimo naudotojo vardą" #: main.c:753 msgid "Report version number" msgstr "Pranešti versijos numerį" #: main.c:754 msgid "More output" msgstr "Daugiau išvesties" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Įrašyti HTTP tapatybės patvirtinimo srautą (įtraukia --verbose" #: main.c:756 msgid "XML config file" msgstr "XML konfigūracijos failas" #: main.c:757 msgid "Choose authentication login selection" msgstr "Pasirinkite tapatybės patvirtinimo prisijungimo pasirinkimą" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Tik patvirtinti tapatybę ir atspausdinti prisijungimo informaciją" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Tik parsisiųsti webvpn slapuką; neprisijungti" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Atspausdinti webvpn slapuką prieš jungiantis" #: main.c:761 msgid "Cert file for server verification" msgstr "Liudijimo failas serverio patikrinimui" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Neklausti IPv6 jungimosi" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL šifrais DTLS palaikymui" #: main.c:764 msgid "Disable DTLS" msgstr "Išjungti DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Išjungti HTTP ryšio pakartotinį naudojimą" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Išjungti slaptažodžio/SecurID tapatybės patvirtinimą" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Nereikalauti, kad serverio SSL liudijimas būtų teisingas" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Nemėginti XML POST tapatybės patvirtinimo" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Nelaukti naudotojo įvesties; išeiti, jei ji būtina" #: main.c:771 msgid "Read password from standard input" msgstr "Skaityti slaptažodį iš standartinės įvesties" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Programinės leksemos tipas: rsa, totp arba hotp" #: main.c:773 msgid "Software token secret" msgstr "Programinės leksemos paslaptis" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(PASTABA: libstoken (RSA SecurID) išjungta šioje programoje)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Jungimosi pakartotinio bandymo laikas sekundėmis" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Serverio liudijimo SHA1 piršto atspaudas" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP antraštės User-Agent: laukas" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Pranešamas OS tipas (linux,linux-64,win,...)" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Nustatyti vietinį prievadą DTLS datagramoms" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Nepavyko išskirti simbolių eilutės\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nepavyko gauti eilutės iš konfigūracijos failo: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Neatpažintas parametras eilutėje %d: „%s“\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Parametrui „%s“ nereikia argumento eilutėje %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Parametrui „%s“ būtinas argumentas eilutėje %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ĮSPĖJIMAS: Ši openconnect versija yra %s, bet\n" " libopenconnect biblioteka yra %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nepavyko išskirti vpninfo struktūros\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Netinkamas naudotojas „%s“\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nepavyko naudoti „config“ parametro konfigūracijos faile\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nepavyko atverti konfigūracijos failo „%s“: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d per mažas\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Išjungiami visi HTTP ryšių pakartotiniai naudojimai dėl --no-http-keepalive\n" "parametro. Jei tai padės, praneškite .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Neleidžiamas nulinis eilės ilgis; naudojamas 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versija %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Netinkama programinės leksemos veiksena „%s“\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Netinkamas OS identitetas „%s“\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Per daug argumentų komandų eilutėje\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nenurodytas serveris\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ši openconnect versija sukurta be libproxy palaikymo\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Klaida atveriant cmd kanalą\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nepavyko gauti WebVPN slapuko\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nepavyko sukurti SSL ryšio\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Nepavyko nustatyti tun scenarijaus\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Nepavyko nustatyti tun įrenginio\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Nepavyko nustatyti DTLS; vietoj to naudojama SSL\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nepateiktas --script argumentas; DNS ir maršrutizavimas nesukonfigūruoti\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Žiūrėkite http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nepavyko atverti „%s“ rašymui: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Tęsiama fone; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nepavyko atverti %s rašymui: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nepavyko įrašyti konfigūracijos į %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Serverio SSL liudijimas neatitiko: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Liudijimas iš VPN serverio „%s“ nepraėjo patikrinimo.\n" "Priežastis: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Įveskite „%s“ sutikimui, „%s“ nutraukimui; bet ką kitą peržiūrai: " #: main.c:1661 main.c:1679 msgid "no" msgstr "ne" #: main.c:1661 main.c:1667 msgid "yes" msgstr "taip" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth pasirinkimas „%s“ atitinka kelis parametrus\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth pasirinkimo „%s“ nėra\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Būtina naudotojo įvestis neinteraktyvioje veiksenoje\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Švelni leksemos eilutė netinkama\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nepavyko atverti ~/.stokenrc failo\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nebuvo sukurtas su libstoken palaikymu\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Bendra libstoken klaida\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nebuvo sukurta su liboath palaikymu\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Bendra liboath klaida\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Kvietėjas pristabdė ryšį\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nėra darbo; miegama %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects nepavyko: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "GERAI PRADINIAM tokencode generuoti\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "GERAI KITAM tokencode generuoti\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Serveris atmeta programinę leksemą; persijungiama prie rankinio įvedimo\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generuojamas OATH TOTP leksemos kodas\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Generuojamas OATH HOTP leksemos kodas\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Nepavyko rašyti į SSL lizdą\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Nepavyko skaityti iš SSL lizdo\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL skaitymo klaida %d (serveris greičiausiai užvėrė ryšį); persijungiama.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "Nepavyko SSL_write: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM slaptažodis per ilgas (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Papildomas liudijimas iš %s: „%s“\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Nepavyko perskaityti PKCS#12 (žiūrėkite klaidas aukščiau)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 neturėjo liudijimo!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 neturėjo privataus rakto!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Nepavyksta įkelti TPM variklio.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Nepavyko inicializuoti TPM variklio\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Nepavyko nustatyti TPM SRK slaptažodžio\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Nepavyko įkelti TPM privataus rakto\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Nepavyko pridėti rakto iš TPM\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nepavyko atverti liudijimo failo %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Nepavyko įkelti liudijimo\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nepavyko sukurti BIO iš įvesties elemento „%s“\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nepavyko įkelti privataus rakto (neteisingas slaptažodis?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Nepavyko įkelti privataus rakto (žiūrėkite klaidas aukščiau)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nepavyko įkelti X509 liudijimo iš įvesties\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nepavyko naudoti X509 liudijimo iš įvesties\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Nepavyko naudoti privataus rakto iš įvesties\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nepavyko atverti privataus rakto failo %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nepavyko identifikuoti privataus rakto tipas iš „%s“\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Atitikęs DNS alternatyvus vardas „%s“\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Nėra atitikmenų alternatyviam vardui „%s“\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Liudijimas turi blogo ilgio %d GEN_IPADD alternatyvų vardą\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Atitiko %s adresas „%s“\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nėra atitikmens %s adresui „%s“\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI „%s“ turi netuščia kelia; nepaisoma\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Atitiko URI „%s“\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Nėra atitikmens URI „%s“\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nėra alternatyvaus vardo porinio liudijimo atitikime „%s“\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Nėra subjekto vardo poriniame liudijime!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Nepavyko perskaityti subjekto poriniame liudijime\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Porinio liudijimo neatitikimas ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Atitikęs porinio liudijimo subjekto vardas „%s“\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Papildomas liudijimas iš cafile: „%s“\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Klaida kliento liudijimo notAfter lauke\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nepavyko perskaityti liudijimų iš LĮ failo „%s“\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nepavyko atverti LĮ failo „%s“\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL ryšio klaida\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Išmetamas blogas padalinimas įtraukia: „%s“\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Išmetamas blogas padalinimas neįtraukia: „%s“\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nepavyko paleisti scenarijaus „%s“ %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Scenarijus „%s“ išėjo nenormaliai (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Scenarijus „%s“ grąžino klaidą %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Lizdo jungimasis atšauktas\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Nepavyko pakartotinai prisijungti prie tarpinio serverio %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Nepavyko pakartotinai prisijungti prie serverio %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Tarpinis serveris iš libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Nepavyko getaddrinfo iš serverio „%s“: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Bandoma jungtis prie tarpinio serverio %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Bandoma jungtis prie serverio %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Nepavyko išskirti sockaddr vietos\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nepavyko prisijungti prie serverio %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Nėra klaidos" #: ssl.c:588 msgid "Keystore locked" msgstr "Raktų saugykla užrakinta" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Raktų saugykla neinicializuota" #: ssl.c:590 msgid "System error" msgstr "Sistemos klaida" #: ssl.c:591 msgid "Protocol error" msgstr "Protokolo klaida" #: ssl.c:592 msgid "Permission denied" msgstr "Nėra leidimo" #: ssl.c:593 msgid "Key not found" msgstr "Raktas nerastas" #: ssl.c:594 msgid "Value corrupted" msgstr "Vertė sugadinta" #: ssl.c:595 msgid "Undefined action" msgstr "Neapibrėžtas veiksmas" #: ssl.c:599 msgid "Wrong password" msgstr "Neteisingas slaptažodis" #: ssl.c:600 msgid "Unknown error" msgstr "Nežinoma klaida" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Slapukas nebegalioja, baigiamas seansas\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "miegama %ds, liko laiko %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Įveskite įgaliojimus programinei leksemai atrakinti." #: stoken.c:82 msgid "Device ID:" msgstr "Įrenginio ID:" #: stoken.c:89 msgid "Password:" msgstr "Slaptažodis:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Naudotojas apėjo programinę leksemą.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Visi laukai yra būtini; bandykite dar kartą.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Bendra libstoken klaida.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Neteisingas įrenginio ID arba slaptažodis; bandykite dar kartą.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Programinės leksemos inicializacija buvo sėkminga.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Netinkamas PIN formatas; bandykite dar kartą.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generuojamas RSA leksemos kodas\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Klaida prieinant prie registro rakto tinklo adapteriams\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Nepaisoma neatitinkančios TAP sąsajos „%s“\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Rasti ne Windows-TAP adapteriai. Ar tvarkyklė įdiegta?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Nepavyko atverti %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Atvertas tun įrenginys %s\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nepavyko gauti TAP tvarkyklės versijos: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Klaida: reikalinga TAP-Windows tvarkylė v9.9 arba naujesnė (rasta %ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nepavyko nustatyti TAP IP adresų: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nepavyko nustatyti TAP laikmenos būsenos: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nepavyko skaityti iš TAP įrenginio: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nepavyko skaityti iš TAP įrenginio: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Į tun įrašyta %ld baitų\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Laukiama tun rašymui...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Po laukimo į tun įrašyta %ld baitų\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nepavyko rašyti į TAP įrenginį: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tunelio scenarijų paleidimas Windows aplinkoje dar nepalaikomas\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nepavyko atverti /dev/tun siuntimui" #: tun.c:92 msgid "Can't push IP" msgstr "Nepavyksta siųsti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nepavyksta nustatyti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nepavyksta atverti %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nepavyksta apdoroti srauto %s IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "atverti /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nepavyko sukurti naujo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Nepavyko patalpinti tun failo deskriptoriaus į pranešimų išmetimo veikseną" #: tun.c:196 msgid "open net" msgstr "atverti tinklą" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nepavyko atverti tun įrenginio: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Netinkamas sąsajos pavadinimas „%s“; turi atitikti „tun%%d“\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nepavyksta atverti „%s“: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair nepavyko: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "fork nepavyko: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(scenarijus)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Gautas nežinomas paketas (ilgis %d): %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nepavyko įrašyti įeinančio paketo: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Traktuoti kompiuterį „%s“ kaip tiesioginį kompiuterį\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Nepavyko SHA1 esamam failui\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML konfigūracijos failo SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nepavyko perskaityti XML konfigūracijos failo %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Kompiuteris „%s“ turi adresą „%s“\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Kompiuteris „%s“ turi UserGroup „%s“\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Kompiuterio „%s“ nėra konfigūracijoje; traktuojamas kaip tiesioginis " "kompiuteris\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/sk.po0000664000076400007640000020602012502026115012301 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Peter Janosik , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-06-20 08:43+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Slovak (http://www.transifex.net/projects/p/meego/language/" "sk/)\n" "Language: sk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Výber vo formulári nemá meno\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "meno %s nebolo zadané\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Formulár nemá typ vstupu\n" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Nebola prijatá žiadna IP adresa. Končím\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "" #: main.c:1661 main.c:1667 msgid "yes" msgstr "" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/bs.po0000664000076400007640000031041412502026115012273 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Bosnian (http://www.transifex.net/projects/p/meego/team/bs/)\n" "Language: bs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorišem nepoznati objekt za potvrdu unosa na formularu '%s'\n" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorišem nepoznati objekt za unos podataka na formularu '%s'\n" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odbacujem duplu opciju '%s'\n" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ne može baratati form metodom= '%s', akcija= '%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "Neuspjelo analizirati HTML dokument\n" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC podrška još nije realizovana na Windows\n" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nema DSPREAUTH kolačića; ne pokušavam TNCC\n" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nije uspjela alokacija memorije za komunikaciju s TNCC\n" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Neuspjelo izvršiti TNCC skriptu %s: %s\n" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "Neuspjelo poslati start komandu za TNCC\n" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "Početak poslan; čekam odgovor od TNCC\n" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "Neuspjelo pročitati odgovor od TNCC\n" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "Primljen nevažeći odgovor od TNCC\n" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" "TNCC odgovor: -->\n" "%s\n" "<--\n" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Primljen neuspješan %s odgovor od TNCC\n" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Dobijen novi DSPREAUTH kolačić od TNCC: %s\n" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "Neuspjelo naći ili analizirati web formular u stranici za prijavu\n" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "Uočena forma bez ID\n" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Nepoznat ID forme '%s'\n" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Prikazujem nepoznatu HTML formu:\n" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nije uspjelo proizvesti OTP token kod; onemogućavanje token\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Forma odabira nema ime\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "ime %s nema ulaza\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Nema ulaza tipa u formatu\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Nema ulaza imena u formatu\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nepoznat ulazni tip %s u formi\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Prazan odgovor od servera\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Nemoguće razdijeliti odgovor servera\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Odgovor je bio:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Primljeno kada nije očekivano.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "XML odgovor nema \"auth\" čvora\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Upitan za šifru ali '--nema-šifre' postavi\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Ne preuzima se XML profil jer SHA1 već odgovara\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Neuspjeh pri otvaranju HTTPS konekcije na %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Nemoguće poslati GET zahtjev za novi config\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Preuzeta config datoteka nije usparena sa SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Preuzimanje novog XML profila\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Greška: Pokretanje 'Cisco Secure Desktop' trojan na Windows-u još " "implementirano.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Greška: Server nas pita da pokrene CSD hostscan.\n" "Trebate obezbjediti pogodan --csd-wrapper argument.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server nas pita da preuzme i pokrene 'Cisco Secure Desktop' trojan.\n" "Ova operacije je isključena po običnim postavkama iz sigurnosnih razloga, " "želite li da je uključite.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Pokušava pokrenuti Linux CSD trojan script.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Privremeni direktorijum „%s“ nije upisiv: %s\n" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Neuspjeh pri otvaranju privremene CSD script datoteke: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nemoguće upisati privremenu CSD script datoteku: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Ne može postaviti uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Neispravan korisnik uid=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nemoguće promijeniti u CSD domaći direktorijum '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "UPOZORENJE: pokrenuli ste neisguran CSD kod sa nultim prioritetom\n" "\t Koristi komandnu liniju opcija \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nemoguće exec CSD script %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Nepoznat odgovor od servera\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server zahtjeva SSL klijent certifikat nakon što je jedan obezbjeđen\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server zahtjeva SSL klijent certifikat; nijedan nije konfigurisan\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST omogućen\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osvježavanje %s poslije 1 sekundi...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "(greška 0h%x)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Greška prilikom opisivanja greške!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GREŠKA: Ne može inicijalizirati utičnice\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIČNA GREŠKA: DTLS master tajna nije inicijalizovana. Molimo, prijavite " "ovo.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Greška kreirajući HTTPS CONNECT zahtjev\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Greška fetching HTTPS odgovor\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN servis nedostupan; razlog: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Ima neprikladan HTTP CONNECT odgovor: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Ima CONNECT odgovor: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Nema memorije za opcije\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID nema 64 karaktera; je: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nepoznat DTLS-Content-Encoding %s\n" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nepoznati CSTP-Sadržaj-Kodiran %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Nema MTU prijema. Ukidanje\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Nije IP adresa primljena. Ukidanje\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Primljeno je IPv6 podešavanje ali MTU %d je premali.\n" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IP adresu (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IP netmask (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IPv6 adresu (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IPv6 netmask (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP konektovan. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP komplet šifrera: %s\n" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Instalacija sažimanja neuspjela\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Alokacija deflate bafera neuspjela\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "podizanje neuspjelo\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS dekompresija neuspjela: %s\n" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "LZ4 dekompresija neuspjela\n" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "Nepoznat tip kompresije %d\n" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Primljen %s kompresovan paket podataka od %d bajta (bilo %d)\n" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate neuspio %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "Nije uspjela raspodela\n" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Primljen je kratak paket (%d bajta)\n" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Ne očekivani paket dužine. SSL_čita vraćeni %d ali paket je\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Ima CSTP DPD zahtjev\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Ima CSTP DPD odgovor\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Ima CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Primljen ne kompresovan paket podataka od %d bajta\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Primljeni server odspojen: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "Primljeni server odspojen\n" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Kompresovani paket primljen u !deflate režim\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "primljeni server završava paket\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nepoznati paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL napisao premalo bajta! Upitan za %d, poslano %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake nije uspio; pokušavanje novi-tunel\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detektovan dead peer!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Ponovna konekcija neuspjela\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Pošalji CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Pošalji CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Slanje kompresovanog paketa podataka od %d bajta (bilo je %d)\n" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Slanje ne kompresovanog paketa podataka od %d bajta\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslan BYE paket: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokušavanje Digest autentifikacije za proxy\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Pokušana Digest prijava na server '%s'\n" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Neuspjelo kreirati SSL_SESSION ASN.1 za OpenSSL: %s\n" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL neuspio analizirati SSL_SESSION ASN.1\n" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Postavljanje DTLSv1 sesije neuspjelo\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Postavljanje DTLSv1 CTX neuspjelo\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Postavljanje DTLS šifre neuspjelo\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Nije precizirana jedna DTLS šifra\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "Seje http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Usi the --no-dtls command linije option to avoid this message\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Osnovana DTLS veza (pomoću OpenSSL). Ciphersuite %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Tvoj OpenSSL je stariji od ovog kojeg si napravio ponovo, pa DTLS možda neće " "uspjeti!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Za DTLS spajanje vrijeme isteklo\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ovo je možda zato što tvoj OpenSSL je pukao\n" "Pogledaj http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS spajanje neuspjelo: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nepoznati DTLS parametri za zahtjevani CipherSuite '%s'\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Neuspjeh pri postavljanju DTLS prioriteta: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Neuspjeh pri postavljanju DTLS sesije parametara: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Neuspjeh pri postavljanju DTLS MTU: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Osnovana DTLS veza (pomoću GnuTLS). Ciphersuite %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS spajanje neuspjelo: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Da li vas mrežna barijera sprečava da pošaljete UDP pakete?)\n" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS veza je pokušana biti ostvarena sa postojećim fd\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Nema DTLS adrese\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server ponudio nema DTLS opcija o šifri\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Nema DTLS kada je konektovan putem proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS opcija %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS postavljen. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Pokušaj novu DTLS konekciju\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Primljen DTLS paket 0x%02x of %d bajta\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Ima DTLS DPD zahtjev\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Ne moguće poslati DPD odgovor. Očekuj odspajanje\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Ima DTLS DPD odgovor\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Ima DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Kompresovani DTLS paket primljen kada kompresija nije bila omogućena\n" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nepoznati DTLS paket tipa %02x, lijen %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS Rehandshake nije uspio; ponovna konekcija.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detektovan dead peer!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Pošalji DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Ne moguće poslati DPD zahtjev. Očekuj odspajanje\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Pošalji DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Ne moguće poslati keepalive zahtjev. Očekuj odspajanje\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS je napisao grešku %d. Vraća se na SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS je napravo grešku: %s. Vraća se na SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Poslan DTLS paket od %d bajta; DTLS poslao vraćeni %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Prihvatam očekivani ESP paket sa seq %u\n" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "Odbacujem stari ESP paket s seq %u (očekivano %u)\n" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "Prihvatam prekoredni ESP paket sa seq %u (očekivano %u)\n" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odbacujem ponovljeni ESP paket sa seq %u\n" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "Prihvatam kasnije od očekivanog ESP paket sa seq %u (očekivano %u)\n" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametri za %s ESP: SPI 0x%08x\n" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP tip šifrovamka %s ključ 0x%s\n" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP tip autentifikacije %s ključ 0x%s\n" #: esp.c:217 msgid "incoming" msgstr "dolazni" #: esp.c:218 msgid "outgoing" msgstr "odlazni" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "Pošalji ESP testove\n" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Primljen ESP paket od %d bajta\n" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "Uzmi u obzir SPI 0x%x, seq %u prema izlaznoj ESP postavci\n" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Primljen ESP paket s nevažećim SPI 0x%08x\n" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Primljen ESP paket sa neprepozntom vrsom sadržaja %02x\n" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Pogrešna dopunjavajuča dužina %02x u ESP\n" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "Pogrešni dopunjavajući bajtovi u ESP\n" #: esp.c:321 msgid "ESP session established with server\n" msgstr "ESP sessija uspostavljena s serverom\n" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Neuspješna alokacija memorije za dešifrovanje ESP paketa\n" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO dekompresija ESP paketa neuspjela\n" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO dekompresovao %d bajtova u %d\n" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "Rekey nije realizovan za ESP\n" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "ESP prepoznao neaktivnog saradnika\n" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "Pošalji ESP testove za DPD\n" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive nije realizovan za ESP\n" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Neuspjelo poslati ESP paket: %s\n" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Poslan ESP paket od %d bajta\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Neuspjelo inicijalizirati ESP šifru: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Neuspjelo inicijalizirati ESP HMAC: %s\n" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Neuspjelo generisati slučajne ključeve za ESP: %s\n" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Neuspjelo izračunati HMAC za ESP paket: %s\n" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "Primljen ESP paket s neispravnim HMAC\n" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dešifrovanje ESP paketa neuspjelo: %s\n" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "Neuspjelo generisati ESP paket IV: %s\n" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Neuspjelo šifrovanje ESP paketa: %s\n" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL pisanje otkazano\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Ne može upisati u SSL soket: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL čitanje otkazano\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "SSL utičnica je zatvorena neispravno\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Ne može pročitati iz SSL soketa: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL očitao grešku: %s; ponovno konektovanje.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL poslao nespjeh: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Ne može izvući vrijeme isteka od certifikata\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Certifikat klijenta je istekao" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Certifikat klijenta istice uskoro" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Ne može učitati predmet '%s' iz keystore: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Ne može otvoriti kljč/certifikat datoteku %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nije uspio stat ključ/certifikat datoteka %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Neuspjeh pri alociranju bafera certifikata\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Ne može učitati certifikat u memoriju: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Ne može instalirati PKCS#12 podatkovnu strukturu: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Ne može dešifrirati PKCS#12 certifikat datoteku\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Unesi PKCS#12 prolaznu frazu:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Ne može procesuirati PKXS#12 datoteku: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Ne može učitati PKCS#12 certifikat: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Ubacivanje X509 certifikata neuspjelo: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Postavljanje PKCS#12 certifikata neuspjelo: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ne može pokrenuti MD5 sastav: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash greška: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Nedostaje DEK-infor: zaglavlje iz OpenSSL šifrovanog ključa\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Ne može odrediti PEM Šifrovani tip\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Ne podržan PEM šifrovani tip: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neispravna salt u šifrovanim PEM datotekama\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Greška base64-dešifriranje šifrovanih PEM datoteka: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Šifrovane PEM datoteke prije male\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Ne može pokrenuti šifru za dešifriranje PEM datoteka: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Neuspjeh pri dešifrovanju PEM datoteka: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Dešifrovanje PEM ključa neuspjelo\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Unesi PEM prolaznu frazu:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "Ova izvršna je izgrađena bez podrške ključa sistema\n" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Ova binarna datoteka je izgrađena bez podrške za PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Korsti PKCS#11 certifikat %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "Koristim sistemsko uvjerenje „%s“\n" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Greška pri učitavanju certifikata iz PKXS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Greška učitavanja sistemskog uvjerenja: %s\n" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Koristi certifikat datoteka %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 datoteka ne sadrži certifikat\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Nije pronađen certifikat u datoteci" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Učitavanje certifikata neuspjelo: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "Koristim sistemski ključ „%s“\n" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Greška pri pokretanju privatne ključ strukture: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Greška uvoza sistemskog ključa „%s“: %s\n" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Pokušavam adresu PKCS#11 ključa „%s“\n" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Greška pri pokretanju PKCS#11 ključ strukture: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Greška pri unosu PKCS#11 URL %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Koristi PKCS\"11 ključ %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Greška pri unosu PKCS#11 ključa u privatnu ključ strukturu: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Koristi privatnu ključ datoteku %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ova verzija OpenConnect je napravljena bez podrške za TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Neuspjeh pri prevođenju PEM datoteke\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Neuspjeh pri učitavanju PKCS#1 privatnog ključa: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Neuspjeh pri učitavanju privatnog ključa kao PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Neuspjeh pri dešifriranju PKCS#8 certifikat datoteke\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ne može utvrditi tip privatnog ključa %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ne može dobiti ključ ID: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Greška pri popisivanju podataka sa privatnim ključem: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Greška pri ovjeravanju potpisa protiv certifikata: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Nije pronađen SSL certifikat za usporedbu privatnog ključa\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Koristi klijent certifikat '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Postavljanje certifikata na opozivu listu neuspjelo: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Nije uspjela alokacija memorije za potvrdu\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "UPOZORENJE: GnuTLS vraćen pogrešan izdavateljski certs; ovjera možda " "neuspjela!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Dobijena sljedeća CA '%s' iz PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Neuspjeh pri alociranju memorije za podršku certifikatima\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodavanje podrške CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Postavljanje certifikata neuspjelo: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server predstavljen bez certifikata\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Greška pri pokretanju X509 cert strukture\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Greška pri unosu server cert\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "Ne mogu da izračunam heš serverskog uverenja\n" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Greška pri provjeri statusa server certifikata\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "certifikat opozvan" #: gnutls.c:1970 msgid "signer not found" msgstr "potpisnik nije pronađen" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "potpisnik nije CA certifikat" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "nesiguran algoritam" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certifikat nije još aktiviran" #: gnutls.c:1978 msgid "certificate expired" msgstr "certifikat istekao" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "neuspješna verifikacija potpisa" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "certifikat nema odgovarajući hostname" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Ovjera server certifikata neuspjela: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Neuspješna alokacija memorije za cafile certs\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Neuspješno učitavanje certifikata iz cafalie: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Neuspješno otvaranje CA datoteke '%s': %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Učitavanje certifikata neuspjelo. Zatvaranje.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Neuspješno postavljanje TLS prioriteta string: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL pregovara sa %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL povezivanje otkazano\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL konekcija neuspjela: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS non-fatal return during handshake: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Povezan na HTTPS na %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Reprogramirani SSL na %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN zahtjeva %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Pogrešan PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Ovo je zadnji pokušaj prije zaključavanja!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Samo još nekoliko pokušaja preostalo prije zaključavanja!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Unesi PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodržan OATH HMAC algoritam\n" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Neuspjelo izračunati OATH HMAC: %s\n" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Ne može unijeti podatke za potpisivanje u SHA1: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM znak funkcije pozvan za %d bajta.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Neuspjelo kreiranje TPM hash objekta: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Neuspjelo postavljanje vrijednosti u TPM hash objekat: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash potpis neuspio: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Greška dešifrovanja TSS ključa blob: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Greška u TSS ključ blob\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Neuspjelo kreiranje TPM kontekst: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Neuspjelo povezivanje TPM kontekst: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Neuspjelo učitavanje TPM SRK ključa: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Neuspjelo učitavanje TPM SRK smjer objekta: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Neuspjelo postavljanje TPM PIN: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Neuspjelo učitavanje TPM ključa: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Unesi TPM SRK PIN:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Neuspjelo kreiranje ključa policy objekta: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Ne može dodijeliti policy ključu: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Unesi TPM ključ PIN:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Neuspjeh pri postavljanju ključ PIN: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Greška slanja GSSAPI imena za autentifikaciju:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Greška generisanja GSSAPI odgovora:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokušavanje GSSAPI autentifikacije za zamjenu\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokušana GSSAPI authentication to server '%s'\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI autentifikacija završena\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI znak je previše dug (%zd bajta)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Slanje GSSAPI znaka od %zu bajta\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Neuspješno slanje GSSAPI autentifikacionog znaka za zamjenu: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Neuspješno primanje GSSAPI autentifikacionog znaka iz zamjene: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS server provjerava GSSAPI greške konteksta\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznati GSSAPI status odgovara (0x%02x) iz SOCKS servera\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobijen GSSAPI znak od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Slanje GSSAPI zaštitnog pregovaranja od %zu bajta\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Neuspješno slanje GSSAPI zaštitnog odgovora za zamjenu: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Neuspješno primanje GSSAPI zaštitnog odgovora iz zamjene: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobijen GSSAPI zaštitni odgovor od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Nevažeći GSSAPI zaštitni odgovor iz zamjene (%zu bajta)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS proxy zahtjeva integritet poruke, koji nije podržan\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS proxy zahtijeva poruku tajnosti, koja nije podržana\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS proxy zahtijeva zaštitu nepoznatog tipa 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokušavanje HTTP Basic autentičnosti za proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Pokušana HTTP Basic prijava na server '%s'\n" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ova verzija OtvoreneKonekcije je izgrađena bez GSSAPI podrške\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proxy traži Basic autentičnost koja je onemogućena\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nema više metoda autentičnosti za isprobavanje\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Nedostatak memorije za alokaciju cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nemoguće rasčlaniti HTTP odgovor '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Ima HTTP odgovor: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Greška pri procesiranju HTTP odgovora\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorisanje nepoznatih HTTP odgovora reda '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ne validan cookie ponuđen: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "SSL ovjera certifikata neuspjela\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Odgovor tijelo ima negativnu veličini (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nepoznat Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP tijelo %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Greška učitavanja HTTP odgovora tijela\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Greška u dijelu zaglavlja\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Greška HTTP odgovor tijela\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Greška u chunked dekodiran. Očekivan \",got: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ne može primiti HTTP 1.0 oblik bez zatvaranja konekcije\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nemoguće rasčlaniti preusmjereni URL '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ne može pratiti preusmjerenje na non-https URL '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Alociranje nove putanje za relativno preusmjerenje neuspjelo: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekivan %d rezultat od servera\n" #: http.c:1056 msgid "request granted" msgstr "zahtjev odobren" #: http.c:1057 msgid "general failure" msgstr "opšta greška" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "konekcija nije dopuštena od strane rulset" #: http.c:1059 msgid "network unreachable" msgstr "mreža je nedostupna" #: http.c:1060 msgid "host unreachable" msgstr "računar domaćin je nedostupan" #: http.c:1061 msgid "connection refused by destination host" msgstr "konekcija odbijena od strane domaćina" #: http.c:1062 msgid "TTL expired" msgstr "TTL istekao" #: http.c:1063 msgid "command not supported / protocol error" msgstr "komandan nije podržana/protokol greška" #: http.c:1064 msgid "address type not supported" msgstr "tip adrese nije podržan" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOCKS server zahtijeva korisničko ime/lozinku, ali nema ništa\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Korisničko ime i lozinka za SOCKS autentifikaciju mora biti < 255 bajta\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Greška pisanja auth ahtjev za SOCKS proxy: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Greška ulitavanja auth odgovor od SOCKS proxy: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Neočekivan auth odgovor od SOCKS proxy: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Autentifikovano za SOCKS server koristeći lozinku\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Autentifikacija lozinkom za SOCKS server nije uspjela\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS server zahtijeva GSSAPI autentifikaciju\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS server zahtijeva autentifikaciju lozinkom\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "SOCKS server zahtijeva autentifikaciju\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS server traži nepoznatu autentifikaciju tipa %02x\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Zahtjeva SOCKS proxy konekciju za %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Greška pisanja konekcija zahtjeva SOCKS proxy: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Greška učitavanja konekcije odgovor od SOCKS proxy: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekivana konekcija odgovor od SOCKS proxy: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy greška %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy greška %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekivana adresa tipa %02x u SOXKS konekcije odgovor\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Zahtjeva HTTP proxy konekciju za %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Slanje proxy zahtjeva neuspjelo: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy CONNECT zahtjev nije uspio: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nepoznat proxy tip '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Samo http ili soket(5) proxies podržani\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgradi ponovno SSL biblioteku bez Cisco DTLS podrške\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Ne može se analizirati server URL '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Samo https:// dozvoljeni za server URL\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Nema forma handler; ne može potvrditi.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Nije uspjela funkcija linije naredbi u argument: %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatalna greška u rukovanju komandnom linijom\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Nije uspjela funkcija čitanja konzole: %s\n" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Greška pretvaranja ulaza konzole: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Alokacija neuspjela za string iz stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Za pomoć pri OtvorenojKonekciji, molimo pogledajte web stranicu\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Koristi OpenSSl. Odlike predstavljen:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Koristi GnuTLS. Odlike predstavljene:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE nije prikazan" #: main.c:613 msgid "using OpenSSL" msgstr "koristi OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "UPOZORENJE: Nema DTLS podrške u binarnoj. Performanse ci biti smanjene.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ne može se obraditi ovaj izvršni put \"%s\"" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokacija za vpnc-script put nije uspjela\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Upotreba: openconnect [opcije]\n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Otvori klijenta za Cisco AnyConnect VPN, verzija %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Pročitaj opcije iz config datoteke" #: main.c:710 msgid "Continue in background after startup" msgstr "Nastavi u pozadini poslije podizanja" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Napiši deamon's PID za ovu datoteku" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Koristi SSL klijent sertifikat CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Upozori kada sertifikat vrijemeživota < DANI" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Koristi SSL privatni ključ datoteke KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Koristi WebVPN cookie COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Pročitaj cookie sa standardnog ulaza" #: main.c:718 msgid "Enable compression (default)" msgstr "Omogući sažimanje (Uobičajno)" #: main.c:719 msgid "Disable compression" msgstr "Onemogući sažimanje" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Postavi minimum Dead Peer Detection interval" #: main.c:721 msgid "Set login usergroup" msgstr "Postavi login korisničkugrupu" #: main.c:722 msgid "Display help text" msgstr "Pomoćni tekst na zaslonu" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Koristi IFNAME for tunel sučelje" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Koristi syslog za punjenje poruka" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Prepend timestamp u toku poruke" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Odbaci privilegije poslije povezivanja" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Odbaci privilegije tokom CSD izvršavanja" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Pokreni SCRIPT umjesto CSD binarne" #: main.c:733 msgid "Request MTU from server" msgstr "Zahtijeva MTU od servera" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Postaviti put MTU za/od servera" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Postaviti ključ lozinku ili TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Lozinka je fsid od datoteke sistema" #: main.c:737 msgid "Set proxy server" msgstr "Postavi proxy server" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Postavite proxy metode provjere autentičnosti" #: main.c:739 msgid "Disable proxy" msgstr "Onemogući proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Koristi libproxy za automatsko konfigurisanje proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(BILJEŠKA: libproxy onemogućen u ovoj izradi)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Zahtijeva se savršeno prosljeđivanje tajnosti" #: main.c:745 msgid "Less output" msgstr "Nema izlaza" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Postavi paket red ogranicen na LEN pkts" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Okolna komandna linija za korištenje vpnc-kompatibilna onfig skripta" #: main.c:748 msgid "default" msgstr "podrazumijevano" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Prođi put do 'script' program" #: main.c:752 msgid "Set login username" msgstr "Postavi login korisnicko ime" #: main.c:753 msgid "Report version number" msgstr "Prijavi broj verzije" #: main.c:754 msgid "More output" msgstr "Još izlaza" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Smetljište HTTP ovjera puta (implicira --verbose" #: main.c:756 msgid "XML config file" msgstr "XML config datoteka" #: main.c:757 msgid "Choose authentication login selection" msgstr "Odaberi ovjeru za login odabir" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Ovjeri samo i printaj informacije o unosu" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Samo donesi webvpn cookie; ne povezuj se" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Otkucaj webvpn cookie prije povezivanja" #: main.c:761 msgid "Cert file for server verification" msgstr "Cert datoteka za provjeru servera" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Ne pitaj za IPv6 povezivanje" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL šifra za podršku za DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Onemogući DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Onemogući ponovnu upotrebu HTTP konekcije" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Isključi šifru/SecurID ovjeru" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Ne zahtijeva server SSL cert da bi bio validan" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "Isključuje osnovne sistemske izdavače uvjerenja" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Ne pokušaL POST ovjeru" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Ne očekuj unos korisnika; izađi ako je to zatraženo" #: main.c:771 msgid "Read password from standard input" msgstr "Učitaj šifru sa standardnog ulaza" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Softver znak tipa: rsa, totp or hotp" #: main.c:773 msgid "Software token secret" msgstr "Software token skriven" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(BILJEŠKA: libstoken (RSA SecurID) isključen u ovoj izgradnji)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NAPOMENA: „Yubikey“ OATH je isključen u ovoj izgradnji)" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Vrijeme u sekundama nakon koga konekcija ističe" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Server certifikat SHA1 otisakprsta" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP zaglavlje Korisnik-Agent: polje" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "OS tip (linux,linux-64,win,...) za izvještaj" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Postavi lokalni port za FTLS datagrams" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Greška pri alociranju stringa\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Ne može uzeti red iz config datoteke: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Ne prepoznatljiva opcija u redu %d: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcija '%s' ne prima argument iz reda %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcija '%s' zahtijeva argument u redu %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UPOZORENJE: Ova verzija otvorene mreže je izgrađena bez iconv\n" " podržava, ali izgleda kao da koristite stari znak\n" " postavi \"%s\". Očekujte bizarnosti.\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UPOZORENJE: Ova verzija otvorene veze je %s, ali\n" " libopenconnect biblioteka je %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Neuspijeh pri alociranju vpninfo strukture\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Pogrešan korisnik \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ne može koristiti 'config' opciju unutar config datoteke\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ne može otvoriti config datoteku '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Pogrešan kompresioni režim '%s'\n" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d previše mali\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Isključivanje svih HTTP konekcija ponovna upotreba uslijed --no-http-" "keepalive opcije.\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulta dužina reda nije dopuštena; koristi 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verzja %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Pogrešan software toke režim \"%s\"\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Pogrešan OS identitet \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Previše argumenata na komandnoj liniji\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Nijedan server nije specificiran\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ova verzija openconnect je napravljena bez podrške za libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Greška prilikom otvaranja cmd pipe-a\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nemoguće dobiti WebVPN cookie\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Kreiranje SSL konekcije neuspjelo\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Nije postavljen tun script\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Instaliranje tun uređaja neuspjelo\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Instaliranje DTLS neuspjelo; umjesto toga koristi SSL\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "Konektovan %s kao %s%s%s, koristi %s%s\n" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nije obezjbeđen --script argument; DNS i usmjeravanje nije konfigurisano\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Pogledaj http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Ne može otvoriti '%s' za pisanje: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Nastavljanje u pozadini; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "Korisnički zahtjev ponovo uspostavlja konekciju\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie je izbacio ponovnu konekciju; izlazak.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Sesija prestaje serverom; izlazak.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Korisnik je otkazao (SIGINT); izlazak.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Korisnik je odvojen od sjednice (SIGHUP); izlazak.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Nepoznata greška; izlazak.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Ne može otvoriti %s za pisanje: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Ne može pisati config u %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certifikat nije uspostavljen: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikat od VPN servera \"%s\" neuspjela ovjera.\n" "Razlog: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Unesi '%s' za prihvatanje, '%s' za ignorisanje; bilo što drugo da vidiš: " #: main.c:1661 main.c:1679 msgid "no" msgstr "ne" #: main.c:1661 main.c:1667 msgid "yes" msgstr "da" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "Heš serverskog ključa: %s\n" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth izbor \"%s\" poklapa se s više opcija\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth izbor \"%s\" nije dostupan\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Korisnički unos zahtijeva ne-interaktivni režim\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Neuspješno otvaranje datoteke znaka za pisanje: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Neuspješno pisanje znaka: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Soft token string nije ispravan\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ne može otvoriti ~/.stokenrc file\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nije izgrađen sa libstoken podrškom\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Opći neuspjeh u libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nije izgrašen sa liboath podrškom\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Opći neuspjeh u liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "Nisam našao modul Jubi ključa\n" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom Jubi ključa\n" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Opšti neuspjeh Jubi ključa: %s\n" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Pozivatelj je pauzirao konekciju\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nema šta za uraditi; gašenje za %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Čekanje na više objekata nije uspelo: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() nije uspio: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() nije uspio: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Greška komuniciranja sa ntlm_auth pomoćnikom\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Pokušavanje HTTP NTLM autentičnosti za proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Pokušana HTTP NTLM prijava na server '%s' (prosta prijava)\n" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Pokušavanje HTTP NTLMv%d autentičnosti za proxy\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Pokušana HTTP NTLMv%d prijava na server '%s'\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Pokrešan base32 token string\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Neuspješna alokacija memorije za dekodiranje OATH tajne\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ova verzija OtvoreneKonekcije je izgrađena bez PSKC podrške\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Uredu da generišete INITIAL tokencode\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Uredu da generišete NEXT tokencode\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server je odbio soft token; promijenite na ručni ulaz\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generisanje OATH TOTP token koda\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Generisanje OATH HOTP oznake koda\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ne validan cookie ponuđen: %s\n" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekivana dužina %d za TLV %d/%d\n" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "Zahtijeva MTU %d od servera\n" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "Primljen DNS server %s\n" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Primljena DNS domena pretrage %.*s\n" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "Primljena interna IP adresa %s\n" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "Primljena mrežna maska %s\n" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "Primljena interna adresa mrežnog izlaza %s\n" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "Primljena razdvajajuća ruta uključenja %s\n" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "Primljena razdvajajuća ruta isključenja %s\n" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "Primljen WINS server %s\n" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifrovanje: 0x%02x (%s)\n" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "ESP kompresija: %d\n" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "ESP port: %d\n" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP dužina života ključa: %u bajta\n" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP dužina života ključa: %u sekundi\n" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP u SSL rezervno rješenje: %u sekundi\n" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP zaštita pri ponovnom izvođenju: %d\n" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (izlaz): %x\n" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajta ESP tajni\n" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nepoznata TLV grupa %d attr %d len %d:%s\n" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "Neuspjelo analizirati KMP zaglavlje\n" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "Neuspjelo analizirati KMP poruku\n" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Dobijena KMP poruka %d veličine %d\n" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Primljen ne-ESP TLV (grupa %d) u ESP dogovoru KMP\n" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "Greška kreirajući oNCP zahtjev za pregovor\n" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "Kratko pisanje u oNCP ugovaranju\n" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Pročitano %d bajta SSL zapisa\n" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekivan odgovor veličine %d nakon hostname paketa\n" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverski odgovor na hostname paket je greška 0x%02x\n" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pogrešan paket čeka na KMP 301\n" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Očekivana KMP poruka 301 sa servera ali je dobijeno %d\n" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "Greška usaglašavanja ESP ključeva:\n" #: oncp.c:800 msgid "new incoming" msgstr "novi dolazni" #: oncp.c:801 msgid "new outgoing" msgstr "novi odlazni" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Ignoršem ESP ključeve pošto ESP podrška nije dostupna u ovoj gradnji\n" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nepoznata KMP poruka %d veličine %d\n" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d dodatnih bajtova neprimljeno\n" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "Odlazni paket:\n" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "Poslan ESP omogućujući kontrolni paket\n" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GREŠKA: %s() pozvana sa neispravnim UTF-8 za '%s' argumentom\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "Neuspjelo inicijalizirati ESP šifru:\n" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "Neuspjelo inicijalizirati ESP HMAC\n" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "Neuspjelo generisati slučajne ključeve za ESP:\n" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Neuspjelo postavljanje dekripcijskog konteksta za ESP paket:\n" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "Neuspjelo dešifrovanje ESP paketa:\n" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "Neuspjelo generisati slučajni IV za ESP paket:\n" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "Neuspjelo postavljanje enkripcijskog konteksta za ESP paket:\n" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "Neuspjelo šifrovanje ESP paketa:\n" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nisam uspeo da uspostavim libp11 PKCS#11 kontekst:\n" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "Nisam uspeo da učitam modul PKCS#11 dostavljača (p11-kit-proxy.so):\n" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "PIN je zaključan\n" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "PIN je istekao\n" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "Drugi korisnik je već prijavljen\n" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nepoznata greška prijavljivanja na PKCS#11 modul\n" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prijavljen sam na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim uvjerenja u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nađoh %d uvjerenja u priključku „%s“\n" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nisam uspeo da obradim PKCS#11 putanju „%s“\n" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nisam uspeo da nabrojim PKCS#11 priključke\n" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Prijavljujem se na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 nije dovukla sadržaj H.509 uverenja\n" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Neuspješno instaliranje potvrde u OpenSSL kontekstu\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim ključeve u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nađoh %d ključa u priključku „%s“\n" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nisam uspeo da napravim primjerak ličnog ključa iz PKCS#11\n" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "Dodavanje ključa iz PKCS#11 nije uspelo\n" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PKCS#11 podrške\n" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Neuspjeh pri upisivanju u SSL soket\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Ne može pročitati iz SSL soketa\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL očitao grešku %d (moguće je da će server zatvoriti konekciju); ponovno " "konektovanje.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_upis neuspio: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nepoznata vrsta zahtjeva KS SSL-a %d\n" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM šifra preduga (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Posebni cert iz %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Fraza PKCS#12 neuspjela (napravi uvid u greške)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 ne sadrži certifikat!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 ne sadrži privatni ključ!" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Ne može učitati TPM engine.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Ne može pokrenuti TPM engine\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Ne može postaviti TPM SRK šifru\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Ne može učitati TPM privatni ključ\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Dodavanje ključa iz TPM neuspjelo\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Neuspjeh pri otvaranju certifikat datoteke %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Učitavanje certifikata neuspjelo\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Neuspješno procesiranje svih cert-ova podrške. Pokušavaj u svakom " "slučaju...\n" #: openssl.c:710 msgid "PEM file" msgstr "PEM datoteka" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Ne može kreirati BIO za keystore objekt '%s'\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Učitavanje privatnog ključa neuspjelo (pogrešna šifra?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Učitavanje privatnog ključa neuspjelo (izvrši uvid grešaka)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Neuspjelo učitavanje X509 certifikata iz keystore\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nemoguće korištenje X509 certifikata iz keystore\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Nemoguće koristiti privatni ključ iz keystore\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Ne može otvoriti privatnu ključ datoteku %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Neuspješno preuzimanje privatnog ključa\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Ne može identifikovati tip privatnog ključa u '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Ne odgovara za altname '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikat ima GEN_IPADD altname sa prividnom dužinom %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Uparena %s adresa '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ne odgovara za %s adresu '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' ima ne praznu putanju; ukidanje\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Odgovarajući URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Ne odgovara za URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nema altname u odgovarajućem certifikatu '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Nema imena subjekta u certifikatu!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Ne može razdvojiti ime subjekta u certifikatu\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Subjekat certifikata je neusklađen ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odgovarajuće ime subjekta certifikata '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatni cert iz cafile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Greška u klijent cert notAfter polje\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nemoguće pročitati certs iz CA datoteke '%s'\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Ne može otvoriti CA datoteku '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Spajanje SSL neuspjelo\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "Neuspjelo izračunavanje OATH HMAC\n" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odbaci lošu podjelu uključujući: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odbaci lošu podjelu isključujući: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nemoguće spawn script '%s' za %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' zavrišio nenormalno (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' vraćena greška %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Soket konekcija otkazana\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Nemoguće ponovno povezivanje na proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Nemoguće ponovno povezivanje na host %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy iz libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo neuspjelo za host '%s': %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponovo se povezujem na DinDNS server koristeći prethodno pričuvanu IP " "adresu\n" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokušavanje povezivanja na proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokušavanje povezivanja na server %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Nemoguće alocirati sockaddr skladište\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "Zaboravljam ne-delotvornu adresu prehodnog parnjaka\n" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nemoguće se povezati na host %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Rekonektuj za proxy %s\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "Ne mogu dobiti sistem datoteka ID za lozinku\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Neuspješno otvaranje datoteke privatnog ključa '%s': %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Nema greške" #: ssl.c:588 msgid "Keystore locked" msgstr "Keystore zaključano" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Keystore nepoznato" #: ssl.c:590 msgid "System error" msgstr "Sistemska greška" #: ssl.c:591 msgid "Protocol error" msgstr "Pogreška u protokolu" #: ssl.c:592 msgid "Permission denied" msgstr "Dopuštenje odbijeno" #: ssl.c:593 msgid "Key not found" msgstr "Ključ nije pronađen" #: ssl.c:594 msgid "Value corrupted" msgstr "Vrijednost nevalidna" #: ssl.c:595 msgid "Undefined action" msgstr "Ne definisana akcija" #: ssl.c:599 msgid "Wrong password" msgstr "Pogrešna šifra" #: ssl.c:600 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() korišten bez podrške moda '%s'\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Nepoznata protokol familija %d. Ne može kreirati UDP adresu servera\n" #: ssl.c:832 msgid "Open UDP socket" msgstr "Otvori UDP soket" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nepoznata protokol familija %d. Ne može se koristiti UDP transport\n" #: ssl.c:871 msgid "Bind UDP socket" msgstr "Poveži UDP soket" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "Povezivanje na UDP soket\n" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie nije više validan, završavanje zasjedanja\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spavanje %ds, Preostalo vrijeme %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI oznaka je previše velika (%ld bajta)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Slanje SSPI oznake od %lu bajta\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Neuspješno slanje SSPI autentične oznake za proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Neuspješno primanje SSPI autentične oznake iz proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS server provjerava SSPI greške konteksta\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat SSPI status odgovara (0x%02x) iz SOCKS servera\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Dobijena SSPI oznaka od %lu bajta: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() nije uspio: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() nije uspio: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() rezultat je previše veliki (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Slanje SSPI zaštitnog pregovaranja od %u bajta\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Neuspješno slanje SSPI zaštitnog odgovora za proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Neuspješno primanje SSPI zaštitnog odgovora iz proxy: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Dobijen SSPI zaštitni odgovor od %d bajta: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage nije uspio: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neispravan SSPI zaštitni odgovor iz proxy (%lu bajta)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Unesi akreditiv da otključaš software token." #: stoken.c:82 msgid "Device ID:" msgstr "Uređaj ID:" #: stoken.c:89 msgid "Password:" msgstr "Lozinka:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Korisnik preskočio soft token.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Sva polja su potrebna; pokušajte ponovo.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Opšte pogreške u libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Pogrešan uređaj ID ili lozinka; pokušajte ponovo.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Soft token init bio je uspješan.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Unesi seftver oznaku PIN-a." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Neispravan PIN format; pokušajte ponovo.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generisanje RSA token koda\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Greška prilikom pristupa ključu registra za mrežne adaptere\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorisanje neodgovarajućeg TAP interfejsa \"%s\"\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Nije pronađen Windows-TAP adapter. Je li instaliran drajver?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Neuspjelo otvaranje %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Otvoren tun uređaj %s\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nisam uspeo da dobijem izdanje TAP upravljačkog programa: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Greška: TAP-Windows driver v9.9 ili veći je potreban (pronađen %ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nisam uspeo da podesim TAP IP adrese: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nisam uspeo da podesim stanje TAP medija: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP uređaj je prekinuo povezivost. Prekidam vezu.\n" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nisam uspeo da čitam sa TAP uređaja: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nisam uspeo da dovršim čitanje sa TAP uređaja: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Napisano %ld bajta za tun\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Čekanje za tun pisanje...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Napisano %ld bajta za tun nakon čekanja\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nisam uspeo da pišem na TAP uređaj: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Miješanje tunel oznaka nije još uvijek podržano na Windowsu\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ne može otvoriti /dev/tun za protok" #: tun.c:92 msgid "Can't push IP" msgstr "Ne može staviti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ne može postaviti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nije moguće otvoriti %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ne može mjeriti %s za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otvori /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Neuspjeh pri kreiranju novog tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Ne može staviti tun deskriptor datoteke u poruku-odbačeni režim" #: tun.c:196 msgid "open net" msgstr "otvori nit" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Neuspjeh pri otvaranju tun uređaja: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Neuspjelo povezivanje lokalnog tun uređaja (TUNSETIFF): %s\n" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Za konfiguraciju lokalne mreže, openconnect mora biti pokrenut kao root\n" "Vidi http://www.infradead.org/openconnect/nonroot.html za više informacija\n" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „utun%%d“ ili „tun%%d“\n" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nisam uspeo da otvorim „SYSPROTO_CONTROL“ priključnicu: %s\n" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nisam uspeo da propitam ib kontrole utuna: %s\n" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "Nisam uspeo da dodijelim naziv utun uređaja\n" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nisam uspeo da povežem utun jedinicu: %s\n" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ne ispravno ime sučelja '%s'; mora match 'tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ne može otvoriti '%s': %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair nije uspio: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "fork nije uspio: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Nepoznat paket (lijen %d) primljen: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Neuspjeh pri upisivanju dolazećeg paketa: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Neuspjelo otvaranje %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Neuspjelo fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Neuspjelo alociranje %d bajta za %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Neuspjelo čitanje %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Izloženi host \"%s\" kao osjetljiv hostname\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Neuspjeh za SHA1 postojecu datoteku\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config datoteka SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nemoguće razdvojiti XML config datoteku %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" ima adresu \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" ima korisničku grupu \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" nije pronađen u config; označen kao nesiguran hostname\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nisam uspeo da pošaljem „%s“ do programčeta „ykneo-oath“: %s\n" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neispravan kratak odgovor za „%s“ od programčeta „ykneo-oath“\n" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Neuspjeli odgovor za „%s“: %04x\n" #: yubikey.c:158 msgid "select applet command" msgstr "izaberi naredbu programčeta" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nepoznat odgovor od programčeta „ykneo-oath“\n" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Našao sam programče „ykneo-oath“ i%d.%d.%d.\n" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "Potreban je PIN za OATH programče Jubi ključa" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "PIN Jubi ključa:" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nisam uspeo da izračunam odgovor otključavanja Jubi ključa\n" #: yubikey.c:256 msgid "unlock command" msgstr "naredba otključavanja" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Pokušavam truncated-char PBKBF2 varijantu za Yubikey PIN\n" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nisam uspeo da uspostavim PC/SC kontekst: %s\n" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "PC/SC kontekst je upsostavljen\n" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nisam uspeo da propitam spisak čitača: %s\n" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nisam uspeo da se povežem sa PC/SC čitačem „%s“: %s\n" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Povezan je PC/SC čitač „%s“\n" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup čitaču „%s“: %s\n" #: yubikey.c:398 msgid "list keys command" msgstr "naredba spiska ključeva" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nađoh %s/%s kljzč „%s“ na „%s“\n" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nisam našao modul „%s“ na Jubi ključu „%s“. Tražim drugi Jubi ključ...\n" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odbija modul Jubi ključa; prelazim na ručni unos\n" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "Stvaram kod modula Jubi ključa\n" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup Jubi ključu: %s\n" #: yubikey.c:600 msgid "calculate command" msgstr "naredba izračunavanja" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nepoznat odgovor sa Jubi ključa prilikom stvaranja koda modula\n" openconnect-7.06/po/LINGUAS0000664000076400007640000000015412502026115012351 00000000000000ar bs cs de el en_GB en_US es eu fi fr gl hu id lt nl pa pl pt_BR pt sk sl sr@latin sr tg ug uk zh_CN zh_TW openconnect-7.06/po/es.po0000664000076400007640000027541712502026115012313 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Spanish (Castilian) (http://www.transifex.net/projects/p/" "meego/language/es/)\n" "Language: es\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "No se puede gestionar el método='%s' del formulario, acción='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falló al generar el código de testigo OTP; desactivando testigo\n" #: auth.c:94 msgid "Form choice has no name\n" msgstr "El formulario elegido no tiene nombre\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "el nombre %s no es una entrada\n" #: auth.c:186 msgid "No input type in form\n" msgstr "No hay tipo de entrada en el formulario\n" #: auth.c:198 msgid "No input name in form\n" msgstr "No hay nombre de entrada en el formulario\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada %s desconocido en el formulario\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Respuesta desde el servidor vacía\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Falló al analizar la respuesta del servidor\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "La respuesta fue:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Se recibió un no esperado.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "La respuesta XML no tiene nodo «auth»\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Se pidió la contraseña, pero se estableció '--no-passwd'\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "No se descarga el perfil XML porque ya SHA1 ya coincide\n" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falló al abrir una conexión HTTPS con %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Falló al enviar la petición GET para la nueva configuración\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "El archivo de configuración descargado no coincide con el SHA1 esperado\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "Perfil XML nuevo descargado\n" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Error: todavía no está implementada la ejecución del troyano «Cisco Secure " "Desktop» en Windows.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Error: el servidor ha pedido ejecutar CSD hotscan.\n" "Necesita proporcionar un argumento --csd-wrapper adecuado.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: el servidor solicitó descargar y ejecutar un troyano «Cisco Secure " "Desktop».\n" "Esta facilidad está desactivada de manera predeterminada por razones de " "seguridad, por lo que podría querer activarla.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Intentando ejecutar el script troyano CSD de Linux.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falló al abrir el archivo temporal del script CSD: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falló al escribir el archivo temporal del script CSD: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Falló al establecer el UID %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "uid=%ld del usuario no válido\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falló al cambiar a la carpeta local «%s» de CSD: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Advertencia: está ejecutando código CSD inseguro con privilegios de " "administrador\n" "\tUse la opción de línea de comandos «--csd-user»\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falló al ejecutar el script CSD %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Respuesta desconocida del servidor\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "El servidor solicitó el certificado SSL del cliente tras proporcionarle uno\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "El servidor solicitó el certificado SSL del cliente; no se ha configurado " "ninguno\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "POST XML activado\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Actualizando %s tras 1 segundo…\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Error: no se pueden inicializar los sockets\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "Error crítico: el secreto DTLS maestro no está inicializado. Informe de " "esto.\n" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "Error al crear la solicitud HTTPS CONNECT\n" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Error al obtener respuesta HTTPS\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servicio VPN no disponible; razón: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Se obtuvo una respuesta HTTP CONNECT inadecuada: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Se obtuvo la respuesta CONNECT: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "No hay memoria para opciones\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session no es de 64 caracteres; es: «%s»\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s desconocido\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "No se recibió MTU. Abortando\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "No se recibió dirección IP. Abortando\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "La reconexión dio una dirección IP heredada distinta (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "La reconexión dio una máscara de red heredada distinta (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "La reconexión dio una dirección IPv6 heredada distinta (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "La reconexión dio una máscara de red IPv6 heredada distinta (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP conectado. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Falló la configuración de compresión\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Falló la localización del buffer vacío\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "falló el llenado\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "falló el vaciado %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Longitud de paquete inesperada. SSL_read devolvió %d pero el paquete es\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Se obtuvo la petición CSTP DPD\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Se obtuvo la respuesta CSTP DPD\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Se obtuvo Keppalive CSTP\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Se recibió el paquete de datos sin comprimir de %d bytes\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Se recibió el una desconexión del servidor: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Se recibió el paquete comprimido en modo !vacío\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "se recibió el paquete de fin del servidor\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquete desconocido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL escribió demasiados pocos bytes. Se pidieron %d, se enviaron %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "Renegociación de clave CSTP pendiente\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Renegociación fallida; intentando un túnel nuevo\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "La detección de muerte del par CSTP detectó la muerte del par\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Falló al reconectar\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Enviar CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Enviar CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Enviando paquete de datos sin comprimir de %d bytes\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar paquete BYE: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "Intentando la autenticación Digest en el proxy\n" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Falló al inicializar la sesión DTLSv1\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Falló al inicializar DTLSv1 CTX\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Falló al establecer la lista de cifrado DTLS\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "No precisamente un cifrado DTLS\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falló con el protocolo antiguo 0x%x\n" "¿Está usando una versión de OpenSSL más antigua que la 0.9.8m?\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use la opción de la línea de comandos --no-dtls para evitar este mensaje\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Establecida la conexíon DTLS (usando OpenSSL). Ciphersuite %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Su versión de OpenSSL es anterior a la que usó para compilar, por lo que " "DTLS podría fallar." #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "Expiró tiempo de la negociación DTLS\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Esto es probablemente debido a que su OpenSSL está roto\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Falló la negociación DTLS: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" "Parámetros DTLS desconocidos para la petición del conjunto de cifrado «%s»\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Falló al establecer la prioridad DTLS: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falló al establecer los parámetros de sesión: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falló al establecer la MTU de DTLS %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Conexión DTLS establecida (usando GnuTLS). Ciphersuite %s.\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Falló la negociación DTLS: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "Intento de conexión DTLS con un «fd» existente\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Sin dirección DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "El servidor no ofreció opción de cifrado DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Sin DTLS cuando se conecta vía proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opción DTLS %s: %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializado. DPD %d, Keepalive %d\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Intentar nueva conexión DTLS\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recibió el paquete DTLS 0x%02x de %d bytes\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Solicitud DTLS DPD obtenida\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falló al enviar respuesta DPD. Espere desconectar\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Respuesta DTLS DPD obtenida\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Obtenido Keepalive DTLS\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Paquete DTLS tipo %02x desconocido, longitud %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "Renegociación de clave DTLS pendiente\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Falló la renegociación DTLS; reconectando\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "¡La detección de muerte del par DTLS detectó la muerte del par!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Enviar DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falló al enviar petición DPD. Espere para desconectar\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Enviar Keepalive DTLS\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falló al enviar petición de keepalive. Espere para desconectar\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS obtuvo el error de escritura %d. Volviendo a SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obtuvo el error de escritura: %s. Volviendo a SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Envió paquete DTLS de %d bytes; el envío DTLS devolvió %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Escritura SSL cancelada\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Falló al escribir en el socket SSL: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "Lectura SSL cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "Socket SSL cerrado no limpiamente\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Falló al leer del socket SSL: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Error de lectura SSL: %s; reconectando.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Falló el envío SSL: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "No se pudo extraer la fecha de caducidad del certificado\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "El certificado del cliente ha caducado el" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "El certificado del cliente caduca pronto el" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falló al cargar el elemento «%s» del almacén de claves: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falló al abrir el archivo de clave/certificado %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falló al obtener el estado del archivo de clave/certificado %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Falló al asignar el búfer del certificado\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falló al leer el certificado en memoria: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falló al configurar la estructura de datos PKCS#12: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falló al descifrar el archivo del certificado PKCS#12\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Introduzca contraseña PKCS#12:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falló al procesar el archivo PKCS#12: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falló al cargar el certificado PKCS#12: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Falló la importación del certificado X509: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Falló la configuración del certificado PKCS#11: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "No se pudo inicializar el hash MD5: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "Error del hash MD5: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info perdido: cabecera desde clave OpenSSL cifrada\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "No se puede determinar el tipo de cifrado PEM\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de cifrado PEM no soportado: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Semilla no válida en el archivo PEM cifrado\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error base64-decoding del archivo PEM cifrado: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Archivo cifrado PEM demasiado corto\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Falló al inicializar el cifrado para el archivo PEM de descifrado: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falló al descrifrar la clave PEM: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Falló al descifrar la clave PEM\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Introduzca contraseña PEM:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Este binario se compiló sin soporte PKCS#11\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error al cargar el certificado desde PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Usando archivo de certificado %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "El archivo PKCS#11 no contiene ningún certificado\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Certificado no encontrado en el archivo" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Falló al cargar certificado: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error al inicializar la estructura de clave privada: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error al inicializar la estructura de clave PKCS#11: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error al importar el URL PKCS#11 %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Usando clave PKCS#11 %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Error al importar la clave PKCS#11 a la estructura de clave privada: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Usando archivo de clave privada: %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte TPM\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Falló al traducir el archivo PEM\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falló al cargar la clave privada PKCS#1: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falló al cargar la clave privada como PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falló al descifrar el archivo del certificado PKCS#8\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falló al determinar el tipo de clave privada %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falló al obtener el ID de la clave: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error al firmar el test de datos con la clave privada: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error al validar la firma con el certificado: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" "No se encontró ningún certificado SSL que coincida con la clave privada\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Usando el certificado del cliente '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Configuración de lista de revocación del certificado fallida: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Falló al asignar memoria para el certificado\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "AVISO: GnuTLS devolvió un distribuidor de certificados incorrecto; puede que " "falle la autenticación\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Se obtuvo el siguiente CA «%s» de PKCS11\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falló al asignar memoria para soportar certificados\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Añadiendo soporte CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Falló al configurar el certificado: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "El servidor no presentó ningún certificado\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Error al inicializar la estructura de certificado X509\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Error al importar el certificado del servidor\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Error al comprobar el estado del certificado del servidor\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "certificado revocado" #: gnutls.c:1970 msgid "signer not found" msgstr "firmante no encontrado" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "el firmante no es un certificado CA" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certificado no activado todavía" #: gnutls.c:1978 msgid "certificate expired" msgstr "certificado caducado" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "verificación de la firma fallida" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "el certificado no coincide con el nombre del servidor" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "La verificación del certificado del servidor falló: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falló al asignar memoria para certificados cafile\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falló al leer certificados desde cafile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falló al abrir el archivo CA '%s': %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Carga de certificado fallida. Abortando.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Falló al establecer la cadena de prioridad TLS: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociación SSL con «%s»\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Conexión SSL cancelada\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "Fallo de la conexión TLS: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Retorno no fatal de GnuTLS durante la negociación: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Conectó a HTTPS en %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Renegociar SSL en %s\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN requerido por %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "PIN incorrecto" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "¡Éste es el último intento antes de bloquear!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "¡Sólo quedan unos pocos intentos antes de bloquear!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Introducir PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Falló al hacer el SHA1 de los datos de entrada que firmar: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Función de firma TPM llamada para %d bytes.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falló al crear el objeto hash TPM: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falló al establecer el valor en el objeto hash TPM: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Falló la firma hash TPM: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error al decodificar la clave TSS blob: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Error en clave TSS blob\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falló al crear el contexto TPM: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falló al conectar al contexto TPM: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falló al cargar la clave TPM SRK: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falló al cargar el objeto de política TPM SRK: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falló al establecer el PIN TPM %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falló al cargar la clave blob TPM: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Introduzca PIN TPM SRK:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falló al crear el objeto de política de clave: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falló al asignar la política a la clave: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Introduzca el PIN de la clave TPM:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falló al establecer el PIN de la clave: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Error al importar el nombre GSSAPI para la autenticación:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Error al generar la respuesta GSSAPI\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Intentando la autenticación GSSAPI en el proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Autenticación GSSAPI completada\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Testigo GSSAPI demasiado largo (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Enviando testigo GSSAPI de %zu bytes\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falló al enviar el testigo de autenticación GSSAPI al proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falló al recibir el testigo de autenticación GSSAPI del proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "El servidor SOCKS ha informado de un fallo de contexto de GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Respuesta de estado GSSAPI desconocida (0x%02x) del servidor SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtenido el testigo GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Enviando negociación de protección GSSAPI de %zu bytes\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falló al enviar la respuesta de protección GSSAPI al proxy %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falló al recibir la respuesta de protección GSSAPI al proxy %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "Obtenida la espuesta de protección GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Respuesta de protección GSSAPI no válida del proxy (%zu bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "El proxy SOCKS solicita integridad del mensaje, que no está soportada\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "El proxy SOCKS solicita confidencialidad del mensaje, que no está soportada\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "El servidor SOCKS solicita un tipo de protección 0x%02x desconocido\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Intentando la autenticación HTTP Bacis en el proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "El proxy ha solicitado autenticación básica, que está desactivada de manera " "predeterminada\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "No hay más métodos de autenticación que usar\n" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Sin memoria para asignar cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falló al analizar la respuesta HTTP '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Se obtuvo la respuesta HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Error al procesar la respuesta HTTP\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorando línea no reconocida de la respuesta HTTP '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie ofrecida no válida: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Falló la autenticación del certificado SSL\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "El cuerpo de la respuesta tiene un tamaño negativo (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificación de transferencia desconocida: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Cuerpo HTTP %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Error leyendo el cuerpo de la respuesta HTTP\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Error recuperando el fragmento de la cabecera\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Error recuperando el cuerpo de la respuesta HTTP\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" "Error en el fragmentado de la decodificación. Se esperaba '', se obtuvo: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "No se pudo recibir el cuerpo HTTP 1.0 sin cerrar la conexión\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falló al analizar el URL redirigido '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "No se pudo seguir el redireccionamiento al URL no https '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Asignando una nueva ruta para el redireccionamiento relativo fallido: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado %d del servidor inesperado\n" #: http.c:1056 msgid "request granted" msgstr "petición concedida" #: http.c:1057 msgid "general failure" msgstr "fallo general" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "conexión no permitida por el conjunto de reglas" #: http.c:1059 msgid "network unreachable" msgstr "red inaccesible" #: http.c:1060 msgid "host unreachable" msgstr "servidor inaccesible" #: http.c:1061 msgid "connection refused by destination host" msgstr "conexión rechazada por el servidor de destino" #: http.c:1062 msgid "TTL expired" msgstr "TTL caducado" #: http.c:1063 msgid "command not supported / protocol error" msgstr "comando no soportado / error de protocolo" #: http.c:1064 msgid "address type not supported" msgstr "tipo de dirección no soportada" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "El servidor SOCKS requiere un nombre de usuario y una contraseña, pero no " "hay ninguno\n" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "El nombre de usuario y la contraseña para la autenticación SOCKS deben ser < " "255 bytes\n" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error al escribir petición auth al proxy SOCKS: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error al leer respuesta auth desde el proxy SOCKS: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Respuesta auth inesperada desde el proxy SOCKS: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticado en el servidor SOCKS usando una contraseña\n" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "Falló la autenticación con contraseña en el servidor SOCKS\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "El servidor SOCKS ha solicitado autenticación GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "El servidor SOCKS solicita autenticación por contraseña\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "El servidor SOCKS requiere autenticación\n" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" "El servidor SOCKS ha solicitado una autenticación de tipo %02x desconocida\n" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Solicitando conexión al proxy SOCKS a %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error al escribir la petición de conectar al proxy SOCKS: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error al leer la respuesta de conexión desde el proxy SOCKS: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Respuesta de conexión inesperada desde el proxy SOCKS: %02x %02x…\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Error del proxy SOCKS %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Error del proxy SOCKS %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de dirección inesperado %02x en la respuesta de conexión SOCKS\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Solicitando conexión HTTP proxy a %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Falló al enviar petición de proxy: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Falló la petición CONNECT del proxy: %d\n" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy desconocido '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Sólo se soportan proxies HTTP o socks(5)\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado con la biblioteca SSL sin soporte para Cisco DTLS\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falló al analizar el URL del servidor '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Sólo se permite https:// para el URL del servidor\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "No hay gestor de formulario; no se puede autenticar.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Falló CommandLineToArgvW(): %s\n" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "Error fatal al gestionar la línea de comandos\n" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "Error al convertir la entrada de la consola: %s\n" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falló la ubicación para la cadena desde stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para obtener ayuda de OpenConnect, consulte la página web\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Usando OpenSSL. Características disponibles:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Usando GnuTLS. Características disponibles:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Motor OpenSSL no disponible" #: main.c:613 msgid "using OpenSSL" msgstr "usando OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "Advertencia: sin soporte DTLS en este binario. El rendimiento se verá " "afectado.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "No se puede procesar esta ruta ejecutable «%s»" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Falló la ubicación de la ruta de vpnc-script\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opciones] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Cliente abierto de Cisco VPN AnyConnect, versión %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Leer opciones del archivo de configuración" #: main.c:710 msgid "Continue in background after startup" msgstr "Continuar en segundo plano tras el arranque" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Escribir los PID de los demonios en este archivo" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Usar certificado CERT del cliente SSL" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar cuando el tiempo de vida del certificado sea menor que DAYS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Usar archivo KEY de clave SSL privada" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Usar cookie COOKIE de WebVPN" #: main.c:717 msgid "Read cookie from standard input" msgstr "Leer cookie de la entrada estándar" #: main.c:718 msgid "Enable compression (default)" msgstr "Activar compresión (predeterminado)" #: main.c:719 msgid "Disable compression" msgstr "Desactivar compresión" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Establecer el intervalo mínimo de detección de par muerto" #: main.c:721 msgid "Set login usergroup" msgstr "Establecer grupo de usuario de login" #: main.c:722 msgid "Display help text" msgstr "Mostrar el texto de ayuda" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME para la interfaz del túnel" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Usar registros de sucesos del sistema para mensajes de progreso" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Añadir marca de tiempo a los mensajes de progreso" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Revocar privilegios después de conectar" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Revocar privilegios durante la ejecución CSD" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Ejecutar SCRIPT en lugar de binario CSD" #: main.c:733 msgid "Request MTU from server" msgstr "Solicitar MTU desde servidor" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Indicar ruta MTU al/desde el servidor" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Establecer clave de frase de paso o pin TPM SRK" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "La clave de frase de paso es un fsid de un sistema de archivos" #: main.c:737 msgid "Set proxy server" msgstr "Establecer servidor proxy" #: main.c:738 msgid "Set proxy authentication methods" msgstr "Establecer los métodos de autenticación del proxy" #: main.c:739 msgid "Disable proxy" msgstr "Desactivar proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar automáticamente el proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy está desactivado en esta versión)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Solicitar la perfecta confidencialidad del envío" #: main.c:745 msgid "Less output" msgstr "Menos salida" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Establecer límite de cola de paquete a LEN pqts" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de línea de comandos para usar un script de configuración " "compatible con vpnc" #: main.c:748 msgid "default" msgstr "predeterminado" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Pasar el tráfico al «script», no al dispositivo TUN" #: main.c:752 msgid "Set login username" msgstr "Establecer nombre de usuario de inicio de sesión" #: main.c:753 msgid "Report version number" msgstr "Informe del número de versión" #: main.c:754 msgid "More output" msgstr "Más salida" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Volcado del tráfico de autenticación HTTP (implica --verbose" #: main.c:756 msgid "XML config file" msgstr "Archivo XML de configuración" #: main.c:757 msgid "Choose authentication login selection" msgstr "Elegir autenticación de selección de inicio de sesión" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Sólo autenticar y mostrar información del inicio de sesión" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Sólo obtener la cookie webvpn; no conectar" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Mostrar la cookie de la webvpn antes de conectar" #: main.c:761 msgid "Cert file for server verification" msgstr "Archivo del certificado para la verificación del servidor" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "No pedir conectividad IPv6" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "Claves OpenSSL que soportar por DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Desactivar DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Desactivar reutilización de conexión HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Desactivar autenticación por contraseña/SecurID" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "No se requiere certificado SSL del servidor para ser válido" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "No intentar autenticación XML POST" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "No se espera entrada del usuario; sale si lo requiere" #: main.c:771 msgid "Read password from standard input" msgstr "Leer contraseña de la entrada estándar" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Tipo de testigo software: RSA, TOTP o HOTP" #: main.c:773 msgid "Software token secret" msgstr "Testigo software secreto" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Nota: libstoken (RSA SecurID) está desactivado en esta versión)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Tiempo en segundos para reintento de conexión" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 de la huella del servidor de certificados" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "Cabecera HTTP User_Agent: campo" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipo de SO (linux, linux-64, win...) que informar" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Establecer puerto local para datagramas DTLS" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Falló al asignar la cadena\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falló al obtener la línea del archivo de configuración: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opción no reconocida en la línea %d: «%s»\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "La opción «%s» no coge un argumento en la línea %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "La opción «%s» requiere un argumento en la línea %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "Advertencia: esta versión de OpenConnect se ha construido sin soporte\n" " para iconv, pero parece que está usando un conjunto de\n" " caracteres «%s» heredado. Puede darse un comportamiento " "extraño\n" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ADVERTENCIA: esta versión de openconnect es %s pero\n" " la biblioteca libopenconnect es %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falló al ubicar la estructura vpninfo\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Usuario «%s» no válido\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "No se puede usar la opción «config» dentro del archivo de configuración\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "No se puede abrir el archivo de configuración «%s»: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeña\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Desactivando todas las reutilizaciones de conexiones HTTP debido a la opción " "--no-http-keepalive.\n" "Si esto ayuda, por favor informe en .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "No se permite la longitud de cola cero; usando 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versión %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de testigo software no válido: «%s»\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Credencial de SO «%s» no válida\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos en la línea de comandos\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "No se ha especificado ningún servidor\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Esta versión de openconnect se compiló sin soporte para libproxy\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Error al abrir la tubería cmd\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Falló al obtener la cookie WebVPN\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Falló al crear la conexión SSL\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Falló al configurar el script TUN\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Falló al configurar el dispositivo TUN\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Falló al configurar DTLS; se usa SSL en su lugar\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "No se proporcionó el argumento --script; No están configurados los DNS ni " "las rutas\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Consulte http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falló al abrir «%s» para escritura: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Se continúa en segundo plano; PID %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "El usuario ha solicitado la reconexión\n" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Se ha rechazado la cookie al volver a conectar; saliendo.\n" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "Sesión terminada por el servidor; saliendo.\n" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "Cancelado por el usuario (SIGINT); saliendo.\n" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "El usuario se ha desacoplado de la sesión (SIGHUP); saliendo.\n" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "Error desconocido; saliendo.\n" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falló al abrir %s para escritura: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falló al guardar configuración en %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "El certificado del servidor SSL no coincide: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Falló la verificación del certificado del servidor VPN «%s».\n" "Razón: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Introduzca «%s» para aceptar, «%s» para cancelar; cualquier otra cosa para " "ver:" #: main.c:1661 main.c:1679 msgid "no" msgstr "no" #: main.c:1661 main.c:1667 msgid "yes" msgstr "sí" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "La elección de autenticación «%s» coincide con varias opciones\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Elección de autenticación «%s» no disponible\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Entrada del usuario requerida en modo no-interactivo\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falló al abrir el archivo del testigo para escritura: %s\n" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "Falló al escribir el testigo: %s\n" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "La cadena de testigo débil no es válida\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "No se puede abrir el archivo ~/.stokenrc\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect no se compiló con soporte para libstoken\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Fallo general en libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect no se compiló con soporte para liboath\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Fallo general en liboath\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "El origen ha pausado la conexión\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Sin trabajo que hacer; durmiendo durante %d ms…\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Falló WaitForMultipleObjects: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Falló InitializeSecurityContext(): %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Falló AcquireCredentialsHandle(): %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Error al comunicar con el ayudante ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Intentando la autenticación HTTP NTLM en el proxy (inicio de sesión único)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Intentando la autenticación HTTP NTLM %d en el proxy\n" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "OK al generar el código de token INITIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "OK al generar el código de token NEXT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "El servidor está rechazando el token blando; cambiando a acceso manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generando código de testigo OATH TOTP\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "Generando código de testigo OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "Error: llamada a %s() con UTF-8 no válido para el argumento «%s»\n" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falló al instalar el certificado en el contexto de OpenSSL\n" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Falló al escribir en el socket SSL\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Falló al leer del socket SSL\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Error de lectura SSL %d (probablemente el servidor cerró la conexión); " "reconectando.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "Falló el SSL_write: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Contraseña PEM demasiado larga (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra desde %s: «%s»\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Falló el análisis PKCS#12 (vea los errores anteriores)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 no contiene certificado" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 no contiene clave privada" #: openssl.c:545 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "No se puede cargar el motor TPM.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Falló al iniciar el motor TPM\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Falló al establecer la contraseña TPM SRK\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Falló al cargar la clave privada TPM\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Falló al añadir clave desde TPM\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falló al abrir el archivo de certificado %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Falló la carga del certificado\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falló al procesar todos los certificados soportados. Intentándolo de todas " "formas...\n" #: openssl.c:710 msgid "PEM file" msgstr "Archivo PEM" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falló al crear BIO para el elemento «%s» del almacén de claves\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Carga de la clave privada fallida (¿contraseña incorrecta?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Falló al cargar la clave privada (vea los errores de arriba)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falló al cargar el certificado X509 del almacén de claves\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Falló al usar el certificado X509 del almacén de claves\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Falló al usar la clave privada del almacén de claves\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falló al abrir el archivo de clave privada %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "Falló al cargar la clave privada\n" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Falló al identificar el tipo de clave privada en «%s»\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Coincidencia en el altname DNS «%s»\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Sin coincidencias para el altname «%s»\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "El certificado tiene el altname GEN_IPADD con longitud errónea %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Coincidencia %s en la dirección «%s»\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Sin coincidencias para %s dirección «%s»\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "El URI «%s» no tiene una ruta vacía; se ignora\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Coincidió el URI «%s»\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Sin resultado para el URI «%s»\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Ningún altname en el certificado del par coincidió con «%s»\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "¡Sin nombre del sujeto en el certificado del par!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Falló al analizar el nombre del sujeto en el certificado del par\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "El sujeto del certificado del par no coincide («%s» != «%s»)\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Coincidió el nombre del sujeto del certificado del par «%s»\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra desde cafile: «%s»\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Error en el campo notAfter del certificado del cliente\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falló al leer certificados desde el archivo CA «%s»\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falló al abrir el archivo CA «%s»\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "Fallo en conexión SSL\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descartar mala división que incluir: «%s»\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descartar mala división que excluir: «%s»\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falló al generar el script '%s' para %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "El script '%s' terminó anormalmente (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "El script '%s' devolvió el error %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket de conexión cancelado\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Falló al reconectar al proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Falló al reconectar al servidor %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo falló para el servidor '%s':%s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Intentando conectar al proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Intentando conectar al servidor %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Falló al asignar la dirección del socket del almacenamiento\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falló al conectar al servidor %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Reconectando al proxy %s\n" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "No se pudo obtener el ID del sistema de archivos para la frase de paso\n" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falló al abrir el archivo de clave privada «%s»: %s\n" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Sin errores" #: ssl.c:588 msgid "Keystore locked" msgstr "Almacén de claves bloqueado" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Almacén de claves no inicializado" #: ssl.c:590 msgid "System error" msgstr "Error del sistema" #: ssl.c:591 msgid "Protocol error" msgstr "Error de protocolo" #: ssl.c:592 msgid "Permission denied" msgstr "Permiso denegado" #: ssl.c:593 msgid "Key not found" msgstr "Clave no encontrada" #: ssl.c:594 msgid "Value corrupted" msgstr "Valor corrupto" #: ssl.c:595 msgid "Undefined action" msgstr "Acción no definida" #: ssl.c:599 msgid "Wrong password" msgstr "Contraseña errónea" #: ssl.c:600 msgid "Unknown error" msgstr "Error desconocido" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "Usado openconnect_fopen_utf8() con el modo «%s» no soportado'\n" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "La cookie ya no es válida, cerrando la sesión\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormir %ds, timeout restante %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Testigo SSPI demasiado largo (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Enviando testigo SSPI de %lu bytes\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falló al enviar el testigo de autenticación SSPI al proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falló al recibir el testigo de autenticación SSPI del proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "El servidor SOCKS ha informado de un fallo de contexto de SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Respuesta de estado SSPI desconocida (0x%02x) del servidor SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obtenido el testigo SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Falló QueryContextAttributes(): %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Falló EncryptMessage(): %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() demasiado largo (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Enviando negociación de protección SSPI de %u bytes\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falló al enviar la respuesta de protección SSPI al proxy %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falló al recibir la respuesta de protección SSPI al proxy %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "Obtenida la respuesta de protección SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Falló DecryptMessage: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Respuesta de protección SSPI no válida del proxy (%lu bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Introduzca credenciales para desbloquear el testigo software." #: stoken.c:82 msgid "Device ID:" msgstr "ID del dispositivo:" #: stoken.c:89 msgid "Password:" msgstr "Contraseña:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "El usuario saltó el token blando.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Todos los campos son obligatorios; inténtelo de nuevo.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Fallo general en libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ID del dispositivo o contraseña incorrectos; inténtelo de nuevo.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "La inicialización del token blando tuvo éxito.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Introduzca el PIN del testigo software." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Formato de pin no válido; inténtelo de nuevo.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generando código de testigo RSA\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Error al acceder a la clave del registro para adaptadores de red\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorando la interfaz TAP que no coincide «%s»\n" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "No se han encontrado adaptadores TAP de Windows. ¿Está instalado el " "controlador?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Falló al abrir: %s\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "Dispositivo TUN %s abierto\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falló al obtener la versión del driver TAP: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: se necesita la versión 9.9 o superior del controlador TAP de Windows " "(encontrada la %ld.%ld)\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falló al establecer las direcciones IP TAP: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falló al establecer el estado del medio TAP: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falló al leer del dispositivo TAP: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falló al completar la lectura del dispositivo TAP: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escritos %ld bytes en tun\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "Esperando la escritura de TUN...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escritos %ld bytes en TUN después de esperar\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falló al escribir en el dispositivo TAP: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Windows todavía no soporta la generación de scripts del túnel\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "No se pudo abrir /dev/tun para sondear" #: tun.c:92 msgid "Can't push IP" msgstr "No se puede alcanzar la IP" #: tun.c:102 msgid "Can't set ifname" msgstr "No se puede establecer el ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "No se puede abrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "No se puede sondear %s por IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falló al crear un nuevo dispositivo TUN" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Falló al poner el archivo descriptor del dispositivo TUN en modo «descartar " "mensaje»" #: tun.c:196 msgid "open net" msgstr "abrir red" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falló al abrir el dispositivo TUN: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nombre de interfaz '%s' no válido; debe coincidir con «tun%%d»\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "No se pudo abrir «%s»: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "Falló «socketpair»: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "Falló «fork»: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Se recibió un paquete desconocido (len %d): %02x %02x %02x %02x…\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falló al escribir el paquete entrante: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falló al abrir %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falló al hacer fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falló al reservar %d bytes para %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falló al leer %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Se trata el servidor «%s» como un nombre de servidor crudo\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falló el SHA1 del archivo existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Archivo XML de configuración SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falló al analizar la el archivo XML de configuración %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "El servidor «%s» tiene la dirección «%s»\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "El servidor «%s» tiene el grupo de usuario «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Servidor «%s» no listado en la configuración; se trata como nombre de " "servidor crudo\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/nl.po0000664000076400007640000025102012502026115012275 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # André Koot , 2011-2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-12-20 19:06+0000\n" "Last-Translator: André Koot \n" "Language-Team: Dutch (http://www.transifex.com/projects/p/meego/language/" "nl/)\n" "Language: nl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan niet overweg met formuliermethode = '%s', actie = '%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Formulier keuze heeft geen naam\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "naam %s niet ingevoerd\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Geen inputtype in het formulier\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Geen invoernaam in het formulier\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Onbekend inputtype %s in het formulier\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Vertalen van de serverreactie mislukt\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Reactie was: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "XML antwoord heeft geen \"auth\" sectie\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Vroeg naar wachtwoord, maar '- no-passwd' is ingesteld\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Kan geen HTTPS-verbinding openen met %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Versturen GET aanvraag voor nieuwe configuratie mislukt\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Gedownloade config-bestand komt niet overeen bedoelde SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fout: Server vroeg ons om een 'Cisco Secure Desktop' trojan te downloaden en " "uit te voeren. Deze faciliteit is standaard om veiligheidsredenen " "uitgeschakeld. U kunt zelf besluiten om dit mogelijk te maken.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Poging Linux CSD trojan script uit te voeren.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Niet te openen tijdelijk CSD scriptbestand: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Niet mogelijk om tijdelijk CSD script file weg te schrijven: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Mislukt instellen uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Ongeldige gebruikersnaam uid =%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Mislukt om te schakelen naar CSD home directory '%s':%s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Waarschuwing: je draait onveilige CSD-code met root privileges\n" "\t Gebruik commandoregel optie \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Niet gelukt om CSD script te draaien %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Onbekende reactie van de server\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST toegestaan\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Verversing %s na 1 seconde ...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Fout bij het ophalen HTTPS reactie\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-service niet beschikbaar, reden:%s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Onjuiste HTTP CONNECT reactie: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT reactie: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Geen geheugen voor opties\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID niet 64 tekens; is: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Onbekende CSTP-Content-Encoding %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Geen MTU ontvangen. Afbreken\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Geen IP-adres ontvangen. Afbreken\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Herverbinden gaf verschillende Legacy IP-adressen (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Herverbinden gaf verschillende Legacy IP-netmasks (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Herverbinden gaf verschillende IP-adressen (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Herverbinden gaf verschillende IPv6-netmasks (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP aangesloten. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Compressie setup is mislukt\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Toewijzing van leegloop buffer is mislukt\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "decomprimeren mislukt\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "compressie mislukt %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Onverwachte pakket lengte. SSL_read meldde %d, maar pakket is\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Ontvangen CSTP DPD aanvraag\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Ontvangen CSTP DPD reactie\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Ontvangen CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Ontvangen datapakket ongecomprimeerd %d bytes\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Ontvangen servermelding ontkoppeling: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Gecomprimeerd pakket ontvangen in !deflate mode\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "ontvangen server beëindigingspakket\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Onbekend packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL schreef te weinig bytes! Gevraagd om %d, verstuurde %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP rekey verwacht\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection ontdekte dode host!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Herverbinden mislukte\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Stuur CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Stuur CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Verzenden van gedecomprimeerd datapakket van %d bytes\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Stuur BYE pakket: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialiseren DTLSv1 sessie is mislukt\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialiseren DTLSv1 CTX is mislukt\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Instellen DTLS cipher lijst is mislukt\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Niet precies één DTLS cipher\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session () is mislukt met oude protocol versie 0x%x\n" "Gebruikt u een versie van OpenSSL ouder dan 0.9.8m?\n" "Zie http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Gebruik de - no-dtls commandoregel optie om dit bericht te voorkomoen\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Uw OpenSSL is ouder dan de versie die voor uw build nodig is, dus DTLS kan " "mislukken!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake time-out\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake mislukt: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Onbekende DTLS parameters voor aangevraagde CipherSuite '%s'\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Niet geslaagd in instellen DTLS prioriteit: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Niet geslaagd in instellen DTLS sessie parameters: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Instellen DTLS MTU mislukt: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS handshake mislukt: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "Geen DTLS adres\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server bood geen DTLS cipher optie aan\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "Geen DTLS wanneer deze is aangesloten via een proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS optie %s:%s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Probeer nieuwe DTLS verbinding\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Ontvangen DTLS pakket 0x%02x van %d bytes\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Ontving DTLS DPD aanvraag\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Mislukt om DPD reactie te versturen. Verwacht ontkoppeling\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Ontving DTLS DPD reactie\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Ontving DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Onbekend DTLS pakkettype %02x, len %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLS rekey verwacht\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection ontdekte dode host!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Stuur DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Niet geslaagd in verzenden DPD aanvraag. Verbinding wordt verbroken\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Stuur DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS kreeg schrijffout %d. Terugvallen naar SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS kleerg schrijffout: %s. Terugvallen naar SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Verstuurd DTLS packet van %d bytes; DTLS verzending retourneerde %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "Schrijven SSL geannuleerd\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Schrijven naar SSL socket mislukt: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL lezen geannuleerd\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Lezen van SSL socket mislukt: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL leesfout: %s; herverbinden.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL versturen mislukt: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Kon de vervaldatum niet afleiden uit het certificaat\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Client certificaat is verlopen op" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Client certificaat vervalt al snel op" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Openen sleutel/certificaat bestand %s: %s mislukt\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Toewijzen certificaat bufferruimte mislukt\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "In geheugen inlezen van certificaat info mislukt: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Instellen van PKCS#12 gegevensstructuur mislukt: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Ontcijferen PKCS#12 certificaatbestand mislukt\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Invoeren PKCS#12 wachtwoord:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Verwerken PKCS#12 bestand mislukt: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Laden PKCS#12 certificaat mislukt: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importeren X509 certificaat mislukte: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Instellen PKCS#11 certificaat mislukte: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kon de MD5 hash niet initialiseren: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash error: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Kan PEM versleutelingstype niet achterhalen\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Niet-ondersteunde PEM versleutelingstype: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ongeldige salt in versleuteld PEM bestand\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Fout base64-decoderen versleutelde PEM bestand: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "versleutelde PEM bestand te kort\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Niet gelukt om PEM key %s te ontcijferen\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Ontcijferen PEM sleutel mislukt\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Invoeren PEM wachtwoord:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Deze binary is gecompileerd zonder PKCS#11 ondersteuning\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Gebruikmaken van PKCS#11 certificaat %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fout bij het laden van het certificaat van PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Gebruiken van certificatenbestand %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 bestand bevat geen certificaat\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Geen certificaat gevonden in bestand" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Laden van het certificaat mislukt: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fout bij initialiseren privésleutel structuur: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fout bij initialiseren PKCS#11 sleutel structuur: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fout bij importeren PKCS#11 URL %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "gebruikt PKCS#11 sleutel %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Fout bij importeren PKCS#11 sleutel in privésleutel structuur: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Gebruik geheime sleutel bestand %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Deze versie van OpenConnect werd gebouwd zonder TPM ondersteuning\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Interpreteren PEM bestand mislukt\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Laden PKCS#1 privésleutel mislukt: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Laden van privésleutel als PKCS#8 mislukt: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Ontcijferen PKCS#8 certificaatbestand mislukt\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Niet gelukt in ophalen sleutel ID: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fout bij ondertekenen test data met geheime sleutel: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fout bij valideren handtekening tegen certificaat: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Geen SSL certificaat gevonden dat past bij de private key\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Gebruiken client certificaat '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Instellen van de certificate recovation list mislukte: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "WAARSCHUWING: GnuTLS retourneerde onjuiste uitgever certs; authenticatie kan " "mislukken!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Toewijzen van geheugen voor ondersteunen certificaatfuncties mislukt\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Toevogen ondersteunde CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Instellen certificaat mislukt: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server presenteerde geen certificaat\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Fout bij initialiseren X509 cert structuur\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Fout bij importeren server cert\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Fout bij controleren cert status\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "certificaat ingetrokken" #: gnutls.c:1970 msgid "signer not found" msgstr "ondertekenaar niet gevonden" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "ondertekenaar geen CA certificaat" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "onveilig algorithme" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certificaat nog niet geactiveerd" #: gnutls.c:1978 msgid "certificate expired" msgstr "certificaat verlopen" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "handtekeningverificatie mislukt" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "certificaat komt niet overeen met hostnaam" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Servercertificaat verificatie mislukt: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Niet geslaag in lezen certs van cafile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Open CA bestand '%s' mislukt: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Laden van certificaat is mislukt. Afbreken.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Instellen van de TLS prioriteit string mislukt: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL afstemmen met %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL verbinding geannuleerd\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL verbindingsfout: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Verbonden met HTTPS op %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN nodig voor %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Verkeerde PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Dit is de laatste poging voor blokkeren!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Nog maar een paar pogingen voor blokkeren!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Invoeren PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash handtekening mislukt: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fout bij decoderen TSS sleutel blob: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Faout in TSS sleutel blob\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Creëren TPM context mislukt: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "verbinden met TPM context mislukt: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Laden TPM SRK sleutel mislukt: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Laden TPM SRK policy object mislukt: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Instellen TPM PIN miuslukt: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Laden TPM sleutel blob mislukt: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Invoeren TPM SRK PIN:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Aanmaken sleutelbeleid object mislukt: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Toewijzen policy aan sleutel mislukt: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "InvoerenTPM sleutel PIN:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Instellen sleutel PIN mislukt: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Geen geheugen voor de toewijzing van cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Mislukte poging HTTP reactie '%s' te ontleden\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Ontving HTTP reactie: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Fout bij de verwerking van HTTP-reactie\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Onbekende HTTP response lijn '%s' genegeerd\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ongeldige koekje aangeboden: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "SSL certificaat authenticatie mislukt\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Reactie heeft negatieve grootte (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Onbekend Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Fout bij het lezen van HTTP reactie\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Fout bij het ophalen brok header\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Fout bij het ophalen HTTP reactietekst\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Fout in chunked decodering. Verwacht '', ontving: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "Kan HTTP 1.0 content niet ontvangen zonder het sluiten van de verbinding\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Niet geslaagd om doorgestuurd URL '%s' te vertalen: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan niet doorverwijzen naar non-https URL '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Toewijzing van nieuwe pad voor de relatieve redirect is mislukt: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Onverwacht %d resultaat van de server\n" #: http.c:1056 msgid "request granted" msgstr "verzoek ingewilligd" #: http.c:1057 msgid "general failure" msgstr "algemene storing" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "verbinding niet toegestaan ​​door regelset" #: http.c:1059 msgid "network unreachable" msgstr "netwerk onbereikbaar" #: http.c:1060 msgid "host unreachable" msgstr "host onbereikbaar" #: http.c:1061 msgid "connection refused by destination host" msgstr "verbinding geweigerd door doelhost" #: http.c:1062 msgid "TTL expired" msgstr "TTL verlopen" #: http.c:1063 msgid "command not supported / protocol error" msgstr "commando niet ondersteund / protocol fout" #: http.c:1064 msgid "address type not supported" msgstr "adres type niet ondersteund" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fout bij het schrijven auth verzoek aan SOCKS proxy: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fout bij het lezen van auth reactie van SOCKS proxy: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Onverwachte auth reactie van SOCKS proxy: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Het aanvragen van SOCKS proxy verbinding met %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fout bij het schrijven verbindingsverzoek aan SOCKS proxy: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fout bij het lezen van verbindingsreactie van SOCKS proxy: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Onverwachte verbindingsreactie van SOCKS proxy: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy fout %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy fout %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Onverwacht adres type %02x in SOCKS aansluitreactie\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Aanvragen van HTTP-proxy verbinding met %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Het verzenden van het proxy verzoek is mislukt: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Onbekend proxy-type '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Alleen http of socks(5) proxies ondersteund\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Gecompileerd met een SSL library zonder Cisco DTLS ondersteuning\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Fout bij ontleden server-URL '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Alleen https:// toegestaan ​​voor server-URL\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Geen formulier afhandelaar; kon niet authenticeren.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Mislukte toewijzing voor string vanaf stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Voor hulp bij OpenConnect, bezoek de website op/n\n" " http://www.infradead.org/openconnect/mail.html/n\n" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Gebruik OpenSSL. Functionaliteiten:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Gebruiken GnuTLS. Functionatiteiten:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE niet aanwezig" #: main.c:613 msgid "using OpenSSL" msgstr "gebruikmaken van OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "LET OP: Geen DTLS ondersteuning on deze binary. Prestaties worden " "beïnvloed.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Gebruik: openconnect [opties] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "Open-client voor Cisco AnyConnect VPN, versie %s\n" #: main.c:708 msgid "Read options from config file" msgstr "Haal opties uit configuratiebestand" #: main.c:710 msgid "Continue in background after startup" msgstr "Ga na het opstarten verder op de achtergrond" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Schrijf de daemons pid naar dit bestand" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Gebruik SSL-client-certificaat CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Waarschuwen wanneer certificaat levensduur < DAGEN" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Gebruik SSL private key bestand KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Gebruik WebVPN Cookie Cookie" #: main.c:717 msgid "Read cookie from standard input" msgstr "Lees de cookie van de standaard invoer" #: main.c:718 msgid "Enable compression (default)" msgstr "Activeer compressie (standaard)" #: main.c:719 msgid "Disable compression" msgstr "Deactiveer compressie" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Instellen minimale Dead Peer Detection interval" #: main.c:721 msgid "Set login usergroup" msgstr "Instellen login gebruikersgroep" #: main.c:722 msgid "Display help text" msgstr "Weergeven helptekst" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Gebruik ifname voor tunnel-interface" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Gebruik syslog voor voorgangsberichten" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Laat privileges vallen na verbinden" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Laat privileges valllen tijdens CSD uitvoering" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Run script in plaats van CSD binairy" #: main.c:733 msgid "Request MTU from server" msgstr "MTU verzoek van de server" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Aangeven pad MTU van/naar server" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Instellen wachtwoord van TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Sleutelwoord is fsid van het bestandssysteem" #: main.c:737 msgid "Set proxy server" msgstr "Instellen proxyserver" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Deactiveren proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Gebruik libproxy om de proxy automatisch te configureren" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NB: libproxy uitgeschakeld in deze build)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "Minder output" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Instellen maximale packet lengte tot LEN pkts" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Shell command oregel voor het gebruik van een vpnc-compatibele config script" #: main.c:748 msgid "default" msgstr "standaard" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Leidt het verkeer naar 'script' programma, niet tun" #: main.c:752 msgid "Set login username" msgstr "Instellen login gebruikersnaam" #: main.c:753 msgid "Report version number" msgstr "Rapporteer versienummer" #: main.c:754 msgid "More output" msgstr "Meer output" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "XML-configuratiebestand" #: main.c:757 msgid "Choose authentication login selection" msgstr "Kies authenticatie login selectie" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Alleen authenticeren en tonen inloginformatie" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Ophalen van alleen webvpn cookie, niet verbinden" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Print webvpn koekje voor het verbinden" #: main.c:761 msgid "Cert file for server verification" msgstr "Cert file voor serververificatie" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Vraag niet om IPv6-connectiviteit" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL sleutels voor ondersteuning van DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Deactiveren DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Deactiveer hergebruiken HTTP-verbinding" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Deactiveren wachtwoord / SecurID-authenticatie" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Geen geldig server SSL cert vereist" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Verwacht geen invoer van de gebruiker, exit als het nodig is" #: main.c:771 msgid "Read password from standard input" msgstr "Lees wachtwoord van standaardinvoer" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Opnieuw proberen verbindingstime-out in seconden" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 vingerafdruk servercertificaat" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-agent: veld" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Instellen lokale poort voor DTLS datagrams" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Mislukt om regel %s uit het configuratiebestand te halen\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Niet herkende optie in regel %d: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Optie '%s' heeft geen argument in regel %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Optie '%s' heeft een argument nodig in regel %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "Waarschuwing: De versie van openconnect is %s maar de\n" " versie van de libopenconnect library is %s\n" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Niet gelukt vpninfo structuur toe te wijzen\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Ongeldige gebruiker \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan de 'config' optie in het configuratiebestand niet gebruiken\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan niet openen configuratiebestand '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d te klein\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Deactiveren hergebruiken alle HTTP-verbindingen als gevolg van - no-http-" "keepalive optie.\n" "Als dit helpt, meldt u zich bij .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "0-lengte van de wachtrij niet toegestaan, gebruik 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versie %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Ongeldige OS identiteit \"%s\"\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Te veel argumenten in de commandoregel\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Geen server opgegeven\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Deze versie van openconnect werd gebouwd zonder libproxy ondersteuning\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Niet gelukt WebVPN cookie te verkrijgen\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Het maken van SSL-verbinding is mislukt\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Instellen tun apparaat is mislukt\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Instellen DTLS mislukt, gebruik SSL in plaats daarvan\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "No --script argument meegegeven; DNS en routering zijn niet geconfigureerd\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Bekijk http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Niet gelukt '%s' te openen voor schrijven: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Voortgezet in achtergrond; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Niet gelukt %s te openen voor schrijven: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Niet gelukt config te schrijven naar %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certificaat komt niet overeen: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificaat van VPN-server \"%s\" verificatie mislukt.\n" "Reden: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Invoeren '%s' om te accepteren, '%s' om af te breken; iets anders om te " "bekijken: " #: main.c:1661 main.c:1679 msgid "no" msgstr "nee" #: main.c:1661 main.c:1667 msgid "yes" msgstr "ja" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth keuze \"%s\" niet beschikbaar\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Gebruikersinvoer vereist in niet-interactieve modus\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Soft token string is ongeldig\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" "Kan ~/.stokenrc bestand niet openen\n" "\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Algemene fout in libstoken\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Niets te doen, slapen %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "OK om INITIËLE tokencode te genereren\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "OK om VOLGENDE tokencode te genereren\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server weigert soft token; omschakelen naar handmatige invoer\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Schrijven naar SSL socket mislukt\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Kon niet lezen van de SSL socket\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL lezen fout %d (serververbinding waarschijnlijk gesloten); opnieuw " "aansluiten.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write is mislukt: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM wachtwoord te lang (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert van %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Ontleden PKCS # 12 mislukt (zie bovenstaande fouten)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS # 12 bevatte geen certificaat!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS # 12 bevatte geen privé-sleutel!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Kan TPM engine niet laden.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Niet geslaagd om TPM engine te initiëren\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Niet geslaagd om TPM SRK wachtwoord in te stellen\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Niet geslaagd om TPM private sleutel te laden\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Toevoegen sleutel van TPM is mislukt\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Niet geslaagd om certificatenbestand %s te openen: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Laden van certificaat is mislukt\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Het laden van private sleutel is mislukt (verkeerde wachtwoord?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Het laden van private sleutel is mislukt (zie bovenstaande fouten)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Laden X509 certificaat uit keystore mislukt\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Gebruik van X509 certificaat uit keystore mislukt\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Gebruik van privésleutel uit keystore mislukt\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Niet geslaagd in het openen van private key bestand %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Niet geslaag in vaststellen private sleutel type in '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Overeenkomstige DNS altname '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Geen overeenkomstige altname '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificaat heeft GEN_IPADD altname met pseudo-lengte %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Overeenkomstig %s adres '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Geen overeenkomstig %s adres %s\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' heeft geen leeg pad; negeren\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Overeenkomstige URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Geen overeenkomst met URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Geen altname in peer-cert overeenkomstig met '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Geen onderwerp naam in peer-cert!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Niet gelukt om onderwerpnaam in peer-cert te ontleden\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert onderwerp mismatch ('%s'! = '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Overeenkomstig peer-certificaat onderwerpnaam '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert van CAFile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Fout in client cert notAfter veld\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Inlezen van certs van CA bestand mislukt '%s'\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Niet gelukt om CA bestand '%s' te openen\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL-verbinding niet geslaagd\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Negeren slechte split waaronder: ​​\"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Negeren slechte split zonder: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Niet gelukt om script '%s' te starten voor %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' eindigde abnormaal (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' retourneerde fout %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket verbinding geannuleerd\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Niet geslaagd in opnieuw verbinden met proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Niet gelukt om te verbinden met host %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy van libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo mislukt voor '%s' host: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Poging om te verbinden met proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Poging te verbinden met server %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Niet gelukt om sockaddr opslag toe te wijzen\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Niet geslaagd in maken verbinding met host %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Geen fout" #: ssl.c:588 msgid "Keystore locked" msgstr "Sleutelbestand afgesloten" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Sleutelbestand geïnitialiseerd" #: ssl.c:590 msgid "System error" msgstr "Systeemfout" #: ssl.c:591 msgid "Protocol error" msgstr "Protocolfout" #: ssl.c:592 msgid "Permission denied" msgstr "Toegang verboden" #: ssl.c:593 msgid "Key not found" msgstr "Sleutel niet gevonden" #: ssl.c:594 msgid "Value corrupted" msgstr "Waarde corrupt" #: ssl.c:595 msgid "Undefined action" msgstr "Ongedefinieerde actie" #: ssl.c:599 msgid "Wrong password" msgstr "Onjuist wachtwoord" #: ssl.c:600 msgid "Unknown error" msgstr "Onbekende fout" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "slaap %ds, resterende time-out %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Invoeren inloggegevens om software token te ontsluiten." #: stoken.c:82 msgid "Device ID:" msgstr "Apparaat ID:" #: stoken.c:89 msgid "Password:" msgstr "Wachtwoord:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Gebruiker ging voorbij aan soft token.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Alle velden zijn verplicht; probeer het opnieuw.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Algemene fout in libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Onjuist apparaat ID of wachtwoord; probeer het nogmaals.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Soft token init was succesvol.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Ongeldig PIN formaat; probeer het nogmaals.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kon /dev/tun for plumbing niet openen" #: tun.c:92 msgid "Can't push IP" msgstr "Kan IP niet doorzetten" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan ifname niet instellen" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Kan niet openen %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kon %s niet gebruiken voor overloop voor IPv%d: %s/n\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Geen nieuwe tun maken" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Kon tun bestandsbeschrijving niet in message-discard mode plaatsen" #: tun.c:196 msgid "open net" msgstr "Open Net" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Niet gelukt om tun apparaat te openen: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ongeldige interface naam '%s'; moet overeenkomen met 'tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan niet openen '%s': %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Onbekend pakket (len %d) ontvangen: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Niet geslaag in wegschrijven inkomend pakket: %s/n\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Behandelen host \"%s\" als kale hostnaam\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Aanmaken SHA1 hash voor huidige bestand mislukt\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-configuratiebestand SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Niet gelukt XML-configuratiebestand %s te ontleden\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" heeft adres \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" heeft gebruikersgroep \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Host \"%s\" is niet vermeld in de configuratie, behandeling als kale " "hostname\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/uk.po0000664000076400007640000021476112502026115012316 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Yuri Chornoivan , 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Ukrainian (http://www.transifex.com/projects/p/meego/language/" "uk/)\n" "Language: uk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Некоректне значення UID=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Невідома відповідь сервера\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Не вдалося виконати читання до сокета SSL: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Не вдалося виконати читання з сокета SSL: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Не вдалося видобути час завершення строку дії сертифіката\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Не вдалося розмістити буфер сертифікатів\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Не вдалося прочитати сертифікат до пам’яті: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Не вдалося налаштувати структуру даних PKCS#12: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Не вдалося обробити файл PKCS#12: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Не вдалося завантажити сертифікат PKCS#12: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Спроба імпортування сертифіката X509 зазнала невдачі: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Спроба встановлення сертифіката PKCS#11 зазнала невдачі: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Використовуємо сертифікат PKCS#11 %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Помилка під час завантаження сертифіката з PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "У файлі PKCS#11 не міститься сертифіката\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "У файлі не знайдено сертифіката" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Спроба завантаження сертифіката зазнала невдачі: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Помилка під час спроби ініціалізувати структуру закритих ключів: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Помилка під час імпортування адреси PKCS#11 %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Використовуємо ключ PKCS#11 %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Використовуємо файл закритого ключа %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" "Спроба встановлення списку відкликаних сертифікатів зазнала невдачі: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Додавання підтримувального CA «%s»\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Спроба встановлення сертифіката зазнала невдачі: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Сервером не надано сертифіката\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Помилка під час спроби перевірити стан сертифіката сервера\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "сертифікат відкликано" #: gnutls.c:1970 msgid "signer not found" msgstr "підписувача не знайдено" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "строк дії сертифіката збіг" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "Спробу з’єднання SSL скасовано\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Помилковий код" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Це остання спроба перед блокуванням!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Вкажіть пінкод: " #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Отримано відповідь HTTP: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Запропоновано некоректну куку: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "загальна помилка" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "з’єднання заборонено набором правил" #: http.c:1059 msgid "network unreachable" msgstr "мережа недоступна" #: http.c:1060 msgid "host unreachable" msgstr "вузол недоступний" #: http.c:1061 msgid "connection refused by destination host" msgstr "у з’єднанні відмовлено вузлом призначення" #: http.c:1062 msgid "TTL expired" msgstr "Завершився строк дії TTL" #: http.c:1063 msgid "command not supported / protocol error" msgstr "команда не підтримується / помилка у протоколі" #: http.c:1064 msgid "address type not supported" msgstr "тип адреси не підтримується" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "" #: main.c:719 msgid "Disable compression" msgstr "" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "типовий" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "ні" #: main.c:1661 main.c:1667 msgid "yes" msgstr "так" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Не вдалося виконати читання до сокета SSL\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Не вдалося повторно з’єднатися з вузлом %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Проксі від libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "Немає помилок" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Неініціалізоване сховище ключів" #: ssl.c:590 msgid "System error" msgstr "Системна помилка" #: ssl.c:591 msgid "Protocol error" msgstr "Помилка протоколу" #: ssl.c:592 msgid "Permission denied" msgstr "Відмовлено у доступі" #: ssl.c:593 msgid "Key not found" msgstr "Ключ не знайдено" #: ssl.c:594 msgid "Value corrupted" msgstr "Значення пошкоджено" #: ssl.c:595 msgid "Undefined action" msgstr "Невизначена дія" #: ssl.c:599 msgid "Wrong password" msgstr "Неправильний пароль" #: ssl.c:600 msgid "Unknown error" msgstr "Невідома помилка" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Не вдалося відкрити %s: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "(скрипт)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/eu.po0000664000076400007640000026351512502026115012311 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-06-20 08:43+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Basque (http://www.transifex.net/projects/p/meego/language/" "eu/)\n" "Language: eu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ezin da inprimakiaren metodoa='%s', ekintza='%s' kudeatu\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Inprimakiaren aukerak ez dauka izenik\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "'%s izena ez da sarrera\n" #: auth.c:186 msgid "No input type in form\n" msgstr "Ez dago sarrera motarik inprimakian\n" #: auth.c:198 msgid "No input name in form\n" msgstr "Ez dago sarreraren izenik inprimakian\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "'%s' sarrera mota ezezaguna inprimakian\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "Erantzun hutsa zerbitzaritik\n" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Huts egin du zerbitzariaren erantzuna analizatzean\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Erantzuna: %s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "Espero ez zen jasota.\n" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "XML erantzunak ez du 'auth' nodorik\n" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Pasahitza eskatu da baina '--no-passwd' ezarri da\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Huts egin du '%s'(r)ekin HTTPS konexioa irekitzean\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Huts egin du konfigurazio berriaren GET eskaera bidaltzean\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Deskargatutako konfigurazio-fitxategia ez dator bat dagokion SHA1-ekin\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" "Errorea: 'Cisco Secure Desktop'' troianoa Windows batean exekutatzea ez dago " "garatuta.\n" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Errorea: zerbitzariak CSD hostscan exekutatzea eskatu du.\n" "--csd-wrapper argumentu egoki bat eman beharko duzu.\n" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Errorea: zerbitzariak 'Cisco Secure Desktop' troianoa deskargatzeko eta " "exekutatzeko eskatu du\n" "Desgaituta dago segurtasunaren arrazoiak direla eta, agian gaitzea nahiko " "duzu.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD troianoaren script-a exekutatzen saiatzen.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Huts egin du CSD script-aren aldi baterako fitxategia irekitzean: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Huts egin du CSD script-aren aldi baterako fitxategia idaztean: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Huts egin du %ld UIDa ezartzean\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Baliogabeko uid=%ld erabiltzailea\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Huts egin du CSD-ren '%s' karpeta nagusira aldatzean: %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Abisua: CSD kode ez-segurua exekutatzen ari zara 'root'-aren pribilegioekin\n" "\t Erabili komando-lerroko '--csd-user' aukera\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Huts gin du '%s' CSD script-a exekutatzean\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Zerbitzariaren erantzuna ezezaguna\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Zerbitzariak SSL bezeroaren ziurtagiria eskatu du bat eman ondoren\n" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Zerbitzariak SSL bezeroaren ziurtagiria eskatu du: bat ere ez dago " "konfiguratuta\n" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "XML POST gaituta\n" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "'%s' freskatzen segundo 1en ondoren...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Errorea: ezin dira socket-ak hasieratu\n" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO %d rcv_mss, %d snd_mss, %d advmss, %d pmtu\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG: %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Errorea HTTPS erantzuna jasotzean\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN zerbitzua ez dago erabilgarri. Zergatia: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "HTTP CONNECT erantzun desegokia jasota: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT erantzuna jasota: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "Ez dago memoriarik aukerentzako\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "'X-DTLS-Session-ID'-ak ez ditu 64 karaktere. Hau du: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "%s CSTP-Content-Encoding ezezaguna\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "Ez da MTU jaso. Abortatzen\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "Ez da IP helbiderik jaso. Abortatzen\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Birkonektatzeak IP helbide zahar desberdina eman du (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Birkonektatzeak IP sareko maskara zahar desberdina eman du (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Birkonektatzeak IPv6 helbide desberdina eman du (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Birkonektatzeak IPv6 sareko maskara desberdina eman du (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP konektatuta. %d DPD, %d Keepalive\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Huts egin du konpresioa konfiguratzean\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Huts egin du bufferraren hustuketa esleitzean\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "huts egin du puztean\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "Huts egin du %d hustean\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Paketearen ustekabeko luzera. 'SSL_read'-ek %d itzuli du, baina paketea hau " "da:\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD eskaera jasota\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD erantzuna jasota\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive jasota\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Konprimitu gabeko datuen paketea (%d byte) jasota\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Zerbitzariaren deskonexioa jasota: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Konprimitutako paketea !hustu (!deflate) moduan jasota\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "zerbitzariaren amaierako paketea jasota\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pakete ezezaguna: %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL-ek byte gutxiegi idatzita. %d eskatu ziren, %d bidalita\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP gakoa birnegoziatzeko zain\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Huts egin du berriro negoziatzean. Tunel berriarekin saiatzen\n" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTPren DPDak hildako parekoa atzeman du\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Huts egin du birkonektatzean\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Bidali CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Bidali CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Konprimitu gabeko datuen paketea (%d byte) bidaltzen\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Bidali BYE paketea: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Huts egin du DTLSv1 saioa hasieratzean\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Huts egin du DTLSv1 CTX hasieratzean\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Huts egin du DTLS zifraketaren zerrenda ezartzean\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Ez da DTLS zifraketa bat hain zuzen\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() funtzioak huts egin du 0x%x bertsioko protokolo " "zaharrarekin\n" "0.9.8m baino zaharragoa den OpenSSL-ren bertsioa erabiltzen ari zara?Ikus " "http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Erabili komando-lerroaren '--no-dtls' aukera mezu hau saihesteko\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS konexioa ezarrita (OPenSSL erabiliz). Ciphersuite %s.\n" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Sistemako OpenSSL konpilatzean erabilitakoa baino zaharragoa da, DTLS-ek " "huts egin dezake." #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS negoziazioaren denbora iraungituta\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Baliteke sistemako OpenSSL-a hautsita egotea\n" "Ikus http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Huts egin du DTLS negoziatzean: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "'%s' CipherSuite eskaeraren DTLS parametro ezezagunak\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Huts egin du DTLSren lehentasuna ezartzean: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Huts egin du DTLS saioaren parametroak ezartzean: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Huts egin du DTLS MUT ezartzean: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS konexioa ezarrita (GnuTLS erabiliz). '%s' Ciphersuite\n" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Huts egin du DTLS negoziatzean: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS konexioaren saiakera existitzen den deskriptore batekin\n" #: dtls.c:603 msgid "No DTLS address\n" msgstr "DTLS helbiderik gabe\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Zerbitzariak ez du DTLS zifraketaren aukerarik eskaini\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "DTLSrik gabe proxy bidez konektatzean\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLSren '%s : %s' aukera\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS hasieratuta. %d DPD, %d Keepalive\n" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "DTLS konexio berriaren saiakera\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLSren 0x%02x paketea (%d byte) jasota\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD eskaera lortuta\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Huts egin du DPD erantzuna bidaltzean. Deskonektatzea espero da\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD erantzuna jasota\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive jasota\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "%02x DTLS pakete mota ezezaguna, %d luzera\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLSren gakoa birnegoziatzeko zain\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Huts egin du DTLS berriro negoziatzean. Birkonektatzen.\n" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLSren DPDak hildako parekoa atzeman du\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Bidali DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Huts egin du DPD eskaera bidaltzean. Deskonektatzea espero da\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Bidali DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Huts egin du Keepalive eskaera bidaltzean. Deskonektatzea espero da\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLSek idazketaren %d errorea jaso du. SSLra itzultzen\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLSek idazketaren errorea jaso du: %s. SSLra itzultzen\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS paketea bidalita (%d byte). DTLSren bidalketak %d itzuli du\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL-ren idazketa bertan behera utzi da\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Huts egin du SSL socket-ean idaztean: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL-ren irakurketa bertan behera utzi da\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "SSL socket-a ez da ongi itxi\n" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Huts egin du SSL socket-etik irakurtzean: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Errorea SSL irakurketan: %s. Birkonektatzen.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "Huts egin du SSL bidaltzean: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Ezin izan da ziurtagiritik iraungitze-data erauzi\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Bezeroaren ziurtagiria iraungituta: " #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Bezeroaren ziurtagiria iraungitze-data laster: " #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Huts egin du '%s' elementua gako-biltegitik kargatzean: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Huts egin du '%s' gako-/ziurtagiri-fitxategia ireki: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Huts egin du '%s' gako-/ziurtagiri-fitxategiaren estatistikak lantzean: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Huts egin du ziurtagiriaren bufferra esleitzean\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Huts egin du ziurtagiria memorian irakurtzean: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Huts egin du PKCS#12 datuen egitura konfiguratzean: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Huts egin du PKCS#12 ziurtagiri-fitxategia desenkriptatzean\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Sartu PKCS#12 pasaesaldia:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Huts egin du PKCS#12 fitxategia prozesatzean: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Huts egin du PKCS#12 ziurtagiria kargatzean: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Huts egin du X509 ziurtagiria inportatzean: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Huts egin du PKCS#11 ziurtagiria ezartzean: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ezin izan da MD5 hash-a hasieratu: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash-aren errorea: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Enkriptatutako gakoaren OpenSSL 'DEK-Info:' goiburua falta da\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Ezin da PEM enkriptatze mota zehaztu\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Onartu gabeko PEM enkriptatze mota: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Baliogabeko hazia enkriptatutako PEM fitxategian\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Errorea enkriptatutako PEM fitxategia base64 moduan deskodetzean: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Enkriptatutako PEM fitxategia laburregia\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Huts egin du desenkriptatutako PEM fitxategia zifratzeko hasieratzean: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Huts egin du PEM gakoa desenkriptatzean: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Huts egin du PEM gakoa desenkriptatzean\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Sartu PEM pasaesaldia:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "Bitar hau PKCS#11 euskarririk gabe eraikita dago\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "'%s' PKCS#11 ziurtagiria erabiltzen\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Errorea PKCS#11-tik ziurtagiria kargatzean: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "'%s' ziurtagiri-fitxategia erabiltzen\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 fitxategiak ez dauka ziurtagiririk\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "Ez da ziurtagiririk aurkitu fitxategian" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Huts egin du ziurtagiria kargatzean: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Errorea gako pribatuaren egitura hasieratzean: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Errorea PKCS#12 gako-egitura hasieratzean: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Errorea '%s' PKCS#11 URLa inportatzean: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "'%s' PKCS#11 gakoa erabiltzen\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Errorea PKCS#11 gakoa gako pribatuaren egiturara inportatzean: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "'%s' gako pribatuaren fitxategia erabiltzen\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Openconnect-en bertsio hau 'TPM' euskarririk gabe konpilatuta\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Huts egin du PEM fitxategia interpretatzean\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Huts egin du PKCS#1 gako pribatua kargatzean: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Huts egin du gako pribatua PKCS#8 gisa kargatzean: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Huts egin du PKCS#8 ziurtagiriaren fitxategia desenkriptatzean\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Huts egin du '%s' gako pribatuaren mota zehaztean\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Huts egin du ID gakoa eskuratzean: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Errorea probako datuak gako pribatuarekin sinatzean: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Errorea ziurtagiriaren aurka sinadura egiaztatzean: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "Ez da gako pribatuarekin bat datorren SSL ziurtagiririk aurkitu\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "'%s' ziurtagiriaren bezeroa erabiltzen\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Huts egin du ziurtagiriaren errebokazio-zerrenda ezartzean: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "Huts egin du memoria esleitzean ziurtagiriarentzako\n" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "Abisua: GNUTLS-ek ziurtagirien okerreko jaulkitzailea itzuli du. " "Autentifikazioak huts egin lezake\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "'%s' ZE hau lortu da PKCS#11-tik\n" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Huts egin du ziurtagiriak onartzeko memoria esleitzean\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "'%s' ZE euskarria gehitzen\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Huts egin du ziurtagiriaren ezarpenak: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Zerbitzariak ez du ziurtagiririk aurkeztu\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Errorea X509 ziurtagiriaren egitura hasieratzean\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Errorea zerbitzariaren ziurtagiria inportatzean\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Errorea zerbitzariaren ziurtagiriaren egoera aztertzean\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "ziurtagiria errebokatuta" #: gnutls.c:1970 msgid "signer not found" msgstr "ez da sinatzailerik aurkitu" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "sinatzailea ez da ZE-ren ziurtagiri bat" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "algoritmo ez-segurua" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "ziurtagiria ez da oraindik aktibatu" #: gnutls.c:1978 msgid "certificate expired" msgstr "ziurtagiria iraungituta" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "huts egin du sinadura egiaztatzean" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "ziurtagiria ez dator bat ostalari-izenarekin" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Huts egin du zerbitzariaren ziurtagiria egiaztatzean: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Huts egin du cafile ziurtagirientzako memoria esleitzean\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Huts egin du cafile-tik ziurtagiriak irakurtzean: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Huts egin du '%s' ZE fitxategia irekitzean: %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Huts egin du ziurtagiria kargatzean. Bertan behera uzten.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Huts egin du TLS--ren lehentasunaren katea ezartzean: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL '%s'(r)ekin negoziatzen\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL konexioa bertan behera utzita\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL konexioaren hutsegitea: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS-ren itzulera ez-larria negoziazioan: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "HTTPSra konektatuta '%s'(e)n\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL berriro negoziatuta %s(e)n\n" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "'%s'(r)en PINa behar da" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Okerreko PINa" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "Azken saiakera da blokeatu aurretik." #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Saiakera gutxi batzuk falta dira blokeatu aurretik." #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Sartu PINa:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Huts egin du sinadurarentzako sarrerako datuen SHA1 kalkulatzean: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM seinalearen funtzioari deituta %d byte-ntzako.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Huts egin du TPM hash-aren objektua sortzean: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Huts egin du TPM-ren hash objektuan balioa ezartzean: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Huts egin du TPM hash-a sinatzean: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Errorea TSS gakoaren blob-a deskodetzean: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Errorea TSS gakoaren blob-ean\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Huts egin du TPM-ren testuingurua sortzean: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Huts egin du TPM testuingurua konektatzean: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Huts egin du TPM SRK gakoa kargatzean: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Huts egin du TPM SRK arauen objektua kargatzean: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Huts egin du TPM-ren PINa ezartzean: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Huts egin du TPM gakoren blob-a kargatzean: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Sartu TPM SRK-ren PINa:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Huts egin du gakoaren arauen objektua sortzean: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Huts egin du araua gakoari esleitzean: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Sartu TPM-ren gakoaren PINa:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Huts egin du gakoaren PINa ezartzean: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "Ez dago memoriarik cookie-ak esleitzeko\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Huts egin du '%s' HTTParen erantzuna analizatzean\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTParen erantzun hau lortu da: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Errorea HTTParen erantzuna prozesatzean\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "HTTParen erantzunaren '%s' lerroari ez ikusi egiten\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Baliogabeko cookie-a eskaini da: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "Huts egin du SSL ziurtagiria autentifikatzean\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Erantzunaren gorputzak tamaina negatiboa du (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transferentziaren kodeketa ezezaguna: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "'%s' HTTParen gorputza (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Errorea HTTParen erantzunaren gorputza irakurtzean\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Errorea zatiaren goiburua eskuratzean\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Errorea HTTParen erantzunaren gorputza eskuratzean\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Errorea deskodeketaren zatian. '' espero zen, bana hau lortu da: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ezin da HTTP 1.0-ren gorputza eskuratu konexioa itxi gabe\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Huts egin du birbideratutako '%s' URLa analizatzean: %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ezin da https ez den '%s' URLaren birbideraketara jarraipenik egin\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Huts egin du birbideraketa erlatiboaren bide-izen berria esleitzean: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Ustekabeko %d emaitz zerbitzaritik\n" #: http.c:1056 msgid "request granted" msgstr "eskaera baimenduta" #: http.c:1057 msgid "general failure" msgstr "hutsegite orokorra" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "arau-multzoak ez du konexioa baimendu" #: http.c:1059 msgid "network unreachable" msgstr "sarea atziezina" #: http.c:1060 msgid "host unreachable" msgstr "ostalaria atziezina" #: http.c:1061 msgid "connection refused by destination host" msgstr "helburuko ostalariak konexioa ukatu du" #: http.c:1062 msgid "TTL expired" msgstr "TTL iraungituta" #: http.c:1063 msgid "command not supported / protocol error" msgstr "komandoa ez dago onartuta / protokoloaren errorea" #: http.c:1064 msgid "address type not supported" msgstr "helbide mota ez dago onartuta" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Errorea autentifikazioaren eskaera SOCKS proxy-an idaztean: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Errorea autentifikazioaren erantzuna SOCKS proxy-tik irakurtzean: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Ustekabeko autentifikazioaren eskaera SOCKS proxy-tik: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS proxy-aren '%s:%d'(r)ekiko konexioa eskatzen\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Errorea konexioaren eskaera SOCKS proxyan idaztean: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Errorea SOCKS proxytik konexioaren erantzuna irakurtzean: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Ustekabeko SOCKS proxyaren konexioaren erantzuna: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy-aren '%02x' errorea: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy-aren '%02x' errorea\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Ustekabeko %02x helbide mota SOCKS konexioaren erantzunean\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP proxy konexioa '%s:%d'(r)i eskatzen\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Huts egin du proxy eskaera bidaltzean: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "'%s' proxy mota ezezaguna\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Soilik HTTP edo socks(5) proxyak onartzen dira\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "SSL liburutegiarekin eraikita, Cisco-ren DTLS euskarririk gabe.\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Huts egin du '%s' zerbitzariaren URLa analizatzean\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Soilik 'https://' baimentzen da zerbitzariaren URLan\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "Ez dago inprimakiaren kudeatzailerik: ezin da autentifikatu.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Huts egin du katea sarrera estandarretik esleitzean\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL erabiltzen. Dituen eginbideak:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS erabiltzen. Dituen eginbideak:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "Ez dago OpenSSL motorra" #: main.c:613 msgid "using OpenSSL" msgstr "OpenSSL erabiltzen" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "ABISUA: ez dago DTLS euskarririk bitar honetan. Errendimenduan eragina " "izango du.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (sarrera_estandarra)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ezin da '%s' bide-izen exekutagarria prozesatu" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Huts egin du vpnc-script bide-izenaren esleipenak\n" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Erabilera: openconnect [aukerak] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Cisco AnyConnect VPN-ren bezero irekia, %s bertsioa\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Irakurri aukerak konfigurazio-fitxategitik" #: main.c:710 msgid "Continue in background after startup" msgstr "Jarraitu atzeko planoan abiatu ondoren" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Idatzi daemon-aren PIDa fitxategi honetan" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Erabili SSL bezeroaren CERT ziurtagiria" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Abisatu ziurtagiriaren bizi-iraupena < EGUN denean" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Erabili SSL-ren gako pribatuaren KEY fitxategia" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Erabili WebVPN-ren COOKIE cookie-a" #: main.c:717 msgid "Read cookie from standard input" msgstr "Irakurri cookie-a sarrera estandarretik" #: main.c:718 msgid "Enable compression (default)" msgstr "Gaitu konpresioa (lehenetsia)" #: main.c:719 msgid "Disable compression" msgstr "Desgaitu konpresioa" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Ezarri Hildako _Parekoen Detekzioaren (DPD) bitartea" #: main.c:721 msgid "Set login usergroup" msgstr "Ezarri saio-hasieraren erabiltzaile-taldea" #: main.c:722 msgid "Display help text" msgstr "Bistaratu laguntzaren testua" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Erabili IFNAME tunelaren interfazearentzako" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Erabili sistemaren egunkaria (syslog) aurrerapenen mezuentzako" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "Atxikitu denbora-zigilua aurretik aurrerapenen mezuei" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Jaregin pribilegioak konektatu ondoren" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Jaregin pribilegioak CSV exekutatzean" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Exekutatu SCRIPT, CSD bitarraren ordez" #: main.c:733 msgid "Request MTU from server" msgstr "Eskatu MTU zerbitzaritik" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Adierazi MTUren bide-izena zerbitzariari/zerbitzaritik" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ezarri pasaesaldia edo TPM SRK PINa" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Gakoaren pasaesaldia fitxategi-sistemaren fsid-a da" #: main.c:737 msgid "Set proxy server" msgstr "Ezarri proxy zerbitzaria" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Desgaitu proxy-a" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Erabili 'libproxy' proxy-a automatikoki konfiguratzeko" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(OHARRA: 'libproxy' desgaituta bertsio honetan)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "Konfidentzialtasun iraunkorra (PFS) behar da" #: main.c:745 msgid "Less output" msgstr "Irteera laburragoa" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Mugatu paketeen ilara LEN (luzera) paketetara" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Komando-lerroa vpnc-compatible konfigurazioaren script bat erabiltzeko" #: main.c:748 msgid "default" msgstr "lehenetsia" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Igorri trafikoa 'script' programari, ez TUN-ari" #: main.c:752 msgid "Set login username" msgstr "Ezarri erabiltzaile-izena" #: main.c:753 msgid "Report version number" msgstr "Eman bertsio-zenbakiaren berri" #: main.c:754 msgid "More output" msgstr "Irteera xehatuagoa" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "Irauli HTTP autentifikazioaren trafikoa (--verbose inplikatzen du)" #: main.c:756 msgid "XML config file" msgstr "XML konfigurazio-fitxategia" #: main.c:757 msgid "Choose authentication login selection" msgstr "Aukeratu autentifikazioaren saio-hasieraren hautapena" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Autentifikatu soilik eta erakutsi saio-hasieraren informazioa" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Eskuratu webvpn cookie-a soilik; ez konektatu" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Erakutsi webvpn cookie-a konektatu aurretik" #: main.c:761 msgid "Cert file for server verification" msgstr "Ziurtagiriaren fitxategia zerbitzaria egiaztatzeko" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Ez eskatu IPv6 konektagarritasuna" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL zifraketak DTLS onartzeko" #: main.c:764 msgid "Disable DTLS" msgstr "Desgaitu DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Desgaitu HTTP konexioa berrerabiltzea" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Desgaitu pasahitzaren/SecurID-ren autentifikazioa" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Ez eskatu zerbitzariaren SSLaren ziurtagiria egiaztatzeko " #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "Ez saiatu XML POST-en autentifikazioa" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Ez itxaron erabiltzailearen sarrerarik; irten beharrezkoa izanez gero" #: main.c:771 msgid "Read password from standard input" msgstr "Irakurri pasahitza sarrera estandarretik" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "Softwarearen token mota: 'rsa', 'totp' edo 'hotp'" #: main.c:773 msgid "Software token secret" msgstr "Softwarearen ezkutuko token-a" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Oharra: 'libstoken' (RSA SecurID) desgaituta bertsio honetan)" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Berriro konektatzeko saiakeraren denbora (segundotan)" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Zerbitzariaren ziurtagiriaren SHA1 hatz-maraka" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP goiburuaren 'User-Agent': eremua" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "SE mota (linux,linux-64,win,...) berri emateko" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Ezarri DTLS datagramen lokaleko ataka" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "Huts egin du katea esleitzean\n" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Huts egin du konfigurazio-fitxategitik lerroa eskuratzean: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Aukera ezezaguna %d. lerroan: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' aukerak ez du argumentu bat hartzen %d. lerroan\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' aukerak argumentu bat behar du %d. lerroan\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Huts egin du vpninfo egitura esleitzean\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Baliogabeko '%s' erabiltzailea\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ezin da 'config' aukera erabili konfigurazio-fitxategi barruan\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ezin da '%s' konfigurazio-fitxategia ireki: %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "%d MTU txikiegia da\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "HTTPren konexio guztiak berrerabiltzea desgaitzen '--no-http-keepalive' " "aukera dela eta.\n" "Honek lagun badezake, bidali honi buruzkoak helbide honetara: \n" "\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Ezin da ilararen luzera zero izan: 1 erabiltzen\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect '%s' bertsioa\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Baliogabeko softwarearen '%s' token modua\n" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Baliogabeko '%s' SE-aren identitatea\n" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumentu gehiegi komando-lerroan\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Ez da zerbitzaririk zehaztu\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Openconnect-en bertsio hau 'libproxy' euskarririk gabe konpilatuta\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "Errorea 'cmd'-ren kanalizazioa irekitzean\n" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Huts egin du WebVPN cookie-a eskuratzean\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Huts egin du SSL konexioa sortzean\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "Huts egin du 'tun' script-a konfiguratzean\n" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Huts egin du TUN gailua konfiguratzean\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Huts egin du DTLS konfiguratzean: horren ordez SSL erabiltzen\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Ez da --script argumenturik eman. DNSa eta bideratzea ez daude " "konfiguratuta.\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Ikus http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Huts egin du '%s' idazteko irekitzean: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Atzeko planoan jarraitzen du: %d PIDa\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Huts egin du '%s' idazteko irekitzean: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Huts egin du konfigurazioa '%s'(e)n idaztean: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "SSL zerbitzariaren ziurtagiria ez dator bat: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Huts egin du '%s' VPN zerbitzariaren ziurtagiria egiaztatzean.\n" "Zergatia: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Sartu '%s' onartzeko, '%s' bertan behera uzteko; beste edozer hau ikusteko:" #: main.c:1661 main.c:1679 msgid "no" msgstr "ez" #: main.c:1661 main.c:1667 msgid "yes" msgstr "bai" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Autentifikazioaren '%s' aukera hainbat aukerekin bat dator\n" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Autentifikazioaren '%s' aukera ez dago erabilgarri\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "Erabiltzailearen sarrera behar da modu ez-elkarreragilean\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "Softwarearen tokenaren katea baliogabea da\n" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ezin da ~/.stokenrc fitxategia ireki\n" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect ez zen 'libstoken' euskarriarekin konpilatu\n" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "Hutsegite orokorra 'libstoken' liburutegian\n" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect ez zen 'liboath' euskarriarekin konpilatu\n" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "Hutsegite orokorra 'liboath' liburutegian\n" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "Deitzaileak konexioa pausatu du\n" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Lanik ez egiteko. %d ms lotan...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "'WaitForMultipleObjects'-ek huts egin du: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "Ados INITIAL tokencode-a sortzeko\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "Ados NEXT tokencode-a sortzeko\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Zerbitzaria softwarearen tokena ukatzen ari da. Eskuzko sarrerara aldatzen\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP tokenaren kodea sortzen\n" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP tokenaren kodea sortzen\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Huts egin du SSL socket-ean idaztean\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Huts egin du SSL socket-etik irakurtzean\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL irakurketaren %d errorea (baliteke zerbitzariak konexioa ixtea). " "Birkonektatzen.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "'SSL_write'-k huts egin du: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM pasahitza luzeegia da (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s-ren ziurtagiri gehigarria: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Huts egin du PKCS#12 analizatzean (ikus gaineko errorak)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 ez dauka ziurtagiririk." #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 ez dauka gako pribaturik." #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Ezin da TPM motorra kargatu.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Huts egin du TPM motorra hasieratzean\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Huts egin du TPM SRK pasahitza ezartzean\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Huts egin du TPMren gako probatua kargatzean\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Huts egin du TPMtik gakoa gehitzean\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Huts egin du '%s' ziurtagiri-fitxategia irekitzean: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Huts egin du ziurtagiria kargatzean\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Huts egin du gako-biltegiko '%s' elementuaren BIO-a sortzean\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Huts egin du gako pribatua kargatzean (okerreko pasaesaldia?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Huts egin du gako pribatua kargatzean (ikus goiko erroreak)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Huts egin du X509 ziurtagiria gakoen biltegitik kargatzean\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Huts egin du X509 ziurtagiria gakoen biltegitik erabiltzean\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Huts egin du gako pribatua gakoen biltegitik erabiltzean\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Huts egin du gako pribatuaren '%s' fitxategia irekitzean: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Huts egin du gako pribatuaren mota identifikatzean '%s'(e)n\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "'%s' DNS ordezko izenarekin bat dator\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "Ez dago '%s' DNS ordezko izenarekin bat datorrenik\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Ziurtagiriak ordezko GEN_IPADD izena du okerreko %d luzerarekin\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "%s helbide bat datoz '%s'(r)ekin\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ez dago bat datorrenik %s '%s' helbideekin\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "'%s' URIak ez du hutsak ez diren bide-izenik. Ez ikusi egiten\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "'%s' URIarekin bat dator\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "Ez dago '%s' URIarekin bat datorrenik\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Ez dago '%s'(r)ekin bat datorren ordezko izenik parekoaren ziurtagirian\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "Parekoaren ziurtagiriak ez du subjektuaren izenik\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Huts egin du parekoaren ziurtagirian subjektuaren izena analizatzean\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Parekoaren ziurtagiriaren subjektua falta da ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Parekoaren ziurtagiriaren '%s' subjektuaren izena bat dator\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile-ren ziurtagiri gehigarria: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Errorea bezeroaren ziurtagiriko 'notAfter' eremuan\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Huts egin du '%s' ZE fitxategitik ziurtagiriak irakurtzean\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Huts egin du '%s' ZE fitxategia irekitzean\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL konexioaren hutsegitea\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Okerreko zatitzea baztertzeak hau dauka: '%s'\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Okerreko zatitzea baztertzeak ez dauka hau: '%s'\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Huts egin du '%2$s'(r)en '%1$s' scripta sortzean: %3$s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "'%s' scripta ustekabean amaitu da (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "'%s' script-ak %d errorea itzuli du\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket-aren konexioa bertan behera utzita\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Huts egin du '%s' proxyarekin birkonektatzean\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Huts egin du '%s' ostalariarekin birkonektatzean\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "'libproxy'-ren proxy-a: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Huts egin du '%s' ostalariaren getaddrinfo() funtzioak: %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "'%s%s%s:%s' proxy-arekin konektatzen saiatzen\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "'%s%s%s:%s' zerbitzariarekin konektatzen saiatzen\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Huts egin du biltegiaren socketaren helbidea (sockaddr) esleitzean\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Huts egin du '%s' ostalariarekin konektatzean\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "vfs-ren estatistikak: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "fs-ren estatistikak: %s\n" #: ssl.c:587 msgid "No error" msgstr "Errorerik ez" #: ssl.c:588 msgid "Keystore locked" msgstr "Gako-biltegia blokeatuta" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Gako-biltegia hasieratu gabe" #: ssl.c:590 msgid "System error" msgstr "Sistemaren errorea" #: ssl.c:591 msgid "Protocol error" msgstr "Protokoloaren errorea" #: ssl.c:592 msgid "Permission denied" msgstr "Baimena ukatuta" #: ssl.c:593 msgid "Key not found" msgstr "Ez da gakoa aurkitu" #: ssl.c:594 msgid "Value corrupted" msgstr "Balioa hondatuta" #: ssl.c:595 msgid "Undefined action" msgstr "Zehaztu gabeko ekintza" #: ssl.c:599 msgid "Wrong password" msgstr "Okerreko pasahitza" #: ssl.c:600 msgid "Unknown error" msgstr "Errore ezezaguna" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie-a ez da gehiago baliozkoa izango, saioa amaitzen\n" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "lo: %ds; iraungitze-denbora: %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Sartu kredentzialak softwarearen tokena desblokeatzeko." #: stoken.c:82 msgid "Device ID:" msgstr "Gailuaren IDa:" #: stoken.c:89 msgid "Password:" msgstr "Pasahitza:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Erabiltzaileak softwarearen tokena saihestu du.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Eremu guztiak beharrezkoak dira. Saiatu berriro.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Hutsegite orokorra 'libstoken' liburutegian.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Okerreko gailuaren IDa edo pasahitza. Saiatu berriro.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Softwarearen tokena ongi hasieratu da.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PINa:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "PINaren formatua baliogabea. Saiatu berriro.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA tokenaren kodea sortzen\n" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "Errorea sareko moldagailuentzako erregistroaren gakoa atzitzean\n" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Ez da Windows-TAP moldagailurik aurkitu. Kontrolatzailea instalatuta dago?\n" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "Huts egin du '%s' irekitzean\n" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "'%s' tun gailua irekita\n" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Huts egin du TAP kontrolatzailearen bertsioa eskuratzean: %s\n" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Errorea: TAP-Windows v9.9 or handiagoa den kontrolatzailea behar da. " "Aurkitutakoa: %ld.%ld\n" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Huts egin du TAP IP helbideak ezartzean: %s\n" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Huts egin du TAP euskarriaren egoera ezartzean: %s\n" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Huts egin du TAP gailutik irakurtzean: %s\n" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Huts egin du TAP gailutik erabat irakurtzean: %s\n" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld byte 'tun'-en idatzita\n" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "'tun'-ek idatzi zain...\n" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "'tun'-en %ld byte idatzita zain egon ondoren\n" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Huts gin du TAP gailuan idaztean: %s\n" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tunelaren script-ak sortzea ez dago oraindik onartuta Windows-en\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ezin izan da /dev/tun ireki zundatzeko" #: tun.c:92 msgid "Can't push IP" msgstr "Ezin da IPa bultzatu" #: tun.c:102 msgid "Can't set ifname" msgstr "Ezin da ifname ezarri" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Ezin da '%s' ireki: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ezin da IPv%2$d-ren '%1$s' zundatu: %3$s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "ireki /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Huts egin d 'tun' berria sortzean" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Huts egin du 'tun' fitxategiaren deskriptorea 'baztertu mezua' moduan " "jartzean" #: tun.c:196 msgid "open net" msgstr "ireki sarea" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Huts egin du 'tun' gailua irekitzean: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" "'%s' interfazearen izena baliogabea. 'tun%%d'-(r)ekin bat etorri behar du\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ezin da '%s' ireki: %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "'socketpair'-ek huts egin du: %s\n" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "huts egin du sardetzean: %s\n" #: tun.c:479 msgid "setpgid" msgstr "setpgid" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script-a)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pakete ezezaguna (%d luzerakoa) jasota: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Huts egin du sarrerako paketea idaztean: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "'%s' ostalaria ostalari-izen gordin gisa tratatzen\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Huts egin du existitzen den fitxategiaren SHA1 kalkulatzean\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML konfigurazio-fitxategiaren SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Huts egin du XML konfigurazio-fitxategia analizatzean: %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "'%s' ostalariak '%s' helbidea du\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "'%s' ostalariak '%s' erabiltzaile-taldea du\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "'%s' ostalaria ez dago konfigurazioan zerrendatuta; ostalari-izen gordin " "gisa erabiltzen\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/en_GB.po0000664000076400007640000024360612502026115012651 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Margie Foster , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/" "meego/language/en_GB/)\n" "Language: en_GB\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Cannot handle form method='%s', action='%s'\n" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "Form choice has no name\n" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "name %s not input\n" #: auth.c:186 msgid "No input type in form\n" msgstr "No input type in form\n" #: auth.c:198 msgid "No input name in form\n" msgstr "No input name in form\n" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unknown input type %s in form\n" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "Failed to parse server response\n" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "Response was:%s\n" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "Asked for password but '--no-passwd' set\n" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Failed to open HTTPS connection to %s\n" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "Failed to send GET request for new config\n" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloaded config file did not match intended SHA1\n" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Trying to run Linux CSD trojan script.\n" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Failed to open temporary CSD script file: %s\n" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Failed to write temporary CSD script file: %s\n" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "Failed to set uid %ld\n" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "Invalid user uid=%ld\n" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Failed to change to CSD home directory '%s': %s\n" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warning: you are running insecure CSD code with root privileges\n" "» Use command line option \"--csd-user\"\n" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Failed to exec CSD script %s\n" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "Unknown response from server\n" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Refreshing %s after 1 second...\n" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "Error fetching HTTPS response\n" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN service unavailable; reason: %s\n" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Got inappropriate HTTP CONNECT response: %s\n" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Got CONNECT response: %s\n" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "No memory for options\n" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unknown CSTP-Content-Encoding %s\n" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "No MTU received. Aborting\n" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "No IP address received. Aborting\n" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconnect gave different Legacy IP address (%s != %s)\n" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconnect gave different Legacy IP netmask (%s != %s)\n" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconnect gave different IPv6 address (%s != %s)\n" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconnect gave different IPv6 netmask (%s != %s)\n" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connected. DPD %d, Keepalive %d\n" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "Compression setup failed\n" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "Allocation of deflate buffer failed\n" #: cstp.c:702 msgid "inflate failed\n" msgstr "inflate failed\n" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "deflate failed %d\n" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unexpected packet length. SSL_read returned %d but packet is\n" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "Got CSTP DPD request\n" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "Got CSTP DPD response\n" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "Got CSTP Keepalive\n" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Received uncompressed data packet of %d bytes\n" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Received server disconnect: %02x '%s'\n" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "Compressed packet received in !deflate mode\n" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "received server terminate packet\n" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL wrote too few bytes! Asked for %d, sent %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detected dead peer!\n" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "Reconnect failed\n" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sending uncompressed data packet of %d bytes\n" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE packet: %s\n" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialise DTLSv1 session failed\n" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialise DTLSv1 CTX failed\n" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "Set DTLS cipher list failed\n" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "Not precisely one DTLS cipher\n" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Your OpenSSL is older than the one you built against, so DTLS may fail!" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake timed out\n" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake failed: %d\n" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Unknown DTLS parameters for requested CipherSuite '%s'\n" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Failed to set DTLS priority: %s\n" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Failed to set DTLS session parameters: %s\n" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Failed to set DTLS MTU: %s\n" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS handshake failed: %s\n" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "No DTLS address\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "Server offered no DTLS cipher option\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "No DTLS when connected via proxy\n" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS option %s : %s\n" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "Attempt new DTLS connection\n" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Received DTLS packet 0x%02x of %d bytes\n" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "Got DTLS DPD request\n" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Failed to send DPD response. Expect disconnect\n" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "Got DTLS DPD response\n" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "Got DTLS Keepalive\n" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unknown DTLS packet type %02x, len %d\n" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detected dead peer!\n" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Failed to send DPD request. Expect disconnect\n" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Failed to send keepalive request. Expect disconnect\n" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS got write error %d. Falling back to SSL\n" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS got write error: %s. Falling back to SSL\n" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Sent DTLS packet of %d bytes; DTLS send returned %d\n" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "SSL write cancelled\n" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Failed to write to SSL socket: %s\n" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "SSL read cancelled\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Failed to read from SSL socket: %s\n" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL read error: %s; reconnecting.\n" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL send failed: %s\n" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "Could not extract expiration time of certificate\n" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "Client certificate has expired at" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "Client certificate expires soon at" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Failed to load item '%s' from keystore: %s\n" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Failed to open key/certificate file %s: %s\n" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Failed to stat key/certificate file %s: %s\n" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "Failed to allocate certificate buffer\n" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Failed to read certificate into memory: %s\n" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Failed to setup PKCS#12 data structure: %s\n" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Failed to decrypt PKCS#12 certificate file\n" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "Enter PKCS#12 pass phrase:" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Failed to process PKCS#12 file: %s\n" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Failed to load PKCS#12 certificate: %s\n" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importing X509 certificate failed: %s\n" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Setting PKCS#11 certificate failed: %s\n" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Could not initialise MD5 hash: %s\n" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash error: %s\n" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Missing DEK-Info: header from OpenSSL encrypted key\n" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "Cannot determine PEM encryption type\n" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Unsupported PEM encryption type: %s\n" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "Invalid salt in encrypted PEM file\n" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error base64-decoding encrypted PEM file: %s\n" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "Encrypted PEM file too short\n" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Failed to initialise cipher for decrypting PEM file: %s\n" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Failed to decrypt PEM key: %s\n" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "Decrypting PEM key failed\n" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "Enter PEM pass phrase:" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "This binary built without PKCS#11 support\n" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Using PKCS#11 certificate %s\n" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error loading certificate from PKCS#11: %s\n" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "Using certificate file %s\n" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 file contained no certificate\n" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "No certificate found in file" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Loading certificate failed: %s\n" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error initialising private key structure: %s\n" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error initialising PKCS#11 key structure: %s\n" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error importing PKCS#11 URL %s: %s\n" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Using PKCS#11 key %s\n" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Error importing PKCS#11 key into private key structure: %s\n" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "Using private key file %s\n" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "This version of OpenConnect was built without TPM support\n" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "Failed to interpret PEM file\n" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Failed to load PKCS#1 private key: %s\n" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Failed to load private key as PKCS#8: %s\n" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Failed to decrypt PKCS#8 certificate file\n" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Failed to determine type of private key %s\n" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Failed to get key ID: %s\n" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error signing test data with private key: %s\n" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error validating signature against certificate: %s\n" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "No SSL certificate found to match private key\n" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "Using client certificate '%s'\n" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "Setting certificate recovation list failed: %s\n" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Failed to allocate memory for supporting certificates\n" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Adding supporting CA '%s'\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Setting certificate failed: %s\n" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "Server presented no certificate\n" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "Error initialising X509 cert structure\n" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "Error importing server's cert\n" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "Error checking server cert status\n" #: gnutls.c:1968 msgid "certificate revoked" msgstr "certificate revoked" #: gnutls.c:1970 msgid "signer not found" msgstr "signer not found" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "signer not a CA certificate" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "insecure algorithm" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "certificate not yet activated" #: gnutls.c:1978 msgid "certificate expired" msgstr "certificate expired" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "signature verification failed" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "certificate does not match hostname" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Server certificate verify failed: %s\n" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "Failed to allocate memory for cafile certs\n" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Failed to read certs from cafile: %s\n" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Failed to open CA file '%s': %s\n" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "Loading certificate failed. Aborting.\n" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "Failed to set TLS priority string: %s\n" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL negotiation with %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "SSL connection cancelled\n" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL connection failure: %s\n" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS non-fatal return during handshake: %s\n" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Connected to HTTPS on %s\n" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "PIN required for %s" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "Wrong PIN" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "This is the final try before locking!" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "Only a few tries left before locking!" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "Enter PIN:" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "Failed to SHA1 input data for signing: %s\n" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM sign function called for %d bytes.\n" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Failed to create TPM hash object: %s\n" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Failed to set value in TPM hash object: %s\n" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash signature failed: %s\n" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error decoding TSS key blob: %s\n" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "Error in TSS key blob\n" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Failed to create TPM context: %s\n" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Failed to connect TPM context: %s\n" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Failed to load TPM SRK key: %s\n" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Failed to load TPM SRK policy object: %s\n" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Failed to set TPM PIN: %s\n" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Failed to load TPM key blob: %s\n" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "Enter TPM SRK PIN:" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Failed to create key policy object: %s\n" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Failed to assign policy to key: %s\n" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "Enter TPM key PIN:" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Failed to set key PIN: %s\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "No memory for allocating cookies\n" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Failed to parse HTTP response '%s'\n" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "Got HTTP response: %s\n" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "Error processing HTTP response\n" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignoring unknown HTTP response line '%s'\n" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Invalid cookie offered: %s\n" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "SSL certificate authentication failed\n" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Response body has negative size (%d)\n" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unknown Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "Error reading HTTP response body\n" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "Error fetching chunk header\n" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "Error fetching HTTP response body\n" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Error in chunked decoding. Expected '', got: '%s'" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Cannot receive HTTP 1.0 body without closing connection\n" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Failed to parse redirected URL '%s': %s\n" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Cannot follow redirection to non-https URL '%s'\n" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allocating new path for relative redirect failed: %s\n" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unexpected %d result from server\n" #: http.c:1056 msgid "request granted" msgstr "request granted" #: http.c:1057 msgid "general failure" msgstr "general failure" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "connection not allowed by ruleset" #: http.c:1059 msgid "network unreachable" msgstr "network unreachable" #: http.c:1060 msgid "host unreachable" msgstr "host unreachable" #: http.c:1061 msgid "connection refused by destination host" msgstr "connection refused by destination host" #: http.c:1062 msgid "TTL expired" msgstr "TTL expired" #: http.c:1063 msgid "command not supported / protocol error" msgstr "command not supported / protocol error" #: http.c:1064 msgid "address type not supported" msgstr "address type not supported" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error writing auth request to SOCKS proxy: %s\n" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error reading auth response from SOCKS proxy: %s\n" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unexpected auth response from SOCKS proxy: %02x %02x\n" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requesting SOCKS proxy connection to %s:%d\n" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error writing connect request to SOCKS proxy: %s\n" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error reading connect response from SOCKS proxy: %s\n" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unexpected connect response from SOCKS proxy: %02x %02x...\n" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy error %02x: %s\n" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy error %02x\n" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unexpected address type %02x in SOCKS connect response\n" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requesting HTTP proxy connection to %s:%d\n" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Sending proxy request failed: %s\n" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unknown proxy type '%s'\n" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "Only http or socks(5) proxies supported\n" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Built against SSL library with no Cisco DTLS support\n" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Failed to parse server URL '%s'\n" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "Only https:// permitted for server URL\n" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "No form handler; cannot authenticate.\n" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allocation failure for string from stdin\n" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Using OpenSSL. Features present:" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Using GnuTLS. Features present:" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE not present" #: main.c:613 msgid "using OpenSSL" msgstr "using OpenSSL" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Usage: openconnect [options] \n" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" #: main.c:708 msgid "Read options from config file" msgstr "Read options from config file" #: main.c:710 msgid "Continue in background after startup" msgstr "Continue in background after startup" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "Write the daemon's PID to this file" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "Use SSL client certificate CERT" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "Warn when certificate lifetime < DAYS" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "Use SSL private key file KEY" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Use WebVPN cookie COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "Read cookie from standard input" #: main.c:718 msgid "Enable compression (default)" msgstr "Enable compression (default)" #: main.c:719 msgid "Disable compression" msgstr "Disable compression" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "Set minimum Dead Peer Detection interval" #: main.c:721 msgid "Set login usergroup" msgstr "Set login usergroup" #: main.c:722 msgid "Display help text" msgstr "Display help text" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "Use IFNAME for tunnel interface" #: main.c:725 msgid "Use syslog for progress messages" msgstr "Use syslog for progress messages" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "Drop privileges after connecting" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "Drop privileges during CSD execution" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "Run SCRIPT instead of CSD binary" #: main.c:733 msgid "Request MTU from server" msgstr "Request MTU from server" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "Indicate path MTU to/from server" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "Set key passphrase or TPM SRK PIN" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "Key passphrase is fsid of file system" #: main.c:737 msgid "Set proxy server" msgstr "Set proxy server" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Disable proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Use libproxy to automatically configure proxy" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: libproxy disabled in this build)" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "Less output" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "Set packet queue limit to LEN pkts" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shell command line for using a vpnc-compatible config script" #: main.c:748 msgid "default" msgstr "default" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "Pass traffic to 'script' program, not tun" #: main.c:752 msgid "Set login username" msgstr "Set login username" #: main.c:753 msgid "Report version number" msgstr "Report version number" #: main.c:754 msgid "More output" msgstr "More output" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "XML config file" #: main.c:757 msgid "Choose authentication login selection" msgstr "Choose authentication login selection" #: main.c:758 msgid "Authenticate only and print login info" msgstr "Authenticate only and print login info" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "Fetch webvpn cookie only; don't connect" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "Print webvpn cookie before connecting" #: main.c:761 msgid "Cert file for server verification" msgstr "Cert file for server verification" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "Do not ask for IPv6 connectivity" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL ciphers to support for DTLS" #: main.c:764 msgid "Disable DTLS" msgstr "Disable DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Disable HTTP connection re-use" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "Disable password/SecurID authentication" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "Do not require server SSL cert to be valid" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "Do not expect user input; exit if it is required" #: main.c:771 msgid "Read password from standard input" msgstr "Read password from standard input" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "Connection retry timeout in seconds" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "Server's certificate SHA1 fingerprint" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "Set local port for DTLS datagrams" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Failed to get line from config file: %s\n" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unrecognised option at line %d: '%s'\n" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Option '%s' does not take an argument at line %d\n" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Option '%s' requires an argument at line %d\n" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Failed to allocate vpninfo structure\n" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "Invalid user \"%s\"\n" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Cannot use 'config' option inside config file\n" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Cannot open config file '%s': %s\n" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d too small\n" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Queue length zero not permitted; using 1\n" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "Too many arguments on command line\n" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "No server specified\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "This version of openconnect was built without libproxy support\n" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Failed to obtain WebVPN cookie\n" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "Creating SSL connection failed\n" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "Set up tun device failed\n" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "Set up DTLS failed; using SSL instead\n" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "No --script argument provided; DNS and routing are not configured\n" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "See http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Failed to open '%s' for write: %s\n" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuing in background; pid %d\n" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Failed to open %s for write: %s\n" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Failed to write config to %s: %s\n" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certificate didn't match: %s\n" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Enter '%s' to accept, '%s' to abort; anything else to view: " #: main.c:1661 main.c:1679 msgid "no" msgstr "no" #: main.c:1661 main.c:1667 msgid "yes" msgstr "yes" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth choice \"%s\" not available\n" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "User input required in non-interactive mode\n" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "No work to do; sleeping for %d ms...\n" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "Failed to write to SSL socket\n" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "Failed to read from SSL socket\n" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL read error %d (server probably closed connection); reconnecting.\n" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write failed: %d\n" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM password too long (%d >= %d)\n" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert from %s: '%s'\n" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Parse PKCS#12 failed (see above errors)\n" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "PKCS#12 contained no certificate!" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "PKCS#12 contained no private key!" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "Can't load TPM engine.\n" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "Failed to init TPM engine\n" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "Failed to set TPM SRK password\n" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "Failed to load TPM private key\n" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "Add key from TPM failed\n" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Failed to open certificate file %s: %s\n" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "Loading certificate failed\n" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Failed to create BIO for keystore item '%s'\n" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Loading private key failed (wrong passphrase?)\n" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "Loading private key failed (see above errors)\n" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "Failed to load X509 certificate from keystore\n" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "Failed to use X509 certificate from keystore\n" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "Failed to use private key from keystore\n" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Failed to open private key file %s: %s\n" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Failed to identify private key type in '%s'\n" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "No match for altname '%s'\n" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificate has GEN_IPADD altname with bogus length %d\n" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matched %s address '%s'\n" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "No match for %s address '%s'\n" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' has non-empty path; ignoring\n" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "Matched URI '%s'\n" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "No match for URI '%s'\n" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No altname in peer cert matched '%s'\n" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "No subject name in peer cert!\n" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "Failed to parse subject name in peer cert\n" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert subject mismatch ('%s' != '%s')\n" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matched peer certificate subject name '%s'\n" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert from cafile: '%s'\n" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "Error in client cert notAfter field\n" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Failed to read certs from CA file '%s'\n" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Failed to open CA file '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "SSL connection failure\n" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Discard bad split include: \"%s\"\n" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Discard bad split exclude: \"%s\"\n" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Failed to spawn script '%s' for %s: %s\n" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' exited abnormally (%x)\n" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' returned error %d\n" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "Socket connect cancelled\n" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "Failed to reconnect to proxy %s\n" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "Failed to reconnect to host %s\n" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy from libproxy: %s://%s:%d/\n" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo failed for host '%s': %s\n" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Attempting to connect to proxy %s%s%s:%s\n" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Attempting to connect to server %s%s%s:%s\n" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "Failed to allocate sockaddr storage\n" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "Failed to connect to host %s\n" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "No error" #: ssl.c:588 msgid "Keystore locked" msgstr "Keystore locked" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "Keystore uninitialised" #: ssl.c:590 msgid "System error" msgstr "System error" #: ssl.c:591 msgid "Protocol error" msgstr "Protocol error" #: ssl.c:592 msgid "Permission denied" msgstr "Permission denied" #: ssl.c:593 msgid "Key not found" msgstr "Key not found" #: ssl.c:594 msgid "Value corrupted" msgstr "Value corrupted" #: ssl.c:595 msgid "Undefined action" msgstr "Undefined action" #: ssl.c:599 msgid "Wrong password" msgstr "Wrong password" #: ssl.c:600 msgid "Unknown error" msgstr "Unknown error" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sleep %ds, remaining timeout %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Could not open /dev/tun for plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Can't push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Can't set ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Can't open %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Can't plumb %s for IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Failed to create new tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Failed to put tun file descriptor into message-discard mode" #: tun.c:196 msgid "open net" msgstr "open net" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Failed to open tun device: %s\n" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Invalid interface name '%s'; must match 'tun%%d'\n" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Cannot open '%s': %s\n" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "execl" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Failed to write incoming packet: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Treating host \"%s\" as a raw hostname\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Failed to SHA1 existing file\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config file SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Failed to parse XML config file %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" has address \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" has UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" not listed in config; treating as raw hostname\n" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/po/Makefile.am0000664000076400007640000000165411766636502013410 00000000000000 LINGUAS = @LINGUAS@ MOFILES = $(LINGUAS:%=%.mo) POFILES = $(LINGUAS:%=%.po) noinst_DATA = $(MOFILES) SUFFIXES = .mo .po.mo: rm -f && $(MSGFMT) -o $@ $< clean-local: rm -f $(MOFILES) install-data-hook: all linguas="$(LINGUAS)"; \ for l in $$linguas; do \ dir="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES"; \ $(mkdir_p) $$dir; \ echo Installing $$l.mo to $$dir/$(PACKAGE).mo ; \ $(INSTALL_DATA) $$l.mo $$dir/$(PACKAGE).mo; \ done uninstall-hook: linguas="$(LINGUAS)"; \ for l in $$linguas; do \ file="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES/$(PACKAGE).mo"; \ if [ -r "$$file" ]; then \ echo "Removing $$file"; rm -f "$$file"; \ fi ; \ done # $(PACKAGE).pot is built by a rule in the parent directory Makefile # This rule isn't needed but is here for convenience if manually invoked .PHONY: $(PACKAGE).pot $(PACKAGE).pot: $(MAKE) -C .. po/$@ EXTRA_DIST = $(POFILES) LINGUAS DISTCLEANFILES=$(PACKAGE).pot openconnect-7.06/po/fr.po0000664000076400007640000020703212502026115012277 00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Camille Baldock , 2012. # Mademoiselle Geek , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2015-03-14 21:12+0000\n" "PO-Revision-Date: 2012-07-17 08:17+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: French (http://www.transifex.com/projects/p/meego/language/" "fr/)\n" "Language: fr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1)\n" #: auth-juniper.c:128 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:141 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:151 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:224 auth.c:406 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:285 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:351 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:373 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:384 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:419 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:428 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:435 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:440 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:451 msgid "Received invalid response from TNCC\n" msgstr "" #: auth-juniper.c:453 #, c-format msgid "" "TNCC response: -->\n" "%s\n" "<--\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:513 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:521 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:546 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:549 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth-juniper.c:563 auth.c:659 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth.c:94 msgid "Form choice has no name\n" msgstr "" #: auth.c:179 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:186 msgid "No input type in form\n" msgstr "" #: auth.c:198 msgid "No input name in form\n" msgstr "" #: auth.c:228 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:532 msgid "Empty response from server\n" msgstr "" #: auth.c:543 msgid "Failed to parse server response\n" msgstr "" #: auth.c:545 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:567 msgid "Received when not expected.\n" msgstr "" #: auth.c:595 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:628 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:908 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:914 cstp.c:274 http.c:877 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:931 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:955 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:960 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:971 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet " "implemented.\n" msgstr "" #: auth.c:979 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:986 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:993 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1020 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1028 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1037 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1055 main.c:1439 #, c-format msgid "Failed to set uid %ld\n" msgstr "" #: auth.c:1060 #, c-format msgid "Invalid user uid=%ld\n" msgstr "" #: auth.c:1066 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1072 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1117 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1148 msgid "Unknown response from server\n" msgstr "" #: auth.c:1278 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1282 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1298 msgid "XML POST enabled\n" msgstr "" #: auth.c:1341 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%x)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:100 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:119 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:238 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:251 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:267 http.c:361 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:294 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:299 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:306 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:334 cstp.c:342 msgid "No memory for options\n" msgstr "" #: cstp.c:351 http.c:421 msgid "" msgstr "" #: cstp.c:368 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:391 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:427 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:500 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:507 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:513 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:519 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:527 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:535 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:543 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:563 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:565 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:627 msgid "Compression setup failed\n" msgstr "" #: cstp.c:644 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:702 msgid "inflate failed\n" msgstr "" #: cstp.c:725 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:738 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:745 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:750 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:770 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:840 dtls.c:770 esp.c:255 mainloop.c:56 oncp.c:881 msgid "Allocation failed\n" msgstr "" #: cstp.c:851 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:864 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:878 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:884 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:889 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:894 oncp.c:970 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:911 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:914 msgid "Received server disconnect\n" msgstr "" #: cstp.c:922 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:931 msgid "received server terminate packet\n" msgstr "" #: cstp.c:938 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquet inconnu %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:981 oncp.c:1085 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1009 oncp.c:1123 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1016 oncp.c:1130 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1027 oncp.c:1141 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1031 oncp.c:1055 oncp.c:1145 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1047 oncp.c:1161 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1059 oncp.c:1172 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1084 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1095 oncp.c:1197 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1134 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:254 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:257 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:180 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: dtls.c:191 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: dtls.c:205 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: dtls.c:256 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: dtls.c:268 msgid "Set DTLS cipher list failed\n" msgstr "" #: dtls.c:281 msgid "Not precisely one DTLS cipher\n" msgstr "" #: dtls.c:303 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: dtls.c:338 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: dtls.c:364 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: dtls.c:413 dtls.c:417 dtls.c:569 msgid "DTLS handshake timed out\n" msgstr "" #: dtls.c:414 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: dtls.c:421 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: dtls.c:476 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: dtls.c:489 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: dtls.c:510 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: dtls.c:533 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: dtls.c:554 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: dtls.c:572 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: dtls.c:576 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: dtls.c:597 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:603 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:610 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:617 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:688 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:729 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:755 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:781 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:795 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:801 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:805 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:809 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:815 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:823 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:845 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:852 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:861 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:867 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:872 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:885 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:890 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:931 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:945 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:960 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: esp.c:57 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp.c:63 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:72 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:78 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp.c:107 #, c-format msgid "Accepting later-than-expected ESP packet with seq %u (expected %u)\n" msgstr "" #: esp.c:152 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:155 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:158 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:217 msgid "incoming" msgstr "" #: esp.c:218 msgid "outgoing" msgstr "" #: esp.c:220 esp.c:237 msgid "Send ESP probes\n" msgstr "" #: esp.c:264 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:280 #, c-format msgid "Consider SPI 0x%x, seq %u against outgoing ESP setup\n" msgstr "" #: esp.c:286 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:294 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:301 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:313 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:321 msgid "ESP session established with server\n" msgstr "" #: esp.c:332 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:338 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:344 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:358 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:362 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:369 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:375 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:398 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:404 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:116 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:146 gnutls-esp.c:212 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:153 openssl-esp.c:148 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:169 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:189 #, c-format msgid "Failed to generate ESP packet IV: %s\n" msgstr "" #: gnutls-esp.c:204 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:107 openssl.c:124 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:111 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:140 gnutls.c:202 openssl.c:156 openssl.c:209 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:148 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:152 gnutls.c:207 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:227 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:263 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:276 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:281 openssl.c:1352 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:283 openssl.c:1357 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:332 openssl.c:733 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:345 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:352 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:361 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:369 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:400 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:423 openssl.c:502 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:427 openssl.c:505 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:450 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:462 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:622 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:632 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:672 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:682 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:740 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:747 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:760 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:785 gnutls.c:798 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:830 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:858 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:869 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:921 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:926 gnutls.c:1452 openssl.c:428 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:985 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:992 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1050 openssl-pkcs11.c:383 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1051 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1069 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1070 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1081 openssl.c:787 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1109 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1135 msgid "No certificate found in file" msgstr "" #: gnutls.c:1140 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1155 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1160 gnutls.c:1324 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1171 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1182 gnutls.c:1272 gnutls.c:1300 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1187 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1312 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1319 openssl-pkcs11.c:549 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1334 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1362 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1373 openssl.c:613 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1394 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1413 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1426 gnutls.c:1440 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1448 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1462 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1474 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1519 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1534 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1558 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1570 openssl.c:528 openssl.c:671 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1577 #, c-format msgid "Setting certificate recovation list failed: %s\n" msgstr "" #: gnutls.c:1598 gnutls.c:1608 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1644 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1672 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1698 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1721 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1937 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1943 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1949 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1958 main.c:1629 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1963 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1968 msgid "certificate revoked" msgstr "" #: gnutls.c:1970 msgid "signer not found" msgstr "" #: gnutls.c:1972 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1974 msgid "insecure algorithm" msgstr "" #: gnutls.c:1976 msgid "certificate not yet activated" msgstr "" #: gnutls.c:1978 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:1983 msgid "signature verification failed" msgstr "" #: gnutls.c:2031 openssl.c:1259 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2036 openssl.c:1263 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2124 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2145 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2161 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2174 openssl.c:1415 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2206 #, c-format msgid "Failed to set TLS priority string: %s\n" msgstr "" #: gnutls.c:2218 openssl.c:1520 #, c-format msgid "SSL negotiation with %s\n" msgstr "Négociation SSL avec %s\n" #: gnutls.c:2265 openssl.c:1546 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2272 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2281 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2287 openssl.c:1571 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2290 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2473 openssl-pkcs11.c:182 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2477 openssl-pkcs11.c:185 msgid "Wrong PIN" msgstr "" #: gnutls.c:2480 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2482 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:189 msgid "Enter PIN:" msgstr "" #: gnutls.c:2618 openssl.c:1699 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2627 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:84 #, c-format msgid "Failed to SHA1 input data for signing: %s\n" msgstr "" #: gnutls_tpm.c:106 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:113 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:120 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:130 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:152 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:159 gnutls_tpm.c:170 gnutls_tpm.c:183 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:190 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:197 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:205 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:212 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:233 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:249 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:256 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:281 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:289 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:295 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:306 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1200 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:296 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:371 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:377 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:385 msgid "Error processing HTTP response\n" msgstr "" #: http.c:392 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:412 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:431 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:462 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:473 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:492 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:506 http.c:533 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:519 msgid "Error fetching chunk header\n" msgstr "" #: http.c:543 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:546 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:558 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:685 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:709 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:737 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:929 oncp.c:583 oncp.c:619 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1056 msgid "request granted" msgstr "" #: http.c:1057 msgid "general failure" msgstr "" #: http.c:1058 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1059 msgid "network unreachable" msgstr "" #: http.c:1060 msgid "host unreachable" msgstr "" #: http.c:1061 msgid "connection refused by destination host" msgstr "" #: http.c:1062 msgid "TTL expired" msgstr "TTL expiré" #: http.c:1063 msgid "command not supported / protocol error" msgstr "" #: http.c:1064 msgid "address type not supported" msgstr "" #: http.c:1074 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1082 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1097 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1105 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1112 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1118 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1122 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1205 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1211 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1226 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1234 http.c:1276 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1240 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1248 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1252 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1269 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1292 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1324 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1347 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1366 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1415 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:139 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:160 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:540 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:546 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:930 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:325 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:338 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:374 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:387 main.c:400 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:394 main.c:630 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:561 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:570 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:572 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:581 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:613 msgid "using OpenSSL" msgstr "" #: main.c:617 #, c-format msgid "" "\n" "WARNING: No DTLS support in this binary. Performance will be impaired.\n" msgstr "" #: main.c:649 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:688 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:694 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:705 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:706 #, c-format msgid "" "Open client for Cisco AnyConnect VPN, version %s\n" "\n" msgstr "" #: main.c:708 msgid "Read options from config file" msgstr "" #: main.c:710 msgid "Continue in background after startup" msgstr "" #: main.c:711 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:713 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:714 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:715 msgid "Use SSL private key file KEY" msgstr "" #: main.c:716 msgid "Use WebVPN cookie COOKIE" msgstr "Utiliser le cookie WebVPN COOKIE" #: main.c:717 msgid "Read cookie from standard input" msgstr "" #: main.c:718 msgid "Enable compression (default)" msgstr "Activer la compression (par défaut)" #: main.c:719 msgid "Disable compression" msgstr "Désactiver la compression" #: main.c:720 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:721 msgid "Set login usergroup" msgstr "" #: main.c:722 msgid "Display help text" msgstr "" #: main.c:723 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:725 msgid "Use syslog for progress messages" msgstr "" #: main.c:727 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:729 msgid "Drop privileges after connecting" msgstr "" #: main.c:730 msgid "Drop privileges during CSD execution" msgstr "" #: main.c:731 msgid "Run SCRIPT instead of CSD binary" msgstr "" #: main.c:733 msgid "Request MTU from server" msgstr "" #: main.c:734 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:735 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:736 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:737 msgid "Set proxy server" msgstr "Sélectionner le serveur proxy" #: main.c:738 msgid "Set proxy authentication methods" msgstr "" #: main.c:739 msgid "Disable proxy" msgstr "Désactiver le proxy" #: main.c:740 msgid "Use libproxy to automatically configure proxy" msgstr "Utiliser libproxy pour configurer le proxy automatiquement" #: main.c:742 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:744 msgid "Require perfect forward secrecy" msgstr "" #: main.c:745 msgid "Less output" msgstr "" #: main.c:746 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:747 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:748 msgid "default" msgstr "" #: main.c:750 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:752 msgid "Set login username" msgstr "" #: main.c:753 msgid "Report version number" msgstr "" #: main.c:754 msgid "More output" msgstr "" #: main.c:755 msgid "Dump HTTP authentication traffic (implies --verbose" msgstr "" #: main.c:756 msgid "XML config file" msgstr "Fichier configuration XML" #: main.c:757 msgid "Choose authentication login selection" msgstr "" #: main.c:758 msgid "Authenticate only and print login info" msgstr "" #: main.c:759 msgid "Fetch webvpn cookie only; don't connect" msgstr "" #: main.c:760 msgid "Print webvpn cookie before connecting" msgstr "" #: main.c:761 msgid "Cert file for server verification" msgstr "" #: main.c:762 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:763 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:764 msgid "Disable DTLS" msgstr "Désactiver DTLS" #: main.c:765 msgid "Disable HTTP connection re-use" msgstr "Désactiver la réutilisation de la connexion HTTP" #: main.c:766 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:767 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:768 msgid "Disable default system certificate authorities" msgstr "" #: main.c:769 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:770 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:771 msgid "Read password from standard input" msgstr "" #: main.c:772 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:773 msgid "Software token secret" msgstr "" #: main.c:775 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:778 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:780 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:781 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:782 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:783 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:784 msgid "Set local port for DTLS datagrams" msgstr "" #: main.c:805 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:866 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:906 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:916 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:920 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:976 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:983 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:993 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1029 main.c:1048 #, c-format msgid "Invalid user \"%s\"\n" msgstr "" #: main.c:1063 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1071 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1087 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1174 main.c:1183 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1213 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1233 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1247 #, c-format msgid "OpenConnect version %s\n" msgstr "Version %s de OpenConnect\n" #: main.c:1277 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1287 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1314 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1317 #, c-format msgid "No server specified\n" msgstr "Pas de serveur spécifié\n" #: main.c:1333 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1360 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1393 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1414 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1424 #, c-format msgid "Set up tun script failed\n" msgstr "" #: main.c:1431 #, c-format msgid "Set up tun device failed\n" msgstr "" #: main.c:1449 #, c-format msgid "Set up DTLS failed; using SSL instead\n" msgstr "" #: main.c:1469 #, c-format msgid "Connected %s as %s%s%s, using %s%s\n" msgstr "" #: main.c:1478 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1480 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1493 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1505 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1522 msgid "User requested reconnect\n" msgstr "" #: main.c:1530 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1534 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1538 msgid "User cancelled (SIGINT); exiting.\n" msgstr "" #: main.c:1542 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1546 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1565 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1573 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1632 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1654 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1660 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1661 main.c:1679 msgid "no" msgstr "non" #: main.c:1661 main.c:1667 msgid "yes" msgstr "oui" #: main.c:1688 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1722 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1725 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1742 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:1918 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:1926 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:1972 main.c:1993 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:1975 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:1978 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:1981 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:1996 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:1999 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2010 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2013 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2016 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:170 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:178 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:199 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:979 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:983 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:488 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:492 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:568 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:176 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:182 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:191 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:202 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:212 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:221 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:230 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:243 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:265 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:285 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:306 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:323 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:333 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:341 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:348 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:356 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:364 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:372 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:380 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:388 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:400 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:477 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:493 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:498 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:514 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:561 oncp.c:605 oncp.c:637 oncp.c:721 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:646 oncp.c:755 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:658 oncp.c:682 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:662 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:669 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:686 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:699 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:740 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:800 msgid "new incoming" msgstr "" #: oncp.c:801 msgid "new outgoing" msgstr "" #: oncp.c:806 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: oncp.c:826 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:835 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:839 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:845 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:936 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:939 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:958 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1020 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1025 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1040 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1102 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1010 openconnect-internal.h:1018 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-esp.c:51 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:61 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:112 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:163 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:171 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:192 msgid "Failed to generate random IV for ESP packet:\n" msgstr "" #: openssl-esp.c:206 msgid "Failed to set up encryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:215 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:42 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:48 msgid "Failed to load PKCS#11 provider module (p11-kit-proxy.so):\n" msgstr "" #: openssl-pkcs11.c:252 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:255 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:258 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:262 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:269 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:283 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:289 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:321 openssl-pkcs11.c:473 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:328 openssl-pkcs11.c:483 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:362 openssl-pkcs11.c:525 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:377 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:388 openssl.c:675 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:434 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:440 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:554 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:561 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:593 openssl-pkcs11.c:599 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:117 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:149 openssl.c:201 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:230 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:255 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:328 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:435 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:466 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:516 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:531 msgid "PKCS#12 contained no certificate!" msgstr "" #: openssl.c:540 msgid "PKCS#12 contained no private key!" msgstr "" #: openssl.c:545 msgid "PKCS#12" msgstr "" #: openssl.c:563 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:569 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:579 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:593 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:599 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:649 openssl.c:795 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:659 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:697 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:710 msgid "PEM file" msgstr "" #: openssl.c:739 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:764 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:770 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:818 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:824 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:857 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:872 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:892 msgid "Loading private key failed\n" msgstr "" #: openssl.c:913 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1090 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1097 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1111 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1129 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1171 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1176 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1187 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1202 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1210 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1230 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1237 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1242 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1318 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1349 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1362 msgid "" msgstr "" #: openssl.c:1461 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1494 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Impossible d'ouvrir le fichier CA '%s'\n" #: openssl.c:1536 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1705 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:96 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:100 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:503 script.c:551 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:558 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:566 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:83 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:154 #, c-format msgid "Failed to reconnect to proxy %s\n" msgstr "" #: ssl.c:158 #, c-format msgid "Failed to reconnect to host %s\n" msgstr "" #: ssl.c:224 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:249 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:258 ssl.c:349 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:273 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:274 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:293 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:334 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:344 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:363 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:434 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:462 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:473 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:501 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:587 msgid "No error" msgstr "" #: ssl.c:588 msgid "Keystore locked" msgstr "" #: ssl.c:589 msgid "Keystore uninitialized" msgstr "" #: ssl.c:590 msgid "System error" msgstr "" #: ssl.c:591 msgid "Protocol error" msgstr "" #: ssl.c:592 msgid "Permission denied" msgstr "" #: ssl.c:593 msgid "Key not found" msgstr "" #: ssl.c:594 msgid "Value corrupted" msgstr "" #: ssl.c:595 msgid "Undefined action" msgstr "" #: ssl.c:599 msgid "Wrong password" msgstr "" #: ssl.c:600 msgid "Unknown error" msgstr "" #: ssl.c:789 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:818 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:832 msgid "Open UDP socket" msgstr "" #: ssl.c:863 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:871 msgid "Bind UDP socket" msgstr "" #: ssl.c:878 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:911 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:915 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:75 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:138 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:153 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:171 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:176 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:184 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:190 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:207 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:219 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:249 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:254 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:268 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:291 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:301 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:304 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:311 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:338 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "ouvrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:196 msgid "open net" msgstr "" #: tun.c:205 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:233 tun.c:419 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:244 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:248 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:313 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:322 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:349 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:360 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:379 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:389 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:428 msgid "TUNSIFHEAD" msgstr "" #: tun.c:470 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:475 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:479 msgid "setpgid" msgstr "" #: tun.c:484 msgid "execl" msgstr "" #: tun.c:489 msgid "(script)" msgstr "(script)" #: tun.c:532 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: tun.c:549 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "L'hôte \"%s\" a pour adresse \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:80 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:87 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:104 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:158 msgid "select applet command" msgstr "" #: yubikey.c:169 yubikey.c:410 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:185 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:206 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:211 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:239 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:256 msgid "unlock command" msgstr "" #: yubikey.c:289 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:328 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:333 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:339 yubikey.c:351 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:378 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:383 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:388 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:398 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:431 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:448 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:497 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:551 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:556 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:600 msgid "calculate command" msgstr "" #: yubikey.c:608 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-7.06/libopenconnect.map.in0000664000076400007640000000423512474364513015037 00000000000000OPENCONNECT_5.0 { global: openconnect_check_peer_cert_hash; openconnect_clear_cookie; openconnect_free_cert_info; openconnect_get_cookie; openconnect_get_cstp_cipher; openconnect_get_dtls_cipher; openconnect_get_hostname; openconnect_get_ifname; openconnect_get_ip_info; openconnect_get_peer_cert_DER; openconnect_get_peer_cert_details; openconnect_get_peer_cert_hash; openconnect_get_port; openconnect_get_urlpath; openconnect_get_version; openconnect_has_oath_support; openconnect_has_pkcs11_support; openconnect_has_stoken_support; openconnect_has_system_key_support; openconnect_has_tss_blob_support; openconnect_has_yubioath_support; openconnect_init_ssl; openconnect_mainloop; openconnect_make_cstp_connection; openconnect_obtain_cookie; openconnect_parse_url; openconnect_passphrase_from_fsid; openconnect_reset_ssl; openconnect_set_cafile; openconnect_set_cancel_fd; openconnect_set_cert_expiry_warning; openconnect_set_client_cert; openconnect_set_csd_environ; openconnect_set_dpd; openconnect_set_hostname; openconnect_set_http_proxy; openconnect_set_mobile_info; openconnect_set_option_value; openconnect_set_pfs; openconnect_set_protect_socket_handler; openconnect_set_proxy_auth; openconnect_set_reported_os; openconnect_set_reqmtu; openconnect_set_stats_handler; openconnect_set_stoken_mode; openconnect_set_system_trust; openconnect_set_token_callbacks; openconnect_set_token_mode; openconnect_set_urlpath; openconnect_set_xmlpost; openconnect_set_xmlsha1; openconnect_setup_cmd_pipe; openconnect_setup_csd; openconnect_setup_dtls; openconnect_setup_tun_device; openconnect_setup_tun_fd; openconnect_setup_tun_script; openconnect_vpninfo_free; openconnect_vpninfo_new; }; OPENCONNECT_5_1 { global: openconnect_set_compression_mode; openconnect_set_loglevel; } OPENCONNECT_5.0; OPENCONNECT_5_2 { global: openconnect_set_protocol; openconnect_set_http_auth; } OPENCONNECT_5_1; OPENCONNECT_PRIVATE { global: @SYMVER_TIME@ @SYMVER_GETLINE@ @SYMVER_JAVA@ @SYMVER_ASPRINTF@ @SYMVER_VASPRINTF@ @SYMVER_WIN32_STRERROR@ openconnect_fopen_utf8; openconnect_open_utf8; openconnect_sha1; openconnect_version_str; local: *; }; openconnect-7.06/config.guess0000755000076400007640000012355012404036304013234 00000000000000#! /bin/sh # Attempt to guess a canonical system name. # Copyright 1992-2014 Free Software Foundation, Inc. timestamp='2014-03-23' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # # Originally written by Per Bothner. # # You can get the latest version of this script from: # http://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.guess;hb=HEAD # # Please send patches with a ChangeLog entry to config-patches@gnu.org. me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] Output the configuration name of the system \`$me' is run on. Operation modes: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.guess ($timestamp) Originally written by Per Bothner. Copyright 1992-2014 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" >&2 exit 1 ;; * ) break ;; esac done if test $# != 0; then echo "$me: too many arguments$help" >&2 exit 1 fi trap 'exit 1' 1 2 15 # CC_FOR_BUILD -- compiler used by this script. Note that the use of a # compiler to aid in system detection is discouraged as it requires # temporary files to be created and, as you can see below, it is a # headache to deal with in a portable fashion. # Historically, `CC_FOR_BUILD' used to be named `HOST_CC'. We still # use `HOST_CC' if defined, but it is deprecated. # Portable tmp directory creation inspired by the Autoconf team. set_cc_for_build=' trap "exitcode=\$?; (rm -f \$tmpfiles 2>/dev/null; rmdir \$tmp 2>/dev/null) && exit \$exitcode" 0 ; trap "rm -f \$tmpfiles 2>/dev/null; rmdir \$tmp 2>/dev/null; exit 1" 1 2 13 15 ; : ${TMPDIR=/tmp} ; { tmp=`(umask 077 && mktemp -d "$TMPDIR/cgXXXXXX") 2>/dev/null` && test -n "$tmp" && test -d "$tmp" ; } || { test -n "$RANDOM" && tmp=$TMPDIR/cg$$-$RANDOM && (umask 077 && mkdir $tmp) ; } || { tmp=$TMPDIR/cg-$$ && (umask 077 && mkdir $tmp) && echo "Warning: creating insecure temp directory" >&2 ; } || { echo "$me: cannot create a temporary directory in $TMPDIR" >&2 ; exit 1 ; } ; dummy=$tmp/dummy ; tmpfiles="$dummy.c $dummy.o $dummy.rel $dummy" ; case $CC_FOR_BUILD,$HOST_CC,$CC in ,,) echo "int x;" > $dummy.c ; for c in cc gcc c89 c99 ; do if ($c -c -o $dummy.o $dummy.c) >/dev/null 2>&1 ; then CC_FOR_BUILD="$c"; break ; fi ; done ; if test x"$CC_FOR_BUILD" = x ; then CC_FOR_BUILD=no_compiler_found ; fi ;; ,,*) CC_FOR_BUILD=$CC ;; ,*,*) CC_FOR_BUILD=$HOST_CC ;; esac ; set_cc_for_build= ;' # This is needed to find uname on a Pyramid OSx when run in the BSD universe. # (ghazi@noc.rutgers.edu 1994-08-24) if (test -f /.attbin/uname) >/dev/null 2>&1 ; then PATH=$PATH:/.attbin ; export PATH fi UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown case "${UNAME_SYSTEM}" in Linux|GNU|GNU/*) # If the system lacks a compiler, then just pick glibc. # We could probably try harder. LIBC=gnu eval $set_cc_for_build cat <<-EOF > $dummy.c #include #if defined(__UCLIBC__) LIBC=uclibc #elif defined(__dietlibc__) LIBC=dietlibc #else LIBC=gnu #endif EOF eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep '^LIBC' | sed 's, ,,g'` ;; esac # Note: order is significant - the case branches are not exclusive. case "${UNAME_MACHINE}:${UNAME_SYSTEM}:${UNAME_RELEASE}:${UNAME_VERSION}" in *:NetBSD:*:*) # NetBSD (nbsd) targets should (where applicable) match one or # more of the tuples: *-*-netbsdelf*, *-*-netbsdaout*, # *-*-netbsdecoff* and *-*-netbsd*. For targets that recently # switched to ELF, *-*-netbsd* would select the old # object file format. This provides both forward # compatibility and a consistent mechanism for selecting the # object file format. # # Note: NetBSD doesn't particularly care about the vendor # portion of the name. We always set it to "unknown". sysctl="sysctl -n hw.machine_arch" UNAME_MACHINE_ARCH=`(/sbin/$sysctl 2>/dev/null || \ /usr/sbin/$sysctl 2>/dev/null || echo unknown)` case "${UNAME_MACHINE_ARCH}" in armeb) machine=armeb-unknown ;; arm*) machine=arm-unknown ;; sh3el) machine=shl-unknown ;; sh3eb) machine=sh-unknown ;; sh5el) machine=sh5le-unknown ;; *) machine=${UNAME_MACHINE_ARCH}-unknown ;; esac # The Operating System including object format, if it has switched # to ELF recently, or will in the future. case "${UNAME_MACHINE_ARCH}" in arm*|i386|m68k|ns32k|sh3*|sparc|vax) eval $set_cc_for_build if echo __ELF__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ELF__ then # Once all utilities can be ECOFF (netbsdecoff) or a.out (netbsdaout). # Return netbsd for either. FIX? os=netbsd else os=netbsdelf fi ;; *) os=netbsd ;; esac # The OS release # Debian GNU/NetBSD machines have a different userland, and # thus, need a distinct triplet. However, they do not need # kernel version information, so it can be replaced with a # suitable tag, in the style of linux-gnu. case "${UNAME_VERSION}" in Debian*) release='-gnu' ;; *) release=`echo ${UNAME_RELEASE}|sed -e 's/[-_].*/\./'` ;; esac # Since CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM: # contains redundant information, the shorter form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM is used. echo "${machine}-${os}${release}" exit ;; *:Bitrig:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/Bitrig.//'` echo ${UNAME_MACHINE_ARCH}-unknown-bitrig${UNAME_RELEASE} exit ;; *:OpenBSD:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/OpenBSD.//'` echo ${UNAME_MACHINE_ARCH}-unknown-openbsd${UNAME_RELEASE} exit ;; *:ekkoBSD:*:*) echo ${UNAME_MACHINE}-unknown-ekkobsd${UNAME_RELEASE} exit ;; *:SolidBSD:*:*) echo ${UNAME_MACHINE}-unknown-solidbsd${UNAME_RELEASE} exit ;; macppc:MirBSD:*:*) echo powerpc-unknown-mirbsd${UNAME_RELEASE} exit ;; *:MirBSD:*:*) echo ${UNAME_MACHINE}-unknown-mirbsd${UNAME_RELEASE} exit ;; alpha:OSF1:*:*) case $UNAME_RELEASE in *4.0) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` ;; *5.*) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $4}'` ;; esac # According to Compaq, /usr/sbin/psrinfo has been available on # OSF/1 and Tru64 systems produced since 1995. I hope that # covers most systems running today. This code pipes the CPU # types through head -n 1, so we only detect the type of CPU 0. ALPHA_CPU_TYPE=`/usr/sbin/psrinfo -v | sed -n -e 's/^ The alpha \(.*\) processor.*$/\1/p' | head -n 1` case "$ALPHA_CPU_TYPE" in "EV4 (21064)") UNAME_MACHINE="alpha" ;; "EV4.5 (21064)") UNAME_MACHINE="alpha" ;; "LCA4 (21066/21068)") UNAME_MACHINE="alpha" ;; "EV5 (21164)") UNAME_MACHINE="alphaev5" ;; "EV5.6 (21164A)") UNAME_MACHINE="alphaev56" ;; "EV5.6 (21164PC)") UNAME_MACHINE="alphapca56" ;; "EV5.7 (21164PC)") UNAME_MACHINE="alphapca57" ;; "EV6 (21264)") UNAME_MACHINE="alphaev6" ;; "EV6.7 (21264A)") UNAME_MACHINE="alphaev67" ;; "EV6.8CB (21264C)") UNAME_MACHINE="alphaev68" ;; "EV6.8AL (21264B)") UNAME_MACHINE="alphaev68" ;; "EV6.8CX (21264D)") UNAME_MACHINE="alphaev68" ;; "EV6.9A (21264/EV69A)") UNAME_MACHINE="alphaev69" ;; "EV7 (21364)") UNAME_MACHINE="alphaev7" ;; "EV7.9 (21364A)") UNAME_MACHINE="alphaev79" ;; esac # A Pn.n version is a patched version. # A Vn.n version is a released version. # A Tn.n version is a released field test version. # A Xn.n version is an unreleased experimental baselevel. # 1.2 uses "1.2" for uname -r. echo ${UNAME_MACHINE}-dec-osf`echo ${UNAME_RELEASE} | sed -e 's/^[PVTX]//' | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` # Reset EXIT trap before exiting to avoid spurious non-zero exit code. exitcode=$? trap '' 0 exit $exitcode ;; Alpha\ *:Windows_NT*:*) # How do we know it's Interix rather than the generic POSIX subsystem? # Should we change UNAME_MACHINE based on the output of uname instead # of the specific Alpha model? echo alpha-pc-interix exit ;; 21064:Windows_NT:50:3) echo alpha-dec-winnt3.5 exit ;; Amiga*:UNIX_System_V:4.0:*) echo m68k-unknown-sysv4 exit ;; *:[Aa]miga[Oo][Ss]:*:*) echo ${UNAME_MACHINE}-unknown-amigaos exit ;; *:[Mm]orph[Oo][Ss]:*:*) echo ${UNAME_MACHINE}-unknown-morphos exit ;; *:OS/390:*:*) echo i370-ibm-openedition exit ;; *:z/VM:*:*) echo s390-ibm-zvmoe exit ;; *:OS400:*:*) echo powerpc-ibm-os400 exit ;; arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) echo arm-acorn-riscix${UNAME_RELEASE} exit ;; arm*:riscos:*:*|arm*:RISCOS:*:*) echo arm-unknown-riscos exit ;; SR2?01:HI-UX/MPP:*:* | SR8000:HI-UX/MPP:*:*) echo hppa1.1-hitachi-hiuxmpp exit ;; Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. if test "`(/bin/universe) 2>/dev/null`" = att ; then echo pyramid-pyramid-sysv3 else echo pyramid-pyramid-bsd fi exit ;; NILE*:*:*:dcosx) echo pyramid-pyramid-svr4 exit ;; DRS?6000:unix:4.0:6*) echo sparc-icl-nx6 exit ;; DRS?6000:UNIX_SV:4.2*:7* | DRS?6000:isis:4.2*:7*) case `/usr/bin/uname -p` in sparc) echo sparc-icl-nx7; exit ;; esac ;; s390x:SunOS:*:*) echo ${UNAME_MACHINE}-ibm-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4H:SunOS:5.*:*) echo sparc-hal-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) echo sparc-sun-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; i86pc:AuroraUX:5.*:* | i86xen:AuroraUX:5.*:*) echo i386-pc-auroraux${UNAME_RELEASE} exit ;; i86pc:SunOS:5.*:* | i86xen:SunOS:5.*:*) eval $set_cc_for_build SUN_ARCH="i386" # If there is a compiler, see if it is configured for 64-bit objects. # Note that the Sun cc does not turn __LP64__ into 1 like gcc does. # This test works for both compilers. if [ "$CC_FOR_BUILD" != 'no_compiler_found' ]; then if (echo '#ifdef __amd64'; echo IS_64BIT_ARCH; echo '#endif') | \ (CCOPTS= $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_64BIT_ARCH >/dev/null then SUN_ARCH="x86_64" fi fi echo ${SUN_ARCH}-pc-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4*:SunOS:6*:*) # According to config.sub, this is the proper way to canonicalize # SunOS6. Hard to guess exactly what SunOS6 will be like, but # it's likely to be more like Solaris than SunOS4. echo sparc-sun-solaris3`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; sun4*:SunOS:*:*) case "`/usr/bin/arch -k`" in Series*|S4*) UNAME_RELEASE=`uname -v` ;; esac # Japanese Language versions have a version number like `4.1.3-JL'. echo sparc-sun-sunos`echo ${UNAME_RELEASE}|sed -e 's/-/_/'` exit ;; sun3*:SunOS:*:*) echo m68k-sun-sunos${UNAME_RELEASE} exit ;; sun*:*:4.2BSD:*) UNAME_RELEASE=`(sed 1q /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` test "x${UNAME_RELEASE}" = "x" && UNAME_RELEASE=3 case "`/bin/arch`" in sun3) echo m68k-sun-sunos${UNAME_RELEASE} ;; sun4) echo sparc-sun-sunos${UNAME_RELEASE} ;; esac exit ;; aushp:SunOS:*:*) echo sparc-auspex-sunos${UNAME_RELEASE} exit ;; # The situation for MiNT is a little confusing. The machine name # can be virtually everything (everything which is not # "atarist" or "atariste" at least should have a processor # > m68000). The system name ranges from "MiNT" over "FreeMiNT" # to the lowercase version "mint" (or "freemint"). Finally # the system name "TOS" denotes a system which is actually not # MiNT. But MiNT is downward compatible to TOS, so this should # be no problem. atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint${UNAME_RELEASE} exit ;; atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint${UNAME_RELEASE} exit ;; *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) echo m68k-atari-mint${UNAME_RELEASE} exit ;; milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) echo m68k-milan-mint${UNAME_RELEASE} exit ;; hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) echo m68k-hades-mint${UNAME_RELEASE} exit ;; *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) echo m68k-unknown-mint${UNAME_RELEASE} exit ;; m68k:machten:*:*) echo m68k-apple-machten${UNAME_RELEASE} exit ;; powerpc:machten:*:*) echo powerpc-apple-machten${UNAME_RELEASE} exit ;; RISC*:Mach:*:*) echo mips-dec-mach_bsd4.3 exit ;; RISC*:ULTRIX:*:*) echo mips-dec-ultrix${UNAME_RELEASE} exit ;; VAX*:ULTRIX*:*:*) echo vax-dec-ultrix${UNAME_RELEASE} exit ;; 2020:CLIX:*:* | 2430:CLIX:*:*) echo clipper-intergraph-clix${UNAME_RELEASE} exit ;; mips:*:*:UMIPS | mips:*:*:RISCos) eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #ifdef __cplusplus #include /* for printf() prototype */ int main (int argc, char *argv[]) { #else int main (argc, argv) int argc; char *argv[]; { #endif #if defined (host_mips) && defined (MIPSEB) #if defined (SYSTYPE_SYSV) printf ("mips-mips-riscos%ssysv\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_SVR4) printf ("mips-mips-riscos%ssvr4\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) printf ("mips-mips-riscos%sbsd\n", argv[1]); exit (0); #endif #endif exit (-1); } EOF $CC_FOR_BUILD -o $dummy $dummy.c && dummyarg=`echo "${UNAME_RELEASE}" | sed -n 's/\([0-9]*\).*/\1/p'` && SYSTEM_NAME=`$dummy $dummyarg` && { echo "$SYSTEM_NAME"; exit; } echo mips-mips-riscos${UNAME_RELEASE} exit ;; Motorola:PowerMAX_OS:*:*) echo powerpc-motorola-powermax exit ;; Motorola:*:4.3:PL8-*) echo powerpc-harris-powermax exit ;; Night_Hawk:*:*:PowerMAX_OS | Synergy:PowerMAX_OS:*:*) echo powerpc-harris-powermax exit ;; Night_Hawk:Power_UNIX:*:*) echo powerpc-harris-powerunix exit ;; m88k:CX/UX:7*:*) echo m88k-harris-cxux7 exit ;; m88k:*:4*:R4*) echo m88k-motorola-sysv4 exit ;; m88k:*:3*:R3*) echo m88k-motorola-sysv3 exit ;; AViiON:dgux:*:*) # DG/UX returns AViiON for all architectures UNAME_PROCESSOR=`/usr/bin/uname -p` if [ $UNAME_PROCESSOR = mc88100 ] || [ $UNAME_PROCESSOR = mc88110 ] then if [ ${TARGET_BINARY_INTERFACE}x = m88kdguxelfx ] || \ [ ${TARGET_BINARY_INTERFACE}x = x ] then echo m88k-dg-dgux${UNAME_RELEASE} else echo m88k-dg-dguxbcs${UNAME_RELEASE} fi else echo i586-dg-dgux${UNAME_RELEASE} fi exit ;; M88*:DolphinOS:*:*) # DolphinOS (SVR3) echo m88k-dolphin-sysv3 exit ;; M88*:*:R3*:*) # Delta 88k system running SVR3 echo m88k-motorola-sysv3 exit ;; XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) echo m88k-tektronix-sysv3 exit ;; Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) echo m68k-tektronix-bsd exit ;; *:IRIX*:*:*) echo mips-sgi-irix`echo ${UNAME_RELEASE}|sed -e 's/-/_/g'` exit ;; ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id exit ;; # Note that: echo "'`uname -s`'" gives 'AIX ' i*86:AIX:*:*) echo i386-ibm-aix exit ;; ia64:AIX:*:*) if [ -x /usr/bin/oslevel ] ; then IBM_REV=`/usr/bin/oslevel` else IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} fi echo ${UNAME_MACHINE}-ibm-aix${IBM_REV} exit ;; *:AIX:2:3) if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #include main() { if (!__power_pc()) exit(1); puts("powerpc-ibm-aix3.2.5"); exit(0); } EOF if $CC_FOR_BUILD -o $dummy $dummy.c && SYSTEM_NAME=`$dummy` then echo "$SYSTEM_NAME" else echo rs6000-ibm-aix3.2.5 fi elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then echo rs6000-ibm-aix3.2.4 else echo rs6000-ibm-aix3.2 fi exit ;; *:AIX:*:[4567]) IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | sed 1q | awk '{ print $1 }'` if /usr/sbin/lsattr -El ${IBM_CPU_ID} | grep ' POWER' >/dev/null 2>&1; then IBM_ARCH=rs6000 else IBM_ARCH=powerpc fi if [ -x /usr/bin/oslevel ] ; then IBM_REV=`/usr/bin/oslevel` else IBM_REV=${UNAME_VERSION}.${UNAME_RELEASE} fi echo ${IBM_ARCH}-ibm-aix${IBM_REV} exit ;; *:AIX:*:*) echo rs6000-ibm-aix exit ;; ibmrt:4.4BSD:*|romp-ibm:BSD:*) echo romp-ibm-bsd4.4 exit ;; ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC BSD and echo romp-ibm-bsd${UNAME_RELEASE} # 4.3 with uname added to exit ;; # report: romp-ibm BSD 4.3 *:BOSX:*:*) echo rs6000-bull-bosx exit ;; DPX/2?00:B.O.S.:*:*) echo m68k-bull-sysv3 exit ;; 9000/[34]??:4.3bsd:1.*:*) echo m68k-hp-bsd exit ;; hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) echo m68k-hp-bsd4.4 exit ;; 9000/[34678]??:HP-UX:*:*) HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` case "${UNAME_MACHINE}" in 9000/31? ) HP_ARCH=m68000 ;; 9000/[34]?? ) HP_ARCH=m68k ;; 9000/[678][0-9][0-9]) if [ -x /usr/bin/getconf ]; then sc_cpu_version=`/usr/bin/getconf SC_CPU_VERSION 2>/dev/null` sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` case "${sc_cpu_version}" in 523) HP_ARCH="hppa1.0" ;; # CPU_PA_RISC1_0 528) HP_ARCH="hppa1.1" ;; # CPU_PA_RISC1_1 532) # CPU_PA_RISC2_0 case "${sc_kernel_bits}" in 32) HP_ARCH="hppa2.0n" ;; 64) HP_ARCH="hppa2.0w" ;; '') HP_ARCH="hppa2.0" ;; # HP-UX 10.20 esac ;; esac fi if [ "${HP_ARCH}" = "" ]; then eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #define _HPUX_SOURCE #include #include int main () { #if defined(_SC_KERNEL_BITS) long bits = sysconf(_SC_KERNEL_BITS); #endif long cpu = sysconf (_SC_CPU_VERSION); switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0"); break; case CPU_PA_RISC1_1: puts ("hppa1.1"); break; case CPU_PA_RISC2_0: #if defined(_SC_KERNEL_BITS) switch (bits) { case 64: puts ("hppa2.0w"); break; case 32: puts ("hppa2.0n"); break; default: puts ("hppa2.0"); break; } break; #else /* !defined(_SC_KERNEL_BITS) */ puts ("hppa2.0"); break; #endif default: puts ("hppa1.0"); break; } exit (0); } EOF (CCOPTS= $CC_FOR_BUILD -o $dummy $dummy.c 2>/dev/null) && HP_ARCH=`$dummy` test -z "$HP_ARCH" && HP_ARCH=hppa fi ;; esac if [ ${HP_ARCH} = "hppa2.0w" ] then eval $set_cc_for_build # hppa2.0w-hp-hpux* has a 64-bit kernel and a compiler generating # 32-bit code. hppa64-hp-hpux* has the same kernel and a compiler # generating 64-bit code. GNU and HP use different nomenclature: # # $ CC_FOR_BUILD=cc ./config.guess # => hppa2.0w-hp-hpux11.23 # $ CC_FOR_BUILD="cc +DA2.0w" ./config.guess # => hppa64-hp-hpux11.23 if echo __LP64__ | (CCOPTS= $CC_FOR_BUILD -E - 2>/dev/null) | grep -q __LP64__ then HP_ARCH="hppa2.0w" else HP_ARCH="hppa64" fi fi echo ${HP_ARCH}-hp-hpux${HPUX_REV} exit ;; ia64:HP-UX:*:*) HPUX_REV=`echo ${UNAME_RELEASE}|sed -e 's/[^.]*.[0B]*//'` echo ia64-hp-hpux${HPUX_REV} exit ;; 3050*:HI-UX:*:*) eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #include int main () { long cpu = sysconf (_SC_CPU_VERSION); /* The order matters, because CPU_IS_HP_MC68K erroneously returns true for CPU_PA_RISC1_0. CPU_IS_PA_RISC returns correct results, however. */ if (CPU_IS_PA_RISC (cpu)) { switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0-hitachi-hiuxwe2"); break; case CPU_PA_RISC1_1: puts ("hppa1.1-hitachi-hiuxwe2"); break; case CPU_PA_RISC2_0: puts ("hppa2.0-hitachi-hiuxwe2"); break; default: puts ("hppa-hitachi-hiuxwe2"); break; } } else if (CPU_IS_HP_MC68K (cpu)) puts ("m68k-hitachi-hiuxwe2"); else puts ("unknown-hitachi-hiuxwe2"); exit (0); } EOF $CC_FOR_BUILD -o $dummy $dummy.c && SYSTEM_NAME=`$dummy` && { echo "$SYSTEM_NAME"; exit; } echo unknown-hitachi-hiuxwe2 exit ;; 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:* ) echo hppa1.1-hp-bsd exit ;; 9000/8??:4.3bsd:*:*) echo hppa1.0-hp-bsd exit ;; *9??*:MPE/iX:*:* | *3000*:MPE/iX:*:*) echo hppa1.0-hp-mpeix exit ;; hp7??:OSF1:*:* | hp8?[79]:OSF1:*:* ) echo hppa1.1-hp-osf exit ;; hp8??:OSF1:*:*) echo hppa1.0-hp-osf exit ;; i*86:OSF1:*:*) if [ -x /usr/sbin/sysversion ] ; then echo ${UNAME_MACHINE}-unknown-osf1mk else echo ${UNAME_MACHINE}-unknown-osf1 fi exit ;; parisc*:Lites*:*:*) echo hppa1.1-hp-lites exit ;; C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) echo c1-convex-bsd exit ;; C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) if getsysinfo -f scalar_acc then echo c32-convex-bsd else echo c2-convex-bsd fi exit ;; C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) echo c34-convex-bsd exit ;; C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) echo c38-convex-bsd exit ;; C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) echo c4-convex-bsd exit ;; CRAY*Y-MP:*:*:*) echo ymp-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*[A-Z]90:*:*:*) echo ${UNAME_MACHINE}-cray-unicos${UNAME_RELEASE} \ | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ \ -e 's/\.[^.]*$/.X/' exit ;; CRAY*TS:*:*:*) echo t90-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*T3E:*:*:*) echo alphaev5-cray-unicosmk${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*SV1:*:*:*) echo sv1-cray-unicos${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; *:UNICOS/mp:*:*) echo craynv-cray-unicosmp${UNAME_RELEASE} | sed -e 's/\.[^.]*$/.X/' exit ;; F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) FUJITSU_PROC=`uname -m | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz'` FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` FUJITSU_REL=`echo ${UNAME_RELEASE} | sed -e 's/ /_/'` echo "${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; 5000:UNIX_System_V:4.*:*) FUJITSU_SYS=`uname -p | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/\///'` FUJITSU_REL=`echo ${UNAME_RELEASE} | tr 'ABCDEFGHIJKLMNOPQRSTUVWXYZ' 'abcdefghijklmnopqrstuvwxyz' | sed -e 's/ /_/'` echo "sparc-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) echo ${UNAME_MACHINE}-pc-bsdi${UNAME_RELEASE} exit ;; sparc*:BSD/OS:*:*) echo sparc-unknown-bsdi${UNAME_RELEASE} exit ;; *:BSD/OS:*:*) echo ${UNAME_MACHINE}-unknown-bsdi${UNAME_RELEASE} exit ;; *:FreeBSD:*:*) UNAME_PROCESSOR=`/usr/bin/uname -p` case ${UNAME_PROCESSOR} in amd64) echo x86_64-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` ;; *) echo ${UNAME_PROCESSOR}-unknown-freebsd`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` ;; esac exit ;; i*:CYGWIN*:*) echo ${UNAME_MACHINE}-pc-cygwin exit ;; *:MINGW64*:*) echo ${UNAME_MACHINE}-pc-mingw64 exit ;; *:MINGW*:*) echo ${UNAME_MACHINE}-pc-mingw32 exit ;; *:MSYS*:*) echo ${UNAME_MACHINE}-pc-msys exit ;; i*:windows32*:*) # uname -m includes "-pc" on this system. echo ${UNAME_MACHINE}-mingw32 exit ;; i*:PW*:*) echo ${UNAME_MACHINE}-pc-pw32 exit ;; *:Interix*:*) case ${UNAME_MACHINE} in x86) echo i586-pc-interix${UNAME_RELEASE} exit ;; authenticamd | genuineintel | EM64T) echo x86_64-unknown-interix${UNAME_RELEASE} exit ;; IA64) echo ia64-unknown-interix${UNAME_RELEASE} exit ;; esac ;; [345]86:Windows_95:* | [345]86:Windows_98:* | [345]86:Windows_NT:*) echo i${UNAME_MACHINE}-pc-mks exit ;; 8664:Windows_NT:*) echo x86_64-pc-mks exit ;; i*:Windows_NT*:* | Pentium*:Windows_NT*:*) # How do we know it's Interix rather than the generic POSIX subsystem? # It also conflicts with pre-2.0 versions of AT&T UWIN. Should we # UNAME_MACHINE based on the output of uname instead of i386? echo i586-pc-interix exit ;; i*:UWIN*:*) echo ${UNAME_MACHINE}-pc-uwin exit ;; amd64:CYGWIN*:*:* | x86_64:CYGWIN*:*:*) echo x86_64-unknown-cygwin exit ;; p*:CYGWIN*:*) echo powerpcle-unknown-cygwin exit ;; prep*:SunOS:5.*:*) echo powerpcle-unknown-solaris2`echo ${UNAME_RELEASE}|sed -e 's/[^.]*//'` exit ;; *:GNU:*:*) # the GNU system echo `echo ${UNAME_MACHINE}|sed -e 's,[-/].*$,,'`-unknown-${LIBC}`echo ${UNAME_RELEASE}|sed -e 's,/.*$,,'` exit ;; *:GNU/*:*:*) # other systems with GNU libc and userland echo ${UNAME_MACHINE}-unknown-`echo ${UNAME_SYSTEM} | sed 's,^[^/]*/,,' | tr '[A-Z]' '[a-z]'``echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`-${LIBC} exit ;; i*86:Minix:*:*) echo ${UNAME_MACHINE}-pc-minix exit ;; aarch64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; aarch64_be:Linux:*:*) UNAME_MACHINE=aarch64_be echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; alpha:Linux:*:*) case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' < /proc/cpuinfo` in EV5) UNAME_MACHINE=alphaev5 ;; EV56) UNAME_MACHINE=alphaev56 ;; PCA56) UNAME_MACHINE=alphapca56 ;; PCA57) UNAME_MACHINE=alphapca56 ;; EV6) UNAME_MACHINE=alphaev6 ;; EV67) UNAME_MACHINE=alphaev67 ;; EV68*) UNAME_MACHINE=alphaev68 ;; esac objdump --private-headers /bin/sh | grep -q ld.so.1 if test "$?" = 0 ; then LIBC="gnulibc1" ; fi echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; arc:Linux:*:* | arceb:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; arm*:Linux:*:*) eval $set_cc_for_build if echo __ARM_EABI__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_EABI__ then echo ${UNAME_MACHINE}-unknown-linux-${LIBC} else if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_PCS_VFP then echo ${UNAME_MACHINE}-unknown-linux-${LIBC}eabi else echo ${UNAME_MACHINE}-unknown-linux-${LIBC}eabihf fi fi exit ;; avr32*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; cris:Linux:*:*) echo ${UNAME_MACHINE}-axis-linux-${LIBC} exit ;; crisv32:Linux:*:*) echo ${UNAME_MACHINE}-axis-linux-${LIBC} exit ;; frv:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; hexagon:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; i*86:Linux:*:*) echo ${UNAME_MACHINE}-pc-linux-${LIBC} exit ;; ia64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; m32r*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; m68*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; mips:Linux:*:* | mips64:Linux:*:*) eval $set_cc_for_build sed 's/^ //' << EOF >$dummy.c #undef CPU #undef ${UNAME_MACHINE} #undef ${UNAME_MACHINE}el #if defined(__MIPSEL__) || defined(__MIPSEL) || defined(_MIPSEL) || defined(MIPSEL) CPU=${UNAME_MACHINE}el #else #if defined(__MIPSEB__) || defined(__MIPSEB) || defined(_MIPSEB) || defined(MIPSEB) CPU=${UNAME_MACHINE} #else CPU= #endif #endif EOF eval `$CC_FOR_BUILD -E $dummy.c 2>/dev/null | grep '^CPU'` test x"${CPU}" != x && { echo "${CPU}-unknown-linux-${LIBC}"; exit; } ;; openrisc*:Linux:*:*) echo or1k-unknown-linux-${LIBC} exit ;; or32:Linux:*:* | or1k*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; padre:Linux:*:*) echo sparc-unknown-linux-${LIBC} exit ;; parisc64:Linux:*:* | hppa64:Linux:*:*) echo hppa64-unknown-linux-${LIBC} exit ;; parisc:Linux:*:* | hppa:Linux:*:*) # Look for CPU level case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in PA7*) echo hppa1.1-unknown-linux-${LIBC} ;; PA8*) echo hppa2.0-unknown-linux-${LIBC} ;; *) echo hppa-unknown-linux-${LIBC} ;; esac exit ;; ppc64:Linux:*:*) echo powerpc64-unknown-linux-${LIBC} exit ;; ppc:Linux:*:*) echo powerpc-unknown-linux-${LIBC} exit ;; ppc64le:Linux:*:*) echo powerpc64le-unknown-linux-${LIBC} exit ;; ppcle:Linux:*:*) echo powerpcle-unknown-linux-${LIBC} exit ;; s390:Linux:*:* | s390x:Linux:*:*) echo ${UNAME_MACHINE}-ibm-linux-${LIBC} exit ;; sh64*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; sh*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; sparc:Linux:*:* | sparc64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; tile*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; vax:Linux:*:*) echo ${UNAME_MACHINE}-dec-linux-${LIBC} exit ;; x86_64:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; xtensa*:Linux:*:*) echo ${UNAME_MACHINE}-unknown-linux-${LIBC} exit ;; i*86:DYNIX/ptx:4*:*) # ptx 4.0 does uname -s correctly, with DYNIX/ptx in there. # earlier versions are messed up and put the nodename in both # sysname and nodename. echo i386-sequent-sysv4 exit ;; i*86:UNIX_SV:4.2MP:2.*) # Unixware is an offshoot of SVR4, but it has its own version # number series starting with 2... # I am not positive that other SVR4 systems won't match this, # I just have to hope. -- rms. # Use sysv4.2uw... so that sysv4* matches it. echo ${UNAME_MACHINE}-pc-sysv4.2uw${UNAME_VERSION} exit ;; i*86:OS/2:*:*) # If we were able to find `uname', then EMX Unix compatibility # is probably installed. echo ${UNAME_MACHINE}-pc-os2-emx exit ;; i*86:XTS-300:*:STOP) echo ${UNAME_MACHINE}-unknown-stop exit ;; i*86:atheos:*:*) echo ${UNAME_MACHINE}-unknown-atheos exit ;; i*86:syllable:*:*) echo ${UNAME_MACHINE}-pc-syllable exit ;; i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.[02]*:*) echo i386-unknown-lynxos${UNAME_RELEASE} exit ;; i*86:*DOS:*:*) echo ${UNAME_MACHINE}-pc-msdosdjgpp exit ;; i*86:*:4.*:* | i*86:SYSTEM_V:4.*:*) UNAME_REL=`echo ${UNAME_RELEASE} | sed 's/\/MP$//'` if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then echo ${UNAME_MACHINE}-univel-sysv${UNAME_REL} else echo ${UNAME_MACHINE}-pc-sysv${UNAME_REL} fi exit ;; i*86:*:5:[678]*) # UnixWare 7.x, OpenUNIX and OpenServer 6. case `/bin/uname -X | grep "^Machine"` in *486*) UNAME_MACHINE=i486 ;; *Pentium) UNAME_MACHINE=i586 ;; *Pent*|*Celeron) UNAME_MACHINE=i686 ;; esac echo ${UNAME_MACHINE}-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}${UNAME_VERSION} exit ;; i*86:*:3.2:*) if test -f /usr/options/cb.name; then UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then UNAME_REL=`(/bin/uname -X|grep Release|sed -e 's/.*= //')` (/bin/uname -X|grep i80486 >/dev/null) && UNAME_MACHINE=i486 (/bin/uname -X|grep '^Machine.*Pentium' >/dev/null) \ && UNAME_MACHINE=i586 (/bin/uname -X|grep '^Machine.*Pent *II' >/dev/null) \ && UNAME_MACHINE=i686 (/bin/uname -X|grep '^Machine.*Pentium Pro' >/dev/null) \ && UNAME_MACHINE=i686 echo ${UNAME_MACHINE}-pc-sco$UNAME_REL else echo ${UNAME_MACHINE}-pc-sysv32 fi exit ;; pc:*:*:*) # Left here for compatibility: # uname -m prints for DJGPP always 'pc', but it prints nothing about # the processor, so we play safe by assuming i586. # Note: whatever this is, it MUST be the same as what config.sub # prints for the "djgpp" host, or else GDB configury will decide that # this is a cross-build. echo i586-pc-msdosdjgpp exit ;; Intel:Mach:3*:*) echo i386-pc-mach3 exit ;; paragon:*:*:*) echo i860-intel-osf1 exit ;; i860:*:4.*:*) # i860-SVR4 if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then echo i860-stardent-sysv${UNAME_RELEASE} # Stardent Vistra i860-SVR4 else # Add other i860-SVR4 vendors below as they are discovered. echo i860-unknown-sysv${UNAME_RELEASE} # Unknown i860-SVR4 fi exit ;; mini*:CTIX:SYS*5:*) # "miniframe" echo m68010-convergent-sysv exit ;; mc68k:UNIX:SYSTEM5:3.51m) echo m68k-convergent-sysv exit ;; M680?0:D-NIX:5.3:*) echo m68k-diab-dnix exit ;; M68*:*:R3V[5678]*:*) test -r /sysV68 && { echo 'm68k-motorola-sysv'; exit; } ;; 3[345]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 3[34]??/*:*:4.0:3.0 | 4400:*:4.0:3.0 | 4850:*:4.0:3.0 | SKA40:*:4.0:3.0 | SDS2:*:4.0:3.0 | SHG2:*:4.0:3.0 | S7501*:*:4.0:3.0) OS_REL='' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3${OS_REL}; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3${OS_REL}; exit; } ;; 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4; exit; } ;; NCR*:*:4.2:* | MPRAS*:*:4.2:*) OS_REL='.3' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3${OS_REL}; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3${OS_REL}; exit; } /bin/uname -p 2>/dev/null | /bin/grep pteron >/dev/null \ && { echo i586-ncr-sysv4.3${OS_REL}; exit; } ;; m68*:LynxOS:2.*:* | m68*:LynxOS:3.0*:*) echo m68k-unknown-lynxos${UNAME_RELEASE} exit ;; mc68030:UNIX_System_V:4.*:*) echo m68k-atari-sysv4 exit ;; TSUNAMI:LynxOS:2.*:*) echo sparc-unknown-lynxos${UNAME_RELEASE} exit ;; rs6000:LynxOS:2.*:*) echo rs6000-unknown-lynxos${UNAME_RELEASE} exit ;; PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.[02]*:*) echo powerpc-unknown-lynxos${UNAME_RELEASE} exit ;; SM[BE]S:UNIX_SV:*:*) echo mips-dde-sysv${UNAME_RELEASE} exit ;; RM*:ReliantUNIX-*:*:*) echo mips-sni-sysv4 exit ;; RM*:SINIX-*:*:*) echo mips-sni-sysv4 exit ;; *:SINIX-*:*:*) if uname -p 2>/dev/null >/dev/null ; then UNAME_MACHINE=`(uname -p) 2>/dev/null` echo ${UNAME_MACHINE}-sni-sysv4 else echo ns32k-sni-sysv fi exit ;; PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort # says echo i586-unisys-sysv4 exit ;; *:UNIX_System_V:4*:FTX*) # From Gerald Hewes . # How about differentiating between stratus architectures? -djm echo hppa1.1-stratus-sysv4 exit ;; *:*:*:FTX*) # From seanf@swdc.stratus.com. echo i860-stratus-sysv4 exit ;; i*86:VOS:*:*) # From Paul.Green@stratus.com. echo ${UNAME_MACHINE}-stratus-vos exit ;; *:VOS:*:*) # From Paul.Green@stratus.com. echo hppa1.1-stratus-vos exit ;; mc68*:A/UX:*:*) echo m68k-apple-aux${UNAME_RELEASE} exit ;; news*:NEWS-OS:6*:*) echo mips-sony-newsos6 exit ;; R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) if [ -d /usr/nec ]; then echo mips-nec-sysv${UNAME_RELEASE} else echo mips-unknown-sysv${UNAME_RELEASE} fi exit ;; BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. echo powerpc-be-beos exit ;; BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. echo powerpc-apple-beos exit ;; BePC:BeOS:*:*) # BeOS running on Intel PC compatible. echo i586-pc-beos exit ;; BePC:Haiku:*:*) # Haiku running on Intel PC compatible. echo i586-pc-haiku exit ;; x86_64:Haiku:*:*) echo x86_64-unknown-haiku exit ;; SX-4:SUPER-UX:*:*) echo sx4-nec-superux${UNAME_RELEASE} exit ;; SX-5:SUPER-UX:*:*) echo sx5-nec-superux${UNAME_RELEASE} exit ;; SX-6:SUPER-UX:*:*) echo sx6-nec-superux${UNAME_RELEASE} exit ;; SX-7:SUPER-UX:*:*) echo sx7-nec-superux${UNAME_RELEASE} exit ;; SX-8:SUPER-UX:*:*) echo sx8-nec-superux${UNAME_RELEASE} exit ;; SX-8R:SUPER-UX:*:*) echo sx8r-nec-superux${UNAME_RELEASE} exit ;; Power*:Rhapsody:*:*) echo powerpc-apple-rhapsody${UNAME_RELEASE} exit ;; *:Rhapsody:*:*) echo ${UNAME_MACHINE}-apple-rhapsody${UNAME_RELEASE} exit ;; *:Darwin:*:*) UNAME_PROCESSOR=`uname -p` || UNAME_PROCESSOR=unknown eval $set_cc_for_build if test "$UNAME_PROCESSOR" = unknown ; then UNAME_PROCESSOR=powerpc fi if test `echo "$UNAME_RELEASE" | sed -e 's/\..*//'` -le 10 ; then if [ "$CC_FOR_BUILD" != 'no_compiler_found' ]; then if (echo '#ifdef __LP64__'; echo IS_64BIT_ARCH; echo '#endif') | \ (CCOPTS= $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_64BIT_ARCH >/dev/null then case $UNAME_PROCESSOR in i386) UNAME_PROCESSOR=x86_64 ;; powerpc) UNAME_PROCESSOR=powerpc64 ;; esac fi fi elif test "$UNAME_PROCESSOR" = i386 ; then # Avoid executing cc on OS X 10.9, as it ships with a stub # that puts up a graphical alert prompting to install # developer tools. Any system running Mac OS X 10.7 or # later (Darwin 11 and later) is required to have a 64-bit # processor. This is not true of the ARM version of Darwin # that Apple uses in portable devices. UNAME_PROCESSOR=x86_64 fi echo ${UNAME_PROCESSOR}-apple-darwin${UNAME_RELEASE} exit ;; *:procnto*:*:* | *:QNX:[0123456789]*:*) UNAME_PROCESSOR=`uname -p` if test "$UNAME_PROCESSOR" = "x86"; then UNAME_PROCESSOR=i386 UNAME_MACHINE=pc fi echo ${UNAME_PROCESSOR}-${UNAME_MACHINE}-nto-qnx${UNAME_RELEASE} exit ;; *:QNX:*:4*) echo i386-pc-qnx exit ;; NEO-?:NONSTOP_KERNEL:*:*) echo neo-tandem-nsk${UNAME_RELEASE} exit ;; NSE-*:NONSTOP_KERNEL:*:*) echo nse-tandem-nsk${UNAME_RELEASE} exit ;; NSR-?:NONSTOP_KERNEL:*:*) echo nsr-tandem-nsk${UNAME_RELEASE} exit ;; *:NonStop-UX:*:*) echo mips-compaq-nonstopux exit ;; BS2000:POSIX*:*:*) echo bs2000-siemens-sysv exit ;; DS/*:UNIX_System_V:*:*) echo ${UNAME_MACHINE}-${UNAME_SYSTEM}-${UNAME_RELEASE} exit ;; *:Plan9:*:*) # "uname -m" is not consistent, so use $cputype instead. 386 # is converted to i386 for consistency with other x86 # operating systems. if test "$cputype" = "386"; then UNAME_MACHINE=i386 else UNAME_MACHINE="$cputype" fi echo ${UNAME_MACHINE}-unknown-plan9 exit ;; *:TOPS-10:*:*) echo pdp10-unknown-tops10 exit ;; *:TENEX:*:*) echo pdp10-unknown-tenex exit ;; KS10:TOPS-20:*:* | KL10:TOPS-20:*:* | TYPE4:TOPS-20:*:*) echo pdp10-dec-tops20 exit ;; XKL-1:TOPS-20:*:* | TYPE5:TOPS-20:*:*) echo pdp10-xkl-tops20 exit ;; *:TOPS-20:*:*) echo pdp10-unknown-tops20 exit ;; *:ITS:*:*) echo pdp10-unknown-its exit ;; SEI:*:*:SEIUX) echo mips-sei-seiux${UNAME_RELEASE} exit ;; *:DragonFly:*:*) echo ${UNAME_MACHINE}-unknown-dragonfly`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'` exit ;; *:*VMS:*:*) UNAME_MACHINE=`(uname -p) 2>/dev/null` case "${UNAME_MACHINE}" in A*) echo alpha-dec-vms ; exit ;; I*) echo ia64-dec-vms ; exit ;; V*) echo vax-dec-vms ; exit ;; esac ;; *:XENIX:*:SysV) echo i386-pc-xenix exit ;; i*86:skyos:*:*) echo ${UNAME_MACHINE}-pc-skyos`echo ${UNAME_RELEASE}` | sed -e 's/ .*$//' exit ;; i*86:rdos:*:*) echo ${UNAME_MACHINE}-pc-rdos exit ;; i*86:AROS:*:*) echo ${UNAME_MACHINE}-pc-aros exit ;; x86_64:VMkernel:*:*) echo ${UNAME_MACHINE}-unknown-esx exit ;; esac cat >&2 < in order to provide the needed information to handle your system. config.guess timestamp = $timestamp uname -m = `(uname -m) 2>/dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null` /bin/uname -X = `(/bin/uname -X) 2>/dev/null` hostinfo = `(hostinfo) 2>/dev/null` /bin/universe = `(/bin/universe) 2>/dev/null` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null` /bin/arch = `(/bin/arch) 2>/dev/null` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null` UNAME_MACHINE = ${UNAME_MACHINE} UNAME_RELEASE = ${UNAME_RELEASE} UNAME_SYSTEM = ${UNAME_SYSTEM} UNAME_VERSION = ${UNAME_VERSION} EOF exit 1 # Local variables: # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: openconnect-7.06/library.c0000664000076400007640000006003112474364513012535 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * * Authors: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #ifdef HAVE_LIBSTOKEN #include #endif #include #include #include "openconnect-internal.h" #if defined(OPENCONNECT_GNUTLS) #include "gnutls.h" #endif struct openconnect_info *openconnect_vpninfo_new(const char *useragent, openconnect_validate_peer_cert_vfn validate_peer_cert, openconnect_write_new_config_vfn write_new_config, openconnect_process_auth_form_vfn process_auth_form, openconnect_progress_vfn progress, void *privdata) { struct openconnect_info *vpninfo = calloc(sizeof(*vpninfo), 1); #ifdef HAVE_ICONV char *charset = nl_langinfo(CODESET); #endif if (!vpninfo) return NULL; #ifdef HAVE_ICONV if (charset && strcmp(charset, "UTF-8")) { vpninfo->ic_utf8_to_legacy = iconv_open(charset, "UTF-8"); vpninfo->ic_legacy_to_utf8 = iconv_open("UTF-8", charset); } else { vpninfo->ic_utf8_to_legacy = (iconv_t)-1; vpninfo->ic_legacy_to_utf8 = (iconv_t)-1; } #endif #ifndef _WIN32 vpninfo->tun_fd = -1; #endif init_pkt_queue(&vpninfo->incoming_queue); init_pkt_queue(&vpninfo->outgoing_queue); init_pkt_queue(&vpninfo->oncp_control_queue); vpninfo->ssl_fd = vpninfo->dtls_fd = -1; vpninfo->cmd_fd = vpninfo->cmd_fd_write = -1; vpninfo->tncc_fd = -1; vpninfo->cert_expire_warning = 60 * 86400; vpninfo->req_compr = COMPR_STATELESS; vpninfo->max_qlen = 10; vpninfo->localname = strdup("localhost"); vpninfo->useragent = openconnect_create_useragent(useragent); vpninfo->validate_peer_cert = validate_peer_cert; vpninfo->write_new_config = write_new_config; vpninfo->process_auth_form = process_auth_form; vpninfo->progress = progress; vpninfo->cbdata = privdata ? : vpninfo; vpninfo->xmlpost = 1; vpninfo->verbose = PRG_TRACE; vpninfo->try_http_auth = 1; vpninfo->proxy_auth[AUTH_TYPE_BASIC].state = AUTH_DEFAULT_DISABLED; vpninfo->http_auth[AUTH_TYPE_BASIC].state = AUTH_DEFAULT_DISABLED; openconnect_set_reported_os(vpninfo, NULL); if (!vpninfo->localname || !vpninfo->useragent) goto err; #ifdef ENABLE_NLS bindtextdomain("openconnect", LOCALEDIR); #endif openconnect_set_protocol(vpninfo, "anyconnect"); return vpninfo; err: free(vpninfo->localname); free(vpninfo->useragent); free(vpninfo); return NULL; } int openconnect_set_protocol(struct openconnect_info *vpninfo, const char *protocol) { if (!strcmp(protocol, "anyconnect")) { vpninfo->proto.vpn_close_session = cstp_bye; vpninfo->proto.tcp_connect = cstp_connect; vpninfo->proto.tcp_mainloop = cstp_mainloop; vpninfo->proto.add_http_headers = cstp_common_headers; vpninfo->proto.obtain_cookie = cstp_obtain_cookie; #ifdef HAVE_DTLS vpninfo->proto.udp_setup = dtls_setup; vpninfo->proto.udp_mainloop = dtls_mainloop; vpninfo->proto.udp_close = dtls_close; vpninfo->proto.udp_shutdown = dtls_shutdown; #else vpninfo->dtls_state = DTLS_DISABLED; #endif } else if (!strcmp(protocol, "nc")) { vpninfo->proto.vpn_close_session = NULL; vpninfo->proto.tcp_connect = oncp_connect; vpninfo->proto.tcp_mainloop = oncp_mainloop; vpninfo->proto.add_http_headers = oncp_common_headers; vpninfo->proto.obtain_cookie = oncp_obtain_cookie; #if defined(ESP_GNUTLS) || defined(ESP_OPENSSL) vpninfo->proto.udp_setup = esp_setup; vpninfo->proto.udp_mainloop = esp_mainloop; vpninfo->proto.udp_close = esp_close; vpninfo->proto.udp_shutdown = esp_shutdown; #else vpninfo->dtls_state = DTLS_DISABLED; #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown VPN protocol '%s'\n"), protocol); return -EINVAL; } return 0; } void openconnect_set_loglevel(struct openconnect_info *vpninfo, int level) { vpninfo->verbose = level; } int openconnect_setup_dtls(struct openconnect_info *vpninfo, int attempt_period) { if (vpninfo->proto.udp_setup) return vpninfo->proto.udp_setup(vpninfo, attempt_period); vpn_progress(vpninfo, PRG_ERR, _("Built against SSL library with no Cisco DTLS support\n")); return -EINVAL; } int openconnect_obtain_cookie(struct openconnect_info *vpninfo) { return vpninfo->proto.obtain_cookie(vpninfo); } int openconnect_make_cstp_connection(struct openconnect_info *vpninfo) { return vpninfo->proto.tcp_connect(vpninfo); } int openconnect_set_reported_os(struct openconnect_info *vpninfo, const char *os) { if (!os) { #if defined(__APPLE__) os = "mac-intel"; #elif defined(__ANDROID__) os = "android"; #else os = sizeof(long) > 4 ? "linux-64" : "linux"; #endif } if (!strcmp(os, "mac-intel")) vpninfo->csd_xmltag = "csdMac"; else if (!strcmp(os, "linux") || !strcmp(os, "linux-64")) vpninfo->csd_xmltag = "csdLinux"; else if (!strcmp(os, "android") || !strcmp(os, "apple-ios")) { vpninfo->csd_xmltag = "csdLinux"; vpninfo->csd_nostub = 1; } else if (!strcmp(os, "win")) vpninfo->csd_xmltag = "csd"; else return -EINVAL; STRDUP(vpninfo->platname, os); return 0; } int openconnect_set_mobile_info(struct openconnect_info *vpninfo, const char *mobile_platform_version, const char *mobile_device_type, const char *mobile_device_uniqueid) { STRDUP(vpninfo->mobile_platform_version, mobile_platform_version); STRDUP(vpninfo->mobile_device_type, mobile_device_type); STRDUP(vpninfo->mobile_device_uniqueid, mobile_device_uniqueid); return 0; } static void free_optlist(struct oc_vpn_option *opt) { struct oc_vpn_option *next; for (; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } } void openconnect_vpninfo_free(struct openconnect_info *vpninfo) { openconnect_close_https(vpninfo, 1); if (vpninfo->proto.udp_shutdown) vpninfo->proto.udp_shutdown(vpninfo); if (vpninfo->tncc_fd != -1) closesocket(vpninfo->tncc_fd); if (vpninfo->cmd_fd_write != -1) { closesocket(vpninfo->cmd_fd); closesocket(vpninfo->cmd_fd_write); } #ifdef HAVE_ICONV if (vpninfo->ic_utf8_to_legacy != (iconv_t)-1) iconv_close(vpninfo->ic_utf8_to_legacy); if (vpninfo->ic_legacy_to_utf8 != (iconv_t)-1) iconv_close(vpninfo->ic_legacy_to_utf8); #endif #ifdef _WIN32 if (vpninfo->cmd_event) CloseHandle(vpninfo->cmd_event); if (vpninfo->ssl_event) CloseHandle(vpninfo->ssl_event); if (vpninfo->dtls_event) CloseHandle(vpninfo->dtls_event); #endif free(vpninfo->peer_addr); free_optlist(vpninfo->csd_env); free_optlist(vpninfo->script_env); free_optlist(vpninfo->cookies); free_optlist(vpninfo->cstp_options); free_optlist(vpninfo->dtls_options); free_split_routes(vpninfo); free(vpninfo->hostname); free(vpninfo->unique_hostname); free(vpninfo->urlpath); free(vpninfo->redirect_url); free(vpninfo->cookie); free(vpninfo->proxy_type); free(vpninfo->proxy); free(vpninfo->proxy_user); free(vpninfo->proxy_pass); free(vpninfo->vpnc_script); free(vpninfo->cafile); free(vpninfo->ifname); free(vpninfo->dtls_cipher); #ifdef OPENCONNECT_GNUTLS gnutls_free(vpninfo->cstp_cipher); /* In OpenSSL this is const */ #endif #ifdef DTLS_GNUTLS gnutls_free(vpninfo->gnutls_dtls_cipher); #endif free(vpninfo->dtls_addr); if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); free(vpninfo->csd_scriptname); } free(vpninfo->mobile_platform_version); free(vpninfo->mobile_device_type); free(vpninfo->mobile_device_uniqueid); free(vpninfo->csd_token); free(vpninfo->csd_ticket); free(vpninfo->csd_stuburl); free(vpninfo->csd_starturl); free(vpninfo->csd_waiturl); free(vpninfo->csd_preurl); free(vpninfo->platname); if (vpninfo->opaque_srvdata) xmlFreeNode(vpninfo->opaque_srvdata); free(vpninfo->profile_url); free(vpninfo->profile_sha1); /* These are const in openconnect itself, but for consistency of the library API we do take ownership of the strings we're given, and thus we have to free them too. */ if (vpninfo->cert != vpninfo->sslkey) free((void *)vpninfo->sslkey); free((void *)vpninfo->cert); if (vpninfo->peer_cert) { #if defined(OPENCONNECT_OPENSSL) X509_free(vpninfo->peer_cert); #elif defined(OPENCONNECT_GNUTLS) gnutls_x509_crt_deinit(vpninfo->peer_cert); #endif vpninfo->peer_cert = NULL; } while (vpninfo->pin_cache) { struct pin_cache *cache = vpninfo->pin_cache; free(cache->token); memset(cache->pin, 0x5a, strlen(cache->pin)); free(cache->pin); vpninfo->pin_cache = cache->next; free(cache); } free(vpninfo->peer_cert_hash); free(vpninfo->localname); free(vpninfo->useragent); free(vpninfo->authgroup); #ifdef HAVE_LIBSTOKEN if (vpninfo->stoken_pin) free(vpninfo->stoken_pin); if (vpninfo->stoken_ctx) stoken_destroy(vpninfo->stoken_ctx); #endif if (vpninfo->oath_secret) { #ifdef HAVE_LIBPSKC if (vpninfo->pskc) pskc_done(vpninfo->pskc); else #endif /* HAVE_LIBPSKC */ free(vpninfo->oath_secret); } #ifdef HAVE_LIBPCSCLITE if (vpninfo->token_mode == OC_TOKEN_MODE_YUBIOATH) { SCardDisconnect(vpninfo->pcsc_card, SCARD_LEAVE_CARD); SCardReleaseContext(vpninfo->pcsc_ctx); } memset(vpninfo->yubikey_pwhash, 0, sizeof(vpninfo->yubikey_pwhash)); free(vpninfo->yubikey_objname); #endif #ifdef HAVE_LIBP11 if (vpninfo->pkcs11_ctx) { if (vpninfo->pkcs11_slot_list) PKCS11_release_all_slots(vpninfo->pkcs11_ctx, vpninfo->pkcs11_slot_list, vpninfo->pkcs11_slot_count); PKCS11_CTX_unload(vpninfo->pkcs11_ctx); PKCS11_CTX_free(vpninfo->pkcs11_ctx); } free(vpninfo->pkcs11_cert_id); #endif /* These check strm->state so they are safe to call multiple times */ inflateEnd(&vpninfo->inflate_strm); deflateEnd(&vpninfo->deflate_strm); free(vpninfo->deflate_pkt); free(vpninfo->tun_pkt); free(vpninfo->dtls_pkt); free(vpninfo->cstp_pkt); free(vpninfo); } const char *openconnect_get_hostname(struct openconnect_info *vpninfo) { return vpninfo->unique_hostname?:vpninfo->hostname; } int openconnect_set_hostname(struct openconnect_info *vpninfo, const char *hostname) { UTF8CHECK(hostname); STRDUP(vpninfo->hostname, hostname); free(vpninfo->unique_hostname); vpninfo->unique_hostname = NULL; free(vpninfo->peer_addr); vpninfo->peer_addr = NULL; return 0; } char *openconnect_get_urlpath(struct openconnect_info *vpninfo) { return vpninfo->urlpath; } int openconnect_set_urlpath(struct openconnect_info *vpninfo, const char *urlpath) { UTF8CHECK(urlpath); STRDUP(vpninfo->urlpath, urlpath); return 0; } void openconnect_set_xmlsha1(struct openconnect_info *vpninfo, const char *xmlsha1, int size) { if (size != sizeof(vpninfo->xmlsha1)) return; memcpy(&vpninfo->xmlsha1, xmlsha1, size); } int openconnect_set_cafile(struct openconnect_info *vpninfo, const char *cafile) { UTF8CHECK(cafile); STRDUP(vpninfo->cafile, cafile); return 0; } void openconnect_set_system_trust(struct openconnect_info *vpninfo, unsigned val) { vpninfo->no_system_trust = !val; } const char *openconnect_get_ifname(struct openconnect_info *vpninfo) { return vpninfo->ifname; } void openconnect_set_reqmtu(struct openconnect_info *vpninfo, int reqmtu) { vpninfo->reqmtu = reqmtu; } void openconnect_set_dpd(struct openconnect_info *vpninfo, int min_seconds) { /* Make sure (ka->dpd / 2), our computed midway point, isn't 0 */ if (!min_seconds || min_seconds >= 2) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = min_seconds; else if (min_seconds == 1) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = 2; } int openconnect_get_ip_info(struct openconnect_info *vpninfo, const struct oc_ip_info **info, const struct oc_vpn_option **cstp_options, const struct oc_vpn_option **dtls_options) { if (info) *info = &vpninfo->ip_info; if (cstp_options) *cstp_options = vpninfo->cstp_options; if (dtls_options) *dtls_options = vpninfo->dtls_options; return 0; } int openconnect_setup_csd(struct openconnect_info *vpninfo, uid_t uid, int silent, const char *wrapper) { vpninfo->uid_csd = uid; vpninfo->uid_csd_given = silent ? 2 : 1; STRDUP(vpninfo->csd_wrapper, wrapper); return 0; } void openconnect_set_xmlpost(struct openconnect_info *vpninfo, int enable) { vpninfo->xmlpost = enable; } int openconnect_set_client_cert(struct openconnect_info *vpninfo, const char *cert, const char *sslkey) { UTF8CHECK(cert); UTF8CHECK(sslkey); /* Avoid freeing it twice if it's the same */ if (vpninfo->sslkey == vpninfo->cert) vpninfo->sslkey = NULL; STRDUP(vpninfo->cert, cert); if (sslkey) { STRDUP(vpninfo->sslkey, sslkey); } else { vpninfo->sslkey = vpninfo->cert; } return 0; } int openconnect_get_port(struct openconnect_info *vpninfo) { return vpninfo->port; } const char *openconnect_get_cookie(struct openconnect_info *vpninfo) { return vpninfo->cookie; } void openconnect_clear_cookie(struct openconnect_info *vpninfo) { if (vpninfo->cookie) memset(vpninfo->cookie, 0, strlen(vpninfo->cookie)); } void openconnect_reset_ssl(struct openconnect_info *vpninfo) { vpninfo->got_cancel_cmd = 0; openconnect_close_https(vpninfo, 0); if (vpninfo->peer_addr) { free(vpninfo->peer_addr); vpninfo->peer_addr = NULL; } openconnect_clear_cookies(vpninfo); } int openconnect_parse_url(struct openconnect_info *vpninfo, const char *url) { char *scheme = NULL; int ret; UTF8CHECK(url); openconnect_set_hostname(vpninfo, NULL); free(vpninfo->urlpath); vpninfo->urlpath = NULL; ret = internal_parse_url(url, &scheme, &vpninfo->hostname, &vpninfo->port, &vpninfo->urlpath, 443); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server URL '%s'\n"), url); return ret; } if (scheme && strcmp(scheme, "https")) { vpn_progress(vpninfo, PRG_ERR, _("Only https:// permitted for server URL\n")); ret = -EINVAL; } free(scheme); return ret; } void openconnect_set_cert_expiry_warning(struct openconnect_info *vpninfo, int seconds) { vpninfo->cert_expire_warning = seconds; } void openconnect_set_pfs(struct openconnect_info *vpninfo, unsigned val) { vpninfo->pfs = val; } void openconnect_set_cancel_fd(struct openconnect_info *vpninfo, int fd) { vpninfo->cmd_fd = fd; } #ifdef _WIN32 # define CMD_PIPE_ERR INVALID_SOCKET #else # define CMD_PIPE_ERR -EIO #endif OPENCONNECT_CMD_SOCKET openconnect_setup_cmd_pipe(struct openconnect_info *vpninfo) { OPENCONNECT_CMD_SOCKET pipefd[2]; #ifdef _WIN32 if (dumb_socketpair(pipefd, 0)) return CMD_PIPE_ERR; #else if (pipe(pipefd) < 0) return CMD_PIPE_ERR; #endif if (set_sock_nonblock(pipefd[0]) || set_sock_nonblock(pipefd[1])) { closesocket(pipefd[0]); closesocket(pipefd[1]); return CMD_PIPE_ERR; } vpninfo->cmd_fd = pipefd[0]; vpninfo->cmd_fd_write = pipefd[1]; return vpninfo->cmd_fd_write; } const char *openconnect_get_version(void) { return openconnect_version_str; } int openconnect_has_pkcs11_support(void) { #if defined(OPENCONNECT_GNUTLS) && defined(HAVE_P11KIT) return 1; #elif defined(OPENCONNECT_OPENSSL) && defined(HAVE_LIBP11) return 1; #else return 0; #endif } #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) #include #endif int openconnect_has_tss_blob_support(void) { #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) ENGINE *e; ENGINE_load_builtin_engines(); e = ENGINE_by_id("tpm"); if (e) { ENGINE_free(e); return 1; } #elif defined(OPENCONNECT_GNUTLS) && defined(HAVE_TROUSERS) return 1; #endif return 0; } int openconnect_has_stoken_support(void) { #ifdef HAVE_LIBSTOKEN return 1; #else return 0; #endif } int openconnect_has_oath_support(void) { return 2; } int openconnect_has_yubioath_support(void) { #ifdef HAVE_LIBPCSCLITE return 1; #else return 0; #endif } int openconnect_has_system_key_support(void) { #ifdef HAVE_GNUTLS_SYSTEM_KEYS return 1; #else return 0; #endif } int openconnect_set_token_callbacks(struct openconnect_info *vpninfo, void *tokdata, openconnect_lock_token_vfn lock, openconnect_unlock_token_vfn unlock) { vpninfo->lock_token = lock; vpninfo->unlock_token = unlock; vpninfo->tok_cbdata = tokdata; return 0; } /* * Enable software token generation. * * If token_mode is OC_TOKEN_MODE_STOKEN and token_str is NULL, * read the token data from ~/.stokenrc. * * Return value: * = -EILSEQ, if token_str is not valid UTF-8 * = -EOPNOTSUPP, if the underlying library (libstoken, liboath) is not * available or an invalid token_mode was provided * = -EINVAL, if the token string is invalid (token_str was provided) * = -ENOENT, if token_mode is OC_TOKEN_MODE_STOKEN and ~/.stokenrc is * missing (token_str was NULL) * = -EIO, for other failures in the underlying library (libstoken, liboath) * = 0, on success */ int openconnect_set_token_mode(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str) { vpninfo->token_mode = OC_TOKEN_MODE_NONE; UTF8CHECK(token_str); switch (token_mode) { case OC_TOKEN_MODE_NONE: return 0; #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return set_libstoken_mode(vpninfo, token_str); #endif case OC_TOKEN_MODE_TOTP: return set_totp_mode(vpninfo, token_str); case OC_TOKEN_MODE_HOTP: return set_hotp_mode(vpninfo, token_str); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return set_yubikey_mode(vpninfo, token_str); #endif default: return -EOPNOTSUPP; } } /* * Enable libstoken token generation if use_stoken == 1. * * If token_str is not NULL, try to parse the string. Otherwise, try to read * the token data from ~/.stokenrc * * DEPRECATED: use openconnect_set_stoken_mode() instead. * * Return value: * = -EILSEQ, if token_str is not valid UTF-8 * = -EOPNOTSUPP, if libstoken is not available * = -EINVAL, if the token string is invalid (token_str was provided) * = -ENOENT, if ~/.stokenrc is missing (token_str was NULL) * = -EIO, for other libstoken failures * = 0, on success */ int openconnect_set_stoken_mode(struct openconnect_info *vpninfo, int use_stoken, const char *token_str) { oc_token_mode_t token_mode = OC_TOKEN_MODE_NONE; if (use_stoken) token_mode = OC_TOKEN_MODE_STOKEN; return openconnect_set_token_mode(vpninfo, token_mode, token_str); } void openconnect_set_protect_socket_handler(struct openconnect_info *vpninfo, openconnect_protect_socket_vfn protect_socket) { vpninfo->protect_socket = protect_socket; } void openconnect_set_stats_handler(struct openconnect_info *vpninfo, openconnect_stats_vfn stats_handler) { vpninfo->stats_handler = stats_handler; } /* Set up a traditional OS-based tunnel device, optionally specified in 'ifname'. */ int openconnect_setup_tun_device(struct openconnect_info *vpninfo, const char *vpnc_script, const char *ifname) { intptr_t tun_fd; char *legacy_ifname; UTF8CHECK(vpnc_script); UTF8CHECK(ifname); STRDUP(vpninfo->vpnc_script, vpnc_script); STRDUP(vpninfo->ifname, ifname); prepare_script_env(vpninfo); script_config_tun(vpninfo, "pre-init"); tun_fd = os_setup_tun(vpninfo); if (tun_fd < 0) return tun_fd; legacy_ifname = openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname); script_setenv(vpninfo, "TUNDEV", legacy_ifname, 0); if (legacy_ifname != vpninfo->ifname) free(legacy_ifname); script_config_tun(vpninfo, "connect"); return openconnect_setup_tun_fd(vpninfo, tun_fd); } const char *openconnect_get_dtls_cipher(struct openconnect_info *vpninfo) { #if defined(DTLS_GNUTLS) if (vpninfo->dtls_state != DTLS_CONNECTED) { gnutls_free(vpninfo->gnutls_dtls_cipher); vpninfo->gnutls_dtls_cipher = NULL; return NULL; } /* in DTLS rehandshakes don't switch the ciphersuite as only * one is enabled. */ if (vpninfo->gnutls_dtls_cipher == NULL) vpninfo->gnutls_dtls_cipher = get_gnutls_cipher(vpninfo->dtls_ssl); return vpninfo->gnutls_dtls_cipher; #else return vpninfo->dtls_cipher; #endif } int openconnect_set_csd_environ(struct openconnect_info *vpninfo, const char *name, const char *value) { struct oc_vpn_option *p; if (!name) { free_optlist(vpninfo->csd_env); vpninfo->csd_env = NULL; return 0; } for (p = vpninfo->csd_env; p; p = p->next) { if (!strcmp(name, p->option)) { char *valdup = strdup(value); if (!valdup) return -ENOMEM; free(p->value); p->value = valdup; return 0; } } p = malloc(sizeof(*p)); if (!p) return -ENOMEM; p->option = strdup(name); if (!p->option) { free(p); return -ENOMEM; } p->value = strdup(value); if (!p->value) { free(p->option); free(p); return -ENOMEM; } p->next = vpninfo->csd_env; vpninfo->csd_env = p; return 0; } int openconnect_check_peer_cert_hash(struct openconnect_info *vpninfo, const char *old_hash) { char sha1_text[41]; const char *fingerprint; if (strchr(old_hash, ':')) { fingerprint = openconnect_get_peer_cert_hash(vpninfo); if (!fingerprint) return -EIO; } else { unsigned char *cert; int len, i; unsigned char sha1_bin[SHA1_SIZE]; len = openconnect_get_peer_cert_DER(vpninfo, &cert); if (len < 0) return len; if (openconnect_sha1(sha1_bin, cert, len)) return -EIO; for (i = 0; i < sizeof(sha1_bin); i++) sprintf(&sha1_text[i*2], "%02x", sha1_bin[i]); fingerprint = sha1_text; } if (strcasecmp(old_hash, fingerprint)) return 1; return 0; } const char *openconnect_get_cstp_cipher(struct openconnect_info *vpninfo) { return vpninfo->cstp_cipher; } const char *openconnect_get_peer_cert_hash(struct openconnect_info *vpninfo) { return vpninfo->peer_cert_hash; } int openconnect_set_compression_mode(struct openconnect_info *vpninfo, oc_compression_mode_t mode) { switch(mode) { case OC_COMPRESSION_MODE_NONE: vpninfo->req_compr = 0; return 0; case OC_COMPRESSION_MODE_STATELESS: vpninfo->req_compr = COMPR_STATELESS; return 0; case OC_COMPRESSION_MODE_ALL: vpninfo->req_compr = COMPR_ALL; return 0; default: return -EINVAL; } } void nuke_opt_values(struct oc_form_opt *opt) { for (; opt; opt = opt->next) { if (opt->type == OC_FORM_OPT_TEXT || opt->type == OC_FORM_OPT_PASSWORD) { free(opt->_value); opt->_value = NULL; } } } int process_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form) { int ret; struct oc_form_opt_select *grp = form->authgroup_opt; struct oc_choice *auth_choice; struct oc_form_opt *opt; if (!vpninfo->process_auth_form) { vpn_progress(vpninfo, PRG_ERR, _("No form handler; cannot authenticate.\n")); return OC_FORM_RESULT_ERR; } retry: auth_choice = NULL; if (grp && grp->nr_choices && !vpninfo->xmlpost) { if (vpninfo->authgroup) { /* For non-XML-POST, the server doesn't tell us which group is selected */ int i; for (i = 0; i < grp->nr_choices; i++) if (!strcmp(grp->choices[i]->name, vpninfo->authgroup)) form->authgroup_selection = i; } auth_choice = grp->choices[form->authgroup_selection]; } for (opt = form->opts; opt; opt = opt->next) { int second_auth = opt->flags & OC_FORM_OPT_SECOND_AUTH; opt->flags &= ~OC_FORM_OPT_IGNORE; if (!auth_choice || (opt->type != OC_FORM_OPT_TEXT && opt->type != OC_FORM_OPT_PASSWORD)) continue; if (auth_choice->noaaa || (!auth_choice->second_auth && second_auth)) opt->flags |= OC_FORM_OPT_IGNORE; else if (!strcmp(opt->name, "secondary_username") && second_auth) { if (auth_choice->secondary_username) { free(opt->_value); opt->_value = strdup(auth_choice->secondary_username); } if (!auth_choice->secondary_username_editable) opt->flags |= OC_FORM_OPT_IGNORE; } } ret = vpninfo->process_auth_form(vpninfo->cbdata, form); if (ret == OC_FORM_RESULT_NEWGROUP && form->authgroup_opt && form->authgroup_opt->form._value) { free(vpninfo->authgroup); vpninfo->authgroup = strdup(form->authgroup_opt->form._value); if (!vpninfo->xmlpost) goto retry; } if (ret == OC_FORM_RESULT_CANCELLED || ret < 0) nuke_opt_values(form->opts); return ret; } openconnect-7.06/ChangeLog0000664000076400007640000000117612424411476012500 000000000000002014-10-30 gettextize * m4/gettext.m4: New file, from gettext-0.19.2. * m4/nls.m4: New file, from gettext-0.19.2. * m4/po.m4: New file, from gettext-0.19.2. * m4/progtest.m4: New file, from gettext-0.19.2. * Makefile.am (ACLOCAL_AMFLAGS): New variable. * configure.ac (AC_CONFIG_FILES): Add po/Makefile.in. 2011-10-31 gettextize * Makefile.am (EXTRA_DIST): Add config.rpath. * configure.ac (AC_OUTPUT): Add po/Makefile.in. 2011-10-31 gettextize * Makefile.am (ACLOCAL_AMFLAGS): New variable. (EXTRA_DIST): Add config.rpath, m4/ChangeLog. openconnect-7.06/gnutls-esp.c0000664000076400007640000001347212474364513013201 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include "openconnect-internal.h" void destroy_esp_ciphers(struct esp *esp) { if (esp->cipher) { gnutls_cipher_deinit(esp->cipher); esp->cipher = NULL; } if (esp->hmac) { gnutls_hmac_deinit(esp->hmac, NULL); esp->hmac = NULL; } } static int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *esp, gnutls_mac_algorithm_t macalg, gnutls_cipher_algorithm_t encalg) { gnutls_datum_t enc_key; int err; destroy_esp_ciphers(esp); enc_key.size = gnutls_cipher_get_key_size(encalg); enc_key.data = esp->secrets; err = gnutls_cipher_init(&esp->cipher, encalg, &enc_key, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise ESP cipher: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_hmac_init(&esp->hmac, macalg, esp->secrets + enc_key.size, gnutls_hmac_get_len(macalg)); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize ESP HMAC: %s\n"), gnutls_strerror(err)); destroy_esp_ciphers(esp); } esp->seq = 0; esp->seq_backlog = 0; return 0; } int setup_esp_keys(struct openconnect_info *vpninfo) { struct esp *esp_in; gnutls_mac_algorithm_t macalg; gnutls_cipher_algorithm_t encalg; int ret; if (vpninfo->dtls_state == DTLS_DISABLED) return -EOPNOTSUPP; if (!vpninfo->dtls_addr) return -EINVAL; switch (vpninfo->esp_enc) { case 0x02: encalg = GNUTLS_CIPHER_AES_128_CBC; break; case 0x05: encalg = GNUTLS_CIPHER_AES_256_CBC; break; default: return -EINVAL; } switch (vpninfo->esp_hmac) { case 0x01: macalg = GNUTLS_MAC_MD5; break; case 0x02: macalg = GNUTLS_MAC_SHA1; break; default: return -EINVAL; } vpninfo->old_esp_maxseq = vpninfo->esp_in[vpninfo->current_esp_in].seq + 32; vpninfo->current_esp_in ^= 1; esp_in = &vpninfo->esp_in[vpninfo->current_esp_in]; if ((ret = gnutls_rnd(GNUTLS_RND_NONCE, &esp_in->spi, sizeof(esp_in->spi))) || (ret = gnutls_rnd(GNUTLS_RND_RANDOM, &esp_in->secrets, sizeof(esp_in->secrets)))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random keys for ESP: %s\n"), gnutls_strerror(ret)); return -EIO; } ret = init_esp_ciphers(vpninfo, &vpninfo->esp_out, macalg, encalg); if (ret) return ret; ret = init_esp_ciphers(vpninfo, esp_in, macalg, encalg); if (ret) { destroy_esp_ciphers(&vpninfo->esp_out); return ret; } if (vpninfo->dtls_state == DTLS_NOSECRET) vpninfo->dtls_state = DTLS_SECRET; vpninfo->pkt_trailer = 16 + 20; /* 16 for pad, 20 for HMAC (of which we use 16) */ return 0; } /* pkt->len shall be the *payload* length. Omitting the header and the 12-byte HMAC */ int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt) { unsigned char hmac_buf[20]; int err; err = gnutls_hmac(esp->hmac, &pkt->esp, sizeof(pkt->esp) + pkt->len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate HMAC for ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } gnutls_hmac_output(esp->hmac, hmac_buf); if (memcmp(hmac_buf, pkt->data + pkt->len, 12)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid HMAC\n")); return -EINVAL; } /* Why in $DEITY's name would you ever *not* set this? Perhaps we * should do th check anyway, but only warn instead of discarding * the packet? */ if (vpninfo->esp_replay_protect && verify_packet_seqno(vpninfo, esp, ntohl(pkt->esp.seq))) return -EINVAL; gnutls_cipher_set_iv(esp->cipher, pkt->esp.iv, sizeof(pkt->esp.iv)); err = gnutls_cipher_decrypt(esp->cipher, pkt->data, pkt->len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Decrypting ESP packet failed: %s\n"), gnutls_strerror(err)); return -EINVAL; } return 0; } int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt) { int i, padlen; const int blksize = 16; int err; /* This gets much more fun if the IV is variable-length */ pkt->esp.spi = vpninfo->esp_out.spi; pkt->esp.seq = htonl(vpninfo->esp_out.seq++); err = gnutls_rnd(GNUTLS_RND_NONCE, pkt->esp.iv, sizeof(pkt->esp.iv)); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate ESP packet IV: %s\n"), gnutls_strerror(err)); return -EIO; } padlen = blksize - 1 - ((pkt->len + 1) % blksize); for (i=0; idata[pkt->len + i] = i + 1; pkt->data[pkt->len + padlen] = padlen; pkt->data[pkt->len + padlen + 1] = 0x04; /* Legacy IP */ gnutls_cipher_set_iv(vpninfo->esp_out.cipher, pkt->esp.iv, sizeof(pkt->esp.iv)); err = gnutls_cipher_encrypt(vpninfo->esp_out.cipher, pkt->data, pkt->len + padlen + 2); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to encrypt ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_hmac(vpninfo->esp_out.hmac, &pkt->esp, sizeof(pkt->esp) + pkt->len + padlen + 2); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate HMAC for ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } gnutls_hmac_output(vpninfo->esp_out.hmac, pkt->data + pkt->len + padlen + 2); return sizeof(pkt->esp) + pkt->len + padlen + 2 + 12; } openconnect-7.06/lzo.c0000664000076400007640000001713612461736525011707 00000000000000/* * LZO 1x decompression * Copyright (c) 2006 Reimar Doeffinger * * This file is part of FFmpeg. * * FFmpeg is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * FFmpeg is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public * License along with FFmpeg; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ #include //#include "avutil.h" //#include "avassert.h" //#include "common.h" //#include "intreadwrite.h" #include "lzo.h" /// Define if we may write up to 12 bytes beyond the output buffer. #define OUTBUF_PADDED 1 /// Define if we may read up to 8 bytes beyond the input buffer. #define INBUF_PADDED 1 typedef struct LZOContext { const uint8_t *in, *in_end; uint8_t *out_start, *out, *out_end; int error; } LZOContext; /** * @brief Reads one byte from the input buffer, avoiding an overrun. * @return byte read */ static inline int get_byte(LZOContext *c) { if (c->in < c->in_end) return *c->in++; c->error |= AV_LZO_INPUT_DEPLETED; return 1; } #ifdef INBUF_PADDED #define GETB(c) (*(c).in++) #else #define GETB(c) get_byte(&(c)) #endif /** * @brief Decodes a length value in the coding used by lzo. * @param x previous byte value * @param mask bits used from x * @return decoded length value */ static inline int get_len(LZOContext *c, int x, int mask) { int cnt = x & mask; if (!cnt) { while (!(x = get_byte(c))) { if (cnt >= 65535) { c->error |= AV_LZO_ERROR; break; } cnt += 255; } cnt += mask + x; } return cnt; } /** * @brief Copies bytes from input to output buffer with checking. * @param cnt number of bytes to copy, must be >= 0 */ static inline void copy(LZOContext *c, int cnt) { register const uint8_t *src = c->in; register uint8_t *dst = c->out; /* Should never happen */ if (cnt < 0) { c->error |= AV_LZO_ERROR; return; } if (cnt > c->in_end - src) { cnt = FFMAX(c->in_end - src, 0); c->error |= AV_LZO_INPUT_DEPLETED; } if (cnt > c->out_end - dst) { cnt = FFMAX(c->out_end - dst, 0); c->error |= AV_LZO_OUTPUT_FULL; } #if defined(INBUF_PADDED) && defined(OUTBUF_PADDED) AV_COPY32U(dst, src); src += 4; dst += 4; cnt -= 4; if (cnt > 0) #endif memcpy(dst, src, cnt); c->in = src + cnt; c->out = dst + cnt; } /** * @brief Copies previously decoded bytes to current position. * @param back how many bytes back we start, must be > 0 * @param cnt number of bytes to copy, must be > 0 * * cnt > back is valid, this will copy the bytes we just copied, * thus creating a repeating pattern with a period length of back. */ static inline void copy_backptr(LZOContext *c, int back, int cnt) { register uint8_t *dst = c->out; if (cnt <= 0) { c->error |= AV_LZO_ERROR; return; } if (dst - c->out_start < back) { c->error |= AV_LZO_INVALID_BACKPTR; return; } if (cnt > c->out_end - dst) { cnt = FFMAX(c->out_end - dst, 0); c->error |= AV_LZO_OUTPUT_FULL; } av_memcpy_backptr(dst, back, cnt); c->out = dst + cnt; } int av_lzo1x_decode(void *out, int *outlen, const void *in, int *inlen) { int state = 0; int x; LZOContext c; if (*outlen <= 0 || *inlen <= 0) { int res = 0; if (*outlen <= 0) res |= AV_LZO_OUTPUT_FULL; if (*inlen <= 0) res |= AV_LZO_INPUT_DEPLETED; return res; } c.in = in; c.in_end = (const uint8_t *)in + *inlen; c.out = c.out_start = out; c.out_end = (uint8_t *)out + *outlen; c.error = 0; x = GETB(c); if (x > 17) { copy(&c, x - 17); x = GETB(c); if (x < 16) c.error |= AV_LZO_ERROR; } if (c.in > c.in_end) c.error |= AV_LZO_INPUT_DEPLETED; while (!c.error) { int cnt, back; if (x > 15) { if (x > 63) { /* cccbbbnn BBBBBBBB */ cnt = (x >> 5) - 1; back = (GETB(c) << 3) + ((x >> 2) & 7) + 1; } else if (x > 31) { /* 001ccccc (cccccccc...) bbbbbbnn BBBBBBBB */ cnt = get_len(&c, x, 31); x = GETB(c); back = (GETB(c) << 6) + (x >> 2) + 1; } else { /* 0001bccc (cccccccc...) bbbbbbnn BBBBBBBB */ cnt = get_len(&c, x, 7); back = (1 << 14) + ((x & 8) << 11); x = GETB(c); back += (GETB(c) << 6) + (x >> 2); if (back == (1 << 14)) { if (cnt != 1) c.error |= AV_LZO_ERROR; break; } } } else if (!state) { /* 0000llll (llllllll...) { literal... } ( 0000bbnn BBBBBBBB ) */ cnt = get_len(&c, x, 15); copy(&c, cnt + 3); x = GETB(c); if (x > 15) continue; cnt = 1; back = (1 << 11) + (GETB(c) << 2) + (x >> 2) + 1; } else { /* 0000bbnn BBBBBBBB ) */ cnt = 0; back = (GETB(c) << 2) + (x >> 2) + 1; } copy_backptr(&c, back, cnt + 2); state = cnt = x & 3; copy(&c, cnt); x = GETB(c); } *inlen = c.in_end - c.in; if (c.in > c.in_end) *inlen = 0; *outlen = c.out_end - c.out; return c.error; } #ifdef TEST #include #include #include "log.h" #define MAXSZ (10*1024*1024) /* Define one of these to 1 if you wish to benchmark liblzo * instead of our native implementation. */ #define BENCHMARK_LIBLZO_SAFE 0 #define BENCHMARK_LIBLZO_UNSAFE 0 int main(int argc, char *argv[]) { FILE *in = fopen(argv[1], "rb"); int comp_level = argc > 2 ? atoi(argv[2]) : 0; uint8_t *orig = av_malloc(MAXSZ + 16); uint8_t *comp = av_malloc(2*MAXSZ + 16); uint8_t *decomp = av_malloc(MAXSZ + 16); size_t s = fread(orig, 1, MAXSZ, in); lzo_uint clen = 0; long tmp[LZO1X_MEM_COMPRESS]; int inlen, outlen; int i; av_log_set_level(AV_LOG_DEBUG); if (comp_level == 0) { lzo1x_1_compress(orig, s, comp, &clen, tmp); } else if (comp_level == 11) { lzo1x_1_11_compress(orig, s, comp, &clen, tmp); } else if (comp_level == 12) { lzo1x_1_12_compress(orig, s, comp, &clen, tmp); } else if (comp_level == 15) { lzo1x_1_15_compress(orig, s, comp, &clen, tmp); } else lzo1x_999_compress(orig, s, comp, &clen, tmp); for (i = 0; i < 300; i++) { START_TIMER inlen = clen; outlen = MAXSZ; #if BENCHMARK_LIBLZO_SAFE if (lzo1x_decompress_safe(comp, inlen, decomp, &outlen, NULL)) #elif BENCHMARK_LIBLZO_UNSAFE if (lzo1x_decompress(comp, inlen, decomp, &outlen, NULL)) #else if (av_lzo1x_decode(decomp, &outlen, comp, &inlen)) #endif av_log(NULL, AV_LOG_ERROR, "decompression error\n"); STOP_TIMER("lzod") } if (memcmp(orig, decomp, s)) av_log(NULL, AV_LOG_ERROR, "decompression incorrect\n"); else av_log(NULL, AV_LOG_ERROR, "decompression OK\n"); fclose(in); return 0; } #endif openconnect-7.06/m4/0000775000076400007640000000000012502026432011310 500000000000000openconnect-7.06/m4/libtool.m40000644000076400007640000105756412425412631013162 00000000000000# libtool.m4 - Configure libtool for the host system. -*-Autoconf-*- # # Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2003, 2004, 2005, # 2006, 2007, 2008, 2009, 2010, 2011 Free Software # Foundation, Inc. # Written by Gordon Matzigkeit, 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. m4_define([_LT_COPYING], [dnl # Copyright (C) 1996, 1997, 1998, 1999, 2000, 2001, 2003, 2004, 2005, # 2006, 2007, 2008, 2009, 2010, 2011 Free Software # Foundation, Inc. # Written by Gordon Matzigkeit, 1996 # # This file is part of GNU Libtool. # # GNU Libtool is free software; you can redistribute it and/or # modify it under the terms of the GNU General Public License as # published by the Free Software Foundation; either version 2 of # the License, or (at your option) any later version. # # As a special exception to the GNU General Public License, # if you distribute this file as part of a program or library that # is built using GNU Libtool, you may include this file under the # same distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with GNU Libtool; see the file COPYING. If not, a copy # can be downloaded from http://www.gnu.org/licenses/gpl.html, or # obtained by writing to the Free Software Foundation, Inc., # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. ]) # serial 57 LT_INIT # LT_PREREQ(VERSION) # ------------------ # Complain and exit if this libtool version is less that VERSION. m4_defun([LT_PREREQ], [m4_if(m4_version_compare(m4_defn([LT_PACKAGE_VERSION]), [$1]), -1, [m4_default([$3], [m4_fatal([Libtool version $1 or higher is required], 63)])], [$2])]) # _LT_CHECK_BUILDDIR # ------------------ # Complain if the absolute build directory name contains unusual characters m4_defun([_LT_CHECK_BUILDDIR], [case `pwd` in *\ * | *\ *) AC_MSG_WARN([Libtool does not cope well with whitespace in `pwd`]) ;; esac ]) # LT_INIT([OPTIONS]) # ------------------ AC_DEFUN([LT_INIT], [AC_PREREQ([2.58])dnl We use AC_INCLUDES_DEFAULT AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl AC_BEFORE([$0], [LT_LANG])dnl AC_BEFORE([$0], [LT_OUTPUT])dnl AC_BEFORE([$0], [LTDL_INIT])dnl m4_require([_LT_CHECK_BUILDDIR])dnl dnl Autoconf doesn't catch unexpanded LT_ macros by default: m4_pattern_forbid([^_?LT_[A-Z_]+$])dnl m4_pattern_allow([^(_LT_EOF|LT_DLGLOBAL|LT_DLLAZY_OR_NOW|LT_MULTI_MODULE)$])dnl dnl aclocal doesn't pull ltoptions.m4, ltsugar.m4, or ltversion.m4 dnl unless we require an AC_DEFUNed macro: AC_REQUIRE([LTOPTIONS_VERSION])dnl AC_REQUIRE([LTSUGAR_VERSION])dnl AC_REQUIRE([LTVERSION_VERSION])dnl AC_REQUIRE([LTOBSOLETE_VERSION])dnl m4_require([_LT_PROG_LTMAIN])dnl _LT_SHELL_INIT([SHELL=${CONFIG_SHELL-/bin/sh}]) dnl Parse OPTIONS _LT_SET_OPTIONS([$0], [$1]) # This can be used to rebuild libtool when needed LIBTOOL_DEPS="$ltmain" # Always use our own libtool. LIBTOOL='$(SHELL) $(top_builddir)/libtool' AC_SUBST(LIBTOOL)dnl _LT_SETUP # Only expand once: m4_define([LT_INIT]) ])# LT_INIT # Old names: AU_ALIAS([AC_PROG_LIBTOOL], [LT_INIT]) AU_ALIAS([AM_PROG_LIBTOOL], [LT_INIT]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_PROG_LIBTOOL], []) dnl AC_DEFUN([AM_PROG_LIBTOOL], []) # _LT_CC_BASENAME(CC) # ------------------- # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. m4_defun([_LT_CC_BASENAME], [for cc_temp in $1""; do case $cc_temp in compile | *[[\\/]]compile | ccache | *[[\\/]]ccache ) ;; distcc | *[[\\/]]distcc | purify | *[[\\/]]purify ) ;; \-*) ;; *) break;; esac done cc_basename=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` ]) # _LT_FILEUTILS_DEFAULTS # ---------------------- # It is okay to use these file commands and assume they have been set # sensibly after `m4_require([_LT_FILEUTILS_DEFAULTS])'. m4_defun([_LT_FILEUTILS_DEFAULTS], [: ${CP="cp -f"} : ${MV="mv -f"} : ${RM="rm -f"} ])# _LT_FILEUTILS_DEFAULTS # _LT_SETUP # --------- m4_defun([_LT_SETUP], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl AC_REQUIRE([_LT_PREPARE_SED_QUOTE_VARS])dnl AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH])dnl _LT_DECL([], [PATH_SEPARATOR], [1], [The PATH separator for the build system])dnl dnl _LT_DECL([], [host_alias], [0], [The host system])dnl _LT_DECL([], [host], [0])dnl _LT_DECL([], [host_os], [0])dnl dnl _LT_DECL([], [build_alias], [0], [The build system])dnl _LT_DECL([], [build], [0])dnl _LT_DECL([], [build_os], [0])dnl dnl AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([LT_PATH_LD])dnl AC_REQUIRE([LT_PATH_NM])dnl dnl AC_REQUIRE([AC_PROG_LN_S])dnl test -z "$LN_S" && LN_S="ln -s" _LT_DECL([], [LN_S], [1], [Whether we need soft or hard links])dnl dnl AC_REQUIRE([LT_CMD_MAX_LEN])dnl _LT_DECL([objext], [ac_objext], [0], [Object file suffix (normally "o")])dnl _LT_DECL([], [exeext], [0], [Executable file suffix (normally "")])dnl dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_CHECK_SHELL_FEATURES])dnl m4_require([_LT_PATH_CONVERSION_FUNCTIONS])dnl m4_require([_LT_CMD_RELOAD])dnl m4_require([_LT_CHECK_MAGIC_METHOD])dnl m4_require([_LT_CHECK_SHAREDLIB_FROM_LINKLIB])dnl m4_require([_LT_CMD_OLD_ARCHIVE])dnl m4_require([_LT_CMD_GLOBAL_SYMBOLS])dnl m4_require([_LT_WITH_SYSROOT])dnl _LT_CONFIG_LIBTOOL_INIT([ # See if we are running on zsh, and set the options which allow our # commands through without removal of \ escapes INIT. if test -n "\${ZSH_VERSION+set}" ; then setopt NO_GLOB_SUBST fi ]) if test -n "${ZSH_VERSION+set}" ; then setopt NO_GLOB_SUBST fi _LT_CHECK_OBJDIR m4_require([_LT_TAG_COMPILER])dnl case $host_os in aix3*) # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test "X${COLLECT_NAMES+set}" != Xset; then COLLECT_NAMES= export COLLECT_NAMES fi ;; esac # Global variables: ofile=libtool can_build_shared=yes # All known linkers require a `.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a with_gnu_ld="$lt_cv_prog_gnu_ld" old_CC="$CC" old_CFLAGS="$CFLAGS" # Set sane defaults for various variables test -z "$CC" && CC=cc test -z "$LTCC" && LTCC=$CC test -z "$LTCFLAGS" && LTCFLAGS=$CFLAGS test -z "$LD" && LD=ld test -z "$ac_objext" && ac_objext=o _LT_CC_BASENAME([$compiler]) # Only perform the check for file, if the check method requires it test -z "$MAGIC_CMD" && MAGIC_CMD=file case $deplibs_check_method in file_magic*) if test "$file_magic_cmd" = '$MAGIC_CMD'; then _LT_PATH_MAGIC fi ;; esac # Use C for the default configuration in the libtool script LT_SUPPORTED_TAG([CC]) _LT_LANG_C_CONFIG _LT_LANG_DEFAULT_CONFIG _LT_CONFIG_COMMANDS ])# _LT_SETUP # _LT_PREPARE_SED_QUOTE_VARS # -------------------------- # Define a few sed substitution that help us do robust quoting. m4_defun([_LT_PREPARE_SED_QUOTE_VARS], [# Backslashify metacharacters that are still active within # double-quoted strings. sed_quote_subst='s/\([["`$\\]]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\([["`\\]]\)/\\\1/g' # Sed substitution to delay expansion of an escaped shell variable in a # double_quote_subst'ed string. delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' # Sed substitution to delay expansion of an escaped single quote. delay_single_quote_subst='s/'\''/'\'\\\\\\\'\''/g' # Sed substitution to avoid accidental globbing in evaled expressions no_glob_subst='s/\*/\\\*/g' ]) # _LT_PROG_LTMAIN # --------------- # Note that this code is called both from `configure', and `config.status' # now that we use AC_CONFIG_COMMANDS to generate libtool. Notably, # `config.status' has no value for ac_aux_dir unless we are using Automake, # so we pass a copy along to make sure it has a sensible value anyway. m4_defun([_LT_PROG_LTMAIN], [m4_ifdef([AC_REQUIRE_AUX_FILE], [AC_REQUIRE_AUX_FILE([ltmain.sh])])dnl _LT_CONFIG_LIBTOOL_INIT([ac_aux_dir='$ac_aux_dir']) ltmain="$ac_aux_dir/ltmain.sh" ])# _LT_PROG_LTMAIN ## ------------------------------------- ## ## Accumulate code for creating libtool. ## ## ------------------------------------- ## # So that we can recreate a full libtool script including additional # tags, we accumulate the chunks of code to send to AC_CONFIG_COMMANDS # in macros and then make a single call at the end using the `libtool' # label. # _LT_CONFIG_LIBTOOL_INIT([INIT-COMMANDS]) # ---------------------------------------- # Register INIT-COMMANDS to be passed to AC_CONFIG_COMMANDS later. m4_define([_LT_CONFIG_LIBTOOL_INIT], [m4_ifval([$1], [m4_append([_LT_OUTPUT_LIBTOOL_INIT], [$1 ])])]) # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_INIT]) # _LT_CONFIG_LIBTOOL([COMMANDS]) # ------------------------------ # Register COMMANDS to be passed to AC_CONFIG_COMMANDS later. m4_define([_LT_CONFIG_LIBTOOL], [m4_ifval([$1], [m4_append([_LT_OUTPUT_LIBTOOL_COMMANDS], [$1 ])])]) # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_COMMANDS]) # _LT_CONFIG_SAVE_COMMANDS([COMMANDS], [INIT_COMMANDS]) # ----------------------------------------------------- m4_defun([_LT_CONFIG_SAVE_COMMANDS], [_LT_CONFIG_LIBTOOL([$1]) _LT_CONFIG_LIBTOOL_INIT([$2]) ]) # _LT_FORMAT_COMMENT([COMMENT]) # ----------------------------- # Add leading comment marks to the start of each line, and a trailing # full-stop to the whole comment if one is not present already. m4_define([_LT_FORMAT_COMMENT], [m4_ifval([$1], [ m4_bpatsubst([m4_bpatsubst([$1], [^ *], [# ])], [['`$\]], [\\\&])]m4_bmatch([$1], [[!?.]$], [], [.]) )]) ## ------------------------ ## ## FIXME: Eliminate VARNAME ## ## ------------------------ ## # _LT_DECL([CONFIGNAME], VARNAME, VALUE, [DESCRIPTION], [IS-TAGGED?]) # ------------------------------------------------------------------- # CONFIGNAME is the name given to the value in the libtool script. # VARNAME is the (base) name used in the configure script. # VALUE may be 0, 1 or 2 for a computed quote escaped value based on # VARNAME. Any other value will be used directly. m4_define([_LT_DECL], [lt_if_append_uniq([lt_decl_varnames], [$2], [, ], [lt_dict_add_subkey([lt_decl_dict], [$2], [libtool_name], [m4_ifval([$1], [$1], [$2])]) lt_dict_add_subkey([lt_decl_dict], [$2], [value], [$3]) m4_ifval([$4], [lt_dict_add_subkey([lt_decl_dict], [$2], [description], [$4])]) lt_dict_add_subkey([lt_decl_dict], [$2], [tagged?], [m4_ifval([$5], [yes], [no])])]) ]) # _LT_TAGDECL([CONFIGNAME], VARNAME, VALUE, [DESCRIPTION]) # -------------------------------------------------------- m4_define([_LT_TAGDECL], [_LT_DECL([$1], [$2], [$3], [$4], [yes])]) # lt_decl_tag_varnames([SEPARATOR], [VARNAME1...]) # ------------------------------------------------ m4_define([lt_decl_tag_varnames], [_lt_decl_filter([tagged?], [yes], $@)]) # _lt_decl_filter(SUBKEY, VALUE, [SEPARATOR], [VARNAME1..]) # --------------------------------------------------------- m4_define([_lt_decl_filter], [m4_case([$#], [0], [m4_fatal([$0: too few arguments: $#])], [1], [m4_fatal([$0: too few arguments: $#: $1])], [2], [lt_dict_filter([lt_decl_dict], [$1], [$2], [], lt_decl_varnames)], [3], [lt_dict_filter([lt_decl_dict], [$1], [$2], [$3], lt_decl_varnames)], [lt_dict_filter([lt_decl_dict], $@)])[]dnl ]) # lt_decl_quote_varnames([SEPARATOR], [VARNAME1...]) # -------------------------------------------------- m4_define([lt_decl_quote_varnames], [_lt_decl_filter([value], [1], $@)]) # lt_decl_dquote_varnames([SEPARATOR], [VARNAME1...]) # --------------------------------------------------- m4_define([lt_decl_dquote_varnames], [_lt_decl_filter([value], [2], $@)]) # lt_decl_varnames_tagged([SEPARATOR], [VARNAME1...]) # --------------------------------------------------- m4_define([lt_decl_varnames_tagged], [m4_assert([$# <= 2])dnl _$0(m4_quote(m4_default([$1], [[, ]])), m4_ifval([$2], [[$2]], [m4_dquote(lt_decl_tag_varnames)]), m4_split(m4_normalize(m4_quote(_LT_TAGS)), [ ]))]) m4_define([_lt_decl_varnames_tagged], [m4_ifval([$3], [lt_combine([$1], [$2], [_], $3)])]) # lt_decl_all_varnames([SEPARATOR], [VARNAME1...]) # ------------------------------------------------ m4_define([lt_decl_all_varnames], [_$0(m4_quote(m4_default([$1], [[, ]])), m4_if([$2], [], m4_quote(lt_decl_varnames), m4_quote(m4_shift($@))))[]dnl ]) m4_define([_lt_decl_all_varnames], [lt_join($@, lt_decl_varnames_tagged([$1], lt_decl_tag_varnames([[, ]], m4_shift($@))))dnl ]) # _LT_CONFIG_STATUS_DECLARE([VARNAME]) # ------------------------------------ # Quote a variable value, and forward it to `config.status' so that its # declaration there will have the same value as in `configure'. VARNAME # must have a single quote delimited value for this to work. m4_define([_LT_CONFIG_STATUS_DECLARE], [$1='`$ECHO "$][$1" | $SED "$delay_single_quote_subst"`']) # _LT_CONFIG_STATUS_DECLARATIONS # ------------------------------ # We delimit libtool config variables with single quotes, so when # we write them to config.status, we have to be sure to quote all # embedded single quotes properly. In configure, this macro expands # each variable declared with _LT_DECL (and _LT_TAGDECL) into: # # ='`$ECHO "$" | $SED "$delay_single_quote_subst"`' m4_defun([_LT_CONFIG_STATUS_DECLARATIONS], [m4_foreach([_lt_var], m4_quote(lt_decl_all_varnames), [m4_n([_LT_CONFIG_STATUS_DECLARE(_lt_var)])])]) # _LT_LIBTOOL_TAGS # ---------------- # Output comment and list of tags supported by the script m4_defun([_LT_LIBTOOL_TAGS], [_LT_FORMAT_COMMENT([The names of the tagged configurations supported by this script])dnl available_tags="_LT_TAGS"dnl ]) # _LT_LIBTOOL_DECLARE(VARNAME, [TAG]) # ----------------------------------- # Extract the dictionary values for VARNAME (optionally with TAG) and # expand to a commented shell variable setting: # # # Some comment about what VAR is for. # visible_name=$lt_internal_name m4_define([_LT_LIBTOOL_DECLARE], [_LT_FORMAT_COMMENT(m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [description])))[]dnl m4_pushdef([_libtool_name], m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [libtool_name])))[]dnl m4_case(m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [value])), [0], [_libtool_name=[$]$1], [1], [_libtool_name=$lt_[]$1], [2], [_libtool_name=$lt_[]$1], [_libtool_name=lt_dict_fetch([lt_decl_dict], [$1], [value])])[]dnl m4_ifval([$2], [_$2])[]m4_popdef([_libtool_name])[]dnl ]) # _LT_LIBTOOL_CONFIG_VARS # ----------------------- # Produce commented declarations of non-tagged libtool config variables # suitable for insertion in the LIBTOOL CONFIG section of the `libtool' # script. Tagged libtool config variables (even for the LIBTOOL CONFIG # section) are produced by _LT_LIBTOOL_TAG_VARS. m4_defun([_LT_LIBTOOL_CONFIG_VARS], [m4_foreach([_lt_var], m4_quote(_lt_decl_filter([tagged?], [no], [], lt_decl_varnames)), [m4_n([_LT_LIBTOOL_DECLARE(_lt_var)])])]) # _LT_LIBTOOL_TAG_VARS(TAG) # ------------------------- m4_define([_LT_LIBTOOL_TAG_VARS], [m4_foreach([_lt_var], m4_quote(lt_decl_tag_varnames), [m4_n([_LT_LIBTOOL_DECLARE(_lt_var, [$1])])])]) # _LT_TAGVAR(VARNAME, [TAGNAME]) # ------------------------------ m4_define([_LT_TAGVAR], [m4_ifval([$2], [$1_$2], [$1])]) # _LT_CONFIG_COMMANDS # ------------------- # Send accumulated output to $CONFIG_STATUS. Thanks to the lists of # variables for single and double quote escaping we saved from calls # to _LT_DECL, we can put quote escaped variables declarations # into `config.status', and then the shell code to quote escape them in # for loops in `config.status'. Finally, any additional code accumulated # from calls to _LT_CONFIG_LIBTOOL_INIT is expanded. m4_defun([_LT_CONFIG_COMMANDS], [AC_PROVIDE_IFELSE([LT_OUTPUT], dnl If the libtool generation code has been placed in $CONFIG_LT, dnl instead of duplicating it all over again into config.status, dnl then we will have config.status run $CONFIG_LT later, so it dnl needs to know what name is stored there: [AC_CONFIG_COMMANDS([libtool], [$SHELL $CONFIG_LT || AS_EXIT(1)], [CONFIG_LT='$CONFIG_LT'])], dnl If the libtool generation code is destined for config.status, dnl expand the accumulated commands and init code now: [AC_CONFIG_COMMANDS([libtool], [_LT_OUTPUT_LIBTOOL_COMMANDS], [_LT_OUTPUT_LIBTOOL_COMMANDS_INIT])]) ])#_LT_CONFIG_COMMANDS # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_COMMANDS_INIT], [ # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH sed_quote_subst='$sed_quote_subst' double_quote_subst='$double_quote_subst' delay_variable_subst='$delay_variable_subst' _LT_CONFIG_STATUS_DECLARATIONS LTCC='$LTCC' LTCFLAGS='$LTCFLAGS' compiler='$compiler_DEFAULT' # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$[]1 _LTECHO_EOF' } # Quote evaled strings. for var in lt_decl_all_varnames([[ \ ]], lt_decl_quote_varnames); do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[[\\\\\\\`\\"\\\$]]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED \\"\\\$sed_quote_subst\\"\\\`\\\\\\"" ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done # Double-quote double-evaled strings. for var in lt_decl_all_varnames([[ \ ]], lt_decl_dquote_varnames); do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[[\\\\\\\`\\"\\\$]]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED -e \\"\\\$double_quote_subst\\" -e \\"\\\$sed_quote_subst\\" -e \\"\\\$delay_variable_subst\\"\\\`\\\\\\"" ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done _LT_OUTPUT_LIBTOOL_INIT ]) # _LT_GENERATED_FILE_INIT(FILE, [COMMENT]) # ------------------------------------ # Generate a child script FILE with all initialization necessary to # reuse the environment learned by the parent script, and make the # file executable. If COMMENT is supplied, it is inserted after the # `#!' sequence but before initialization text begins. After this # macro, additional text can be appended to FILE to form the body of # the child script. The macro ends with non-zero status if the # file could not be fully written (such as if the disk is full). m4_ifdef([AS_INIT_GENERATED], [m4_defun([_LT_GENERATED_FILE_INIT],[AS_INIT_GENERATED($@)])], [m4_defun([_LT_GENERATED_FILE_INIT], [m4_require([AS_PREPARE])]dnl [m4_pushdef([AS_MESSAGE_LOG_FD])]dnl [lt_write_fail=0 cat >$1 <<_ASEOF || lt_write_fail=1 #! $SHELL # Generated by $as_me. $2 SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$1 <<\_ASEOF || lt_write_fail=1 AS_SHELL_SANITIZE _AS_PREPARE exec AS_MESSAGE_FD>&1 _ASEOF test $lt_write_fail = 0 && chmod +x $1[]dnl m4_popdef([AS_MESSAGE_LOG_FD])])])# _LT_GENERATED_FILE_INIT # LT_OUTPUT # --------- # This macro allows early generation of the libtool script (before # AC_OUTPUT is called), incase it is used in configure for compilation # tests. AC_DEFUN([LT_OUTPUT], [: ${CONFIG_LT=./config.lt} AC_MSG_NOTICE([creating $CONFIG_LT]) _LT_GENERATED_FILE_INIT(["$CONFIG_LT"], [# Run this file to recreate a libtool stub with the current configuration.]) cat >>"$CONFIG_LT" <<\_LTEOF lt_cl_silent=false exec AS_MESSAGE_LOG_FD>>config.log { echo AS_BOX([Running $as_me.]) } >&AS_MESSAGE_LOG_FD lt_cl_help="\ \`$as_me' creates a local libtool stub from the current configuration, for use in further configure time tests before the real libtool is generated. Usage: $[0] [[OPTIONS]] -h, --help print this help, then exit -V, --version print version number, then exit -q, --quiet do not print progress messages -d, --debug don't remove temporary files Report bugs to ." lt_cl_version="\ m4_ifset([AC_PACKAGE_NAME], [AC_PACKAGE_NAME ])config.lt[]dnl m4_ifset([AC_PACKAGE_VERSION], [ AC_PACKAGE_VERSION]) configured by $[0], generated by m4_PACKAGE_STRING. Copyright (C) 2011 Free Software Foundation, Inc. This config.lt script is free software; the Free Software Foundation gives unlimited permision to copy, distribute and modify it." while test $[#] != 0 do case $[1] in --version | --v* | -V ) echo "$lt_cl_version"; exit 0 ;; --help | --h* | -h ) echo "$lt_cl_help"; exit 0 ;; --debug | --d* | -d ) debug=: ;; --quiet | --q* | --silent | --s* | -q ) lt_cl_silent=: ;; -*) AC_MSG_ERROR([unrecognized option: $[1] Try \`$[0] --help' for more information.]) ;; *) AC_MSG_ERROR([unrecognized argument: $[1] Try \`$[0] --help' for more information.]) ;; esac shift done if $lt_cl_silent; then exec AS_MESSAGE_FD>/dev/null fi _LTEOF cat >>"$CONFIG_LT" <<_LTEOF _LT_OUTPUT_LIBTOOL_COMMANDS_INIT _LTEOF cat >>"$CONFIG_LT" <<\_LTEOF AC_MSG_NOTICE([creating $ofile]) _LT_OUTPUT_LIBTOOL_COMMANDS AS_EXIT(0) _LTEOF chmod +x "$CONFIG_LT" # configure is writing to config.log, but config.lt does its own redirection, # appending to config.log, which fails on DOS, as config.log is still kept # open by configure. Here we exec the FD to /dev/null, effectively closing # config.log, so it can be properly (re)opened and appended to by config.lt. lt_cl_success=: test "$silent" = yes && lt_config_lt_args="$lt_config_lt_args --quiet" exec AS_MESSAGE_LOG_FD>/dev/null $SHELL "$CONFIG_LT" $lt_config_lt_args || lt_cl_success=false exec AS_MESSAGE_LOG_FD>>config.log $lt_cl_success || AS_EXIT(1) ])# LT_OUTPUT # _LT_CONFIG(TAG) # --------------- # If TAG is the built-in tag, create an initial libtool script with a # default configuration from the untagged config vars. Otherwise add code # to config.status for appending the configuration named by TAG from the # matching tagged config vars. m4_defun([_LT_CONFIG], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl _LT_CONFIG_SAVE_COMMANDS([ m4_define([_LT_TAG], m4_if([$1], [], [C], [$1]))dnl m4_if(_LT_TAG, [C], [ # See if we are running on zsh, and set the options which allow our # commands through without removal of \ escapes. if test -n "${ZSH_VERSION+set}" ; then setopt NO_GLOB_SUBST fi cfgfile="${ofile}T" trap "$RM \"$cfgfile\"; exit 1" 1 2 15 $RM "$cfgfile" cat <<_LT_EOF >> "$cfgfile" #! $SHELL # `$ECHO "$ofile" | sed 's%^.*/%%'` - Provide generalized library-building support services. # Generated automatically by $as_me ($PACKAGE$TIMESTAMP) $VERSION # Libtool was configured on host `(hostname || uname -n) 2>/dev/null | sed 1q`: # NOTE: Changes made to this file will be lost: look at ltmain.sh. # _LT_COPYING _LT_LIBTOOL_TAGS # ### BEGIN LIBTOOL CONFIG _LT_LIBTOOL_CONFIG_VARS _LT_LIBTOOL_TAG_VARS # ### END LIBTOOL CONFIG _LT_EOF case $host_os in aix3*) cat <<\_LT_EOF >> "$cfgfile" # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test "X${COLLECT_NAMES+set}" != Xset; then COLLECT_NAMES= export COLLECT_NAMES fi _LT_EOF ;; esac _LT_PROG_LTMAIN # We use sed instead of cat because bash on DJGPP gets confused if # if finds mixed CR/LF and LF-only lines. Since sed operates in # text mode, it properly converts lines to CR/LF. This bash problem # is reportedly fixed, but why not run on old versions too? sed '$q' "$ltmain" >> "$cfgfile" \ || (rm -f "$cfgfile"; exit 1) _LT_PROG_REPLACE_SHELLFNS mv -f "$cfgfile" "$ofile" || (rm -f "$ofile" && cp "$cfgfile" "$ofile" && rm -f "$cfgfile") chmod +x "$ofile" ], [cat <<_LT_EOF >> "$ofile" dnl Unfortunately we have to use $1 here, since _LT_TAG is not expanded dnl in a comment (ie after a #). # ### BEGIN LIBTOOL TAG CONFIG: $1 _LT_LIBTOOL_TAG_VARS(_LT_TAG) # ### END LIBTOOL TAG CONFIG: $1 _LT_EOF ])dnl /m4_if ], [m4_if([$1], [], [ PACKAGE='$PACKAGE' VERSION='$VERSION' TIMESTAMP='$TIMESTAMP' RM='$RM' ofile='$ofile'], []) ])dnl /_LT_CONFIG_SAVE_COMMANDS ])# _LT_CONFIG # LT_SUPPORTED_TAG(TAG) # --------------------- # Trace this macro to discover what tags are supported by the libtool # --tag option, using: # autoconf --trace 'LT_SUPPORTED_TAG:$1' AC_DEFUN([LT_SUPPORTED_TAG], []) # C support is built-in for now m4_define([_LT_LANG_C_enabled], []) m4_define([_LT_TAGS], []) # LT_LANG(LANG) # ------------- # Enable libtool support for the given language if not already enabled. AC_DEFUN([LT_LANG], [AC_BEFORE([$0], [LT_OUTPUT])dnl m4_case([$1], [C], [_LT_LANG(C)], [C++], [_LT_LANG(CXX)], [Go], [_LT_LANG(GO)], [Java], [_LT_LANG(GCJ)], [Fortran 77], [_LT_LANG(F77)], [Fortran], [_LT_LANG(FC)], [Windows Resource], [_LT_LANG(RC)], [m4_ifdef([_LT_LANG_]$1[_CONFIG], [_LT_LANG($1)], [m4_fatal([$0: unsupported language: "$1"])])])dnl ])# LT_LANG # _LT_LANG(LANGNAME) # ------------------ m4_defun([_LT_LANG], [m4_ifdef([_LT_LANG_]$1[_enabled], [], [LT_SUPPORTED_TAG([$1])dnl m4_append([_LT_TAGS], [$1 ])dnl m4_define([_LT_LANG_]$1[_enabled], [])dnl _LT_LANG_$1_CONFIG($1)])dnl ])# _LT_LANG m4_ifndef([AC_PROG_GO], [ ############################################################ # NOTE: This macro has been submitted for inclusion into # # GNU Autoconf as AC_PROG_GO. When it is available in # # a released version of Autoconf we should remove this # # macro and use it instead. # ############################################################ m4_defun([AC_PROG_GO], [AC_LANG_PUSH(Go)dnl AC_ARG_VAR([GOC], [Go compiler command])dnl AC_ARG_VAR([GOFLAGS], [Go compiler flags])dnl _AC_ARG_VAR_LDFLAGS()dnl AC_CHECK_TOOL(GOC, gccgo) if test -z "$GOC"; then if test -n "$ac_tool_prefix"; then AC_CHECK_PROG(GOC, [${ac_tool_prefix}gccgo], [${ac_tool_prefix}gccgo]) fi fi if test -z "$GOC"; then AC_CHECK_PROG(GOC, gccgo, gccgo, false) fi ])#m4_defun ])#m4_ifndef # _LT_LANG_DEFAULT_CONFIG # ----------------------- m4_defun([_LT_LANG_DEFAULT_CONFIG], [AC_PROVIDE_IFELSE([AC_PROG_CXX], [LT_LANG(CXX)], [m4_define([AC_PROG_CXX], defn([AC_PROG_CXX])[LT_LANG(CXX)])]) AC_PROVIDE_IFELSE([AC_PROG_F77], [LT_LANG(F77)], [m4_define([AC_PROG_F77], defn([AC_PROG_F77])[LT_LANG(F77)])]) AC_PROVIDE_IFELSE([AC_PROG_FC], [LT_LANG(FC)], [m4_define([AC_PROG_FC], defn([AC_PROG_FC])[LT_LANG(FC)])]) dnl The call to [A][M_PROG_GCJ] is quoted like that to stop aclocal dnl pulling things in needlessly. AC_PROVIDE_IFELSE([AC_PROG_GCJ], [LT_LANG(GCJ)], [AC_PROVIDE_IFELSE([A][M_PROG_GCJ], [LT_LANG(GCJ)], [AC_PROVIDE_IFELSE([LT_PROG_GCJ], [LT_LANG(GCJ)], [m4_ifdef([AC_PROG_GCJ], [m4_define([AC_PROG_GCJ], defn([AC_PROG_GCJ])[LT_LANG(GCJ)])]) m4_ifdef([A][M_PROG_GCJ], [m4_define([A][M_PROG_GCJ], defn([A][M_PROG_GCJ])[LT_LANG(GCJ)])]) m4_ifdef([LT_PROG_GCJ], [m4_define([LT_PROG_GCJ], defn([LT_PROG_GCJ])[LT_LANG(GCJ)])])])])]) AC_PROVIDE_IFELSE([AC_PROG_GO], [LT_LANG(GO)], [m4_define([AC_PROG_GO], defn([AC_PROG_GO])[LT_LANG(GO)])]) AC_PROVIDE_IFELSE([LT_PROG_RC], [LT_LANG(RC)], [m4_define([LT_PROG_RC], defn([LT_PROG_RC])[LT_LANG(RC)])]) ])# _LT_LANG_DEFAULT_CONFIG # Obsolete macros: AU_DEFUN([AC_LIBTOOL_CXX], [LT_LANG(C++)]) AU_DEFUN([AC_LIBTOOL_F77], [LT_LANG(Fortran 77)]) AU_DEFUN([AC_LIBTOOL_FC], [LT_LANG(Fortran)]) AU_DEFUN([AC_LIBTOOL_GCJ], [LT_LANG(Java)]) AU_DEFUN([AC_LIBTOOL_RC], [LT_LANG(Windows Resource)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_CXX], []) dnl AC_DEFUN([AC_LIBTOOL_F77], []) dnl AC_DEFUN([AC_LIBTOOL_FC], []) dnl AC_DEFUN([AC_LIBTOOL_GCJ], []) dnl AC_DEFUN([AC_LIBTOOL_RC], []) # _LT_TAG_COMPILER # ---------------- m4_defun([_LT_TAG_COMPILER], [AC_REQUIRE([AC_PROG_CC])dnl _LT_DECL([LTCC], [CC], [1], [A C compiler])dnl _LT_DECL([LTCFLAGS], [CFLAGS], [1], [LTCC compiler flags])dnl _LT_TAGDECL([CC], [compiler], [1], [A language specific compiler])dnl _LT_TAGDECL([with_gcc], [GCC], [0], [Is the compiler the GNU compiler?])dnl # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC ])# _LT_TAG_COMPILER # _LT_COMPILER_BOILERPLATE # ------------------------ # Check for compiler boilerplate output or warnings with # the simple compiler test code. m4_defun([_LT_COMPILER_BOILERPLATE], [m4_require([_LT_DECL_SED])dnl ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" >conftest.$ac_ext eval "$ac_compile" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_compiler_boilerplate=`cat conftest.err` $RM conftest* ])# _LT_COMPILER_BOILERPLATE # _LT_LINKER_BOILERPLATE # ---------------------- # Check for linker boilerplate output or warnings with # the simple link test code. m4_defun([_LT_LINKER_BOILERPLATE], [m4_require([_LT_DECL_SED])dnl ac_outfile=conftest.$ac_objext echo "$lt_simple_link_test_code" >conftest.$ac_ext eval "$ac_link" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_linker_boilerplate=`cat conftest.err` $RM -r conftest* ])# _LT_LINKER_BOILERPLATE # _LT_REQUIRED_DARWIN_CHECKS # ------------------------- m4_defun_once([_LT_REQUIRED_DARWIN_CHECKS],[ case $host_os in rhapsody* | darwin*) AC_CHECK_TOOL([DSYMUTIL], [dsymutil], [:]) AC_CHECK_TOOL([NMEDIT], [nmedit], [:]) AC_CHECK_TOOL([LIPO], [lipo], [:]) AC_CHECK_TOOL([OTOOL], [otool], [:]) AC_CHECK_TOOL([OTOOL64], [otool64], [:]) _LT_DECL([], [DSYMUTIL], [1], [Tool to manipulate archived DWARF debug symbol files on Mac OS X]) _LT_DECL([], [NMEDIT], [1], [Tool to change global to local symbols on Mac OS X]) _LT_DECL([], [LIPO], [1], [Tool to manipulate fat objects and archives on Mac OS X]) _LT_DECL([], [OTOOL], [1], [ldd/readelf like tool for Mach-O binaries on Mac OS X]) _LT_DECL([], [OTOOL64], [1], [ldd/readelf like tool for 64 bit Mach-O binaries on Mac OS X 10.4]) AC_CACHE_CHECK([for -single_module linker flag],[lt_cv_apple_cc_single_mod], [lt_cv_apple_cc_single_mod=no if test -z "${LT_MULTI_MODULE}"; then # By default we will add the -single_module flag. You can override # by either setting the environment variable LT_MULTI_MODULE # non-empty at configure time, or by adding -multi_module to the # link flags. rm -rf libconftest.dylib* echo "int foo(void){return 1;}" > conftest.c echo "$LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c 2>conftest.err _lt_result=$? # If there is a non-empty error log, and "single_module" # appears in it, assume the flag caused a linker warning if test -s conftest.err && $GREP single_module conftest.err; then cat conftest.err >&AS_MESSAGE_LOG_FD # Otherwise, if the output was created with a 0 exit code from # the compiler, it worked. elif test -f libconftest.dylib && test $_lt_result -eq 0; then lt_cv_apple_cc_single_mod=yes else cat conftest.err >&AS_MESSAGE_LOG_FD fi rm -rf libconftest.dylib* rm -f conftest.* fi]) AC_CACHE_CHECK([for -exported_symbols_list linker flag], [lt_cv_ld_exported_symbols_list], [lt_cv_ld_exported_symbols_list=no save_LDFLAGS=$LDFLAGS echo "_main" > conftest.sym LDFLAGS="$LDFLAGS -Wl,-exported_symbols_list,conftest.sym" AC_LINK_IFELSE([AC_LANG_PROGRAM([],[])], [lt_cv_ld_exported_symbols_list=yes], [lt_cv_ld_exported_symbols_list=no]) LDFLAGS="$save_LDFLAGS" ]) AC_CACHE_CHECK([for -force_load linker flag],[lt_cv_ld_force_load], [lt_cv_ld_force_load=no cat > conftest.c << _LT_EOF int forced_loaded() { return 2;} _LT_EOF echo "$LTCC $LTCFLAGS -c -o conftest.o conftest.c" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS -c -o conftest.o conftest.c 2>&AS_MESSAGE_LOG_FD echo "$AR cru libconftest.a conftest.o" >&AS_MESSAGE_LOG_FD $AR cru libconftest.a conftest.o 2>&AS_MESSAGE_LOG_FD echo "$RANLIB libconftest.a" >&AS_MESSAGE_LOG_FD $RANLIB libconftest.a 2>&AS_MESSAGE_LOG_FD cat > conftest.c << _LT_EOF int main() { return 0;} _LT_EOF echo "$LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a 2>conftest.err _lt_result=$? if test -s conftest.err && $GREP force_load conftest.err; then cat conftest.err >&AS_MESSAGE_LOG_FD elif test -f conftest && test $_lt_result -eq 0 && $GREP forced_load conftest >/dev/null 2>&1 ; then lt_cv_ld_force_load=yes else cat conftest.err >&AS_MESSAGE_LOG_FD fi rm -f conftest.err libconftest.a conftest conftest.c rm -rf conftest.dSYM ]) case $host_os in rhapsody* | darwin1.[[012]]) _lt_dar_allow_undefined='${wl}-undefined ${wl}suppress' ;; darwin1.*) _lt_dar_allow_undefined='${wl}-flat_namespace ${wl}-undefined ${wl}suppress' ;; darwin*) # darwin 5.x on # if running on 10.5 or later, the deployment target defaults # to the OS version, if on x86, and 10.4, the deployment # target defaults to 10.4. Don't you love it? case ${MACOSX_DEPLOYMENT_TARGET-10.0},$host in 10.0,*86*-darwin8*|10.0,*-darwin[[91]]*) _lt_dar_allow_undefined='${wl}-undefined ${wl}dynamic_lookup' ;; 10.[[012]]*) _lt_dar_allow_undefined='${wl}-flat_namespace ${wl}-undefined ${wl}suppress' ;; 10.*) _lt_dar_allow_undefined='${wl}-undefined ${wl}dynamic_lookup' ;; esac ;; esac if test "$lt_cv_apple_cc_single_mod" = "yes"; then _lt_dar_single_mod='$single_module' fi if test "$lt_cv_ld_exported_symbols_list" = "yes"; then _lt_dar_export_syms=' ${wl}-exported_symbols_list,$output_objdir/${libname}-symbols.expsym' else _lt_dar_export_syms='~$NMEDIT -s $output_objdir/${libname}-symbols.expsym ${lib}' fi if test "$DSYMUTIL" != ":" && test "$lt_cv_ld_force_load" = "no"; then _lt_dsymutil='~$DSYMUTIL $lib || :' else _lt_dsymutil= fi ;; esac ]) # _LT_DARWIN_LINKER_FEATURES([TAG]) # --------------------------------- # Checks for linker and compiler features on darwin m4_defun([_LT_DARWIN_LINKER_FEATURES], [ m4_require([_LT_REQUIRED_DARWIN_CHECKS]) _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported if test "$lt_cv_ld_force_load" = "yes"; then _LT_TAGVAR(whole_archive_flag_spec, $1)='`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience ${wl}-force_load,$conv\"; done; func_echo_all \"$new_convenience\"`' m4_case([$1], [F77], [_LT_TAGVAR(compiler_needs_object, $1)=yes], [FC], [_LT_TAGVAR(compiler_needs_object, $1)=yes]) else _LT_TAGVAR(whole_archive_flag_spec, $1)='' fi _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)="$_lt_dar_allow_undefined" case $cc_basename in ifort*) _lt_dar_can_shared=yes ;; *) _lt_dar_can_shared=$GCC ;; esac if test "$_lt_dar_can_shared" = "yes"; then output_verbose_link_cmd=func_echo_all _LT_TAGVAR(archive_cmds, $1)="\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod${_lt_dsymutil}" _LT_TAGVAR(module_cmds, $1)="\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags${_lt_dsymutil}" _LT_TAGVAR(archive_expsym_cmds, $1)="sed 's,^,_,' < \$export_symbols > \$output_objdir/\${libname}-symbols.expsym~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring ${_lt_dar_single_mod}${_lt_dar_export_syms}${_lt_dsymutil}" _LT_TAGVAR(module_expsym_cmds, $1)="sed -e 's,^,_,' < \$export_symbols > \$output_objdir/\${libname}-symbols.expsym~\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags${_lt_dar_export_syms}${_lt_dsymutil}" m4_if([$1], [CXX], [ if test "$lt_cv_apple_cc_single_mod" != "yes"; then _LT_TAGVAR(archive_cmds, $1)="\$CC -r -keep_private_externs -nostdlib -o \${lib}-master.o \$libobjs~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \${lib}-master.o \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring${_lt_dsymutil}" _LT_TAGVAR(archive_expsym_cmds, $1)="sed 's,^,_,' < \$export_symbols > \$output_objdir/\${libname}-symbols.expsym~\$CC -r -keep_private_externs -nostdlib -o \${lib}-master.o \$libobjs~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \${lib}-master.o \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring${_lt_dar_export_syms}${_lt_dsymutil}" fi ],[]) else _LT_TAGVAR(ld_shlibs, $1)=no fi ]) # _LT_SYS_MODULE_PATH_AIX([TAGNAME]) # ---------------------------------- # Links a minimal program and checks the executable # for the system default hardcoded library path. In most cases, # this is /usr/lib:/lib, but when the MPI compilers are used # the location of the communication and MPI libs are included too. # If we don't find anything, use the default library path according # to the aix ld manual. # Store the results from the different compilers for each TAGNAME. # Allow to override them for all tags through lt_cv_aix_libpath. m4_defun([_LT_SYS_MODULE_PATH_AIX], [m4_require([_LT_DECL_SED])dnl if test "${lt_cv_aix_libpath+set}" = set; then aix_libpath=$lt_cv_aix_libpath else AC_CACHE_VAL([_LT_TAGVAR([lt_cv_aix_libpath_], [$1])], [AC_LINK_IFELSE([AC_LANG_PROGRAM],[ lt_aix_libpath_sed='[ /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }]' _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$_LT_TAGVAR([lt_cv_aix_libpath_], [$1])"; then _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi],[]) if test -z "$_LT_TAGVAR([lt_cv_aix_libpath_], [$1])"; then _LT_TAGVAR([lt_cv_aix_libpath_], [$1])="/usr/lib:/lib" fi ]) aix_libpath=$_LT_TAGVAR([lt_cv_aix_libpath_], [$1]) fi ])# _LT_SYS_MODULE_PATH_AIX # _LT_SHELL_INIT(ARG) # ------------------- m4_define([_LT_SHELL_INIT], [m4_divert_text([M4SH-INIT], [$1 ])])# _LT_SHELL_INIT # _LT_PROG_ECHO_BACKSLASH # ----------------------- # Find how we can fake an echo command that does not interpret backslash. # In particular, with Autoconf 2.60 or later we add some code to the start # of the generated configure script which will find a shell with a builtin # printf (which we can use as an echo command). m4_defun([_LT_PROG_ECHO_BACKSLASH], [ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO AC_MSG_CHECKING([how to print strings]) # Test print first, because it will be a builtin if present. if test "X`( print -r -- -n ) 2>/dev/null`" = X-n && \ test "X`print -r -- $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='print -r --' elif test "X`printf %s $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='printf %s\n' else # Use this function as a fallback that always works. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $[]1 _LTECHO_EOF' } ECHO='func_fallback_echo' fi # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "$*" } case "$ECHO" in printf*) AC_MSG_RESULT([printf]) ;; print*) AC_MSG_RESULT([print -r]) ;; *) AC_MSG_RESULT([cat]) ;; esac m4_ifdef([_AS_DETECT_SUGGESTED], [_AS_DETECT_SUGGESTED([ test -n "${ZSH_VERSION+set}${BASH_VERSION+set}" || ( ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO PATH=/empty FPATH=/empty; export PATH FPATH test "X`printf %s $ECHO`" = "X$ECHO" \ || test "X`print -r -- $ECHO`" = "X$ECHO" )])]) _LT_DECL([], [SHELL], [1], [Shell to use when invoking shell scripts]) _LT_DECL([], [ECHO], [1], [An echo program that protects backslashes]) ])# _LT_PROG_ECHO_BACKSLASH # _LT_WITH_SYSROOT # ---------------- AC_DEFUN([_LT_WITH_SYSROOT], [AC_MSG_CHECKING([for sysroot]) AC_ARG_WITH([sysroot], [ --with-sysroot[=DIR] Search for dependent libraries within DIR (or the compiler's sysroot if not specified).], [], [with_sysroot=no]) dnl lt_sysroot will always be passed unquoted. We quote it here dnl in case the user passed a directory name. lt_sysroot= case ${with_sysroot} in #( yes) if test "$GCC" = yes; then lt_sysroot=`$CC --print-sysroot 2>/dev/null` fi ;; #( /*) lt_sysroot=`echo "$with_sysroot" | sed -e "$sed_quote_subst"` ;; #( no|'') ;; #( *) AC_MSG_RESULT([${with_sysroot}]) AC_MSG_ERROR([The sysroot must be an absolute path.]) ;; esac AC_MSG_RESULT([${lt_sysroot:-no}]) _LT_DECL([], [lt_sysroot], [0], [The root where to search for ]dnl [dependent libraries, and in which our libraries should be installed.])]) # _LT_ENABLE_LOCK # --------------- m4_defun([_LT_ENABLE_LOCK], [AC_ARG_ENABLE([libtool-lock], [AS_HELP_STRING([--disable-libtool-lock], [avoid locking (might break parallel builds)])]) test "x$enable_libtool_lock" != xno && enable_libtool_lock=yes # Some flags need to be propagated to the compiler or linker for good # libtool support. case $host in ia64-*-hpux*) # Find out which ABI we are using. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.$ac_objext` in *ELF-32*) HPUX_IA64_MODE="32" ;; *ELF-64*) HPUX_IA64_MODE="64" ;; esac fi rm -rf conftest* ;; *-*-irix6*) # Find out which ABI we are using. echo '[#]line '$LINENO' "configure"' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then if test "$lt_cv_prog_gnu_ld" = yes; then case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -melf32bsmip" ;; *N32*) LD="${LD-ld} -melf32bmipn32" ;; *64-bit*) LD="${LD-ld} -melf64bmip" ;; esac else case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -32" ;; *N32*) LD="${LD-ld} -n32" ;; *64-bit*) LD="${LD-ld} -64" ;; esac fi fi rm -rf conftest* ;; x86_64-*kfreebsd*-gnu|x86_64-*linux*|powerpc*-*linux*| \ s390*-*linux*|s390*-*tpf*|sparc*-*linux*) # Find out which ABI we are using. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.o` in *32-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_i386_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_i386" ;; powerpc64le-*linux*) LD="${LD-ld} -m elf32lppclinux" ;; powerpc64-*linux*) LD="${LD-ld} -m elf32ppclinux" ;; s390x-*linux*) LD="${LD-ld} -m elf_s390" ;; sparc64-*linux*) LD="${LD-ld} -m elf32_sparc" ;; esac ;; *64-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_x86_64_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_x86_64" ;; powerpcle-*linux*) LD="${LD-ld} -m elf64lppc" ;; powerpc-*linux*) LD="${LD-ld} -m elf64ppc" ;; s390*-*linux*|s390*-*tpf*) LD="${LD-ld} -m elf64_s390" ;; sparc*-*linux*) LD="${LD-ld} -m elf64_sparc" ;; esac ;; esac fi rm -rf conftest* ;; *-*-sco3.2v5*) # On SCO OpenServer 5, we need -belf to get full-featured binaries. SAVE_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS -belf" AC_CACHE_CHECK([whether the C compiler needs -belf], lt_cv_cc_needs_belf, [AC_LANG_PUSH(C) AC_LINK_IFELSE([AC_LANG_PROGRAM([[]],[[]])],[lt_cv_cc_needs_belf=yes],[lt_cv_cc_needs_belf=no]) AC_LANG_POP]) if test x"$lt_cv_cc_needs_belf" != x"yes"; then # this is probably gcc 2.8.0, egcs 1.0 or newer; no need for -belf CFLAGS="$SAVE_CFLAGS" fi ;; *-*solaris*) # Find out which ABI we are using. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.o` in *64-bit*) case $lt_cv_prog_gnu_ld in yes*) case $host in i?86-*-solaris*) LD="${LD-ld} -m elf_x86_64" ;; sparc*-*-solaris*) LD="${LD-ld} -m elf64_sparc" ;; esac # GNU ld 2.21 introduced _sol2 emulations. Use them if available. if ${LD-ld} -V | grep _sol2 >/dev/null 2>&1; then LD="${LD-ld}_sol2" fi ;; *) if ${LD-ld} -64 -r -o conftest2.o conftest.o >/dev/null 2>&1; then LD="${LD-ld} -64" fi ;; esac ;; esac fi rm -rf conftest* ;; esac need_locks="$enable_libtool_lock" ])# _LT_ENABLE_LOCK # _LT_PROG_AR # ----------- m4_defun([_LT_PROG_AR], [AC_CHECK_TOOLS(AR, [ar], false) : ${AR=ar} : ${AR_FLAGS=cru} _LT_DECL([], [AR], [1], [The archiver]) _LT_DECL([], [AR_FLAGS], [1], [Flags to create an archive]) AC_CACHE_CHECK([for archiver @FILE support], [lt_cv_ar_at_file], [lt_cv_ar_at_file=no AC_COMPILE_IFELSE([AC_LANG_PROGRAM], [echo conftest.$ac_objext > conftest.lst lt_ar_try='$AR $AR_FLAGS libconftest.a @conftest.lst >&AS_MESSAGE_LOG_FD' AC_TRY_EVAL([lt_ar_try]) if test "$ac_status" -eq 0; then # Ensure the archiver fails upon bogus file names. rm -f conftest.$ac_objext libconftest.a AC_TRY_EVAL([lt_ar_try]) if test "$ac_status" -ne 0; then lt_cv_ar_at_file=@ fi fi rm -f conftest.* libconftest.a ]) ]) if test "x$lt_cv_ar_at_file" = xno; then archiver_list_spec= else archiver_list_spec=$lt_cv_ar_at_file fi _LT_DECL([], [archiver_list_spec], [1], [How to feed a file listing to the archiver]) ])# _LT_PROG_AR # _LT_CMD_OLD_ARCHIVE # ------------------- m4_defun([_LT_CMD_OLD_ARCHIVE], [_LT_PROG_AR AC_CHECK_TOOL(STRIP, strip, :) test -z "$STRIP" && STRIP=: _LT_DECL([], [STRIP], [1], [A symbol stripping program]) AC_CHECK_TOOL(RANLIB, ranlib, :) test -z "$RANLIB" && RANLIB=: _LT_DECL([], [RANLIB], [1], [Commands used to install an old-style archive]) # Determine commands to create old-style static archives. old_archive_cmds='$AR $AR_FLAGS $oldlib$oldobjs' old_postinstall_cmds='chmod 644 $oldlib' old_postuninstall_cmds= if test -n "$RANLIB"; then case $host_os in openbsd*) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB -t \$tool_oldlib" ;; *) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB \$tool_oldlib" ;; esac old_archive_cmds="$old_archive_cmds~\$RANLIB \$tool_oldlib" fi case $host_os in darwin*) lock_old_archive_extraction=yes ;; *) lock_old_archive_extraction=no ;; esac _LT_DECL([], [old_postinstall_cmds], [2]) _LT_DECL([], [old_postuninstall_cmds], [2]) _LT_TAGDECL([], [old_archive_cmds], [2], [Commands used to build an old-style archive]) _LT_DECL([], [lock_old_archive_extraction], [0], [Whether to use a lock for old archive extraction]) ])# _LT_CMD_OLD_ARCHIVE # _LT_COMPILER_OPTION(MESSAGE, VARIABLE-NAME, FLAGS, # [OUTPUT-FILE], [ACTION-SUCCESS], [ACTION-FAILURE]) # ---------------------------------------------------------------- # Check whether the given compiler option works AC_DEFUN([_LT_COMPILER_OPTION], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_SED])dnl AC_CACHE_CHECK([$1], [$2], [$2=no m4_if([$4], , [ac_outfile=conftest.$ac_objext], [ac_outfile=$4]) echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="$3" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [[^ ]]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&AS_MESSAGE_LOG_FD echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then $2=yes fi fi $RM conftest* ]) if test x"[$]$2" = xyes; then m4_if([$5], , :, [$5]) else m4_if([$6], , :, [$6]) fi ])# _LT_COMPILER_OPTION # Old name: AU_ALIAS([AC_LIBTOOL_COMPILER_OPTION], [_LT_COMPILER_OPTION]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_COMPILER_OPTION], []) # _LT_LINKER_OPTION(MESSAGE, VARIABLE-NAME, FLAGS, # [ACTION-SUCCESS], [ACTION-FAILURE]) # ---------------------------------------------------- # Check whether the given linker option works AC_DEFUN([_LT_LINKER_OPTION], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_SED])dnl AC_CACHE_CHECK([$1], [$2], [$2=no save_LDFLAGS="$LDFLAGS" LDFLAGS="$LDFLAGS $3" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&AS_MESSAGE_LOG_FD $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then $2=yes fi else $2=yes fi fi $RM -r conftest* LDFLAGS="$save_LDFLAGS" ]) if test x"[$]$2" = xyes; then m4_if([$4], , :, [$4]) else m4_if([$5], , :, [$5]) fi ])# _LT_LINKER_OPTION # Old name: AU_ALIAS([AC_LIBTOOL_LINKER_OPTION], [_LT_LINKER_OPTION]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_LINKER_OPTION], []) # LT_CMD_MAX_LEN #--------------- AC_DEFUN([LT_CMD_MAX_LEN], [AC_REQUIRE([AC_CANONICAL_HOST])dnl # find the maximum length of command line arguments AC_MSG_CHECKING([the maximum length of command line arguments]) AC_CACHE_VAL([lt_cv_sys_max_cmd_len], [dnl i=0 teststring="ABCD" case $build_os in msdosdjgpp*) # On DJGPP, this test can blow up pretty badly due to problems in libc # (any single argument exceeding 2000 bytes causes a buffer overrun # during glob expansion). Even if it were fixed, the result of this # check would be larger than it should be. lt_cv_sys_max_cmd_len=12288; # 12K is about right ;; gnu*) # Under GNU Hurd, this test is not required because there is # no limit to the length of command line arguments. # Libtool will interpret -1 as no limit whatsoever lt_cv_sys_max_cmd_len=-1; ;; cygwin* | mingw* | cegcc*) # On Win9x/ME, this test blows up -- it succeeds, but takes # about 5 minutes as the teststring grows exponentially. # Worse, since 9x/ME are not pre-emptively multitasking, # you end up with a "frozen" computer, even though with patience # the test eventually succeeds (with a max line length of 256k). # Instead, let's just punt: use the minimum linelength reported by # all of the supported platforms: 8192 (on NT/2K/XP). lt_cv_sys_max_cmd_len=8192; ;; mint*) # On MiNT this can take a long time and run out of memory. lt_cv_sys_max_cmd_len=8192; ;; amigaos*) # On AmigaOS with pdksh, this test takes hours, literally. # So we just punt and use a minimum line length of 8192. lt_cv_sys_max_cmd_len=8192; ;; netbsd* | freebsd* | openbsd* | darwin* | dragonfly*) # This has been around since 386BSD, at least. Likely further. if test -x /sbin/sysctl; then lt_cv_sys_max_cmd_len=`/sbin/sysctl -n kern.argmax` elif test -x /usr/sbin/sysctl; then lt_cv_sys_max_cmd_len=`/usr/sbin/sysctl -n kern.argmax` else lt_cv_sys_max_cmd_len=65536 # usable default for all BSDs fi # And add a safety zone lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` ;; interix*) # We know the value 262144 and hardcode it with a safety zone (like BSD) lt_cv_sys_max_cmd_len=196608 ;; os2*) # The test takes a long time on OS/2. lt_cv_sys_max_cmd_len=8192 ;; osf*) # Dr. Hans Ekkehard Plesser reports seeing a kernel panic running configure # due to this test when exec_disable_arg_limit is 1 on Tru64. It is not # nice to cause kernel panics so lets avoid the loop below. # First set a reasonable default. lt_cv_sys_max_cmd_len=16384 # if test -x /sbin/sysconfig; then case `/sbin/sysconfig -q proc exec_disable_arg_limit` in *1*) lt_cv_sys_max_cmd_len=-1 ;; esac fi ;; sco3.2v5*) lt_cv_sys_max_cmd_len=102400 ;; sysv5* | sco5v6* | sysv4.2uw2*) kargmax=`grep ARG_MAX /etc/conf/cf.d/stune 2>/dev/null` if test -n "$kargmax"; then lt_cv_sys_max_cmd_len=`echo $kargmax | sed 's/.*[[ ]]//'` else lt_cv_sys_max_cmd_len=32768 fi ;; *) lt_cv_sys_max_cmd_len=`(getconf ARG_MAX) 2> /dev/null` if test -n "$lt_cv_sys_max_cmd_len"; then lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` else # Make teststring a little bigger before we do anything with it. # a 1K string should be a reasonable start. for i in 1 2 3 4 5 6 7 8 ; do teststring=$teststring$teststring done SHELL=${SHELL-${CONFIG_SHELL-/bin/sh}} # If test is not a shell built-in, we'll probably end up computing a # maximum length that is only half of the actual maximum length, but # we can't tell. while { test "X"`env echo "$teststring$teststring" 2>/dev/null` \ = "X$teststring$teststring"; } >/dev/null 2>&1 && test $i != 17 # 1/2 MB should be enough do i=`expr $i + 1` teststring=$teststring$teststring done # Only check the string length outside the loop. lt_cv_sys_max_cmd_len=`expr "X$teststring" : ".*" 2>&1` teststring= # Add a significant safety factor because C++ compilers can tack on # massive amounts of additional arguments before passing them to the # linker. It appears as though 1/2 is a usable value. lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 2` fi ;; esac ]) if test -n $lt_cv_sys_max_cmd_len ; then AC_MSG_RESULT($lt_cv_sys_max_cmd_len) else AC_MSG_RESULT(none) fi max_cmd_len=$lt_cv_sys_max_cmd_len _LT_DECL([], [max_cmd_len], [0], [What is the maximum length of a command?]) ])# LT_CMD_MAX_LEN # Old name: AU_ALIAS([AC_LIBTOOL_SYS_MAX_CMD_LEN], [LT_CMD_MAX_LEN]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_SYS_MAX_CMD_LEN], []) # _LT_HEADER_DLFCN # ---------------- m4_defun([_LT_HEADER_DLFCN], [AC_CHECK_HEADERS([dlfcn.h], [], [], [AC_INCLUDES_DEFAULT])dnl ])# _LT_HEADER_DLFCN # _LT_TRY_DLOPEN_SELF (ACTION-IF-TRUE, ACTION-IF-TRUE-W-USCORE, # ACTION-IF-FALSE, ACTION-IF-CROSS-COMPILING) # ---------------------------------------------------------------- m4_defun([_LT_TRY_DLOPEN_SELF], [m4_require([_LT_HEADER_DLFCN])dnl if test "$cross_compiling" = yes; then : [$4] else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF [#line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisbility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined(__GNUC__) && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; }] _LT_EOF if AC_TRY_EVAL(ac_link) && test -s conftest${ac_exeext} 2>/dev/null; then (./conftest; exit; ) >&AS_MESSAGE_LOG_FD 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) $1 ;; x$lt_dlneed_uscore) $2 ;; x$lt_dlunknown|x*) $3 ;; esac else : # compilation failed $3 fi fi rm -fr conftest* ])# _LT_TRY_DLOPEN_SELF # LT_SYS_DLOPEN_SELF # ------------------ AC_DEFUN([LT_SYS_DLOPEN_SELF], [m4_require([_LT_HEADER_DLFCN])dnl if test "x$enable_dlopen" != xyes; then enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown else lt_cv_dlopen=no lt_cv_dlopen_libs= case $host_os in beos*) lt_cv_dlopen="load_add_on" lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ;; mingw* | pw32* | cegcc*) lt_cv_dlopen="LoadLibrary" lt_cv_dlopen_libs= ;; cygwin*) lt_cv_dlopen="dlopen" lt_cv_dlopen_libs= ;; darwin*) # if libdl is installed we need to link against it AC_CHECK_LIB([dl], [dlopen], [lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-ldl"],[ lt_cv_dlopen="dyld" lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ]) ;; *) AC_CHECK_FUNC([shl_load], [lt_cv_dlopen="shl_load"], [AC_CHECK_LIB([dld], [shl_load], [lt_cv_dlopen="shl_load" lt_cv_dlopen_libs="-ldld"], [AC_CHECK_FUNC([dlopen], [lt_cv_dlopen="dlopen"], [AC_CHECK_LIB([dl], [dlopen], [lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-ldl"], [AC_CHECK_LIB([svld], [dlopen], [lt_cv_dlopen="dlopen" lt_cv_dlopen_libs="-lsvld"], [AC_CHECK_LIB([dld], [dld_link], [lt_cv_dlopen="dld_link" lt_cv_dlopen_libs="-ldld"]) ]) ]) ]) ]) ]) ;; esac if test "x$lt_cv_dlopen" != xno; then enable_dlopen=yes else enable_dlopen=no fi case $lt_cv_dlopen in dlopen) save_CPPFLAGS="$CPPFLAGS" test "x$ac_cv_header_dlfcn_h" = xyes && CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" save_LDFLAGS="$LDFLAGS" wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" save_LIBS="$LIBS" LIBS="$lt_cv_dlopen_libs $LIBS" AC_CACHE_CHECK([whether a program can dlopen itself], lt_cv_dlopen_self, [dnl _LT_TRY_DLOPEN_SELF( lt_cv_dlopen_self=yes, lt_cv_dlopen_self=yes, lt_cv_dlopen_self=no, lt_cv_dlopen_self=cross) ]) if test "x$lt_cv_dlopen_self" = xyes; then wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $lt_prog_compiler_static\" AC_CACHE_CHECK([whether a statically linked program can dlopen itself], lt_cv_dlopen_self_static, [dnl _LT_TRY_DLOPEN_SELF( lt_cv_dlopen_self_static=yes, lt_cv_dlopen_self_static=yes, lt_cv_dlopen_self_static=no, lt_cv_dlopen_self_static=cross) ]) fi CPPFLAGS="$save_CPPFLAGS" LDFLAGS="$save_LDFLAGS" LIBS="$save_LIBS" ;; esac case $lt_cv_dlopen_self in yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; *) enable_dlopen_self=unknown ;; esac case $lt_cv_dlopen_self_static in yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; *) enable_dlopen_self_static=unknown ;; esac fi _LT_DECL([dlopen_support], [enable_dlopen], [0], [Whether dlopen is supported]) _LT_DECL([dlopen_self], [enable_dlopen_self], [0], [Whether dlopen of programs is supported]) _LT_DECL([dlopen_self_static], [enable_dlopen_self_static], [0], [Whether dlopen of statically linked programs is supported]) ])# LT_SYS_DLOPEN_SELF # Old name: AU_ALIAS([AC_LIBTOOL_DLOPEN_SELF], [LT_SYS_DLOPEN_SELF]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_DLOPEN_SELF], []) # _LT_COMPILER_C_O([TAGNAME]) # --------------------------- # Check to see if options -c and -o are simultaneously supported by compiler. # This macro does not hard code the compiler like AC_PROG_CC_C_O. m4_defun([_LT_COMPILER_C_O], [m4_require([_LT_DECL_SED])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_TAG_COMPILER])dnl AC_CACHE_CHECK([if $compiler supports -c -o file.$ac_objext], [_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)], [_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [[^ ]]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&AS_MESSAGE_LOG_FD echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then _LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=yes fi fi chmod u+w . 2>&AS_MESSAGE_LOG_FD $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* ]) _LT_TAGDECL([compiler_c_o], [lt_cv_prog_compiler_c_o], [1], [Does compiler simultaneously support -c and -o options?]) ])# _LT_COMPILER_C_O # _LT_COMPILER_FILE_LOCKS([TAGNAME]) # ---------------------------------- # Check to see if we can do hard links to lock some files if needed m4_defun([_LT_COMPILER_FILE_LOCKS], [m4_require([_LT_ENABLE_LOCK])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl _LT_COMPILER_C_O([$1]) hard_links="nottested" if test "$_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)" = no && test "$need_locks" != no; then # do not overwrite the value of need_locks provided by the user AC_MSG_CHECKING([if we can lock with hard links]) hard_links=yes $RM conftest* ln conftest.a conftest.b 2>/dev/null && hard_links=no touch conftest.a ln conftest.a conftest.b 2>&5 || hard_links=no ln conftest.a conftest.b 2>/dev/null && hard_links=no AC_MSG_RESULT([$hard_links]) if test "$hard_links" = no; then AC_MSG_WARN([`$CC' does not support `-c -o', so `make -j' may be unsafe]) need_locks=warn fi else need_locks=no fi _LT_DECL([], [need_locks], [1], [Must we lock files when doing compilation?]) ])# _LT_COMPILER_FILE_LOCKS # _LT_CHECK_OBJDIR # ---------------- m4_defun([_LT_CHECK_OBJDIR], [AC_CACHE_CHECK([for objdir], [lt_cv_objdir], [rm -f .libs 2>/dev/null mkdir .libs 2>/dev/null if test -d .libs; then lt_cv_objdir=.libs else # MS-DOS does not allow filenames that begin with a dot. lt_cv_objdir=_libs fi rmdir .libs 2>/dev/null]) objdir=$lt_cv_objdir _LT_DECL([], [objdir], [0], [The name of the directory that contains temporary libtool files])dnl m4_pattern_allow([LT_OBJDIR])dnl AC_DEFINE_UNQUOTED(LT_OBJDIR, "$lt_cv_objdir/", [Define to the sub-directory in which libtool stores uninstalled libraries.]) ])# _LT_CHECK_OBJDIR # _LT_LINKER_HARDCODE_LIBPATH([TAGNAME]) # -------------------------------------- # Check hardcoding attributes. m4_defun([_LT_LINKER_HARDCODE_LIBPATH], [AC_MSG_CHECKING([how to hardcode library paths into programs]) _LT_TAGVAR(hardcode_action, $1)= if test -n "$_LT_TAGVAR(hardcode_libdir_flag_spec, $1)" || test -n "$_LT_TAGVAR(runpath_var, $1)" || test "X$_LT_TAGVAR(hardcode_automatic, $1)" = "Xyes" ; then # We can hardcode non-existent directories. if test "$_LT_TAGVAR(hardcode_direct, $1)" != no && # If the only mechanism to avoid hardcoding is shlibpath_var, we # have to relink, otherwise we might link with an installed library # when we should be linking with a yet-to-be-installed one ## test "$_LT_TAGVAR(hardcode_shlibpath_var, $1)" != no && test "$_LT_TAGVAR(hardcode_minus_L, $1)" != no; then # Linking always hardcodes the temporary library directory. _LT_TAGVAR(hardcode_action, $1)=relink else # We can link without hardcoding, and we can hardcode nonexisting dirs. _LT_TAGVAR(hardcode_action, $1)=immediate fi else # We cannot hardcode anything, or else we can only hardcode existing # directories. _LT_TAGVAR(hardcode_action, $1)=unsupported fi AC_MSG_RESULT([$_LT_TAGVAR(hardcode_action, $1)]) if test "$_LT_TAGVAR(hardcode_action, $1)" = relink || test "$_LT_TAGVAR(inherit_rpath, $1)" = yes; then # Fast installation is not supported enable_fast_install=no elif test "$shlibpath_overrides_runpath" = yes || test "$enable_shared" = no; then # Fast installation is not necessary enable_fast_install=needless fi _LT_TAGDECL([], [hardcode_action], [0], [How to hardcode a shared library path into an executable]) ])# _LT_LINKER_HARDCODE_LIBPATH # _LT_CMD_STRIPLIB # ---------------- m4_defun([_LT_CMD_STRIPLIB], [m4_require([_LT_DECL_EGREP]) striplib= old_striplib= AC_MSG_CHECKING([whether stripping libraries is possible]) if test -n "$STRIP" && $STRIP -V 2>&1 | $GREP "GNU strip" >/dev/null; then test -z "$old_striplib" && old_striplib="$STRIP --strip-debug" test -z "$striplib" && striplib="$STRIP --strip-unneeded" AC_MSG_RESULT([yes]) else # FIXME - insert some real tests, host_os isn't really good enough case $host_os in darwin*) if test -n "$STRIP" ; then striplib="$STRIP -x" old_striplib="$STRIP -S" AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) fi ;; *) AC_MSG_RESULT([no]) ;; esac fi _LT_DECL([], [old_striplib], [1], [Commands to strip libraries]) _LT_DECL([], [striplib], [1]) ])# _LT_CMD_STRIPLIB # _LT_SYS_DYNAMIC_LINKER([TAG]) # ----------------------------- # PORTME Fill in your ld.so characteristics m4_defun([_LT_SYS_DYNAMIC_LINKER], [AC_REQUIRE([AC_CANONICAL_HOST])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_OBJDUMP])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_CHECK_SHELL_FEATURES])dnl AC_MSG_CHECKING([dynamic linker characteristics]) m4_if([$1], [], [ if test "$GCC" = yes; then case $host_os in darwin*) lt_awk_arg="/^libraries:/,/LR/" ;; *) lt_awk_arg="/^libraries:/" ;; esac case $host_os in mingw* | cegcc*) lt_sed_strip_eq="s,=\([[A-Za-z]]:\),\1,g" ;; *) lt_sed_strip_eq="s,=/,/,g" ;; esac lt_search_path_spec=`$CC -print-search-dirs | awk $lt_awk_arg | $SED -e "s/^libraries://" -e $lt_sed_strip_eq` case $lt_search_path_spec in *\;*) # if the path contains ";" then we assume it to be the separator # otherwise default to the standard path separator (i.e. ":") - it is # assumed that no part of a normal pathname contains ";" but that should # okay in the real world where ";" in dirpaths is itself problematic. lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED 's/;/ /g'` ;; *) lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED "s/$PATH_SEPARATOR/ /g"` ;; esac # Ok, now we have the path, separated by spaces, we can step through it # and add multilib dir if necessary. lt_tmp_lt_search_path_spec= lt_multi_os_dir=`$CC $CPPFLAGS $CFLAGS $LDFLAGS -print-multi-os-directory 2>/dev/null` for lt_sys_path in $lt_search_path_spec; do if test -d "$lt_sys_path/$lt_multi_os_dir"; then lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path/$lt_multi_os_dir" else test -d "$lt_sys_path" && \ lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path" fi done lt_search_path_spec=`$ECHO "$lt_tmp_lt_search_path_spec" | awk ' BEGIN {RS=" "; FS="/|\n";} { lt_foo=""; lt_count=0; for (lt_i = NF; lt_i > 0; lt_i--) { if ($lt_i != "" && $lt_i != ".") { if ($lt_i == "..") { lt_count++; } else { if (lt_count == 0) { lt_foo="/" $lt_i lt_foo; } else { lt_count--; } } } } if (lt_foo != "") { lt_freq[[lt_foo]]++; } if (lt_freq[[lt_foo]] == 1) { print lt_foo; } }'` # AWK program above erroneously prepends '/' to C:/dos/paths # for these hosts. case $host_os in mingw* | cegcc*) lt_search_path_spec=`$ECHO "$lt_search_path_spec" |\ $SED 's,/\([[A-Za-z]]:\),\1,g'` ;; esac sys_lib_search_path_spec=`$ECHO "$lt_search_path_spec" | $lt_NL2SP` else sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" fi]) library_names_spec= libname_spec='lib$name' soname_spec= shrext_cmds=".so" postinstall_cmds= postuninstall_cmds= finish_cmds= finish_eval= shlibpath_var= shlibpath_overrides_runpath=unknown version_type=none dynamic_linker="$host_os ld.so" sys_lib_dlsearch_path_spec="/lib /usr/lib" need_lib_prefix=unknown hardcode_into_libs=no # when you set need_version to no, make sure it does not cause -set_version # flags to be left without arguments need_version=unknown case $host_os in aix3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix $libname.a' shlibpath_var=LIBPATH # AIX 3 has no versioning support, so we append a major version to the name. soname_spec='${libname}${release}${shared_ext}$major' ;; aix[[4-9]]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no hardcode_into_libs=yes if test "$host_cpu" = ia64; then # AIX 5 supports IA64 library_names_spec='${libname}${release}${shared_ext}$major ${libname}${release}${shared_ext}$versuffix $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH else # With GCC up to 2.95.x, collect2 would create an import file # for dependence libraries. The import file would start with # the line `#! .'. This would cause the generated library to # depend on `.', always an invalid library. This was fixed in # development snapshots of GCC prior to 3.0. case $host_os in aix4 | aix4.[[01]] | aix4.[[01]].*) if { echo '#if __GNUC__ > 2 || (__GNUC__ == 2 && __GNUC_MINOR__ >= 97)' echo ' yes ' echo '#endif'; } | ${CC} -E - | $GREP yes > /dev/null; then : else can_build_shared=no fi ;; esac # AIX (on Power*) has no versioning support, so currently we can not hardcode correct # soname into executable. Probably we can add versioning support to # collect2, so additional links can be useful in future. if test "$aix_use_runtimelinking" = yes; then # If using run time linking (on AIX 4.2 or later) use lib.so # instead of lib.a to let people know that these are not # typical AIX shared libraries. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' else # We preserve .a as extension for shared libraries through AIX4.2 # and later when we are not doing run time linking. library_names_spec='${libname}${release}.a $libname.a' soname_spec='${libname}${release}${shared_ext}$major' fi shlibpath_var=LIBPATH fi ;; amigaos*) case $host_cpu in powerpc) # Since July 2007 AmigaOS4 officially supports .so libraries. # When compiling the executable, add -use-dynld -Lsobjs: to the compileline. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' ;; m68k) library_names_spec='$libname.ixlibrary $libname.a' # Create ${libname}_ixlibrary.a entries in /sys/libs. finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`func_echo_all "$lib" | $SED '\''s%^.*/\([[^/]]*\)\.ixlibrary$%\1%'\''`; test $RM /sys/libs/${libname}_ixlibrary.a; $show "cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a"; cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a || exit 1; done' ;; esac ;; beos*) library_names_spec='${libname}${shared_ext}' dynamic_linker="$host_os ld.so" shlibpath_var=LIBRARY_PATH ;; bsdi[[45]]*) version_type=linux # correct to gnu/linux during the next big refactor need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" # the default ld.so.conf also contains /usr/contrib/lib and # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow # libtool to hard-code these into programs ;; cygwin* | mingw* | pw32* | cegcc*) version_type=windows shrext_cmds=".dll" need_version=no need_lib_prefix=no case $GCC,$cc_basename in yes,*) # gcc library_names_spec='$libname.dll.a' # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \${file}`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\${base_file}'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes case $host_os in cygwin*) # Cygwin DLLs use 'cyg' prefix rather than 'lib' soname_spec='`echo ${libname} | sed -e 's/^lib/cyg/'``echo ${release} | $SED -e 's/[[.]]/-/g'`${versuffix}${shared_ext}' m4_if([$1], [],[ sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/lib/w32api"]) ;; mingw* | cegcc*) # MinGW DLLs use traditional 'lib' prefix soname_spec='${libname}`echo ${release} | $SED -e 's/[[.]]/-/g'`${versuffix}${shared_ext}' ;; pw32*) # pw32 DLLs use 'pw' prefix rather than 'lib' library_names_spec='`echo ${libname} | sed -e 's/^lib/pw/'``echo ${release} | $SED -e 's/[[.]]/-/g'`${versuffix}${shared_ext}' ;; esac dynamic_linker='Win32 ld.exe' ;; *,cl*) # Native MSVC libname_spec='$name' soname_spec='${libname}`echo ${release} | $SED -e 's/[[.]]/-/g'`${versuffix}${shared_ext}' library_names_spec='${libname}.dll.lib' case $build_os in mingw*) sys_lib_search_path_spec= lt_save_ifs=$IFS IFS=';' for lt_path in $LIB do IFS=$lt_save_ifs # Let DOS variable expansion print the short 8.3 style file name. lt_path=`cd "$lt_path" 2>/dev/null && cmd //C "for %i in (".") do @echo %~si"` sys_lib_search_path_spec="$sys_lib_search_path_spec $lt_path" done IFS=$lt_save_ifs # Convert to MSYS style. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | sed -e 's|\\\\|/|g' -e 's| \\([[a-zA-Z]]\\):| /\\1|g' -e 's|^ ||'` ;; cygwin*) # Convert to unix form, then to dos form, then back to unix form # but this time dos style (no spaces!) so that the unix form looks # like /cygdrive/c/PROGRA~1:/cygdr... sys_lib_search_path_spec=`cygpath --path --unix "$LIB"` sys_lib_search_path_spec=`cygpath --path --dos "$sys_lib_search_path_spec" 2>/dev/null` sys_lib_search_path_spec=`cygpath --path --unix "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` ;; *) sys_lib_search_path_spec="$LIB" if $ECHO "$sys_lib_search_path_spec" | [$GREP ';[c-zC-Z]:/' >/dev/null]; then # It is most probably a Windows format PATH. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e 's/;/ /g'` else sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` fi # FIXME: find the short name or the path components, as spaces are # common. (e.g. "Program Files" -> "PROGRA~1") ;; esac # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \${file}`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\${base_file}'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes dynamic_linker='Win32 link.exe' ;; *) # Assume MSVC wrapper library_names_spec='${libname}`echo ${release} | $SED -e 's/[[.]]/-/g'`${versuffix}${shared_ext} $libname.lib' dynamic_linker='Win32 ld.exe' ;; esac # FIXME: first we should search . and the directory the executable is in shlibpath_var=PATH ;; darwin* | rhapsody*) dynamic_linker="$host_os dyld" version_type=darwin need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${major}$shared_ext ${libname}$shared_ext' soname_spec='${libname}${release}${major}$shared_ext' shlibpath_overrides_runpath=yes shlibpath_var=DYLD_LIBRARY_PATH shrext_cmds='`test .$module = .yes && echo .so || echo .dylib`' m4_if([$1], [],[ sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/local/lib"]) sys_lib_dlsearch_path_spec='/usr/local/lib /lib /usr/lib' ;; dgux*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname$shared_ext' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH ;; freebsd* | dragonfly*) # DragonFly does not have aout. When/if they implement a new # versioning mechanism, adjust this. if test -x /usr/bin/objformat; then objformat=`/usr/bin/objformat` else case $host_os in freebsd[[23]].*) objformat=aout ;; *) objformat=elf ;; esac fi version_type=freebsd-$objformat case $version_type in freebsd-elf*) library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext} $libname${shared_ext}' need_version=no need_lib_prefix=no ;; freebsd-*) library_names_spec='${libname}${release}${shared_ext}$versuffix $libname${shared_ext}$versuffix' need_version=yes ;; esac shlibpath_var=LD_LIBRARY_PATH case $host_os in freebsd2.*) shlibpath_overrides_runpath=yes ;; freebsd3.[[01]]* | freebsdelf3.[[01]]*) shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; freebsd3.[[2-9]]* | freebsdelf3.[[2-9]]* | \ freebsd4.[[0-5]] | freebsdelf4.[[0-5]] | freebsd4.1.1 | freebsdelf4.1.1) shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; *) # from 4.6 on, and DragonFly shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; esac ;; gnu*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}${major} ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; haiku*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no dynamic_linker="$host_os runtime_loader" library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}${major} ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LIBRARY_PATH shlibpath_overrides_runpath=yes sys_lib_dlsearch_path_spec='/boot/home/config/lib /boot/common/lib /boot/system/lib' hardcode_into_libs=yes ;; hpux9* | hpux10* | hpux11*) # Give a soname corresponding to the major version so that dld.sl refuses to # link against other versions. version_type=sunos need_lib_prefix=no need_version=no case $host_cpu in ia64*) shrext_cmds='.so' hardcode_into_libs=yes dynamic_linker="$host_os dld.so" shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' if test "X$HPUX_IA64_MODE" = X32; then sys_lib_search_path_spec="/usr/lib/hpux32 /usr/local/lib/hpux32 /usr/local/lib" else sys_lib_search_path_spec="/usr/lib/hpux64 /usr/local/lib/hpux64" fi sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; hppa*64*) shrext_cmds='.sl' hardcode_into_libs=yes dynamic_linker="$host_os dld.sl" shlibpath_var=LD_LIBRARY_PATH # How should we handle SHLIB_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' sys_lib_search_path_spec="/usr/lib/pa20_64 /usr/ccs/lib/pa20_64" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; *) shrext_cmds='.sl' dynamic_linker="$host_os dld.sl" shlibpath_var=SHLIB_PATH shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' ;; esac # HP-UX runs *really* slowly unless shared libraries are mode 555, ... postinstall_cmds='chmod 555 $lib' # or fails outright, so override atomically: install_override_mode=555 ;; interix[[3-9]]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' dynamic_linker='Interix 3.x ld.so.1 (PE, like ELF)' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; irix5* | irix6* | nonstopux*) case $host_os in nonstopux*) version_type=nonstopux ;; *) if test "$lt_cv_prog_gnu_ld" = yes; then version_type=linux # correct to gnu/linux during the next big refactor else version_type=irix fi ;; esac need_lib_prefix=no need_version=no soname_spec='${libname}${release}${shared_ext}$major' library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major ${libname}${release}${shared_ext} $libname${shared_ext}' case $host_os in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in # libtool.m4 will add one of these switches to LD *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= libmagic=32-bit;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 libmagic=64-bit;; *) libsuff= shlibsuff= libmagic=never-match;; esac ;; esac shlibpath_var=LD_LIBRARY${shlibsuff}_PATH shlibpath_overrides_runpath=no sys_lib_search_path_spec="/usr/lib${libsuff} /lib${libsuff} /usr/local/lib${libsuff}" sys_lib_dlsearch_path_spec="/usr/lib${libsuff} /lib${libsuff}" hardcode_into_libs=yes ;; # No shared lib support for Linux oldld, aout, or coff. linux*oldld* | linux*aout* | linux*coff*) dynamic_linker=no ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no # Some binutils ld are patched to set DT_RUNPATH AC_CACHE_VAL([lt_cv_shlibpath_overrides_runpath], [lt_cv_shlibpath_overrides_runpath=no save_LDFLAGS=$LDFLAGS save_libdir=$libdir eval "libdir=/foo; wl=\"$_LT_TAGVAR(lt_prog_compiler_wl, $1)\"; \ LDFLAGS=\"\$LDFLAGS $_LT_TAGVAR(hardcode_libdir_flag_spec, $1)\"" AC_LINK_IFELSE([AC_LANG_PROGRAM([],[])], [AS_IF([ ($OBJDUMP -p conftest$ac_exeext) 2>/dev/null | grep "RUNPATH.*$libdir" >/dev/null], [lt_cv_shlibpath_overrides_runpath=yes])]) LDFLAGS=$save_LDFLAGS libdir=$save_libdir ]) shlibpath_overrides_runpath=$lt_cv_shlibpath_overrides_runpath # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes # Add ABI-specific directories to the system library path. sys_lib_dlsearch_path_spec="/lib64 /usr/lib64 /lib /usr/lib" # Append ld.so.conf contents to the search path if test -f /etc/ld.so.conf; then lt_ld_extra=`awk '/^include / { system(sprintf("cd /etc; cat %s 2>/dev/null", \[$]2)); skip = 1; } { if (!skip) print \[$]0; skip = 0; }' < /etc/ld.so.conf | $SED -e 's/#.*//;/^[ ]*hwcap[ ]/d;s/[:, ]/ /g;s/=[^=]*$//;s/=[^= ]* / /g;s/"//g;/^$/d' | tr '\n' ' '` sys_lib_dlsearch_path_spec="$sys_lib_dlsearch_path_spec $lt_ld_extra" fi # We used to test for /lib/ld.so.1 and disable shared libraries on # powerpc, because MkLinux only supported shared libraries with the # GNU dynamic linker. Since this was broken with cross compilers, # most powerpc-linux boxes support dynamic linking these days and # people can always --disable-shared, the test was removed, and we # assume the GNU/Linux dynamic linker is in use. dynamic_linker='GNU/Linux ld.so' ;; netbsd*) version_type=sunos need_lib_prefix=no need_version=no if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${shared_ext}$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' dynamic_linker='NetBSD (a.out) ld.so' else library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major ${libname}${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' dynamic_linker='NetBSD ld.elf_so' fi shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; newsos6) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; *nto* | *qnx*) version_type=qnx need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes dynamic_linker='ldqnx.so' ;; openbsd*) version_type=sunos sys_lib_dlsearch_path_spec="/usr/lib" need_lib_prefix=no # Some older versions of OpenBSD (3.3 at least) *do* need versioned libs. case $host_os in openbsd3.3 | openbsd3.3.*) need_version=yes ;; *) need_version=no ;; esac library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${shared_ext}$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' shlibpath_var=LD_LIBRARY_PATH if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then case $host_os in openbsd2.[[89]] | openbsd2.[[89]].*) shlibpath_overrides_runpath=no ;; *) shlibpath_overrides_runpath=yes ;; esac else shlibpath_overrides_runpath=yes fi ;; os2*) libname_spec='$name' shrext_cmds=".dll" need_lib_prefix=no library_names_spec='$libname${shared_ext} $libname.a' dynamic_linker='OS/2 ld.exe' shlibpath_var=LIBPATH ;; osf3* | osf4* | osf5*) version_type=osf need_lib_prefix=no need_version=no soname_spec='${libname}${release}${shared_ext}$major' library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" sys_lib_dlsearch_path_spec="$sys_lib_search_path_spec" ;; rdos*) dynamic_linker=no ;; solaris*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes # ldd complains unless libraries are executable postinstall_cmds='chmod +x $lib' ;; sunos4*) version_type=sunos library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${shared_ext}$versuffix' finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes if test "$with_gnu_ld" = yes; then need_lib_prefix=no fi need_version=yes ;; sysv4 | sysv4.3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH case $host_vendor in sni) shlibpath_overrides_runpath=no need_lib_prefix=no runpath_var=LD_RUN_PATH ;; siemens) need_lib_prefix=no ;; motorola) need_lib_prefix=no need_version=no shlibpath_overrides_runpath=no sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' ;; esac ;; sysv4*MP*) if test -d /usr/nec ;then version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname${shared_ext}.$versuffix $libname${shared_ext}.$major $libname${shared_ext}' soname_spec='$libname${shared_ext}.$major' shlibpath_var=LD_LIBRARY_PATH fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) version_type=freebsd-elf need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext} $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes if test "$with_gnu_ld" = yes; then sys_lib_search_path_spec='/usr/local/lib /usr/gnu/lib /usr/ccs/lib /usr/lib /lib' else sys_lib_search_path_spec='/usr/ccs/lib /usr/lib' case $host_os in sco3.2v5*) sys_lib_search_path_spec="$sys_lib_search_path_spec /lib" ;; esac fi sys_lib_dlsearch_path_spec='/usr/lib' ;; tpf*) # TPF is a cross-target only. Preferred cross-host = GNU/Linux. version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; uts4*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='${libname}${release}${shared_ext}$versuffix ${libname}${release}${shared_ext}$major $libname${shared_ext}' soname_spec='${libname}${release}${shared_ext}$major' shlibpath_var=LD_LIBRARY_PATH ;; *) dynamic_linker=no ;; esac AC_MSG_RESULT([$dynamic_linker]) test "$dynamic_linker" = no && can_build_shared=no variables_saved_for_relink="PATH $shlibpath_var $runpath_var" if test "$GCC" = yes; then variables_saved_for_relink="$variables_saved_for_relink GCC_EXEC_PREFIX COMPILER_PATH LIBRARY_PATH" fi if test "${lt_cv_sys_lib_search_path_spec+set}" = set; then sys_lib_search_path_spec="$lt_cv_sys_lib_search_path_spec" fi if test "${lt_cv_sys_lib_dlsearch_path_spec+set}" = set; then sys_lib_dlsearch_path_spec="$lt_cv_sys_lib_dlsearch_path_spec" fi _LT_DECL([], [variables_saved_for_relink], [1], [Variables whose values should be saved in libtool wrapper scripts and restored at link time]) _LT_DECL([], [need_lib_prefix], [0], [Do we need the "lib" prefix for modules?]) _LT_DECL([], [need_version], [0], [Do we need a version for libraries?]) _LT_DECL([], [version_type], [0], [Library versioning type]) _LT_DECL([], [runpath_var], [0], [Shared library runtime path variable]) _LT_DECL([], [shlibpath_var], [0],[Shared library path variable]) _LT_DECL([], [shlibpath_overrides_runpath], [0], [Is shlibpath searched before the hard-coded library search path?]) _LT_DECL([], [libname_spec], [1], [Format of library name prefix]) _LT_DECL([], [library_names_spec], [1], [[List of archive names. First name is the real one, the rest are links. The last name is the one that the linker finds with -lNAME]]) _LT_DECL([], [soname_spec], [1], [[The coded name of the library, if different from the real name]]) _LT_DECL([], [install_override_mode], [1], [Permission mode override for installation of shared libraries]) _LT_DECL([], [postinstall_cmds], [2], [Command to use after installation of a shared archive]) _LT_DECL([], [postuninstall_cmds], [2], [Command to use after uninstallation of a shared archive]) _LT_DECL([], [finish_cmds], [2], [Commands used to finish a libtool library installation in a directory]) _LT_DECL([], [finish_eval], [1], [[As "finish_cmds", except a single script fragment to be evaled but not shown]]) _LT_DECL([], [hardcode_into_libs], [0], [Whether we should hardcode library paths into libraries]) _LT_DECL([], [sys_lib_search_path_spec], [2], [Compile-time system search path for libraries]) _LT_DECL([], [sys_lib_dlsearch_path_spec], [2], [Run-time system search path for libraries]) ])# _LT_SYS_DYNAMIC_LINKER # _LT_PATH_TOOL_PREFIX(TOOL) # -------------------------- # find a file program which can recognize shared library AC_DEFUN([_LT_PATH_TOOL_PREFIX], [m4_require([_LT_DECL_EGREP])dnl AC_MSG_CHECKING([for $1]) AC_CACHE_VAL(lt_cv_path_MAGIC_CMD, [case $MAGIC_CMD in [[\\/*] | ?:[\\/]*]) lt_cv_path_MAGIC_CMD="$MAGIC_CMD" # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD="$MAGIC_CMD" lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR dnl $ac_dummy forces splitting on constant user-supplied paths. dnl POSIX.2 word splitting is done only on the output of word expansions, dnl not every word. This closes a longstanding sh security hole. ac_dummy="m4_if([$2], , $PATH, [$2])" for ac_dir in $ac_dummy; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f $ac_dir/$1; then lt_cv_path_MAGIC_CMD="$ac_dir/$1" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD="$lt_cv_path_MAGIC_CMD" if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS="$lt_save_ifs" MAGIC_CMD="$lt_save_MAGIC_CMD" ;; esac]) MAGIC_CMD="$lt_cv_path_MAGIC_CMD" if test -n "$MAGIC_CMD"; then AC_MSG_RESULT($MAGIC_CMD) else AC_MSG_RESULT(no) fi _LT_DECL([], [MAGIC_CMD], [0], [Used to examine libraries when file_magic_cmd begins with "file"])dnl ])# _LT_PATH_TOOL_PREFIX # Old name: AU_ALIAS([AC_PATH_TOOL_PREFIX], [_LT_PATH_TOOL_PREFIX]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_PATH_TOOL_PREFIX], []) # _LT_PATH_MAGIC # -------------- # find a file program which can recognize a shared library m4_defun([_LT_PATH_MAGIC], [_LT_PATH_TOOL_PREFIX(${ac_tool_prefix}file, /usr/bin$PATH_SEPARATOR$PATH) if test -z "$lt_cv_path_MAGIC_CMD"; then if test -n "$ac_tool_prefix"; then _LT_PATH_TOOL_PREFIX(file, /usr/bin$PATH_SEPARATOR$PATH) else MAGIC_CMD=: fi fi ])# _LT_PATH_MAGIC # LT_PATH_LD # ---------- # find the pathname to the GNU or non-GNU linker AC_DEFUN([LT_PATH_LD], [AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_PROG_ECHO_BACKSLASH])dnl AC_ARG_WITH([gnu-ld], [AS_HELP_STRING([--with-gnu-ld], [assume the C compiler uses GNU ld @<:@default=no@:>@])], [test "$withval" = no || with_gnu_ld=yes], [with_gnu_ld=no])dnl ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. AC_MSG_CHECKING([for ld used by $CC]) case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [[\\/]]* | ?:[[\\/]]*) re_direlt='/[[^/]][[^/]]*/\.\./' # Canonicalize the pathname of ld ac_prog=`$ECHO "$ac_prog"| $SED 's%\\\\%/%g'` while $ECHO "$ac_prog" | $GREP "$re_direlt" > /dev/null 2>&1; do ac_prog=`$ECHO $ac_prog| $SED "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi AC_CACHE_VAL(lt_cv_path_LD, [if test -z "$LD"; then lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then lt_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$lt_cv_path_LD" -v 2>&1 &1 /dev/null 2>&1; then lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' else # Keep this pattern in sync with the one in func_win32_libid. lt_cv_deplibs_check_method='file_magic file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' lt_cv_file_magic_cmd='$OBJDUMP -f' fi ;; cegcc*) # use the weaker test based on 'objdump'. See mingw*. lt_cv_deplibs_check_method='file_magic file format pe-arm-.*little(.*architecture: arm)?' lt_cv_file_magic_cmd='$OBJDUMP -f' ;; darwin* | rhapsody*) lt_cv_deplibs_check_method=pass_all ;; freebsd* | dragonfly*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then case $host_cpu in i*86 ) # Not sure whether the presence of OpenBSD here was a mistake. # Let's accept both of them until this is cleared up. lt_cv_deplibs_check_method='file_magic (FreeBSD|OpenBSD|DragonFly)/i[[3-9]]86 (compact )?demand paged shared library' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=`echo /usr/lib/libc.so.*` ;; esac else lt_cv_deplibs_check_method=pass_all fi ;; gnu*) lt_cv_deplibs_check_method=pass_all ;; haiku*) lt_cv_deplibs_check_method=pass_all ;; hpux10.20* | hpux11*) lt_cv_file_magic_cmd=/usr/bin/file case $host_cpu in ia64*) lt_cv_deplibs_check_method='file_magic (s[[0-9]][[0-9]][[0-9]]|ELF-[[0-9]][[0-9]]) shared object file - IA64' lt_cv_file_magic_test_file=/usr/lib/hpux32/libc.so ;; hppa*64*) [lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF[ -][0-9][0-9])(-bit)?( [LM]SB)? shared object( file)?[, -]* PA-RISC [0-9]\.[0-9]'] lt_cv_file_magic_test_file=/usr/lib/pa20_64/libc.sl ;; *) lt_cv_deplibs_check_method='file_magic (s[[0-9]][[0-9]][[0-9]]|PA-RISC[[0-9]]\.[[0-9]]) shared library' lt_cv_file_magic_test_file=/usr/lib/libc.sl ;; esac ;; interix[[3-9]]*) # PIC code is broken on Interix 3.x, that's why |\.a not |_pic\.a here lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so|\.a)$' ;; irix5* | irix6* | nonstopux*) case $LD in *-32|*"-32 ") libmagic=32-bit;; *-n32|*"-n32 ") libmagic=N32;; *-64|*"-64 ") libmagic=64-bit;; *) libmagic=never-match;; esac lt_cv_deplibs_check_method=pass_all ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu) lt_cv_deplibs_check_method=pass_all ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so|_pic\.a)$' fi ;; newos6*) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (executable|dynamic lib)' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=/usr/lib/libnls.so ;; *nto* | *qnx*) lt_cv_deplibs_check_method=pass_all ;; openbsd*) if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|\.so|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|_pic\.a)$' fi ;; osf3* | osf4* | osf5*) lt_cv_deplibs_check_method=pass_all ;; rdos*) lt_cv_deplibs_check_method=pass_all ;; solaris*) lt_cv_deplibs_check_method=pass_all ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) lt_cv_deplibs_check_method=pass_all ;; sysv4 | sysv4.3*) case $host_vendor in motorola) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (shared object|dynamic lib) M[[0-9]][[0-9]]* Version [[0-9]]' lt_cv_file_magic_test_file=`echo /usr/lib/libc.so*` ;; ncr) lt_cv_deplibs_check_method=pass_all ;; sequent) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[LM]]SB (shared object|dynamic lib )' ;; sni) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method="file_magic ELF [[0-9]][[0-9]]*-bit [[LM]]SB dynamic lib" lt_cv_file_magic_test_file=/lib/libc.so ;; siemens) lt_cv_deplibs_check_method=pass_all ;; pc) lt_cv_deplibs_check_method=pass_all ;; esac ;; tpf*) lt_cv_deplibs_check_method=pass_all ;; esac ]) file_magic_glob= want_nocaseglob=no if test "$build" = "$host"; then case $host_os in mingw* | pw32*) if ( shopt | grep nocaseglob ) >/dev/null 2>&1; then want_nocaseglob=yes else file_magic_glob=`echo aAbBcCdDeEfFgGhHiIjJkKlLmMnNoOpPqQrRsStTuUvVwWxXyYzZ | $SED -e "s/\(..\)/s\/[[\1]]\/[[\1]]\/g;/g"` fi ;; esac fi file_magic_cmd=$lt_cv_file_magic_cmd deplibs_check_method=$lt_cv_deplibs_check_method test -z "$deplibs_check_method" && deplibs_check_method=unknown _LT_DECL([], [deplibs_check_method], [1], [Method to check whether dependent libraries are shared objects]) _LT_DECL([], [file_magic_cmd], [1], [Command to use when deplibs_check_method = "file_magic"]) _LT_DECL([], [file_magic_glob], [1], [How to find potential files when deplibs_check_method = "file_magic"]) _LT_DECL([], [want_nocaseglob], [1], [Find potential files using nocaseglob when deplibs_check_method = "file_magic"]) ])# _LT_CHECK_MAGIC_METHOD # LT_PATH_NM # ---------- # find the pathname to a BSD- or MS-compatible name lister AC_DEFUN([LT_PATH_NM], [AC_REQUIRE([AC_PROG_CC])dnl AC_CACHE_CHECK([for BSD- or MS-compatible name lister (nm)], lt_cv_path_NM, [if test -n "$NM"; then # Let the user override the test. lt_cv_path_NM="$NM" else lt_nm_to_check="${ac_tool_prefix}nm" if test -n "$ac_tool_prefix" && test "$build" = "$host"; then lt_nm_to_check="$lt_nm_to_check nm" fi for lt_tmp_nm in $lt_nm_to_check; do lt_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH /usr/ccs/bin/elf /usr/ccs/bin /usr/ucb /bin; do IFS="$lt_save_ifs" test -z "$ac_dir" && ac_dir=. tmp_nm="$ac_dir/$lt_tmp_nm" if test -f "$tmp_nm" || test -f "$tmp_nm$ac_exeext" ; then # Check to see if the nm accepts a BSD-compat flag. # Adding the `sed 1q' prevents false positives on HP-UX, which says: # nm: unknown option "B" ignored # Tru64's nm complains that /dev/null is an invalid object file case `"$tmp_nm" -B /dev/null 2>&1 | sed '1q'` in */dev/null* | *'Invalid file or object type'*) lt_cv_path_NM="$tmp_nm -B" break ;; *) case `"$tmp_nm" -p /dev/null 2>&1 | sed '1q'` in */dev/null*) lt_cv_path_NM="$tmp_nm -p" break ;; *) lt_cv_path_NM=${lt_cv_path_NM="$tmp_nm"} # keep the first match, but continue # so that we can try to find one that supports BSD flags ;; esac ;; esac fi done IFS="$lt_save_ifs" done : ${lt_cv_path_NM=no} fi]) if test "$lt_cv_path_NM" != "no"; then NM="$lt_cv_path_NM" else # Didn't find any BSD compatible name lister, look for dumpbin. if test -n "$DUMPBIN"; then : # Let the user override the test. else AC_CHECK_TOOLS(DUMPBIN, [dumpbin "link -dump"], :) case `$DUMPBIN -symbols /dev/null 2>&1 | sed '1q'` in *COFF*) DUMPBIN="$DUMPBIN -symbols" ;; *) DUMPBIN=: ;; esac fi AC_SUBST([DUMPBIN]) if test "$DUMPBIN" != ":"; then NM="$DUMPBIN" fi fi test -z "$NM" && NM=nm AC_SUBST([NM]) _LT_DECL([], [NM], [1], [A BSD- or MS-compatible name lister])dnl AC_CACHE_CHECK([the name lister ($NM) interface], [lt_cv_nm_interface], [lt_cv_nm_interface="BSD nm" echo "int some_variable = 0;" > conftest.$ac_ext (eval echo "\"\$as_me:$LINENO: $ac_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$ac_compile" 2>conftest.err) cat conftest.err >&AS_MESSAGE_LOG_FD (eval echo "\"\$as_me:$LINENO: $NM \\\"conftest.$ac_objext\\\"\"" >&AS_MESSAGE_LOG_FD) (eval "$NM \"conftest.$ac_objext\"" 2>conftest.err > conftest.out) cat conftest.err >&AS_MESSAGE_LOG_FD (eval echo "\"\$as_me:$LINENO: output\"" >&AS_MESSAGE_LOG_FD) cat conftest.out >&AS_MESSAGE_LOG_FD if $GREP 'External.*some_variable' conftest.out > /dev/null; then lt_cv_nm_interface="MS dumpbin" fi rm -f conftest*]) ])# LT_PATH_NM # Old names: AU_ALIAS([AM_PROG_NM], [LT_PATH_NM]) AU_ALIAS([AC_PROG_NM], [LT_PATH_NM]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_PROG_NM], []) dnl AC_DEFUN([AC_PROG_NM], []) # _LT_CHECK_SHAREDLIB_FROM_LINKLIB # -------------------------------- # how to determine the name of the shared library # associated with a specific link library. # -- PORTME fill in with the dynamic library characteristics m4_defun([_LT_CHECK_SHAREDLIB_FROM_LINKLIB], [m4_require([_LT_DECL_EGREP]) m4_require([_LT_DECL_OBJDUMP]) m4_require([_LT_DECL_DLLTOOL]) AC_CACHE_CHECK([how to associate runtime and link libraries], lt_cv_sharedlib_from_linklib_cmd, [lt_cv_sharedlib_from_linklib_cmd='unknown' case $host_os in cygwin* | mingw* | pw32* | cegcc*) # two different shell functions defined in ltmain.sh # decide which to use based on capabilities of $DLLTOOL case `$DLLTOOL --help 2>&1` in *--identify-strict*) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib ;; *) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib_fallback ;; esac ;; *) # fallback: assume linklib IS sharedlib lt_cv_sharedlib_from_linklib_cmd="$ECHO" ;; esac ]) sharedlib_from_linklib_cmd=$lt_cv_sharedlib_from_linklib_cmd test -z "$sharedlib_from_linklib_cmd" && sharedlib_from_linklib_cmd=$ECHO _LT_DECL([], [sharedlib_from_linklib_cmd], [1], [Command to associate shared and link libraries]) ])# _LT_CHECK_SHAREDLIB_FROM_LINKLIB # _LT_PATH_MANIFEST_TOOL # ---------------------- # locate the manifest tool m4_defun([_LT_PATH_MANIFEST_TOOL], [AC_CHECK_TOOL(MANIFEST_TOOL, mt, :) test -z "$MANIFEST_TOOL" && MANIFEST_TOOL=mt AC_CACHE_CHECK([if $MANIFEST_TOOL is a manifest tool], [lt_cv_path_mainfest_tool], [lt_cv_path_mainfest_tool=no echo "$as_me:$LINENO: $MANIFEST_TOOL '-?'" >&AS_MESSAGE_LOG_FD $MANIFEST_TOOL '-?' 2>conftest.err > conftest.out cat conftest.err >&AS_MESSAGE_LOG_FD if $GREP 'Manifest Tool' conftest.out > /dev/null; then lt_cv_path_mainfest_tool=yes fi rm -f conftest*]) if test "x$lt_cv_path_mainfest_tool" != xyes; then MANIFEST_TOOL=: fi _LT_DECL([], [MANIFEST_TOOL], [1], [Manifest tool])dnl ])# _LT_PATH_MANIFEST_TOOL # LT_LIB_M # -------- # check for math library AC_DEFUN([LT_LIB_M], [AC_REQUIRE([AC_CANONICAL_HOST])dnl LIBM= case $host in *-*-beos* | *-*-cegcc* | *-*-cygwin* | *-*-haiku* | *-*-pw32* | *-*-darwin*) # These system don't have libm, or don't need it ;; *-ncr-sysv4.3*) AC_CHECK_LIB(mw, _mwvalidcheckl, LIBM="-lmw") AC_CHECK_LIB(m, cos, LIBM="$LIBM -lm") ;; *) AC_CHECK_LIB(m, cos, LIBM="-lm") ;; esac AC_SUBST([LIBM]) ])# LT_LIB_M # Old name: AU_ALIAS([AC_CHECK_LIBM], [LT_LIB_M]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_CHECK_LIBM], []) # _LT_COMPILER_NO_RTTI([TAGNAME]) # ------------------------------- m4_defun([_LT_COMPILER_NO_RTTI], [m4_require([_LT_TAG_COMPILER])dnl _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)= if test "$GCC" = yes; then case $cc_basename in nvcc*) _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -Xcompiler -fno-builtin' ;; *) _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -fno-builtin' ;; esac _LT_COMPILER_OPTION([if $compiler supports -fno-rtti -fno-exceptions], lt_cv_prog_compiler_rtti_exceptions, [-fno-rtti -fno-exceptions], [], [_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)="$_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1) -fno-rtti -fno-exceptions"]) fi _LT_TAGDECL([no_builtin_flag], [lt_prog_compiler_no_builtin_flag], [1], [Compiler flag to turn off builtin functions]) ])# _LT_COMPILER_NO_RTTI # _LT_CMD_GLOBAL_SYMBOLS # ---------------------- m4_defun([_LT_CMD_GLOBAL_SYMBOLS], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([LT_PATH_NM])dnl AC_REQUIRE([LT_PATH_LD])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_TAG_COMPILER])dnl # Check for command to grab the raw symbol name followed by C symbol from nm. AC_MSG_CHECKING([command to parse $NM output from $compiler object]) AC_CACHE_VAL([lt_cv_sys_global_symbol_pipe], [ # These are sane defaults that work on at least a few old systems. # [They come from Ultrix. What could be older than Ultrix?!! ;)] # Character class describing NM global symbol codes. symcode='[[BCDEGRST]]' # Regexp to match symbols that can be accessed directly from C. sympat='\([[_A-Za-z]][[_A-Za-z0-9]]*\)' # Define system-specific variables. case $host_os in aix*) symcode='[[BCDT]]' ;; cygwin* | mingw* | pw32* | cegcc*) symcode='[[ABCDGISTW]]' ;; hpux*) if test "$host_cpu" = ia64; then symcode='[[ABCDEGRST]]' fi ;; irix* | nonstopux*) symcode='[[BCDEGRST]]' ;; osf*) symcode='[[BCDEGQRST]]' ;; solaris*) symcode='[[BDRT]]' ;; sco3.2v5*) symcode='[[DT]]' ;; sysv4.2uw2*) symcode='[[DT]]' ;; sysv5* | sco5v6* | unixware* | OpenUNIX*) symcode='[[ABDT]]' ;; sysv4) symcode='[[DFNSTU]]' ;; esac # If we're using GNU nm, then use its standard symbol codes. case `$NM -V 2>&1` in *GNU* | *'with BFD'*) symcode='[[ABCDGIRSTW]]' ;; esac # Transform an extracted symbol line into a proper C declaration. # Some systems (esp. on ia64) link data and code symbols differently, # so use this general approach. lt_cv_sys_global_symbol_to_cdecl="sed -n -e 's/^T .* \(.*\)$/extern int \1();/p' -e 's/^$symcode* .* \(.*\)$/extern char \1;/p'" # Transform an extracted symbol line into symbol name and symbol address lt_cv_sys_global_symbol_to_c_name_address="sed -n -e 's/^: \([[^ ]]*\)[[ ]]*$/ {\\\"\1\\\", (void *) 0},/p' -e 's/^$symcode* \([[^ ]]*\) \([[^ ]]*\)$/ {\"\2\", (void *) \&\2},/p'" lt_cv_sys_global_symbol_to_c_name_address_lib_prefix="sed -n -e 's/^: \([[^ ]]*\)[[ ]]*$/ {\\\"\1\\\", (void *) 0},/p' -e 's/^$symcode* \([[^ ]]*\) \(lib[[^ ]]*\)$/ {\"\2\", (void *) \&\2},/p' -e 's/^$symcode* \([[^ ]]*\) \([[^ ]]*\)$/ {\"lib\2\", (void *) \&\2},/p'" # Handle CRLF in mingw tool chain opt_cr= case $build_os in mingw*) opt_cr=`$ECHO 'x\{0,1\}' | tr x '\015'` # option cr in regexp ;; esac # Try without a prefix underscore, then with it. for ac_symprfx in "" "_"; do # Transform symcode, sympat, and symprfx into a raw symbol and a C symbol. symxfrm="\\1 $ac_symprfx\\2 \\2" # Write the raw and C identifiers. if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Fake it for dumpbin and say T for any non-static function # and D for any global variable. # Also find C++ and __fastcall symbols from MSVC++, # which start with @ or ?. lt_cv_sys_global_symbol_pipe="$AWK ['"\ " {last_section=section; section=\$ 3};"\ " /^COFF SYMBOL TABLE/{for(i in hide) delete hide[i]};"\ " /Section length .*#relocs.*(pick any)/{hide[last_section]=1};"\ " \$ 0!~/External *\|/{next};"\ " / 0+ UNDEF /{next}; / UNDEF \([^|]\)*()/{next};"\ " {if(hide[section]) next};"\ " {f=0}; \$ 0~/\(\).*\|/{f=1}; {printf f ? \"T \" : \"D \"};"\ " {split(\$ 0, a, /\||\r/); split(a[2], s)};"\ " s[1]~/^[@?]/{print s[1], s[1]; next};"\ " s[1]~prfx {split(s[1],t,\"@\"); print t[1], substr(t[1],length(prfx))}"\ " ' prfx=^$ac_symprfx]" else lt_cv_sys_global_symbol_pipe="sed -n -e 's/^.*[[ ]]\($symcode$symcode*\)[[ ]][[ ]]*$ac_symprfx$sympat$opt_cr$/$symxfrm/p'" fi lt_cv_sys_global_symbol_pipe="$lt_cv_sys_global_symbol_pipe | sed '/ __gnu_lto/d'" # Check to see that the pipe works correctly. pipe_works=no rm -f conftest* cat > conftest.$ac_ext <<_LT_EOF #ifdef __cplusplus extern "C" { #endif char nm_test_var; void nm_test_func(void); void nm_test_func(void){} #ifdef __cplusplus } #endif int main(){nm_test_var='a';nm_test_func();return(0);} _LT_EOF if AC_TRY_EVAL(ac_compile); then # Now try to grab the symbols. nlist=conftest.nm if AC_TRY_EVAL(NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist) && test -s "$nlist"; then # Try sorting and uniquifying the output. if sort "$nlist" | uniq > "$nlist"T; then mv -f "$nlist"T "$nlist" else rm -f "$nlist"T fi # Make sure that we snagged all the symbols we need. if $GREP ' nm_test_var$' "$nlist" >/dev/null; then if $GREP ' nm_test_func$' "$nlist" >/dev/null; then cat <<_LT_EOF > conftest.$ac_ext /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined(_WIN32) || defined(__CYGWIN__) || defined(_WIN32_WCE) /* DATA imports from DLLs on WIN32 con't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT@&t@_DLSYM_CONST #elif defined(__osf__) /* This system does not cope well with relocations in const data. */ # define LT@&t@_DLSYM_CONST #else # define LT@&t@_DLSYM_CONST const #endif #ifdef __cplusplus extern "C" { #endif _LT_EOF # Now generate the symbol file. eval "$lt_cv_sys_global_symbol_to_cdecl"' < "$nlist" | $GREP -v main >> conftest.$ac_ext' cat <<_LT_EOF >> conftest.$ac_ext /* The mapping between symbol names and symbols. */ LT@&t@_DLSYM_CONST struct { const char *name; void *address; } lt__PROGRAM__LTX_preloaded_symbols[[]] = { { "@PROGRAM@", (void *) 0 }, _LT_EOF $SED "s/^$symcode$symcode* \(.*\) \(.*\)$/ {\"\2\", (void *) \&\2},/" < "$nlist" | $GREP -v main >> conftest.$ac_ext cat <<\_LT_EOF >> conftest.$ac_ext {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt__PROGRAM__LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif _LT_EOF # Now try linking the two files. mv conftest.$ac_objext conftstm.$ac_objext lt_globsym_save_LIBS=$LIBS lt_globsym_save_CFLAGS=$CFLAGS LIBS="conftstm.$ac_objext" CFLAGS="$CFLAGS$_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)" if AC_TRY_EVAL(ac_link) && test -s conftest${ac_exeext}; then pipe_works=yes fi LIBS=$lt_globsym_save_LIBS CFLAGS=$lt_globsym_save_CFLAGS else echo "cannot find nm_test_func in $nlist" >&AS_MESSAGE_LOG_FD fi else echo "cannot find nm_test_var in $nlist" >&AS_MESSAGE_LOG_FD fi else echo "cannot run $lt_cv_sys_global_symbol_pipe" >&AS_MESSAGE_LOG_FD fi else echo "$progname: failed program was:" >&AS_MESSAGE_LOG_FD cat conftest.$ac_ext >&5 fi rm -rf conftest* conftst* # Do not use the global_symbol_pipe unless it works. if test "$pipe_works" = yes; then break else lt_cv_sys_global_symbol_pipe= fi done ]) if test -z "$lt_cv_sys_global_symbol_pipe"; then lt_cv_sys_global_symbol_to_cdecl= fi if test -z "$lt_cv_sys_global_symbol_pipe$lt_cv_sys_global_symbol_to_cdecl"; then AC_MSG_RESULT(failed) else AC_MSG_RESULT(ok) fi # Response file support. if test "$lt_cv_nm_interface" = "MS dumpbin"; then nm_file_list_spec='@' elif $NM --help 2>/dev/null | grep '[[@]]FILE' >/dev/null; then nm_file_list_spec='@' fi _LT_DECL([global_symbol_pipe], [lt_cv_sys_global_symbol_pipe], [1], [Take the output of nm and produce a listing of raw symbols and C names]) _LT_DECL([global_symbol_to_cdecl], [lt_cv_sys_global_symbol_to_cdecl], [1], [Transform the output of nm in a proper C declaration]) _LT_DECL([global_symbol_to_c_name_address], [lt_cv_sys_global_symbol_to_c_name_address], [1], [Transform the output of nm in a C name address pair]) _LT_DECL([global_symbol_to_c_name_address_lib_prefix], [lt_cv_sys_global_symbol_to_c_name_address_lib_prefix], [1], [Transform the output of nm in a C name address pair when lib prefix is needed]) _LT_DECL([], [nm_file_list_spec], [1], [Specify filename containing input files for $NM]) ]) # _LT_CMD_GLOBAL_SYMBOLS # _LT_COMPILER_PIC([TAGNAME]) # --------------------------- m4_defun([_LT_COMPILER_PIC], [m4_require([_LT_TAG_COMPILER])dnl _LT_TAGVAR(lt_prog_compiler_wl, $1)= _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)= m4_if([$1], [CXX], [ # C++ specific cases for pic, static, wl, etc. if test "$GXX" = yes; then _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' case $host_os in aix*) # All AIX code is PIC. if test "$host_cpu" = ia64; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the `-m68020' flag to GCC prevents building anything better, # like `-m68040'. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | os2* | pw32* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' ;; *djgpp*) # DJGPP does not support shared libraries at all _LT_TAGVAR(lt_prog_compiler_pic, $1)= ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. _LT_TAGVAR(lt_prog_compiler_static, $1)= ;; interix[[3-9]]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)=-Kconform_pic fi ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac ;; *qnx* | *nto*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac else case $host_os in aix[[4-9]]*) # All AIX code is PIC. if test "$host_cpu" = ia64; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' else _LT_TAGVAR(lt_prog_compiler_static, $1)='-bnso -bI:/lib/syscalls.exp' fi ;; chorus*) case $cc_basename in cxch68*) # Green Hills C++ Compiler # _LT_TAGVAR(lt_prog_compiler_static, $1)="--no_auto_instantiation -u __main -u __premain -u _abort -r $COOL_DIR/lib/libOrb.a $MVME_DIR/lib/CC/libC.a $MVME_DIR/lib/classix/libcx.s.a" ;; esac ;; mingw* | cygwin* | os2* | pw32* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) ;; dgux*) case $cc_basename in ec++*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' ;; ghcx*) # Green Hills C++ Compiler _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; *) ;; esac ;; freebsd* | dragonfly*) # FreeBSD uses GNU C++ ;; hpux9* | hpux10* | hpux11*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='${wl}-a ${wl}archive' if test "$host_cpu" != ia64; then _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' fi ;; aCC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='${wl}-a ${wl}archive' case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' ;; esac ;; *) ;; esac ;; interix*) # This is c89, which is MS Visual C++ (no shared libs) # Anyone wants to do a port? ;; irix5* | irix6* | nonstopux*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' # CC pic flag -KPIC is the default. ;; *) ;; esac ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in KCC*) # KAI C++ Compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='--backend -Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; ecpc* ) # old Intel C++ for x86_64 which still supported -KPIC. _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; icpc* ) # Intel C++, used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; pgCC* | pgcpp*) # Portland Group C++ compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; cxx*) # Compaq C++ # Make sure the PIC flag is empty. It appears that all Alpha # Linux and Compaq Tru64 Unix objects are PIC. _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; xlc* | xlC* | bgxl[[cC]]* | mpixl[[cC]]*) # IBM XL 8.0, 9.0 on PPC and BlueGene _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-qpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; esac ;; esac ;; lynxos*) ;; m88k*) ;; mvs*) case $cc_basename in cxx*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-W c,exportall' ;; *) ;; esac ;; netbsd*) ;; *qnx* | *nto*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; osf3* | osf4* | osf5*) case $cc_basename in KCC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='--backend -Wl,' ;; RCC*) # Rational C++ 2.4.1 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; cxx*) # Digital/Compaq C++ _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # Make sure the PIC flag is empty. It appears that all Alpha # Linux and Compaq Tru64 Unix objects are PIC. _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; *) ;; esac ;; psos*) ;; solaris*) case $cc_basename in CC* | sunCC*) # Sun C++ 4.2, 5.x and Centerline C++ _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; gcx*) # Green Hills C++ Compiler _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' ;; *) ;; esac ;; sunos4*) case $cc_basename in CC*) # Sun C++ 4.x _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; lcc*) # Lucid _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; *) ;; esac ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; tandem*) case $cc_basename in NCC*) # NonStop-UX NCC 3.20 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' ;; *) ;; esac ;; vxworks*) ;; *) _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; esac fi ], [ if test "$GCC" = yes; then _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' case $host_os in aix*) # All AIX code is PIC. if test "$host_cpu" = ia64; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the `-m68020' flag to GCC prevents building anything better, # like `-m68040'. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. _LT_TAGVAR(lt_prog_compiler_static, $1)= ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac ;; interix[[3-9]]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; msdosdjgpp*) # Just because we use GCC doesn't mean we suddenly get shared libraries # on systems that don't support them. _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no enable_shared=no ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)=-Kconform_pic fi ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac case $cc_basename in nvcc*) # Cuda Compiler Driver 2.2 _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Xlinker ' if test -n "$_LT_TAGVAR(lt_prog_compiler_pic, $1)"; then _LT_TAGVAR(lt_prog_compiler_pic, $1)="-Xcompiler $_LT_TAGVAR(lt_prog_compiler_pic, $1)" fi ;; esac else # PORTME Check for flag to pass linker flags through the system compiler. case $host_os in aix*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' if test "$host_cpu" = ia64; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' else _LT_TAGVAR(lt_prog_compiler_static, $1)='-bnso -bI:/lib/syscalls.exp' fi ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) ;; hpux9* | hpux10* | hpux11*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # PIC is the default for IA64 HP-UX and 64-bit HP-UX, but # not for PA HP-UX. case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' ;; esac # Is there a better lt_prog_compiler_static that works with the bundled CC? _LT_TAGVAR(lt_prog_compiler_static, $1)='${wl}-a ${wl}archive' ;; irix5* | irix6* | nonstopux*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # PIC (with -KPIC) is the default. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in # old Intel for x86_64 which still supported -KPIC. ecc*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; # icc used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. icc* | ifort*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; # Lahey Fortran 8.1. lf95*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='--shared' _LT_TAGVAR(lt_prog_compiler_static, $1)='--static' ;; nagfor*) # NAG Fortran compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,-Wl,,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group compilers (*not* the Pentium gcc compiler, # which looks to be a dead project) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; ccc*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # All Alpha code is PIC. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; xl* | bgxl* | bgf* | mpixl*) # IBM XL C 8.0/Fortran 10.1, 11.1 on PPC and BlueGene _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-qpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ Ceres\ Fortran* | *Sun*Fortran*\ [[1-7]].* | *Sun*Fortran*\ 8.[[0-3]]*) # Sun Fortran 8.3 passes all unrecognized flags to the linker _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='' ;; *Sun\ F* | *Sun*Fortran*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; *Sun\ C*) # Sun C 5.9 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' ;; *Intel*\ [[CF]]*Compiler*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; *Portland\ Group*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; esac ;; newsos6) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; osf3* | osf4* | osf5*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # All OSF/1 code is PIC. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; rdos*) _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; solaris*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ';; *) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,';; esac ;; sunos4*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; sysv4 | sysv4.2uw2* | sysv4.3*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; sysv4*MP*) if test -d /usr/nec ;then _LT_TAGVAR(lt_prog_compiler_pic, $1)='-Kconform_pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; unicos*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; uts4*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; *) _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; esac fi ]) case $host_os in # For platforms which do not support PIC, -DPIC is meaningless: *djgpp*) _LT_TAGVAR(lt_prog_compiler_pic, $1)= ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)="$_LT_TAGVAR(lt_prog_compiler_pic, $1)@&t@m4_if([$1],[],[ -DPIC],[m4_if([$1],[CXX],[ -DPIC],[])])" ;; esac AC_CACHE_CHECK([for $compiler option to produce PIC], [_LT_TAGVAR(lt_cv_prog_compiler_pic, $1)], [_LT_TAGVAR(lt_cv_prog_compiler_pic, $1)=$_LT_TAGVAR(lt_prog_compiler_pic, $1)]) _LT_TAGVAR(lt_prog_compiler_pic, $1)=$_LT_TAGVAR(lt_cv_prog_compiler_pic, $1) # # Check to make sure the PIC flag actually works. # if test -n "$_LT_TAGVAR(lt_prog_compiler_pic, $1)"; then _LT_COMPILER_OPTION([if $compiler PIC flag $_LT_TAGVAR(lt_prog_compiler_pic, $1) works], [_LT_TAGVAR(lt_cv_prog_compiler_pic_works, $1)], [$_LT_TAGVAR(lt_prog_compiler_pic, $1)@&t@m4_if([$1],[],[ -DPIC],[m4_if([$1],[CXX],[ -DPIC],[])])], [], [case $_LT_TAGVAR(lt_prog_compiler_pic, $1) in "" | " "*) ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)=" $_LT_TAGVAR(lt_prog_compiler_pic, $1)" ;; esac], [_LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no]) fi _LT_TAGDECL([pic_flag], [lt_prog_compiler_pic], [1], [Additional compiler flags for building library objects]) _LT_TAGDECL([wl], [lt_prog_compiler_wl], [1], [How to pass a linker flag through the compiler]) # # Check to make sure the static flag actually works. # wl=$_LT_TAGVAR(lt_prog_compiler_wl, $1) eval lt_tmp_static_flag=\"$_LT_TAGVAR(lt_prog_compiler_static, $1)\" _LT_LINKER_OPTION([if $compiler static flag $lt_tmp_static_flag works], _LT_TAGVAR(lt_cv_prog_compiler_static_works, $1), $lt_tmp_static_flag, [], [_LT_TAGVAR(lt_prog_compiler_static, $1)=]) _LT_TAGDECL([link_static_flag], [lt_prog_compiler_static], [1], [Compiler flag to prevent dynamic linking]) ])# _LT_COMPILER_PIC # _LT_LINKER_SHLIBS([TAGNAME]) # ---------------------------- # See if the linker supports building shared libraries. m4_defun([_LT_LINKER_SHLIBS], [AC_REQUIRE([LT_PATH_LD])dnl AC_REQUIRE([LT_PATH_NM])dnl m4_require([_LT_PATH_MANIFEST_TOOL])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_CMD_GLOBAL_SYMBOLS])dnl m4_require([_LT_TAG_COMPILER])dnl AC_MSG_CHECKING([whether the $compiler linker ($LD) supports shared libraries]) m4_if([$1], [CXX], [ _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*'] case $host_os in aix[[4-9]]*) # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to AIX nm, but means don't demangle with GNU nm # Also, AIX nm treats weak defined symbols like other global defined # symbols, whereas GNU nm marks them as "W". if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then _LT_TAGVAR(export_symbols_cmds, $1)='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && ([substr](\$ 3,1,1) != ".")) { print \$ 3 } }'\'' | sort -u > $export_symbols' else _LT_TAGVAR(export_symbols_cmds, $1)='$NM -BCpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B")) && ([substr](\$ 3,1,1) != ".")) { print \$ 3 } }'\'' | sort -u > $export_symbols' fi ;; pw32*) _LT_TAGVAR(export_symbols_cmds, $1)="$ltdll_cmds" ;; cygwin* | mingw* | cegcc*) case $cc_basename in cl*) _LT_TAGVAR(exclude_expsyms, $1)='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' ;; *) _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1 DATA/;s/^.*[[ ]]__nm__\([[^ ]]*\)[[ ]][[^ ]]*/\1 DATA/;/^I[[ ]]/d;/^[[AITW]][[ ]]/s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname'] ;; esac ;; *) _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' ;; esac ], [ runpath_var= _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_cmds, $1)= _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(compiler_needs_object, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(old_archive_from_new_cmds, $1)= _LT_TAGVAR(old_archive_from_expsyms_cmds, $1)= _LT_TAGVAR(thread_safe_flag_spec, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= # include_expsyms should be a list of space-separated symbols to be *always* # included in the symbol list _LT_TAGVAR(include_expsyms, $1)= # exclude_expsyms can be an extended regexp of symbols to exclude # it will be wrapped by ` (' and `)$', so one must not match beginning or # end of line. Example: `a|bc|.*d.*' will exclude the symbols `a' and `bc', # as well as any symbol that contains `d'. _LT_TAGVAR(exclude_expsyms, $1)=['_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*'] # Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out # platforms (ab)use it in PIC code, but their linkers get confused if # the symbol is explicitly referenced. Since portable code cannot # rely on this symbol name, it's probably fine to never include it in # preloaded symbol tables. # Exclude shared library initialization/finalization symbols. dnl Note also adjust exclude_expsyms for C++ above. extract_expsyms_cmds= case $host_os in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test "$GCC" != yes; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd*) with_gnu_ld=no ;; esac _LT_TAGVAR(ld_shlibs, $1)=yes # On some targets, GNU ld is compatible enough with the native linker # that we're better off using the native interface for both. lt_use_gnu_ld_interface=no if test "$with_gnu_ld" = yes; then case $host_os in aix*) # The AIX port of GNU ld has always aspired to compatibility # with the native linker. However, as the warning in the GNU ld # block says, versions before 2.19.5* couldn't really create working # shared libraries, regardless of the interface used. case `$LD -v 2>&1` in *\ \(GNU\ Binutils\)\ 2.19.5*) ;; *\ \(GNU\ Binutils\)\ 2.[[2-9]]*) ;; *\ \(GNU\ Binutils\)\ [[3-9]]*) ;; *) lt_use_gnu_ld_interface=yes ;; esac ;; *) lt_use_gnu_ld_interface=yes ;; esac fi if test "$lt_use_gnu_ld_interface" = yes; then # If archive_cmds runs LD, not CC, wlarc should be empty wlarc='${wl}' # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. runpath_var=LD_RUN_PATH _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-dynamic' # ancient GNU ld didn't support --whole-archive et. al. if $LD --help 2>&1 | $GREP 'no-whole-archive' > /dev/null; then _LT_TAGVAR(whole_archive_flag_spec, $1)="$wlarc"'--whole-archive$convenience '"$wlarc"'--no-whole-archive' else _LT_TAGVAR(whole_archive_flag_spec, $1)= fi supports_anon_versioning=no case `$LD -v 2>&1` in *GNU\ gold*) supports_anon_versioning=yes ;; *\ [[01]].* | *\ 2.[[0-9]].* | *\ 2.10.*) ;; # catch versions < 2.11 *\ 2.11.93.0.2\ *) supports_anon_versioning=yes ;; # RH7.3 ... *\ 2.11.92.0.12\ *) supports_anon_versioning=yes ;; # Mandrake 8.2 ... *\ 2.11.*) ;; # other 2.11 versions *) supports_anon_versioning=yes ;; esac # See if GNU ld supports shared libraries. case $host_os in aix[[3-9]]*) # On AIX/PPC, the GNU linker is very broken if test "$host_cpu" != ia64; then _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: the GNU linker, at least up to release 2.19, is reported *** to be unable to reliably create shared libraries on AIX. *** Therefore, libtool is disabling shared libraries support. If you *** really care for shared libraries, you may want to install binutils *** 2.20 or above, or modify your PATH so that a non-GNU linker is found. *** You will then need to restart the configuration process. _LT_EOF fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='' ;; m68k) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME _LT_TAGVAR(archive_cmds, $1)='$CC -nostart $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # _LT_TAGVAR(hardcode_libdir_flag_spec, $1) is actually meaningless, # as there is no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-all-symbols' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1 DATA/;s/^.*[[ ]]__nm__\([[^ ]]*\)[[ ]][[^ ]]*/\1 DATA/;/^I[[ ]]/d;/^[[AITW]][[ ]]/s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname'] if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -o $output_objdir/$soname ${wl}--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file (1st line # is EXPORTS), use it as is; otherwise, prepend... _LT_TAGVAR(archive_expsym_cmds, $1)='if test "x`$SED 1q $export_symbols`" = xEXPORTS; then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared $output_objdir/$soname.def $libobjs $deplibs $compiler_flags -o $output_objdir/$soname ${wl}--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; haiku*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(link_all_deplibs, $1)=yes ;; interix[[3-9]]*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-h,$soname ${wl}--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='sed "s,^,_," $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-h,$soname ${wl}--retain-symbols-file,$output_objdir/$soname.expsym ${wl}--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) tmp_diet=no if test "$host_os" = linux-dietlibc; then case $cc_basename in diet\ *) tmp_diet=yes;; # linux-dietlibc with static linking (!diet-dyn) esac fi if $LD --help 2>&1 | $EGREP ': supported targets:.* elf' > /dev/null \ && test "$tmp_diet" = no then tmp_addflag=' $pic_flag' tmp_sharedflag='-shared' case $cc_basename,$host_cpu in pgcc*) # Portland Group C compiler _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' tmp_addflag=' $pic_flag' ;; pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group f77 and f90 compilers _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' tmp_addflag=' $pic_flag -Mnomain' ;; ecc*,ia64* | icc*,ia64*) # Intel C compiler on ia64 tmp_addflag=' -i_dynamic' ;; efc*,ia64* | ifort*,ia64*) # Intel Fortran compiler on ia64 tmp_addflag=' -i_dynamic -nofor_main' ;; ifc* | ifort*) # Intel Fortran compiler tmp_addflag=' -nofor_main' ;; lf95*) # Lahey Fortran 8.1 _LT_TAGVAR(whole_archive_flag_spec, $1)= tmp_sharedflag='--shared' ;; xl[[cC]]* | bgxl[[cC]]* | mpixl[[cC]]*) # IBM XL C 8.0 on PPC (deal with xlf below) tmp_sharedflag='-qmkshrobj' tmp_addflag= ;; nvcc*) # Cuda Compiler Driver 2.2 _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes ;; esac case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C 5.9 _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes tmp_sharedflag='-G' ;; *Sun\ F*) # Sun Fortran 8.3 tmp_sharedflag='-G' ;; esac _LT_TAGVAR(archive_cmds, $1)='$CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' if test "x$supports_anon_versioning" = xyes; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-version-script ${wl}$output_objdir/$libname.ver -o $lib' fi case $cc_basename in xlf* | bgf* | bgxlf* | mpixlf*) # IBM XL Fortran 10.1 on PPC cannot create shared libs itself _LT_TAGVAR(whole_archive_flag_spec, $1)='--whole-archive$convenience --no-whole-archive' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(archive_cmds, $1)='$LD -shared $libobjs $deplibs $linker_flags -soname $soname -o $lib' if test "x$supports_anon_versioning" = xyes; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $LD -shared $libobjs $deplibs $linker_flags -soname $soname -version-script $output_objdir/$libname.ver -o $lib' fi ;; esac else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable $libobjs $deplibs $linker_flags -o $lib' wlarc= else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' fi ;; solaris*) if $LD -v 2>&1 | $GREP 'BFD 2\.8' > /dev/null; then _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: The releases 2.8.* of the GNU linker cannot reliably *** create shared libraries on Solaris systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.9.1 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF elif $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [[01]].* | *\ 2.[[0-9]].* | *\ 2.1[[0-5]].*) _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: Releases of the GNU linker prior to 2.16.91.0.3 can not *** reliably create shared libraries on SCO systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.16.91.0.3 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF ;; *) # For security reasons, it is highly recommended that you always # use absolute paths for naming shared libraries, and exclude the # DT_RUNPATH tag from executables and libraries. But doing so # requires that you compile everything twice, which is a pain. if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; sunos4*) _LT_TAGVAR(archive_cmds, $1)='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linker_flags' wlarc= _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac if test "$_LT_TAGVAR(ld_shlibs, $1)" = no; then runpath_var= _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= fi else # PORTME fill in a description of your system's linker (not GNU ld) case $host_os in aix3*) _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$LD -o $output_objdir/$soname $libobjs $deplibs $linker_flags -bE:$export_symbols -T512 -H512 -bM:SRE~$AR $AR_FLAGS $lib $output_objdir/$soname' # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. _LT_TAGVAR(hardcode_minus_L, $1)=yes if test "$GCC" = yes && test -z "$lt_prog_compiler_static"; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. _LT_TAGVAR(hardcode_direct, $1)=unsupported fi ;; aix[[4-9]]*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag="" else # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to AIX nm, but means don't demangle with GNU nm # Also, AIX nm treats weak defined symbols like other global # defined symbols, whereas GNU nm marks them as "W". if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then _LT_TAGVAR(export_symbols_cmds, $1)='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && ([substr](\$ 3,1,1) != ".")) { print \$ 3 } }'\'' | sort -u > $export_symbols' else _LT_TAGVAR(export_symbols_cmds, $1)='$NM -BCpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B")) && ([substr](\$ 3,1,1) != ".")) { print \$ 3 } }'\'' | sort -u > $export_symbols' fi aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[[23]]|aix4.[[23]].*|aix[[5-9]]*) for ld_flag in $LDFLAGS; do if (test $ld_flag = "-brtl" || test $ld_flag = "-Wl,-brtl"); then aix_use_runtimelinking=yes break fi done ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. _LT_TAGVAR(archive_cmds, $1)='' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(file_list_spec, $1)='${wl}-f,' if test "$GCC" = yes; then case $host_os in aix4.[[012]]|aix4.[[012]].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 _LT_TAGVAR(hardcode_direct, $1)=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)= fi ;; esac shared_flag='-shared' if test "$aix_use_runtimelinking" = yes; then shared_flag="$shared_flag "'${wl}-G' fi else # not using gcc if test "$host_cpu" = ia64; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test "$aix_use_runtimelinking" = yes; then shared_flag='${wl}-G' else shared_flag='${wl}-bM:SRE' fi fi fi _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to export. _LT_TAGVAR(always_export_symbols, $1)=yes if test "$aix_use_runtimelinking" = yes; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. _LT_TAGVAR(allow_undefined_flag, $1)='-berok' # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-blibpath:$libdir:'"$aix_libpath" _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $deplibs '"\${wl}$no_entry_flag"' $compiler_flags `if test "x${allow_undefined_flag}" != "x"; then func_echo_all "${wl}${allow_undefined_flag}"; else :; fi` '"\${wl}$exp_sym_flag:\$export_symbols $shared_flag" else if test "$host_cpu" = ia64; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-R $libdir:/usr/lib:/lib' _LT_TAGVAR(allow_undefined_flag, $1)="-z nodefs" _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\${wl}$no_entry_flag"' $compiler_flags ${wl}${allow_undefined_flag} '"\${wl}$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. _LT_TAGVAR(no_undefined_flag, $1)=' ${wl}-bernotok' _LT_TAGVAR(allow_undefined_flag, $1)=' ${wl}-berok' if test "$with_gnu_ld" = yes; then # We only use this code for GNU lds that support --whole-archive. _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive$convenience ${wl}--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives _LT_TAGVAR(whole_archive_flag_spec, $1)='$convenience' fi _LT_TAGVAR(archive_cmds_need_lc, $1)=yes # This is similar to how AIX traditionally builds its shared libraries. _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs ${wl}-bnoentry $compiler_flags ${wl}-bE:$export_symbols${allow_undefined_flag}~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$soname' fi fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='' ;; m68k) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac ;; bsdi[[45]]*) _LT_TAGVAR(export_dynamic_flag_spec, $1)=-rdynamic ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. case $cc_basename in cl*) # Native MSVC _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(file_list_spec, $1)='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=".dll" # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-dll~linknames=' _LT_TAGVAR(archive_expsym_cmds, $1)='if test "x`$SED 1q $export_symbols`" = xEXPORTS; then sed -n -e 's/\\\\\\\(.*\\\\\\\)/-link\\\ -EXPORT:\\\\\\\1/' -e '1\\\!p' < $export_symbols > $output_objdir/$soname.exp; else sed -e 's/\\\\\\\(.*\\\\\\\)/-link\\\ -EXPORT:\\\\\\\1/' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes _LT_TAGVAR(exclude_expsyms, $1)='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1,DATA/'\'' | $SED -e '\''/^[[AITW]][[ ]]/s/.*[[ ]]//'\'' | sort | uniq > $export_symbols' # Don't use ranlib _LT_TAGVAR(old_postinstall_cmds, $1)='chmod 644 $oldlib' _LT_TAGVAR(postlink_cmds, $1)='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile="$lt_outputfile.exe" lt_tool_outputfile="$lt_tool_outputfile.exe" ;; esac~ if test "$MANIFEST_TOOL" != ":" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # Assume MSVC wrapper _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=".dll" # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $lib $libobjs $compiler_flags `func_echo_all "$deplibs" | $SED '\''s/ -lc$//'\''` -link -dll~linknames=' # The linker will automatically build a .lib file if we build a DLL. _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' # FIXME: Should let the user specify the lib program. _LT_TAGVAR(old_archive_cmds, $1)='lib -OUT:$oldlib$oldobjs$old_deplibs' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; esac ;; darwin* | rhapsody*) _LT_DARWIN_LINKER_FEATURES($1) ;; dgux*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor # support. Future versions do this automatically, but an explicit c++rt0.o # does not break anything, and helps significantly (at the cost of a little # extra space). freebsd2.2*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags /usr/lib/c++rt0.o' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # Unfortunately, older versions of FreeBSD 2 do not have this feature. freebsd2.*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # FreeBSD 3 and greater uses gcc -shared to do shared libraries. freebsd* | dragonfly*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; hpux9*) if test "$GCC" = yes; then _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -shared $pic_flag ${wl}+b ${wl}$install_libdir -o $output_objdir/$soname $libobjs $deplibs $compiler_flags~test $output_objdir/$soname = $lib || mv $output_objdir/$soname $lib' else _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$LD -b +b $install_libdir -o $output_objdir/$soname $libobjs $deplibs $linker_flags~test $output_objdir/$soname = $lib || mv $output_objdir/$soname $lib' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}+b ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_direct, $1)=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' ;; hpux10*) if test "$GCC" = yes && test "$with_gnu_ld" = no; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi if test "$with_gnu_ld" = no; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}+b ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes fi ;; hpux11*) if test "$GCC" = yes && test "$with_gnu_ld" = no; then case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared ${wl}+h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag ${wl}+h ${wl}$soname ${wl}+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags' ;; esac else case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname ${wl}+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) m4_if($1, [], [ # Older versions of the 11.00 compiler do not understand -b yet # (HP92453-01 A.11.01.20 doesn't, HP92453-01 B.11.X.35175-35176.GP does) _LT_LINKER_OPTION([if $CC understands -b], _LT_TAGVAR(lt_cv_prog_compiler__b, $1), [-b], [_LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags'], [_LT_TAGVAR(archive_cmds, $1)='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags'])], [_LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $libobjs $deplibs $compiler_flags']) ;; esac fi if test "$with_gnu_ld" = no; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}+b ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: case $host_cpu in hppa*64*|ia64*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) if test "$GCC" = yes; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' # Try to use the -exported_symbol ld option, if it does not # work, assume that -exports_file does not work either and # implicitly export all symbols. # This should be the same for all languages, so no per-tag cache variable. AC_CACHE_CHECK([whether the $host_os linker accepts -exported_symbol], [lt_cv_irix_exported_symbol], [save_LDFLAGS="$LDFLAGS" LDFLAGS="$LDFLAGS -shared ${wl}-exported_symbol ${wl}foo ${wl}-update_registry ${wl}/dev/null" AC_LINK_IFELSE( [AC_LANG_SOURCE( [AC_LANG_CASE([C], [[int foo (void) { return 0; }]], [C++], [[int foo (void) { return 0; }]], [Fortran 77], [[ subroutine foo end]], [Fortran], [[ subroutine foo end]])])], [lt_cv_irix_exported_symbol=yes], [lt_cv_irix_exported_symbol=no]) LDFLAGS="$save_LDFLAGS"]) if test "$lt_cv_irix_exported_symbol" = yes; then _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations ${wl}-exports_file ${wl}$export_symbols -o $lib' fi else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -exports_file $export_symbols -o $lib' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(inherit_rpath, $1)=yes _LT_TAGVAR(link_all_deplibs, $1)=yes ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' # a.out else _LT_TAGVAR(archive_cmds, $1)='$LD -shared -o $lib $libobjs $deplibs $linker_flags' # ELF fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; newsos6) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *nto* | *qnx*) ;; openbsd*) if test -f /usr/libexec/ld.so; then _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=yes if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags ${wl}-retain-symbols-file,$export_symbols' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' else case $host_os in openbsd[[01]].* | openbsd2.[[0-7]] | openbsd2.[[0-7]].*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' ;; esac fi else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY $libname INITINSTANCE" > $output_objdir/$libname.def~$ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~echo DATA >> $output_objdir/$libname.def~echo " SINGLE NONSHARED" >> $output_objdir/$libname.def~echo EXPORTS >> $output_objdir/$libname.def~emxexp $libobjs >> $output_objdir/$libname.def~$CC -Zdll -Zcrtdll -o $lib $libobjs $deplibs $compiler_flags $output_objdir/$libname.def' _LT_TAGVAR(old_archive_from_new_cmds, $1)='emximp -o $output_objdir/$libname.a $output_objdir/$libname.def' ;; osf3*) if test "$GCC" = yes; then _LT_TAGVAR(allow_undefined_flag, $1)=' ${wl}-expect_unresolved ${wl}\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared${allow_undefined_flag} $libobjs $deplibs $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' else _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared${allow_undefined_flag} $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: ;; osf4* | osf5*) # as osf3* with the addition of -msym flag if test "$GCC" = yes; then _LT_TAGVAR(allow_undefined_flag, $1)=' ${wl}-expect_unresolved ${wl}\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared${allow_undefined_flag} $pic_flag $libobjs $deplibs $compiler_flags ${wl}-msym ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' else _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared${allow_undefined_flag} $libobjs $deplibs $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done; printf "%s\\n" "-hidden">> $lib.exp~ $CC -shared${allow_undefined_flag} ${wl}-input ${wl}$lib.exp $compiler_flags $libobjs $deplibs -soname $soname `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib~$RM $lib.exp' # Both c and cxx compiler support -rpath directly _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_separator, $1)=: ;; solaris*) _LT_TAGVAR(no_undefined_flag, $1)=' -z defs' if test "$GCC" = yes; then wlarc='${wl}' _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag ${wl}-z ${wl}text ${wl}-h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag ${wl}-z ${wl}text ${wl}-M ${wl}$lib.exp ${wl}-h ${wl}$soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' else case `$CC -V 2>&1` in *"Compilers 5.0"*) wlarc='' _LT_TAGVAR(archive_cmds, $1)='$LD -G${allow_undefined_flag} -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $LD -G${allow_undefined_flag} -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linker_flags~$RM $lib.exp' ;; *) wlarc='${wl}' _LT_TAGVAR(archive_cmds, $1)='$CC -G${allow_undefined_flag} -h $soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G${allow_undefined_flag} -M $lib.exp -h $soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' ;; esac fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands `-z linker_flag'. GCC discards it without `$wl', # but is careful enough not to reorder. # Supported since Solaris 2.6 (maybe 2.5.1?) if test "$GCC" = yes; then _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}-z ${wl}allextract$convenience ${wl}-z ${wl}defaultextract' else _LT_TAGVAR(whole_archive_flag_spec, $1)='-z allextract$convenience -z defaultextract' fi ;; esac _LT_TAGVAR(link_all_deplibs, $1)=yes ;; sunos4*) if test "x$host_vendor" = xsequent; then # Use $CC to link under sequent, because it throws in some extra .o # files that make .init and .fini sections work. _LT_TAGVAR(archive_cmds, $1)='$CC -G ${wl}-h $soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linker_flags' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; sysv4) case $host_vendor in sni) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes # is this really true??? ;; siemens) ## LD is ld it makes a PLAMLIB ## CC just makes a GrossModule. _LT_TAGVAR(archive_cmds, $1)='$LD -G -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(reload_cmds, $1)='$CC -r -o $output$reload_objs' _LT_TAGVAR(hardcode_direct, $1)=no ;; motorola) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=no #Motorola manual says yes, but my tests say they lie ;; esac runpath_var='LD_RUN_PATH' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; sysv4.3*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)='-Bexport' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var=LD_RUN_PATH hardcode_runpath_var=yes _LT_TAGVAR(ld_shlibs, $1)=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[[01]].[[10]]* | unixware7* | sco3.2v5.0.[[024]]*) _LT_TAGVAR(no_undefined_flag, $1)='${wl}-z,text' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var='LD_RUN_PATH' if test "$GCC" = yes; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$CC -G ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We can NOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. _LT_TAGVAR(no_undefined_flag, $1)='${wl}-z,text' _LT_TAGVAR(allow_undefined_flag, $1)='${wl}-z,nodefs' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-R,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-Bexport' runpath_var='LD_RUN_PATH' if test "$GCC" = yes; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$CC -G ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; uts4*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(ld_shlibs, $1)=no ;; esac if test x$host_vendor = xsni; then case $host in sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-Blargedynsym' ;; esac fi fi ]) AC_MSG_RESULT([$_LT_TAGVAR(ld_shlibs, $1)]) test "$_LT_TAGVAR(ld_shlibs, $1)" = no && can_build_shared=no _LT_TAGVAR(with_gnu_ld, $1)=$with_gnu_ld _LT_DECL([], [libext], [0], [Old archive suffix (normally "a")])dnl _LT_DECL([], [shrext_cmds], [1], [Shared library suffix (normally ".so")])dnl _LT_DECL([], [extract_expsyms_cmds], [2], [The commands to extract the exported symbol list from a shared archive]) # # Do we need to explicitly link libc? # case "x$_LT_TAGVAR(archive_cmds_need_lc, $1)" in x|xyes) # Assume -lc should be added _LT_TAGVAR(archive_cmds_need_lc, $1)=yes if test "$enable_shared" = yes && test "$GCC" = yes; then case $_LT_TAGVAR(archive_cmds, $1) in *'~'*) # FIXME: we may have to deal with multi-command sequences. ;; '$CC '*) # Test whether the compiler implicitly links with -lc since on some # systems, -lgcc has to come before -lc. If gcc already passes -lc # to ld, don't add -lc before -lgcc. AC_CACHE_CHECK([whether -lc should be explicitly linked in], [lt_cv_]_LT_TAGVAR(archive_cmds_need_lc, $1), [$RM conftest* echo "$lt_simple_compile_test_code" > conftest.$ac_ext if AC_TRY_EVAL(ac_compile) 2>conftest.err; then soname=conftest lib=conftest libobjs=conftest.$ac_objext deplibs= wl=$_LT_TAGVAR(lt_prog_compiler_wl, $1) pic_flag=$_LT_TAGVAR(lt_prog_compiler_pic, $1) compiler_flags=-v linker_flags=-v verstring= output_objdir=. libname=conftest lt_save_allow_undefined_flag=$_LT_TAGVAR(allow_undefined_flag, $1) _LT_TAGVAR(allow_undefined_flag, $1)= if AC_TRY_EVAL(_LT_TAGVAR(archive_cmds, $1) 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1) then lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1)=no else lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1)=yes fi _LT_TAGVAR(allow_undefined_flag, $1)=$lt_save_allow_undefined_flag else cat conftest.err 1>&5 fi $RM conftest* ]) _LT_TAGVAR(archive_cmds_need_lc, $1)=$lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1) ;; esac fi ;; esac _LT_TAGDECL([build_libtool_need_lc], [archive_cmds_need_lc], [0], [Whether or not to add -lc for building shared libraries]) _LT_TAGDECL([allow_libtool_libs_with_static_runtimes], [enable_shared_with_static_runtimes], [0], [Whether or not to disallow shared libs when runtime libs are static]) _LT_TAGDECL([], [export_dynamic_flag_spec], [1], [Compiler flag to allow reflexive dlopens]) _LT_TAGDECL([], [whole_archive_flag_spec], [1], [Compiler flag to generate shared objects directly from archives]) _LT_TAGDECL([], [compiler_needs_object], [1], [Whether the compiler copes with passing no objects directly]) _LT_TAGDECL([], [old_archive_from_new_cmds], [2], [Create an old-style archive from a shared archive]) _LT_TAGDECL([], [old_archive_from_expsyms_cmds], [2], [Create a temporary old-style archive to link instead of a shared archive]) _LT_TAGDECL([], [archive_cmds], [2], [Commands used to build a shared archive]) _LT_TAGDECL([], [archive_expsym_cmds], [2]) _LT_TAGDECL([], [module_cmds], [2], [Commands used to build a loadable module if different from building a shared archive.]) _LT_TAGDECL([], [module_expsym_cmds], [2]) _LT_TAGDECL([], [with_gnu_ld], [1], [Whether we are building with GNU ld or not]) _LT_TAGDECL([], [allow_undefined_flag], [1], [Flag that allows shared libraries with undefined symbols to be built]) _LT_TAGDECL([], [no_undefined_flag], [1], [Flag that enforces no undefined symbols]) _LT_TAGDECL([], [hardcode_libdir_flag_spec], [1], [Flag to hardcode $libdir into a binary during linking. This must work even if $libdir does not exist]) _LT_TAGDECL([], [hardcode_libdir_separator], [1], [Whether we need a single "-rpath" flag with a separated argument]) _LT_TAGDECL([], [hardcode_direct], [0], [Set to "yes" if using DIR/libNAME${shared_ext} during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_direct_absolute], [0], [Set to "yes" if using DIR/libNAME${shared_ext} during linking hardcodes DIR into the resulting binary and the resulting library dependency is "absolute", i.e impossible to change by setting ${shlibpath_var} if the library is relocated]) _LT_TAGDECL([], [hardcode_minus_L], [0], [Set to "yes" if using the -LDIR flag during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_shlibpath_var], [0], [Set to "yes" if using SHLIBPATH_VAR=DIR during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_automatic], [0], [Set to "yes" if building a shared library automatically hardcodes DIR into the library and all subsequent libraries and executables linked against it]) _LT_TAGDECL([], [inherit_rpath], [0], [Set to yes if linker adds runtime paths of dependent libraries to runtime path list]) _LT_TAGDECL([], [link_all_deplibs], [0], [Whether libtool must link a program against all its dependency libraries]) _LT_TAGDECL([], [always_export_symbols], [0], [Set to "yes" if exported symbols are required]) _LT_TAGDECL([], [export_symbols_cmds], [2], [The commands to list exported symbols]) _LT_TAGDECL([], [exclude_expsyms], [1], [Symbols that should not be listed in the preloaded symbols]) _LT_TAGDECL([], [include_expsyms], [1], [Symbols that must always be exported]) _LT_TAGDECL([], [prelink_cmds], [2], [Commands necessary for linking programs (against libraries) with templates]) _LT_TAGDECL([], [postlink_cmds], [2], [Commands necessary for finishing linking programs]) _LT_TAGDECL([], [file_list_spec], [1], [Specify filename containing input files]) dnl FIXME: Not yet implemented dnl _LT_TAGDECL([], [thread_safe_flag_spec], [1], dnl [Compiler flag to generate thread safe objects]) ])# _LT_LINKER_SHLIBS # _LT_LANG_C_CONFIG([TAG]) # ------------------------ # Ensure that the configuration variables for a C compiler are suitably # defined. These variables are subsequently used by _LT_CONFIG to write # the compiler configuration to `libtool'. m4_defun([_LT_LANG_C_CONFIG], [m4_require([_LT_DECL_EGREP])dnl lt_save_CC="$CC" AC_LANG_PUSH(C) # Source file extension for C test sources. ac_ext=c # Object file extension for compiled C test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(){return(0);}' _LT_TAG_COMPILER # Save the default compiler, since it gets overwritten when the other # tags are being tested, and _LT_TAGVAR(compiler, []) is a NOP. compiler_DEFAULT=$CC # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) LT_SYS_DLOPEN_SELF _LT_CMD_STRIPLIB # Report which library types will actually be built AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test "$can_build_shared" = "no" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test "$enable_shared" = yes && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test "$host_cpu" != ia64 && test "$aix_use_runtimelinking" = no ; then test "$enable_shared" = yes && enable_static=no fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test "$enable_shared" = yes || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_CONFIG($1) fi AC_LANG_POP CC="$lt_save_CC" ])# _LT_LANG_C_CONFIG # _LT_LANG_CXX_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for a C++ compiler are suitably # defined. These variables are subsequently used by _LT_CONFIG to write # the compiler configuration to `libtool'. m4_defun([_LT_LANG_CXX_CONFIG], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_PATH_MANIFEST_TOOL])dnl if test -n "$CXX" && ( test "X$CXX" != "Xno" && ( (test "X$CXX" = "Xg++" && `g++ -v >/dev/null 2>&1` ) || (test "X$CXX" != "Xg++"))) ; then AC_PROG_CXXCPP else _lt_caught_CXX_error=yes fi AC_LANG_PUSH(C++) _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(compiler_needs_object, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for C++ test sources. ac_ext=cpp # Object file extension for compiled C++ test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the CXX compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test "$_lt_caught_CXX_error" != yes; then # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(int, char *[[]]) { return(0); }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_LD=$LD lt_save_GCC=$GCC GCC=$GXX lt_save_with_gnu_ld=$with_gnu_ld lt_save_path_LD=$lt_cv_path_LD if test -n "${lt_cv_prog_gnu_ldcxx+set}"; then lt_cv_prog_gnu_ld=$lt_cv_prog_gnu_ldcxx else $as_unset lt_cv_prog_gnu_ld fi if test -n "${lt_cv_path_LDCXX+set}"; then lt_cv_path_LD=$lt_cv_path_LDCXX else $as_unset lt_cv_path_LD fi test -z "${LDCXX+set}" || LD=$LDCXX CC=${CXX-"c++"} CFLAGS=$CXXFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) if test -n "$compiler"; then # We don't want -fno-exception when compiling C++ code, so set the # no_builtin_flag separately if test "$GXX" = yes; then _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -fno-builtin' else _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)= fi if test "$GXX" = yes; then # Set up default GNU C++ configuration LT_PATH_LD # Check if GNU C++ uses GNU ld as the underlying linker, since the # archiving commands below assume that GNU ld is being used. if test "$with_gnu_ld" = yes; then _LT_TAGVAR(archive_cmds, $1)='$CC $pic_flag -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC $pic_flag -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-dynamic' # If archive_cmds runs LD, not CC, wlarc should be empty # XXX I think wlarc can be eliminated in ltcf-cxx, but I need to # investigate it a little bit more. (MM) wlarc='${wl}' # ancient GNU ld didn't support --whole-archive et. al. if eval "`$CC -print-prog-name=ld` --help 2>&1" | $GREP 'no-whole-archive' > /dev/null; then _LT_TAGVAR(whole_archive_flag_spec, $1)="$wlarc"'--whole-archive$convenience '"$wlarc"'--no-whole-archive' else _LT_TAGVAR(whole_archive_flag_spec, $1)= fi else with_gnu_ld=no wlarc= # A generic and very simple default shared library creation # command for GNU C++ for the case where it uses the native # linker, instead of GNU ld. If possible, this setting should # overridden to take advantage of the native linker features on # the platform it is being used on. _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $lib' fi # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else GXX=no with_gnu_ld=no wlarc= fi # PORTME: fill in a description of your system's C++ link characteristics AC_MSG_CHECKING([whether the $compiler linker ($LD) supports shared libraries]) _LT_TAGVAR(ld_shlibs, $1)=yes case $host_os in aix3*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aix[[4-9]]*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag="" else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[[23]]|aix4.[[23]].*|aix[[5-9]]*) for ld_flag in $LDFLAGS; do case $ld_flag in *-brtl*) aix_use_runtimelinking=yes break ;; esac done ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. _LT_TAGVAR(archive_cmds, $1)='' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(file_list_spec, $1)='${wl}-f,' if test "$GXX" = yes; then case $host_os in aix4.[[012]]|aix4.[[012]].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 _LT_TAGVAR(hardcode_direct, $1)=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)= fi esac shared_flag='-shared' if test "$aix_use_runtimelinking" = yes; then shared_flag="$shared_flag "'${wl}-G' fi else # not using gcc if test "$host_cpu" = ia64; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test "$aix_use_runtimelinking" = yes; then shared_flag='${wl}-G' else shared_flag='${wl}-bM:SRE' fi fi fi _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to # export. _LT_TAGVAR(always_export_symbols, $1)=yes if test "$aix_use_runtimelinking" = yes; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. _LT_TAGVAR(allow_undefined_flag, $1)='-berok' # Determine the default libpath from the value encoded in an empty # executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-blibpath:$libdir:'"$aix_libpath" _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $deplibs '"\${wl}$no_entry_flag"' $compiler_flags `if test "x${allow_undefined_flag}" != "x"; then func_echo_all "${wl}${allow_undefined_flag}"; else :; fi` '"\${wl}$exp_sym_flag:\$export_symbols $shared_flag" else if test "$host_cpu" = ia64; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-R $libdir:/usr/lib:/lib' _LT_TAGVAR(allow_undefined_flag, $1)="-z nodefs" _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\${wl}$no_entry_flag"' $compiler_flags ${wl}${allow_undefined_flag} '"\${wl}$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. _LT_TAGVAR(no_undefined_flag, $1)=' ${wl}-bernotok' _LT_TAGVAR(allow_undefined_flag, $1)=' ${wl}-berok' if test "$with_gnu_ld" = yes; then # We only use this code for GNU lds that support --whole-archive. _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive$convenience ${wl}--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives _LT_TAGVAR(whole_archive_flag_spec, $1)='$convenience' fi _LT_TAGVAR(archive_cmds_need_lc, $1)=yes # This is similar to how AIX traditionally builds its shared # libraries. _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs ${wl}-bnoentry $compiler_flags ${wl}-bE:$export_symbols${allow_undefined_flag}~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$soname' fi fi ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME _LT_TAGVAR(archive_cmds, $1)='$CC -nostart $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; chorus*) case $cc_basename in *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; cygwin* | mingw* | pw32* | cegcc*) case $GXX,$cc_basename in ,cl* | no,cl*) # Native MSVC # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(file_list_spec, $1)='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=".dll" # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-dll~linknames=' _LT_TAGVAR(archive_expsym_cmds, $1)='if test "x`$SED 1q $export_symbols`" = xEXPORTS; then $SED -n -e 's/\\\\\\\(.*\\\\\\\)/-link\\\ -EXPORT:\\\\\\\1/' -e '1\\\!p' < $export_symbols > $output_objdir/$soname.exp; else $SED -e 's/\\\\\\\(.*\\\\\\\)/-link\\\ -EXPORT:\\\\\\\1/' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes # Don't use ranlib _LT_TAGVAR(old_postinstall_cmds, $1)='chmod 644 $oldlib' _LT_TAGVAR(postlink_cmds, $1)='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile="$lt_outputfile.exe" lt_tool_outputfile="$lt_tool_outputfile.exe" ;; esac~ func_to_tool_file "$lt_outputfile"~ if test "$MANIFEST_TOOL" != ":" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # g++ # _LT_TAGVAR(hardcode_libdir_flag_spec, $1) is actually meaningless, # as there is no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-all-symbols' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $output_objdir/$soname ${wl}--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file (1st line # is EXPORTS), use it as is; otherwise, prepend... _LT_TAGVAR(archive_expsym_cmds, $1)='if test "x`$SED 1q $export_symbols`" = xEXPORTS; then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared -nostdlib $output_objdir/$soname.def $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $output_objdir/$soname ${wl}--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; darwin* | rhapsody*) _LT_DARWIN_LINKER_FEATURES($1) ;; dgux*) case $cc_basename in ec++*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; ghcx*) # Green Hills C++ Compiler # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; freebsd2.*) # C++ shared libraries reported to be fairly broken before # switch to ELF _LT_TAGVAR(ld_shlibs, $1)=no ;; freebsd-elf*) _LT_TAGVAR(archive_cmds_need_lc, $1)=no ;; freebsd* | dragonfly*) # FreeBSD 3 and later use GNU C++ and GNU ld with standard ELF # conventions _LT_TAGVAR(ld_shlibs, $1)=yes ;; gnu*) ;; haiku*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(link_all_deplibs, $1)=yes ;; hpux9*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}+b ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes # Not in the search PATH, # but as the default # location of the library. case $cc_basename in CC*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aCC*) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -b ${wl}+b ${wl}$install_libdir -o $output_objdir/$soname $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~test $output_objdir/$soname = $lib || mv $output_objdir/$soname $lib' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`($CC -b $CFLAGS -v conftest.$objext 2>&1) | $EGREP "\-L"`; list=""; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test "$GXX" = yes; then _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -shared -nostdlib $pic_flag ${wl}+b ${wl}$install_libdir -o $output_objdir/$soname $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~test $output_objdir/$soname = $lib || mv $output_objdir/$soname $lib' else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; hpux10*|hpux11*) if test $with_gnu_ld = no; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}+b ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: case $host_cpu in hppa*64*|ia64*) ;; *) _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' ;; esac fi case $host_cpu in hppa*64*|ia64*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes # Not in the search PATH, # but as the default # location of the library. ;; esac case $cc_basename in CC*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aCC*) case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname ${wl}+nodefaultrpath -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -b ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; esac # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`($CC -b $CFLAGS -v conftest.$objext 2>&1) | $GREP "\-L"`; list=""; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test "$GXX" = yes; then if test $with_gnu_ld = no; then case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib -fPIC ${wl}+h ${wl}$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $pic_flag ${wl}+h ${wl}$soname ${wl}+nodefaultrpath -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $pic_flag ${wl}+h ${wl}$soname ${wl}+b ${wl}$install_libdir -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; esac fi else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; interix[[3-9]]*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-h,$soname ${wl}--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='sed "s,^,_," $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags ${wl}-h,$soname ${wl}--retain-symbols-file,$output_objdir/$soname.expsym ${wl}--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; irix5* | irix6*) case $cc_basename in CC*) # SGI C++ _LT_TAGVAR(archive_cmds, $1)='$CC -shared -all -multigot $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' # Archives containing C++ object files must be created using # "CC -ar", where "CC" is the IRIX C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -ar -WR,-u -o $oldlib $oldobjs' ;; *) if test "$GXX" = yes; then if test "$with_gnu_ld" = no; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` -o $lib' fi fi _LT_TAGVAR(link_all_deplibs, $1)=yes ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(inherit_rpath, $1)=yes ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in KCC*) # Kuck and Associates, Inc. (KAI) C++ Compiler # KCC will only create a shared library if the output file # ends with ".so" (or ".sl" for HP-UX), so rename the library # to its proper name (with version) after linking. _LT_TAGVAR(archive_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo $lib | $SED -e "s/\${tempext}\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib; mv \$templib $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo $lib | $SED -e "s/\${tempext}\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib ${wl}-retain-symbols-file,$export_symbols; mv \$templib $lib' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC $CFLAGS -v conftest.$objext -o libconftest$shared_ext 2>&1 | $GREP "ld"`; rm -f libconftest$shared_ext; list=""; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-dynamic' # Archives containing C++ object files must be created using # "CC -Bstatic", where "CC" is the KAI C++ compiler. _LT_TAGVAR(old_archive_cmds, $1)='$CC -Bstatic -o $oldlib $oldobjs' ;; icpc* | ecpc* ) # Intel C++ with_gnu_ld=yes # version 8.0 and above of icpc choke on multiply defined symbols # if we add $predep_objects and $postdep_objects, however 7.1 and # earlier do not add the objects themselves. case `$CC -V 2>&1` in *"Version 7."*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' ;; *) # Version 8.0 or newer tmp_idyn= case $host_cpu in ia64*) tmp_idyn=' -i_dynamic';; esac _LT_TAGVAR(archive_cmds, $1)='$CC -shared'"$tmp_idyn"' $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared'"$tmp_idyn"' $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-retain-symbols-file $wl$export_symbols -o $lib' ;; esac _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-dynamic' _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive$convenience ${wl}--no-whole-archive' ;; pgCC* | pgcpp*) # Portland Group C++ compiler case `$CC -V` in *pgCC\ [[1-5]].* | *pgcpp\ [[1-5]].*) _LT_TAGVAR(prelink_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $objs $libobjs $compile_deplibs~ compile_command="$compile_command `find $tpldir -name \*.o | sort | $NL2SP`"' _LT_TAGVAR(old_archive_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $oldobjs$old_deplibs~ $AR $AR_FLAGS $oldlib$oldobjs$old_deplibs `find $tpldir -name \*.o | sort | $NL2SP`~ $RANLIB $oldlib' _LT_TAGVAR(archive_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $predep_objects $libobjs $deplibs $convenience $postdep_objects~ $CC -shared $pic_flag $predep_objects $libobjs $deplibs `find $tpldir -name \*.o | sort | $NL2SP` $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $predep_objects $libobjs $deplibs $convenience $postdep_objects~ $CC -shared $pic_flag $predep_objects $libobjs $deplibs `find $tpldir -name \*.o | sort | $NL2SP` $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname ${wl}-retain-symbols-file ${wl}$export_symbols -o $lib' ;; *) # Version 6 and above use weak symbols _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname ${wl}-retain-symbols-file ${wl}$export_symbols -o $lib' ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}--rpath ${wl}$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-dynamic' _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' ;; cxx*) # Compaq C++ _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $wl$soname -o $lib ${wl}-retain-symbols-file $wl$export_symbols' runpath_var=LD_RUN_PATH _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP "ld"`; templist=`func_echo_all "$templist" | $SED "s/\(^.*ld.*\)\( .*ld .*$\)/\1/"`; list=""; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "X$list" | $Xsed' ;; xl* | mpixl* | bgxl*) # IBM XL 8.0 on PPC, with GNU ld _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}--export-dynamic' _LT_TAGVAR(archive_cmds, $1)='$CC -qmkshrobj $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname -o $lib' if test "x$supports_anon_versioning" = xyes; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC -qmkshrobj $libobjs $deplibs $compiler_flags ${wl}-soname $wl$soname ${wl}-version-script ${wl}$output_objdir/$libname.ver -o $lib' fi ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 _LT_TAGVAR(no_undefined_flag, $1)=' -zdefs' _LT_TAGVAR(archive_cmds, $1)='$CC -G${allow_undefined_flag} -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G${allow_undefined_flag} -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-retain-symbols-file ${wl}$export_symbols' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` ${wl}--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes # Not sure whether something based on # $CC $CFLAGS -v conftest.$objext -o libconftest$shared_ext 2>&1 # would be better. output_verbose_link_cmd='func_echo_all' # Archives containing C++ object files must be created using # "CC -xar", where "CC" is the Sun C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -xar -o $oldlib $oldobjs' ;; esac ;; esac ;; lynxos*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; m88k*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; mvs*) case $cc_basename in cxx*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $predep_objects $libobjs $deplibs $postdep_objects $linker_flags' wlarc= _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no fi # Workaround some broken pre-1.5 toolchains output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP conftest.$objext | $SED -e "s:-lgcc -lc -lgcc::"' ;; *nto* | *qnx*) _LT_TAGVAR(ld_shlibs, $1)=yes ;; openbsd2*) # C++ shared libraries are fairly broken _LT_TAGVAR(ld_shlibs, $1)=no ;; openbsd*) if test -f /usr/libexec/ld.so; then _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-retain-symbols-file,$export_symbols -o $lib' _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-E' _LT_TAGVAR(whole_archive_flag_spec, $1)="$wlarc"'--whole-archive$convenience '"$wlarc"'--no-whole-archive' fi output_verbose_link_cmd=func_echo_all else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; osf3* | osf4* | osf5*) case $cc_basename in KCC*) # Kuck and Associates, Inc. (KAI) C++ Compiler # KCC will only create a shared library if the output file # ends with ".so" (or ".sl" for HP-UX), so rename the library # to its proper name (with version) after linking. _LT_TAGVAR(archive_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo "$lib" | $SED -e "s/\${tempext}\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib; mv \$templib $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Archives containing C++ object files must be created using # the KAI C++ compiler. case $host in osf3*) _LT_TAGVAR(old_archive_cmds, $1)='$CC -Bstatic -o $oldlib $oldobjs' ;; *) _LT_TAGVAR(old_archive_cmds, $1)='$CC -o $oldlib $oldobjs' ;; esac ;; RCC*) # Rational C++ 2.4.1 # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; cxx*) case $host in osf3*) _LT_TAGVAR(allow_undefined_flag, $1)=' ${wl}-expect_unresolved ${wl}\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared${allow_undefined_flag} $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname $soname `test -n "$verstring" && func_echo_all "${wl}-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' ;; *) _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared${allow_undefined_flag} $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done~ echo "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -msym -soname $soname ${wl}-input ${wl}$lib.exp `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry ${output_objdir}/so_locations -o $lib~ $RM $lib.exp' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' ;; esac _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP "ld" | $GREP -v "ld:"`; templist=`func_echo_all "$templist" | $SED "s/\(^.*ld.*\)\( .*ld.*$\)/\1/"`; list=""; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test "$GXX" = yes && test "$with_gnu_ld" = no; then _LT_TAGVAR(allow_undefined_flag, $1)=' ${wl}-expect_unresolved ${wl}\*' case $host in osf3*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib ${allow_undefined_flag} $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib ${allow_undefined_flag} $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-msym ${wl}-soname ${wl}$soname `test -n "$verstring" && func_echo_all "${wl}-set_version ${wl}$verstring"` ${wl}-update_registry ${wl}${output_objdir}/so_locations -o $lib' ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-rpath ${wl}$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; psos*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; sunos4*) case $cc_basename in CC*) # Sun C++ 4.x # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; lcc*) # Lucid # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; solaris*) case $cc_basename in CC* | sunCC*) # Sun C++ 4.2, 5.x and Centerline C++ _LT_TAGVAR(archive_cmds_need_lc,$1)=yes _LT_TAGVAR(no_undefined_flag, $1)=' -zdefs' _LT_TAGVAR(archive_cmds, $1)='$CC -G${allow_undefined_flag} -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G${allow_undefined_flag} ${wl}-M ${wl}$lib.exp -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands `-z linker_flag'. # Supported since Solaris 2.6 (maybe 2.5.1?) _LT_TAGVAR(whole_archive_flag_spec, $1)='-z allextract$convenience -z defaultextract' ;; esac _LT_TAGVAR(link_all_deplibs, $1)=yes output_verbose_link_cmd='func_echo_all' # Archives containing C++ object files must be created using # "CC -xar", where "CC" is the Sun C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -xar -o $oldlib $oldobjs' ;; gcx*) # Green Hills C++ Compiler _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-h $wl$soname -o $lib' # The C++ compiler must be used to create the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC $LDFLAGS -archive -o $oldlib $oldobjs' ;; *) # GNU C++ compiler with Solaris linker if test "$GXX" = yes && test "$with_gnu_ld" = no; then _LT_TAGVAR(no_undefined_flag, $1)=' ${wl}-z ${wl}defs' if $CC --version | $GREP -v '^2\.7' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $LDFLAGS $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-h $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag -nostdlib ${wl}-M $wl$lib.exp -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else # g++ 2.7 appears to require `-G' NOT `-shared' on this # platform. _LT_TAGVAR(archive_cmds, $1)='$CC -G -nostdlib $LDFLAGS $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags ${wl}-h $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G -nostdlib ${wl}-M $wl$lib.exp -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -G $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-R $wl$libdir' case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) _LT_TAGVAR(whole_archive_flag_spec, $1)='${wl}-z ${wl}allextract$convenience ${wl}-z ${wl}defaultextract' ;; esac fi ;; esac ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[[01]].[[10]]* | unixware7* | sco3.2v5.0.[[024]]*) _LT_TAGVAR(no_undefined_flag, $1)='${wl}-z,text' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var='LD_RUN_PATH' case $cc_basename in CC*) _LT_TAGVAR(archive_cmds, $1)='$CC -G ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We can NOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. _LT_TAGVAR(no_undefined_flag, $1)='${wl}-z,text' _LT_TAGVAR(allow_undefined_flag, $1)='${wl}-z,nodefs' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='${wl}-R,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='${wl}-Bexport' runpath_var='LD_RUN_PATH' case $cc_basename in CC*) _LT_TAGVAR(archive_cmds, $1)='$CC -G ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(old_archive_cmds, $1)='$CC -Tprelink_objects $oldobjs~ '"$_LT_TAGVAR(old_archive_cmds, $1)" _LT_TAGVAR(reload_cmds, $1)='$CC -Tprelink_objects $reload_objs~ '"$_LT_TAGVAR(reload_cmds, $1)" ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared ${wl}-Bexport:$export_symbols ${wl}-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; tandem*) case $cc_basename in NCC*) # NonStop-UX NCC 3.20 # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; vxworks*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac AC_MSG_RESULT([$_LT_TAGVAR(ld_shlibs, $1)]) test "$_LT_TAGVAR(ld_shlibs, $1)" = no && can_build_shared=no _LT_TAGVAR(GCC, $1)="$GXX" _LT_TAGVAR(LD, $1)="$LD" ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_SYS_HIDDEN_LIBDEPS($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS LDCXX=$LD LD=$lt_save_LD GCC=$lt_save_GCC with_gnu_ld=$lt_save_with_gnu_ld lt_cv_path_LDCXX=$lt_cv_path_LD lt_cv_path_LD=$lt_save_path_LD lt_cv_prog_gnu_ldcxx=$lt_cv_prog_gnu_ld lt_cv_prog_gnu_ld=$lt_save_with_gnu_ld fi # test "$_lt_caught_CXX_error" != yes AC_LANG_POP ])# _LT_LANG_CXX_CONFIG # _LT_FUNC_STRIPNAME_CNF # ---------------------- # func_stripname_cnf prefix suffix name # strip PREFIX and SUFFIX off of NAME. # PREFIX and SUFFIX must not contain globbing or regex special # characters, hashes, percent signs, but SUFFIX may contain a leading # dot (in which case that matches only a dot). # # This function is identical to the (non-XSI) version of func_stripname, # except this one can be used by m4 code that may be executed by configure, # rather than the libtool script. m4_defun([_LT_FUNC_STRIPNAME_CNF],[dnl AC_REQUIRE([_LT_DECL_SED]) AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH]) func_stripname_cnf () { case ${2} in .*) func_stripname_result=`$ECHO "${3}" | $SED "s%^${1}%%; s%\\\\${2}\$%%"`;; *) func_stripname_result=`$ECHO "${3}" | $SED "s%^${1}%%; s%${2}\$%%"`;; esac } # func_stripname_cnf ])# _LT_FUNC_STRIPNAME_CNF # _LT_SYS_HIDDEN_LIBDEPS([TAGNAME]) # --------------------------------- # Figure out "hidden" library dependencies from verbose # compiler output when linking a shared library. # Parse the compiler output and extract the necessary # objects, libraries and library flags. m4_defun([_LT_SYS_HIDDEN_LIBDEPS], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl AC_REQUIRE([_LT_FUNC_STRIPNAME_CNF])dnl # Dependencies to place before and after the object being linked: _LT_TAGVAR(predep_objects, $1)= _LT_TAGVAR(postdep_objects, $1)= _LT_TAGVAR(predeps, $1)= _LT_TAGVAR(postdeps, $1)= _LT_TAGVAR(compiler_lib_search_path, $1)= dnl we can't use the lt_simple_compile_test_code here, dnl because it contains code intended for an executable, dnl not a library. It's possible we should let each dnl tag define a new lt_????_link_test_code variable, dnl but it's only used here... m4_if([$1], [], [cat > conftest.$ac_ext <<_LT_EOF int a; void foo (void) { a = 0; } _LT_EOF ], [$1], [CXX], [cat > conftest.$ac_ext <<_LT_EOF class Foo { public: Foo (void) { a = 0; } private: int a; }; _LT_EOF ], [$1], [F77], [cat > conftest.$ac_ext <<_LT_EOF subroutine foo implicit none integer*4 a a=0 return end _LT_EOF ], [$1], [FC], [cat > conftest.$ac_ext <<_LT_EOF subroutine foo implicit none integer a a=0 return end _LT_EOF ], [$1], [GCJ], [cat > conftest.$ac_ext <<_LT_EOF public class foo { private int a; public void bar (void) { a = 0; } }; _LT_EOF ], [$1], [GO], [cat > conftest.$ac_ext <<_LT_EOF package foo func foo() { } _LT_EOF ]) _lt_libdeps_save_CFLAGS=$CFLAGS case "$CC $CFLAGS " in #( *\ -flto*\ *) CFLAGS="$CFLAGS -fno-lto" ;; *\ -fwhopr*\ *) CFLAGS="$CFLAGS -fno-whopr" ;; *\ -fuse-linker-plugin*\ *) CFLAGS="$CFLAGS -fno-use-linker-plugin" ;; esac dnl Parse the compiler output and extract the necessary dnl objects, libraries and library flags. if AC_TRY_EVAL(ac_compile); then # Parse the compiler output and extract the necessary # objects, libraries and library flags. # Sentinel used to keep track of whether or not we are before # the conftest object file. pre_test_object_deps_done=no for p in `eval "$output_verbose_link_cmd"`; do case ${prev}${p} in -L* | -R* | -l*) # Some compilers place space between "-{L,R}" and the path. # Remove the space. if test $p = "-L" || test $p = "-R"; then prev=$p continue fi # Expand the sysroot to ease extracting the directories later. if test -z "$prev"; then case $p in -L*) func_stripname_cnf '-L' '' "$p"; prev=-L; p=$func_stripname_result ;; -R*) func_stripname_cnf '-R' '' "$p"; prev=-R; p=$func_stripname_result ;; -l*) func_stripname_cnf '-l' '' "$p"; prev=-l; p=$func_stripname_result ;; esac fi case $p in =*) func_stripname_cnf '=' '' "$p"; p=$lt_sysroot$func_stripname_result ;; esac if test "$pre_test_object_deps_done" = no; then case ${prev} in -L | -R) # Internal compiler library paths should come after those # provided the user. The postdeps already come after the # user supplied libs so there is no need to process them. if test -z "$_LT_TAGVAR(compiler_lib_search_path, $1)"; then _LT_TAGVAR(compiler_lib_search_path, $1)="${prev}${p}" else _LT_TAGVAR(compiler_lib_search_path, $1)="${_LT_TAGVAR(compiler_lib_search_path, $1)} ${prev}${p}" fi ;; # The "-l" case would never come before the object being # linked, so don't bother handling this case. esac else if test -z "$_LT_TAGVAR(postdeps, $1)"; then _LT_TAGVAR(postdeps, $1)="${prev}${p}" else _LT_TAGVAR(postdeps, $1)="${_LT_TAGVAR(postdeps, $1)} ${prev}${p}" fi fi prev= ;; *.lto.$objext) ;; # Ignore GCC LTO objects *.$objext) # This assumes that the test object file only shows up # once in the compiler output. if test "$p" = "conftest.$objext"; then pre_test_object_deps_done=yes continue fi if test "$pre_test_object_deps_done" = no; then if test -z "$_LT_TAGVAR(predep_objects, $1)"; then _LT_TAGVAR(predep_objects, $1)="$p" else _LT_TAGVAR(predep_objects, $1)="$_LT_TAGVAR(predep_objects, $1) $p" fi else if test -z "$_LT_TAGVAR(postdep_objects, $1)"; then _LT_TAGVAR(postdep_objects, $1)="$p" else _LT_TAGVAR(postdep_objects, $1)="$_LT_TAGVAR(postdep_objects, $1) $p" fi fi ;; *) ;; # Ignore the rest. esac done # Clean up. rm -f a.out a.exe else echo "libtool.m4: error: problem compiling $1 test program" fi $RM -f confest.$objext CFLAGS=$_lt_libdeps_save_CFLAGS # PORTME: override above test on systems where it is broken m4_if([$1], [CXX], [case $host_os in interix[[3-9]]*) # Interix 3.5 installs completely hosed .la files for C++, so rather than # hack all around it, let's just trust "g++" to DTRT. _LT_TAGVAR(predep_objects,$1)= _LT_TAGVAR(postdep_objects,$1)= _LT_TAGVAR(postdeps,$1)= ;; linux*) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 # The more standards-conforming stlport4 library is # incompatible with the Cstd library. Avoid specifying # it if it's in CXXFLAGS. Ignore libCrun as # -library=stlport4 depends on it. case " $CXX $CXXFLAGS " in *" -library=stlport4 "*) solaris_use_stlport4=yes ;; esac if test "$solaris_use_stlport4" != yes; then _LT_TAGVAR(postdeps,$1)='-library=Cstd -library=Crun' fi ;; esac ;; solaris*) case $cc_basename in CC* | sunCC*) # The more standards-conforming stlport4 library is # incompatible with the Cstd library. Avoid specifying # it if it's in CXXFLAGS. Ignore libCrun as # -library=stlport4 depends on it. case " $CXX $CXXFLAGS " in *" -library=stlport4 "*) solaris_use_stlport4=yes ;; esac # Adding this requires a known-good setup of shared libraries for # Sun compiler versions before 5.6, else PIC objects from an old # archive will be linked into the output, leading to subtle bugs. if test "$solaris_use_stlport4" != yes; then _LT_TAGVAR(postdeps,$1)='-library=Cstd -library=Crun' fi ;; esac ;; esac ]) case " $_LT_TAGVAR(postdeps, $1) " in *" -lc "*) _LT_TAGVAR(archive_cmds_need_lc, $1)=no ;; esac _LT_TAGVAR(compiler_lib_search_dirs, $1)= if test -n "${_LT_TAGVAR(compiler_lib_search_path, $1)}"; then _LT_TAGVAR(compiler_lib_search_dirs, $1)=`echo " ${_LT_TAGVAR(compiler_lib_search_path, $1)}" | ${SED} -e 's! -L! !g' -e 's!^ !!'` fi _LT_TAGDECL([], [compiler_lib_search_dirs], [1], [The directories searched by this compiler when creating a shared library]) _LT_TAGDECL([], [predep_objects], [1], [Dependencies to place before and after the objects being linked to create a shared library]) _LT_TAGDECL([], [postdep_objects], [1]) _LT_TAGDECL([], [predeps], [1]) _LT_TAGDECL([], [postdeps], [1]) _LT_TAGDECL([], [compiler_lib_search_path], [1], [The library search path used internally by the compiler when linking a shared library]) ])# _LT_SYS_HIDDEN_LIBDEPS # _LT_LANG_F77_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for a Fortran 77 compiler are # suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to `libtool'. m4_defun([_LT_LANG_F77_CONFIG], [AC_LANG_PUSH(Fortran 77) if test -z "$F77" || test "X$F77" = "Xno"; then _lt_disable_F77=yes fi _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for f77 test sources. ac_ext=f # Object file extension for compiled f77 test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the F77 compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test "$_lt_disable_F77" != yes; then # Code to be used in simple compile tests lt_simple_compile_test_code="\ subroutine t return end " # Code to be used in simple link tests lt_simple_link_test_code="\ program t end " # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC="$CC" lt_save_GCC=$GCC lt_save_CFLAGS=$CFLAGS CC=${F77-"f77"} CFLAGS=$FFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) GCC=$G77 if test -n "$compiler"; then AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test "$can_build_shared" = "no" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test "$enable_shared" = yes && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test "$host_cpu" != ia64 && test "$aix_use_runtimelinking" = no ; then test "$enable_shared" = yes && enable_static=no fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test "$enable_shared" = yes || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_TAGVAR(GCC, $1)="$G77" _LT_TAGVAR(LD, $1)="$LD" ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" GCC=$lt_save_GCC CC="$lt_save_CC" CFLAGS="$lt_save_CFLAGS" fi # test "$_lt_disable_F77" != yes AC_LANG_POP ])# _LT_LANG_F77_CONFIG # _LT_LANG_FC_CONFIG([TAG]) # ------------------------- # Ensure that the configuration variables for a Fortran compiler are # suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to `libtool'. m4_defun([_LT_LANG_FC_CONFIG], [AC_LANG_PUSH(Fortran) if test -z "$FC" || test "X$FC" = "Xno"; then _lt_disable_FC=yes fi _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for fc test sources. ac_ext=${ac_fc_srcext-f} # Object file extension for compiled fc test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the FC compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test "$_lt_disable_FC" != yes; then # Code to be used in simple compile tests lt_simple_compile_test_code="\ subroutine t return end " # Code to be used in simple link tests lt_simple_link_test_code="\ program t end " # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC="$CC" lt_save_GCC=$GCC lt_save_CFLAGS=$CFLAGS CC=${FC-"f95"} CFLAGS=$FCFLAGS compiler=$CC GCC=$ac_cv_fc_compiler_gnu _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) if test -n "$compiler"; then AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test "$can_build_shared" = "no" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test "$enable_shared" = yes && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test "$host_cpu" != ia64 && test "$aix_use_runtimelinking" = no ; then test "$enable_shared" = yes && enable_static=no fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test "$enable_shared" = yes || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_TAGVAR(GCC, $1)="$ac_cv_fc_compiler_gnu" _LT_TAGVAR(LD, $1)="$LD" ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_SYS_HIDDEN_LIBDEPS($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS fi # test "$_lt_disable_FC" != yes AC_LANG_POP ])# _LT_LANG_FC_CONFIG # _LT_LANG_GCJ_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for the GNU Java Compiler compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to `libtool'. m4_defun([_LT_LANG_GCJ_CONFIG], [AC_REQUIRE([LT_PROG_GCJ])dnl AC_LANG_SAVE # Source file extension for Java test sources. ac_ext=java # Object file extension for compiled Java test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="class foo {}" # Code to be used in simple link tests lt_simple_link_test_code='public class conftest { public static void main(String[[]] argv) {}; }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC=yes CC=${GCJ-"gcj"} CFLAGS=$GCJFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_TAGVAR(LD, $1)="$LD" _LT_CC_BASENAME([$compiler]) # GCJ did not exist at the time GCC didn't implicitly link libc in. _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi AC_LANG_RESTORE GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_GCJ_CONFIG # _LT_LANG_GO_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for the GNU Go compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to `libtool'. m4_defun([_LT_LANG_GO_CONFIG], [AC_REQUIRE([LT_PROG_GO])dnl AC_LANG_SAVE # Source file extension for Go test sources. ac_ext=go # Object file extension for compiled Go test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="package main; func main() { }" # Code to be used in simple link tests lt_simple_link_test_code='package main; func main() { }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC=yes CC=${GOC-"gccgo"} CFLAGS=$GOFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_TAGVAR(LD, $1)="$LD" _LT_CC_BASENAME([$compiler]) # Go did not exist at the time GCC didn't implicitly link libc in. _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi AC_LANG_RESTORE GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_GO_CONFIG # _LT_LANG_RC_CONFIG([TAG]) # ------------------------- # Ensure that the configuration variables for the Windows resource compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to `libtool'. m4_defun([_LT_LANG_RC_CONFIG], [AC_REQUIRE([LT_PROG_RC])dnl AC_LANG_SAVE # Source file extension for RC test sources. ac_ext=rc # Object file extension for compiled RC test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code='sample MENU { MENUITEM "&Soup", 100, CHECKED }' # Code to be used in simple link tests lt_simple_link_test_code="$lt_simple_compile_test_code" # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC="$CC" lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC= CC=${RC-"windres"} CFLAGS= compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) _LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=yes if test -n "$compiler"; then : _LT_CONFIG($1) fi GCC=$lt_save_GCC AC_LANG_RESTORE CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_RC_CONFIG # LT_PROG_GCJ # ----------- AC_DEFUN([LT_PROG_GCJ], [m4_ifdef([AC_PROG_GCJ], [AC_PROG_GCJ], [m4_ifdef([A][M_PROG_GCJ], [A][M_PROG_GCJ], [AC_CHECK_TOOL(GCJ, gcj,) test "x${GCJFLAGS+set}" = xset || GCJFLAGS="-g -O2" AC_SUBST(GCJFLAGS)])])[]dnl ]) # Old name: AU_ALIAS([LT_AC_PROG_GCJ], [LT_PROG_GCJ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_GCJ], []) # LT_PROG_GO # ---------- AC_DEFUN([LT_PROG_GO], [AC_CHECK_TOOL(GOC, gccgo,) ]) # LT_PROG_RC # ---------- AC_DEFUN([LT_PROG_RC], [AC_CHECK_TOOL(RC, windres,) ]) # Old name: AU_ALIAS([LT_AC_PROG_RC], [LT_PROG_RC]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_RC], []) # _LT_DECL_EGREP # -------------- # If we don't have a new enough Autoconf to choose the best grep # available, choose the one first in the user's PATH. m4_defun([_LT_DECL_EGREP], [AC_REQUIRE([AC_PROG_EGREP])dnl AC_REQUIRE([AC_PROG_FGREP])dnl test -z "$GREP" && GREP=grep _LT_DECL([], [GREP], [1], [A grep program that handles long lines]) _LT_DECL([], [EGREP], [1], [An ERE matcher]) _LT_DECL([], [FGREP], [1], [A literal string matcher]) dnl Non-bleeding-edge autoconf doesn't subst GREP, so do it here too AC_SUBST([GREP]) ]) # _LT_DECL_OBJDUMP # -------------- # If we don't have a new enough Autoconf to choose the best objdump # available, choose the one first in the user's PATH. m4_defun([_LT_DECL_OBJDUMP], [AC_CHECK_TOOL(OBJDUMP, objdump, false) test -z "$OBJDUMP" && OBJDUMP=objdump _LT_DECL([], [OBJDUMP], [1], [An object symbol dumper]) AC_SUBST([OBJDUMP]) ]) # _LT_DECL_DLLTOOL # ---------------- # Ensure DLLTOOL variable is set. m4_defun([_LT_DECL_DLLTOOL], [AC_CHECK_TOOL(DLLTOOL, dlltool, false) test -z "$DLLTOOL" && DLLTOOL=dlltool _LT_DECL([], [DLLTOOL], [1], [DLL creation program]) AC_SUBST([DLLTOOL]) ]) # _LT_DECL_SED # ------------ # Check for a fully-functional sed program, that truncates # as few characters as possible. Prefer GNU sed if found. m4_defun([_LT_DECL_SED], [AC_PROG_SED test -z "$SED" && SED=sed Xsed="$SED -e 1s/^X//" _LT_DECL([], [SED], [1], [A sed program that does not truncate output]) _LT_DECL([], [Xsed], ["\$SED -e 1s/^X//"], [Sed that helps us avoid accidentally triggering echo(1) options like -n]) ])# _LT_DECL_SED m4_ifndef([AC_PROG_SED], [ ############################################################ # NOTE: This macro has been submitted for inclusion into # # GNU Autoconf as AC_PROG_SED. When it is available in # # a released version of Autoconf we should remove this # # macro and use it instead. # ############################################################ m4_defun([AC_PROG_SED], [AC_MSG_CHECKING([for a sed that does not truncate output]) AC_CACHE_VAL(lt_cv_path_SED, [# Loop through the user's path and test for sed and gsed. # Then use that list of sed's as ones to test for truncation. as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for lt_ac_prog in sed gsed; do for ac_exec_ext in '' $ac_executable_extensions; do if $as_executable_p "$as_dir/$lt_ac_prog$ac_exec_ext"; then lt_ac_sed_list="$lt_ac_sed_list $as_dir/$lt_ac_prog$ac_exec_ext" fi done done done IFS=$as_save_IFS lt_ac_max=0 lt_ac_count=0 # Add /usr/xpg4/bin/sed as it is typically found on Solaris # along with /bin/sed that truncates output. for lt_ac_sed in $lt_ac_sed_list /usr/xpg4/bin/sed; do test ! -f $lt_ac_sed && continue cat /dev/null > conftest.in lt_ac_count=0 echo $ECHO_N "0123456789$ECHO_C" >conftest.in # Check for GNU sed and select it if it is found. if "$lt_ac_sed" --version 2>&1 < /dev/null | grep 'GNU' > /dev/null; then lt_cv_path_SED=$lt_ac_sed break fi while true; do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo >>conftest.nl $lt_ac_sed -e 's/a$//' < conftest.nl >conftest.out || break cmp -s conftest.out conftest.nl || break # 10000 chars as input seems more than enough test $lt_ac_count -gt 10 && break lt_ac_count=`expr $lt_ac_count + 1` if test $lt_ac_count -gt $lt_ac_max; then lt_ac_max=$lt_ac_count lt_cv_path_SED=$lt_ac_sed fi done done ]) SED=$lt_cv_path_SED AC_SUBST([SED]) AC_MSG_RESULT([$SED]) ])#AC_PROG_SED ])#m4_ifndef # Old name: AU_ALIAS([LT_AC_PROG_SED], [AC_PROG_SED]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_SED], []) # _LT_CHECK_SHELL_FEATURES # ------------------------ # Find out whether the shell is Bourne or XSI compatible, # or has some other useful features. m4_defun([_LT_CHECK_SHELL_FEATURES], [AC_MSG_CHECKING([whether the shell understands some XSI constructs]) # Try some XSI features xsi_shell=no ( _lt_dummy="a/b/c" test "${_lt_dummy##*/},${_lt_dummy%/*},${_lt_dummy#??}"${_lt_dummy%"$_lt_dummy"}, \ = c,a/b,b/c, \ && eval 'test $(( 1 + 1 )) -eq 2 \ && test "${#_lt_dummy}" -eq 5' ) >/dev/null 2>&1 \ && xsi_shell=yes AC_MSG_RESULT([$xsi_shell]) _LT_CONFIG_LIBTOOL_INIT([xsi_shell='$xsi_shell']) AC_MSG_CHECKING([whether the shell understands "+="]) lt_shell_append=no ( foo=bar; set foo baz; eval "$[1]+=\$[2]" && test "$foo" = barbaz ) \ >/dev/null 2>&1 \ && lt_shell_append=yes AC_MSG_RESULT([$lt_shell_append]) _LT_CONFIG_LIBTOOL_INIT([lt_shell_append='$lt_shell_append']) if ( (MAIL=60; unset MAIL) || exit) >/dev/null 2>&1; then lt_unset=unset else lt_unset=false fi _LT_DECL([], [lt_unset], [0], [whether the shell understands "unset"])dnl # test EBCDIC or ASCII case `echo X|tr X '\101'` in A) # ASCII based system # \n is not interpreted correctly by Solaris 8 /usr/ucb/tr lt_SP2NL='tr \040 \012' lt_NL2SP='tr \015\012 \040\040' ;; *) # EBCDIC based system lt_SP2NL='tr \100 \n' lt_NL2SP='tr \r\n \100\100' ;; esac _LT_DECL([SP2NL], [lt_SP2NL], [1], [turn spaces into newlines])dnl _LT_DECL([NL2SP], [lt_NL2SP], [1], [turn newlines into spaces])dnl ])# _LT_CHECK_SHELL_FEATURES # _LT_PROG_FUNCTION_REPLACE (FUNCNAME, REPLACEMENT-BODY) # ------------------------------------------------------ # In `$cfgfile', look for function FUNCNAME delimited by `^FUNCNAME ()$' and # '^} FUNCNAME ', and replace its body with REPLACEMENT-BODY. m4_defun([_LT_PROG_FUNCTION_REPLACE], [dnl { sed -e '/^$1 ()$/,/^} # $1 /c\ $1 ()\ {\ m4_bpatsubsts([$2], [$], [\\], [^\([ ]\)], [\\\1]) } # Extended-shell $1 implementation' "$cfgfile" > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: ]) # _LT_PROG_REPLACE_SHELLFNS # ------------------------- # Replace existing portable implementations of several shell functions with # equivalent extended shell implementations where those features are available.. m4_defun([_LT_PROG_REPLACE_SHELLFNS], [if test x"$xsi_shell" = xyes; then _LT_PROG_FUNCTION_REPLACE([func_dirname], [dnl case ${1} in */*) func_dirname_result="${1%/*}${2}" ;; * ) func_dirname_result="${3}" ;; esac]) _LT_PROG_FUNCTION_REPLACE([func_basename], [dnl func_basename_result="${1##*/}"]) _LT_PROG_FUNCTION_REPLACE([func_dirname_and_basename], [dnl case ${1} in */*) func_dirname_result="${1%/*}${2}" ;; * ) func_dirname_result="${3}" ;; esac func_basename_result="${1##*/}"]) _LT_PROG_FUNCTION_REPLACE([func_stripname], [dnl # pdksh 5.2.14 does not do ${X%$Y} correctly if both X and Y are # positional parameters, so assign one to ordinary parameter first. func_stripname_result=${3} func_stripname_result=${func_stripname_result#"${1}"} func_stripname_result=${func_stripname_result%"${2}"}]) _LT_PROG_FUNCTION_REPLACE([func_split_long_opt], [dnl func_split_long_opt_name=${1%%=*} func_split_long_opt_arg=${1#*=}]) _LT_PROG_FUNCTION_REPLACE([func_split_short_opt], [dnl func_split_short_opt_arg=${1#??} func_split_short_opt_name=${1%"$func_split_short_opt_arg"}]) _LT_PROG_FUNCTION_REPLACE([func_lo2o], [dnl case ${1} in *.lo) func_lo2o_result=${1%.lo}.${objext} ;; *) func_lo2o_result=${1} ;; esac]) _LT_PROG_FUNCTION_REPLACE([func_xform], [ func_xform_result=${1%.*}.lo]) _LT_PROG_FUNCTION_REPLACE([func_arith], [ func_arith_result=$(( $[*] ))]) _LT_PROG_FUNCTION_REPLACE([func_len], [ func_len_result=${#1}]) fi if test x"$lt_shell_append" = xyes; then _LT_PROG_FUNCTION_REPLACE([func_append], [ eval "${1}+=\\${2}"]) _LT_PROG_FUNCTION_REPLACE([func_append_quoted], [dnl func_quote_for_eval "${2}" dnl m4 expansion turns \\\\ into \\, and then the shell eval turns that into \ eval "${1}+=\\\\ \\$func_quote_for_eval_result"]) # Save a `func_append' function call where possible by direct use of '+=' sed -e 's%func_append \([[a-zA-Z_]]\{1,\}\) "%\1+="%g' $cfgfile > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: else # Save a `func_append' function call even when '+=' is not available sed -e 's%func_append \([[a-zA-Z_]]\{1,\}\) "%\1="$\1%g' $cfgfile > $cfgfile.tmp \ && mv -f "$cfgfile.tmp" "$cfgfile" \ || (rm -f "$cfgfile" && cp "$cfgfile.tmp" "$cfgfile" && rm -f "$cfgfile.tmp") test 0 -eq $? || _lt_function_replace_fail=: fi if test x"$_lt_function_replace_fail" = x":"; then AC_MSG_WARN([Unable to substitute extended shell functions in $ofile]) fi ]) # _LT_PATH_CONVERSION_FUNCTIONS # ----------------------------- # Determine which file name conversion functions should be used by # func_to_host_file (and, implicitly, by func_to_host_path). These are needed # for certain cross-compile configurations and native mingw. m4_defun([_LT_PATH_CONVERSION_FUNCTIONS], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl AC_MSG_CHECKING([how to convert $build file names to $host format]) AC_CACHE_VAL(lt_cv_to_host_file_cmd, [case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_w32 ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_cygwin_to_w32 ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_w32 ;; esac ;; *-*-cygwin* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_cygwin ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_noop ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_cygwin ;; esac ;; * ) # unhandled hosts (and "normal" native builds) lt_cv_to_host_file_cmd=func_convert_file_noop ;; esac ]) to_host_file_cmd=$lt_cv_to_host_file_cmd AC_MSG_RESULT([$lt_cv_to_host_file_cmd]) _LT_DECL([to_host_file_cmd], [lt_cv_to_host_file_cmd], [0], [convert $build file names to $host format])dnl AC_MSG_CHECKING([how to convert $build file names to toolchain format]) AC_CACHE_VAL(lt_cv_to_tool_file_cmd, [#assume ordinary cross tools, or native build. lt_cv_to_tool_file_cmd=func_convert_file_noop case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_tool_file_cmd=func_convert_file_msys_to_w32 ;; esac ;; esac ]) to_tool_file_cmd=$lt_cv_to_tool_file_cmd AC_MSG_RESULT([$lt_cv_to_tool_file_cmd]) _LT_DECL([to_tool_file_cmd], [lt_cv_to_tool_file_cmd], [0], [convert $build files to toolchain format])dnl ])# _LT_PATH_CONVERSION_FUNCTIONS openconnect-7.06/m4/ltsugar.m40000644000076400007640000001042412425412631013156 00000000000000# ltsugar.m4 -- libtool m4 base layer. -*-Autoconf-*- # # Copyright (C) 2004, 2005, 2007, 2008 Free Software Foundation, Inc. # Written by Gary V. Vaughan, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 6 ltsugar.m4 # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTSUGAR_VERSION], [m4_if([0.1])]) # lt_join(SEP, ARG1, [ARG2...]) # ----------------------------- # Produce ARG1SEPARG2...SEPARGn, omitting [] arguments and their # associated separator. # Needed until we can rely on m4_join from Autoconf 2.62, since all earlier # versions in m4sugar had bugs. m4_define([lt_join], [m4_if([$#], [1], [], [$#], [2], [[$2]], [m4_if([$2], [], [], [[$2]_])$0([$1], m4_shift(m4_shift($@)))])]) m4_define([_lt_join], [m4_if([$#$2], [2], [], [m4_if([$2], [], [], [[$1$2]])$0([$1], m4_shift(m4_shift($@)))])]) # lt_car(LIST) # lt_cdr(LIST) # ------------ # Manipulate m4 lists. # These macros are necessary as long as will still need to support # Autoconf-2.59 which quotes differently. m4_define([lt_car], [[$1]]) m4_define([lt_cdr], [m4_if([$#], 0, [m4_fatal([$0: cannot be called without arguments])], [$#], 1, [], [m4_dquote(m4_shift($@))])]) m4_define([lt_unquote], $1) # lt_append(MACRO-NAME, STRING, [SEPARATOR]) # ------------------------------------------ # Redefine MACRO-NAME to hold its former content plus `SEPARATOR'`STRING'. # Note that neither SEPARATOR nor STRING are expanded; they are appended # to MACRO-NAME as is (leaving the expansion for when MACRO-NAME is invoked). # No SEPARATOR is output if MACRO-NAME was previously undefined (different # than defined and empty). # # This macro is needed until we can rely on Autoconf 2.62, since earlier # versions of m4sugar mistakenly expanded SEPARATOR but not STRING. m4_define([lt_append], [m4_define([$1], m4_ifdef([$1], [m4_defn([$1])[$3]])[$2])]) # lt_combine(SEP, PREFIX-LIST, INFIX, SUFFIX1, [SUFFIX2...]) # ---------------------------------------------------------- # Produce a SEP delimited list of all paired combinations of elements of # PREFIX-LIST with SUFFIX1 through SUFFIXn. Each element of the list # has the form PREFIXmINFIXSUFFIXn. # Needed until we can rely on m4_combine added in Autoconf 2.62. m4_define([lt_combine], [m4_if(m4_eval([$# > 3]), [1], [m4_pushdef([_Lt_sep], [m4_define([_Lt_sep], m4_defn([lt_car]))])]]dnl [[m4_foreach([_Lt_prefix], [$2], [m4_foreach([_Lt_suffix], ]m4_dquote(m4_dquote(m4_shift(m4_shift(m4_shift($@)))))[, [_Lt_sep([$1])[]m4_defn([_Lt_prefix])[$3]m4_defn([_Lt_suffix])])])])]) # lt_if_append_uniq(MACRO-NAME, VARNAME, [SEPARATOR], [UNIQ], [NOT-UNIQ]) # ----------------------------------------------------------------------- # Iff MACRO-NAME does not yet contain VARNAME, then append it (delimited # by SEPARATOR if supplied) and expand UNIQ, else NOT-UNIQ. m4_define([lt_if_append_uniq], [m4_ifdef([$1], [m4_if(m4_index([$3]m4_defn([$1])[$3], [$3$2$3]), [-1], [lt_append([$1], [$2], [$3])$4], [$5])], [lt_append([$1], [$2], [$3])$4])]) # lt_dict_add(DICT, KEY, VALUE) # ----------------------------- m4_define([lt_dict_add], [m4_define([$1($2)], [$3])]) # lt_dict_add_subkey(DICT, KEY, SUBKEY, VALUE) # -------------------------------------------- m4_define([lt_dict_add_subkey], [m4_define([$1($2:$3)], [$4])]) # lt_dict_fetch(DICT, KEY, [SUBKEY]) # ---------------------------------- m4_define([lt_dict_fetch], [m4_ifval([$3], m4_ifdef([$1($2:$3)], [m4_defn([$1($2:$3)])]), m4_ifdef([$1($2)], [m4_defn([$1($2)])]))]) # lt_if_dict_fetch(DICT, KEY, [SUBKEY], VALUE, IF-TRUE, [IF-FALSE]) # ----------------------------------------------------------------- m4_define([lt_if_dict_fetch], [m4_if(lt_dict_fetch([$1], [$2], [$3]), [$4], [$5], [$6])]) # lt_dict_filter(DICT, [SUBKEY], VALUE, [SEPARATOR], KEY, [...]) # -------------------------------------------------------------- m4_define([lt_dict_filter], [m4_if([$5], [], [], [lt_join(m4_quote(m4_default([$4], [[, ]])), lt_unquote(m4_split(m4_normalize(m4_foreach(_Lt_key, lt_car([m4_shiftn(4, $@)]), [lt_if_dict_fetch([$1], _Lt_key, [$2], [$3], [_Lt_key ])])))))])[]dnl ]) openconnect-7.06/m4/ltoptions.m40000644000076400007640000003007312425412631013532 00000000000000# Helper functions for option handling. -*- Autoconf -*- # # Copyright (C) 2004, 2005, 2007, 2008, 2009 Free Software Foundation, # Inc. # Written by Gary V. Vaughan, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 7 ltoptions.m4 # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTOPTIONS_VERSION], [m4_if([1])]) # _LT_MANGLE_OPTION(MACRO-NAME, OPTION-NAME) # ------------------------------------------ m4_define([_LT_MANGLE_OPTION], [[_LT_OPTION_]m4_bpatsubst($1__$2, [[^a-zA-Z0-9_]], [_])]) # _LT_SET_OPTION(MACRO-NAME, OPTION-NAME) # --------------------------------------- # Set option OPTION-NAME for macro MACRO-NAME, and if there is a # matching handler defined, dispatch to it. Other OPTION-NAMEs are # saved as a flag. m4_define([_LT_SET_OPTION], [m4_define(_LT_MANGLE_OPTION([$1], [$2]))dnl m4_ifdef(_LT_MANGLE_DEFUN([$1], [$2]), _LT_MANGLE_DEFUN([$1], [$2]), [m4_warning([Unknown $1 option `$2'])])[]dnl ]) # _LT_IF_OPTION(MACRO-NAME, OPTION-NAME, IF-SET, [IF-NOT-SET]) # ------------------------------------------------------------ # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. m4_define([_LT_IF_OPTION], [m4_ifdef(_LT_MANGLE_OPTION([$1], [$2]), [$3], [$4])]) # _LT_UNLESS_OPTIONS(MACRO-NAME, OPTION-LIST, IF-NOT-SET) # ------------------------------------------------------- # Execute IF-NOT-SET unless all options in OPTION-LIST for MACRO-NAME # are set. m4_define([_LT_UNLESS_OPTIONS], [m4_foreach([_LT_Option], m4_split(m4_normalize([$2])), [m4_ifdef(_LT_MANGLE_OPTION([$1], _LT_Option), [m4_define([$0_found])])])[]dnl m4_ifdef([$0_found], [m4_undefine([$0_found])], [$3 ])[]dnl ]) # _LT_SET_OPTIONS(MACRO-NAME, OPTION-LIST) # ---------------------------------------- # OPTION-LIST is a space-separated list of Libtool options associated # with MACRO-NAME. If any OPTION has a matching handler declared with # LT_OPTION_DEFINE, dispatch to that macro; otherwise complain about # the unknown option and exit. m4_defun([_LT_SET_OPTIONS], [# Set options m4_foreach([_LT_Option], m4_split(m4_normalize([$2])), [_LT_SET_OPTION([$1], _LT_Option)]) m4_if([$1],[LT_INIT],[ dnl dnl Simply set some default values (i.e off) if boolean options were not dnl specified: _LT_UNLESS_OPTIONS([LT_INIT], [dlopen], [enable_dlopen=no ]) _LT_UNLESS_OPTIONS([LT_INIT], [win32-dll], [enable_win32_dll=no ]) dnl dnl If no reference was made to various pairs of opposing options, then dnl we run the default mode handler for the pair. For example, if neither dnl `shared' nor `disable-shared' was passed, we enable building of shared dnl archives by default: _LT_UNLESS_OPTIONS([LT_INIT], [shared disable-shared], [_LT_ENABLE_SHARED]) _LT_UNLESS_OPTIONS([LT_INIT], [static disable-static], [_LT_ENABLE_STATIC]) _LT_UNLESS_OPTIONS([LT_INIT], [pic-only no-pic], [_LT_WITH_PIC]) _LT_UNLESS_OPTIONS([LT_INIT], [fast-install disable-fast-install], [_LT_ENABLE_FAST_INSTALL]) ]) ])# _LT_SET_OPTIONS ## --------------------------------- ## ## Macros to handle LT_INIT options. ## ## --------------------------------- ## # _LT_MANGLE_DEFUN(MACRO-NAME, OPTION-NAME) # ----------------------------------------- m4_define([_LT_MANGLE_DEFUN], [[_LT_OPTION_DEFUN_]m4_bpatsubst(m4_toupper([$1__$2]), [[^A-Z0-9_]], [_])]) # LT_OPTION_DEFINE(MACRO-NAME, OPTION-NAME, CODE) # ----------------------------------------------- m4_define([LT_OPTION_DEFINE], [m4_define(_LT_MANGLE_DEFUN([$1], [$2]), [$3])[]dnl ])# LT_OPTION_DEFINE # dlopen # ------ LT_OPTION_DEFINE([LT_INIT], [dlopen], [enable_dlopen=yes ]) AU_DEFUN([AC_LIBTOOL_DLOPEN], [_LT_SET_OPTION([LT_INIT], [dlopen]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the `dlopen' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_DLOPEN], []) # win32-dll # --------- # Declare package support for building win32 dll's. LT_OPTION_DEFINE([LT_INIT], [win32-dll], [enable_win32_dll=yes case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-cegcc*) AC_CHECK_TOOL(AS, as, false) AC_CHECK_TOOL(DLLTOOL, dlltool, false) AC_CHECK_TOOL(OBJDUMP, objdump, false) ;; esac test -z "$AS" && AS=as _LT_DECL([], [AS], [1], [Assembler program])dnl test -z "$DLLTOOL" && DLLTOOL=dlltool _LT_DECL([], [DLLTOOL], [1], [DLL creation program])dnl test -z "$OBJDUMP" && OBJDUMP=objdump _LT_DECL([], [OBJDUMP], [1], [Object dumper program])dnl ])# win32-dll AU_DEFUN([AC_LIBTOOL_WIN32_DLL], [AC_REQUIRE([AC_CANONICAL_HOST])dnl _LT_SET_OPTION([LT_INIT], [win32-dll]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the `win32-dll' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_WIN32_DLL], []) # _LT_ENABLE_SHARED([DEFAULT]) # ---------------------------- # implement the --enable-shared flag, and supports the `shared' and # `disable-shared' LT_INIT options. # DEFAULT is either `yes' or `no'. If omitted, it defaults to `yes'. m4_define([_LT_ENABLE_SHARED], [m4_define([_LT_ENABLE_SHARED_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([shared], [AS_HELP_STRING([--enable-shared@<:@=PKGS@:>@], [build shared libraries @<:@default=]_LT_ENABLE_SHARED_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_shared=yes ;; no) enable_shared=no ;; *) enable_shared=no # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for pkg in $enableval; do IFS="$lt_save_ifs" if test "X$pkg" = "X$p"; then enable_shared=yes fi done IFS="$lt_save_ifs" ;; esac], [enable_shared=]_LT_ENABLE_SHARED_DEFAULT) _LT_DECL([build_libtool_libs], [enable_shared], [0], [Whether or not to build shared libraries]) ])# _LT_ENABLE_SHARED LT_OPTION_DEFINE([LT_INIT], [shared], [_LT_ENABLE_SHARED([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-shared], [_LT_ENABLE_SHARED([no])]) # Old names: AC_DEFUN([AC_ENABLE_SHARED], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[shared]) ]) AC_DEFUN([AC_DISABLE_SHARED], [_LT_SET_OPTION([LT_INIT], [disable-shared]) ]) AU_DEFUN([AM_ENABLE_SHARED], [AC_ENABLE_SHARED($@)]) AU_DEFUN([AM_DISABLE_SHARED], [AC_DISABLE_SHARED($@)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_ENABLE_SHARED], []) dnl AC_DEFUN([AM_DISABLE_SHARED], []) # _LT_ENABLE_STATIC([DEFAULT]) # ---------------------------- # implement the --enable-static flag, and support the `static' and # `disable-static' LT_INIT options. # DEFAULT is either `yes' or `no'. If omitted, it defaults to `yes'. m4_define([_LT_ENABLE_STATIC], [m4_define([_LT_ENABLE_STATIC_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([static], [AS_HELP_STRING([--enable-static@<:@=PKGS@:>@], [build static libraries @<:@default=]_LT_ENABLE_STATIC_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_static=yes ;; no) enable_static=no ;; *) enable_static=no # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for pkg in $enableval; do IFS="$lt_save_ifs" if test "X$pkg" = "X$p"; then enable_static=yes fi done IFS="$lt_save_ifs" ;; esac], [enable_static=]_LT_ENABLE_STATIC_DEFAULT) _LT_DECL([build_old_libs], [enable_static], [0], [Whether or not to build static libraries]) ])# _LT_ENABLE_STATIC LT_OPTION_DEFINE([LT_INIT], [static], [_LT_ENABLE_STATIC([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-static], [_LT_ENABLE_STATIC([no])]) # Old names: AC_DEFUN([AC_ENABLE_STATIC], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[static]) ]) AC_DEFUN([AC_DISABLE_STATIC], [_LT_SET_OPTION([LT_INIT], [disable-static]) ]) AU_DEFUN([AM_ENABLE_STATIC], [AC_ENABLE_STATIC($@)]) AU_DEFUN([AM_DISABLE_STATIC], [AC_DISABLE_STATIC($@)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_ENABLE_STATIC], []) dnl AC_DEFUN([AM_DISABLE_STATIC], []) # _LT_ENABLE_FAST_INSTALL([DEFAULT]) # ---------------------------------- # implement the --enable-fast-install flag, and support the `fast-install' # and `disable-fast-install' LT_INIT options. # DEFAULT is either `yes' or `no'. If omitted, it defaults to `yes'. m4_define([_LT_ENABLE_FAST_INSTALL], [m4_define([_LT_ENABLE_FAST_INSTALL_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([fast-install], [AS_HELP_STRING([--enable-fast-install@<:@=PKGS@:>@], [optimize for fast installation @<:@default=]_LT_ENABLE_FAST_INSTALL_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_fast_install=yes ;; no) enable_fast_install=no ;; *) enable_fast_install=no # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for pkg in $enableval; do IFS="$lt_save_ifs" if test "X$pkg" = "X$p"; then enable_fast_install=yes fi done IFS="$lt_save_ifs" ;; esac], [enable_fast_install=]_LT_ENABLE_FAST_INSTALL_DEFAULT) _LT_DECL([fast_install], [enable_fast_install], [0], [Whether or not to optimize for fast installation])dnl ])# _LT_ENABLE_FAST_INSTALL LT_OPTION_DEFINE([LT_INIT], [fast-install], [_LT_ENABLE_FAST_INSTALL([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-fast-install], [_LT_ENABLE_FAST_INSTALL([no])]) # Old names: AU_DEFUN([AC_ENABLE_FAST_INSTALL], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[fast-install]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the `fast-install' option into LT_INIT's first parameter.]) ]) AU_DEFUN([AC_DISABLE_FAST_INSTALL], [_LT_SET_OPTION([LT_INIT], [disable-fast-install]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the `disable-fast-install' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_ENABLE_FAST_INSTALL], []) dnl AC_DEFUN([AM_DISABLE_FAST_INSTALL], []) # _LT_WITH_PIC([MODE]) # -------------------- # implement the --with-pic flag, and support the `pic-only' and `no-pic' # LT_INIT options. # MODE is either `yes' or `no'. If omitted, it defaults to `both'. m4_define([_LT_WITH_PIC], [AC_ARG_WITH([pic], [AS_HELP_STRING([--with-pic@<:@=PKGS@:>@], [try to use only PIC/non-PIC objects @<:@default=use both@:>@])], [lt_p=${PACKAGE-default} case $withval in yes|no) pic_mode=$withval ;; *) pic_mode=default # Look at the argument we got. We use all the common list separators. lt_save_ifs="$IFS"; IFS="${IFS}$PATH_SEPARATOR," for lt_pkg in $withval; do IFS="$lt_save_ifs" if test "X$lt_pkg" = "X$lt_p"; then pic_mode=yes fi done IFS="$lt_save_ifs" ;; esac], [pic_mode=default]) test -z "$pic_mode" && pic_mode=m4_default([$1], [default]) _LT_DECL([], [pic_mode], [0], [What type of objects to build])dnl ])# _LT_WITH_PIC LT_OPTION_DEFINE([LT_INIT], [pic-only], [_LT_WITH_PIC([yes])]) LT_OPTION_DEFINE([LT_INIT], [no-pic], [_LT_WITH_PIC([no])]) # Old name: AU_DEFUN([AC_LIBTOOL_PICMODE], [_LT_SET_OPTION([LT_INIT], [pic-only]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the `pic-only' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_PICMODE], []) ## ----------------- ## ## LTDL_INIT Options ## ## ----------------- ## m4_define([_LTDL_MODE], []) LT_OPTION_DEFINE([LTDL_INIT], [nonrecursive], [m4_define([_LTDL_MODE], [nonrecursive])]) LT_OPTION_DEFINE([LTDL_INIT], [recursive], [m4_define([_LTDL_MODE], [recursive])]) LT_OPTION_DEFINE([LTDL_INIT], [subproject], [m4_define([_LTDL_MODE], [subproject])]) m4_define([_LTDL_TYPE], []) LT_OPTION_DEFINE([LTDL_INIT], [installable], [m4_define([_LTDL_TYPE], [installable])]) LT_OPTION_DEFINE([LTDL_INIT], [convenience], [m4_define([_LTDL_TYPE], [convenience])]) openconnect-7.06/m4/ltversion.m40000644000076400007640000000126212425412631013522 00000000000000# ltversion.m4 -- version numbers -*- Autoconf -*- # # Copyright (C) 2004 Free Software Foundation, Inc. # Written by Scott James Remnant, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # @configure_input@ # serial 3337 ltversion.m4 # This file is part of GNU Libtool m4_define([LT_PACKAGE_VERSION], [2.4.2]) m4_define([LT_PACKAGE_REVISION], [1.3337]) AC_DEFUN([LTVERSION_VERSION], [macro_version='2.4.2' macro_revision='1.3337' _LT_DECL(, macro_version, 0, [Which release of libtool.m4 was used?]) _LT_DECL(, macro_revision, 0) ]) openconnect-7.06/m4/lt~obsolete.m40000644000076400007640000001375612425412631014062 00000000000000# lt~obsolete.m4 -- aclocal satisfying obsolete definitions. -*-Autoconf-*- # # Copyright (C) 2004, 2005, 2007, 2009 Free Software Foundation, Inc. # Written by Scott James Remnant, 2004. # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 5 lt~obsolete.m4 # These exist entirely to fool aclocal when bootstrapping libtool. # # In the past libtool.m4 has provided macros via AC_DEFUN (or AU_DEFUN) # which have later been changed to m4_define as they aren't part of the # exported API, or moved to Autoconf or Automake where they belong. # # The trouble is, aclocal is a bit thick. It'll see the old AC_DEFUN # in /usr/share/aclocal/libtool.m4 and remember it, then when it sees us # using a macro with the same name in our local m4/libtool.m4 it'll # pull the old libtool.m4 in (it doesn't see our shiny new m4_define # and doesn't know about Autoconf macros at all.) # # So we provide this file, which has a silly filename so it's always # included after everything else. This provides aclocal with the # AC_DEFUNs it wants, but when m4 processes it, it doesn't do anything # because those macros already exist, or will be overwritten later. # We use AC_DEFUN over AU_DEFUN for compatibility with aclocal-1.6. # # Anytime we withdraw an AC_DEFUN or AU_DEFUN, remember to add it here. # Yes, that means every name once taken will need to remain here until # we give up compatibility with versions before 1.7, at which point # we need to keep only those names which we still refer to. # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTOBSOLETE_VERSION], [m4_if([1])]) m4_ifndef([AC_LIBTOOL_LINKER_OPTION], [AC_DEFUN([AC_LIBTOOL_LINKER_OPTION])]) m4_ifndef([AC_PROG_EGREP], [AC_DEFUN([AC_PROG_EGREP])]) m4_ifndef([_LT_AC_PROG_ECHO_BACKSLASH], [AC_DEFUN([_LT_AC_PROG_ECHO_BACKSLASH])]) m4_ifndef([_LT_AC_SHELL_INIT], [AC_DEFUN([_LT_AC_SHELL_INIT])]) m4_ifndef([_LT_AC_SYS_LIBPATH_AIX], [AC_DEFUN([_LT_AC_SYS_LIBPATH_AIX])]) m4_ifndef([_LT_PROG_LTMAIN], [AC_DEFUN([_LT_PROG_LTMAIN])]) m4_ifndef([_LT_AC_TAGVAR], [AC_DEFUN([_LT_AC_TAGVAR])]) m4_ifndef([AC_LTDL_ENABLE_INSTALL], [AC_DEFUN([AC_LTDL_ENABLE_INSTALL])]) m4_ifndef([AC_LTDL_PREOPEN], [AC_DEFUN([AC_LTDL_PREOPEN])]) m4_ifndef([_LT_AC_SYS_COMPILER], [AC_DEFUN([_LT_AC_SYS_COMPILER])]) m4_ifndef([_LT_AC_LOCK], [AC_DEFUN([_LT_AC_LOCK])]) m4_ifndef([AC_LIBTOOL_SYS_OLD_ARCHIVE], [AC_DEFUN([AC_LIBTOOL_SYS_OLD_ARCHIVE])]) m4_ifndef([_LT_AC_TRY_DLOPEN_SELF], [AC_DEFUN([_LT_AC_TRY_DLOPEN_SELF])]) m4_ifndef([AC_LIBTOOL_PROG_CC_C_O], [AC_DEFUN([AC_LIBTOOL_PROG_CC_C_O])]) m4_ifndef([AC_LIBTOOL_SYS_HARD_LINK_LOCKS], [AC_DEFUN([AC_LIBTOOL_SYS_HARD_LINK_LOCKS])]) m4_ifndef([AC_LIBTOOL_OBJDIR], [AC_DEFUN([AC_LIBTOOL_OBJDIR])]) m4_ifndef([AC_LTDL_OBJDIR], [AC_DEFUN([AC_LTDL_OBJDIR])]) m4_ifndef([AC_LIBTOOL_PROG_LD_HARDCODE_LIBPATH], [AC_DEFUN([AC_LIBTOOL_PROG_LD_HARDCODE_LIBPATH])]) m4_ifndef([AC_LIBTOOL_SYS_LIB_STRIP], [AC_DEFUN([AC_LIBTOOL_SYS_LIB_STRIP])]) m4_ifndef([AC_PATH_MAGIC], [AC_DEFUN([AC_PATH_MAGIC])]) m4_ifndef([AC_PROG_LD_GNU], [AC_DEFUN([AC_PROG_LD_GNU])]) m4_ifndef([AC_PROG_LD_RELOAD_FLAG], [AC_DEFUN([AC_PROG_LD_RELOAD_FLAG])]) m4_ifndef([AC_DEPLIBS_CHECK_METHOD], [AC_DEFUN([AC_DEPLIBS_CHECK_METHOD])]) m4_ifndef([AC_LIBTOOL_PROG_COMPILER_NO_RTTI], [AC_DEFUN([AC_LIBTOOL_PROG_COMPILER_NO_RTTI])]) m4_ifndef([AC_LIBTOOL_SYS_GLOBAL_SYMBOL_PIPE], [AC_DEFUN([AC_LIBTOOL_SYS_GLOBAL_SYMBOL_PIPE])]) m4_ifndef([AC_LIBTOOL_PROG_COMPILER_PIC], [AC_DEFUN([AC_LIBTOOL_PROG_COMPILER_PIC])]) m4_ifndef([AC_LIBTOOL_PROG_LD_SHLIBS], [AC_DEFUN([AC_LIBTOOL_PROG_LD_SHLIBS])]) m4_ifndef([AC_LIBTOOL_POSTDEP_PREDEP], [AC_DEFUN([AC_LIBTOOL_POSTDEP_PREDEP])]) m4_ifndef([LT_AC_PROG_EGREP], [AC_DEFUN([LT_AC_PROG_EGREP])]) m4_ifndef([LT_AC_PROG_SED], [AC_DEFUN([LT_AC_PROG_SED])]) m4_ifndef([_LT_CC_BASENAME], [AC_DEFUN([_LT_CC_BASENAME])]) m4_ifndef([_LT_COMPILER_BOILERPLATE], [AC_DEFUN([_LT_COMPILER_BOILERPLATE])]) m4_ifndef([_LT_LINKER_BOILERPLATE], [AC_DEFUN([_LT_LINKER_BOILERPLATE])]) m4_ifndef([_AC_PROG_LIBTOOL], [AC_DEFUN([_AC_PROG_LIBTOOL])]) m4_ifndef([AC_LIBTOOL_SETUP], [AC_DEFUN([AC_LIBTOOL_SETUP])]) m4_ifndef([_LT_AC_CHECK_DLFCN], [AC_DEFUN([_LT_AC_CHECK_DLFCN])]) m4_ifndef([AC_LIBTOOL_SYS_DYNAMIC_LINKER], [AC_DEFUN([AC_LIBTOOL_SYS_DYNAMIC_LINKER])]) m4_ifndef([_LT_AC_TAGCONFIG], [AC_DEFUN([_LT_AC_TAGCONFIG])]) m4_ifndef([AC_DISABLE_FAST_INSTALL], [AC_DEFUN([AC_DISABLE_FAST_INSTALL])]) m4_ifndef([_LT_AC_LANG_CXX], [AC_DEFUN([_LT_AC_LANG_CXX])]) m4_ifndef([_LT_AC_LANG_F77], [AC_DEFUN([_LT_AC_LANG_F77])]) m4_ifndef([_LT_AC_LANG_GCJ], [AC_DEFUN([_LT_AC_LANG_GCJ])]) m4_ifndef([AC_LIBTOOL_LANG_C_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_C_CONFIG])]) m4_ifndef([_LT_AC_LANG_C_CONFIG], [AC_DEFUN([_LT_AC_LANG_C_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_CXX_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_CXX_CONFIG])]) m4_ifndef([_LT_AC_LANG_CXX_CONFIG], [AC_DEFUN([_LT_AC_LANG_CXX_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_F77_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_F77_CONFIG])]) m4_ifndef([_LT_AC_LANG_F77_CONFIG], [AC_DEFUN([_LT_AC_LANG_F77_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_GCJ_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_GCJ_CONFIG])]) m4_ifndef([_LT_AC_LANG_GCJ_CONFIG], [AC_DEFUN([_LT_AC_LANG_GCJ_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_RC_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_RC_CONFIG])]) m4_ifndef([_LT_AC_LANG_RC_CONFIG], [AC_DEFUN([_LT_AC_LANG_RC_CONFIG])]) m4_ifndef([AC_LIBTOOL_CONFIG], [AC_DEFUN([AC_LIBTOOL_CONFIG])]) m4_ifndef([_LT_AC_FILE_LTDLL_C], [AC_DEFUN([_LT_AC_FILE_LTDLL_C])]) m4_ifndef([_LT_REQUIRED_DARWIN_CHECKS], [AC_DEFUN([_LT_REQUIRED_DARWIN_CHECKS])]) m4_ifndef([_LT_AC_PROG_CXXCPP], [AC_DEFUN([_LT_AC_PROG_CXXCPP])]) m4_ifndef([_LT_PREPARE_SED_QUOTE_VARS], [AC_DEFUN([_LT_PREPARE_SED_QUOTE_VARS])]) m4_ifndef([_LT_PROG_ECHO_BACKSLASH], [AC_DEFUN([_LT_PROG_ECHO_BACKSLASH])]) m4_ifndef([_LT_PROG_F77], [AC_DEFUN([_LT_PROG_F77])]) m4_ifndef([_LT_PROG_FC], [AC_DEFUN([_LT_PROG_FC])]) m4_ifndef([_LT_PROG_CXX], [AC_DEFUN([_LT_PROG_CXX])]) openconnect-7.06/m4/lib-ld.m40000664000076400007640000000714312453040465012651 00000000000000# lib-ld.m4 serial 6 dnl Copyright (C) 1996-2003, 2009-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl Subroutines of libtool.m4, dnl with replacements s/_*LT_PATH/AC_LIB_PROG/ and s/lt_/acl_/ to avoid dnl collision with libtool.m4. dnl From libtool-2.4. Sets the variable with_gnu_ld to yes or no. AC_DEFUN([AC_LIB_PROG_LD_GNU], [AC_CACHE_CHECK([if the linker ($LD) is GNU ld], [acl_cv_prog_gnu_ld], [# I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 /dev/null 2>&1 \ && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ || PATH_SEPARATOR=';' } fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. AC_MSG_CHECKING([for ld used by $CC]) case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [[\\/]]* | ?:[[\\/]]*) re_direlt='/[[^/]][[^/]]*/\.\./' # Canonicalize the pathname of ld ac_prog=`echo "$ac_prog"| sed 's%\\\\%/%g'` while echo "$ac_prog" | grep "$re_direlt" > /dev/null 2>&1; do ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi AC_CACHE_VAL([acl_cv_path_LD], [if test -z "$LD"; then acl_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$acl_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. #serial 1 # _AX_CHECK_VSCRIPT(flag, global-sym, action-if-link-succeeds, [junk-file=no]) AC_DEFUN([_AX_CHECK_VSCRIPT], [ AC_LANG_PUSH([C]) ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: $2; local: *; };" > conftest.map AS_IF([test x$4 = xyes], [ echo "{" >> conftest.map ]) LDFLAGS="$LDFLAGS -Wl,$1,conftest.map" AC_LINK_IFELSE([AC_LANG_PROGRAM([[int show, hide;]], [])], [$3]) LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map AC_LANG_POP([C]) ]) dnl _AX_CHECK_VSCRIPT AC_DEFUN([AX_CHECK_VSCRIPT], [ AC_ARG_ENABLE([symvers], AS_HELP_STRING([--disable-symvers], [disable library symbol versioning [default=auto]]), [want_symvers=$enableval], [want_symvers=yes] ) AS_IF([test x$want_symvers = xyes], [ dnl First test --version-script and -M with a simple wildcard. AC_CACHE_CHECK([linker version script flag], ax_cv_check_vscript_flag, [ ax_cv_check_vscript_flag=unsupported _AX_CHECK_VSCRIPT([--version-script], [show], [ ax_cv_check_vscript_flag=--version-script ]) AS_IF([test x$ax_cv_check_vscript_flag = xunsupported], [ _AX_CHECK_VSCRIPT([-M], [show], [ax_cv_check_vscript_flag=-M]) ]) dnl The linker may interpret -M (no argument) as "produce a load map." dnl If "-M conftest.map" doesn't fail when conftest.map contains dnl obvious syntax errors, assume this is the case. AS_IF([test x$ax_cv_check_vscript_flag != xunsupported], [ _AX_CHECK_VSCRIPT([$ax_cv_check_vscript_flag], [show], [ax_cv_check_vscript_flag=unsupported], [yes]) ]) ]) dnl If the simple wildcard worked, retest with a complex wildcard. AS_IF([test x$ax_cv_check_vscript_flag != xunsupported], [ ax_check_vscript_flag=$ax_cv_check_vscript_flag AC_CACHE_CHECK([if version scripts can use complex wildcards], ax_cv_check_vscript_complex_wildcards, [ ax_cv_check_vscript_complex_wildcards=no _AX_CHECK_VSCRIPT([$ax_cv_check_vscript_flag], [sh*], [ ax_cv_check_vscript_complex_wildcards=yes]) ]) ax_check_vscript_complex_wildcards="$ax_cv_check_vscript_complex_wildcards" ], [ ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no ]) ], [ AC_MSG_CHECKING([linker version script flag]) AC_MSG_RESULT([disabled]) ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no ]) AS_IF([test x$ax_check_vscript_flag != x], [ VSCRIPT_LDFLAGS="-Wl,$ax_check_vscript_flag" AC_SUBST([VSCRIPT_LDFLAGS]) ]) AM_CONDITIONAL([HAVE_VSCRIPT], [test x$ax_check_vscript_flag != x]) AM_CONDITIONAL([HAVE_VSCRIPT_COMPLEX], [test x$ax_check_vscript_complex_wildcards = xyes]) ]) dnl AX_CHECK_VSCRIPT openconnect-7.06/m4/iconv.m40000664000076400007640000002162012453040465012620 00000000000000# iconv.m4 serial 18 (gettext-0.18.2) dnl Copyright (C) 2000-2002, 2007-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. AC_DEFUN([AM_ICONV_LINKFLAGS_BODY], [ dnl Prerequisites of AC_LIB_LINKFLAGS_BODY. AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_LIB_LINKFLAGS_BODY([iconv]) ]) AC_DEFUN([AM_ICONV_LINK], [ dnl Some systems have iconv in libc, some have it in libiconv (OSF/1 and dnl those with the standalone portable GNU libiconv installed). AC_REQUIRE([AC_CANONICAL_HOST]) dnl for cross-compiles dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_REQUIRE([AM_ICONV_LINKFLAGS_BODY]) dnl Add $INCICONV to CPPFLAGS before performing the following checks, dnl because if the user has installed libiconv and not disabled its use dnl via --without-libiconv-prefix, he wants to use it. The first dnl AC_LINK_IFELSE will then fail, the second AC_LINK_IFELSE will succeed. am_save_CPPFLAGS="$CPPFLAGS" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INCICONV]) AC_CACHE_CHECK([for iconv], [am_cv_func_iconv], [ am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no AC_LINK_IFELSE( [AC_LANG_PROGRAM( [[ #include #include ]], [[iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);]])], [am_cv_func_iconv=yes]) if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" AC_LINK_IFELSE( [AC_LANG_PROGRAM( [[ #include #include ]], [[iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);]])], [am_cv_lib_iconv=yes] [am_cv_func_iconv=yes]) LIBS="$am_save_LIBS" fi ]) if test "$am_cv_func_iconv" = yes; then AC_CACHE_CHECK([for working iconv], [am_cv_func_iconv_works], [ dnl This tests against bugs in AIX 5.1, AIX 6.1..7.1, HP-UX 11.11, dnl Solaris 10. am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi AC_RUN_IFELSE( [AC_LANG_SOURCE([[ #include #include int main () { int result = 0; /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 1; iconv_close (cd_utf8_to_88591); } } /* Test against Solaris 10 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_ascii_to_88591 = iconv_open ("ISO8859-1", "646"); if (cd_ascii_to_88591 != (iconv_t)(-1)) { static const char input[] = "\263"; char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_ascii_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 2; iconv_close (cd_ascii_to_88591); } } /* Test against AIX 6.1..7.1 bug: Buffer overrun. */ { iconv_t cd_88591_to_utf8 = iconv_open ("UTF-8", "ISO-8859-1"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304"; static char buf[2] = { (char)0xDE, (char)0xAD }; const char *inptr = input; size_t inbytesleft = 1; char *outptr = buf; size_t outbytesleft = 1; size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res != (size_t)(-1) || outptr - buf > 1 || buf[1] != (char)0xAD) result |= 4; iconv_close (cd_88591_to_utf8); } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) result |= 8; iconv_close (cd_88591_to_utf8); } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) result |= 16; return result; }]])], [am_cv_func_iconv_works=yes], [am_cv_func_iconv_works=no], [ changequote(,)dnl case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac changequote([,])dnl ]) LIBS="$am_save_LIBS" ]) case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then AC_DEFINE([HAVE_ICONV], [1], [Define if you have the iconv() function and it works.]) fi if test "$am_cv_lib_iconv" = yes; then AC_MSG_CHECKING([how to link with libiconv]) AC_MSG_RESULT([$LIBICONV]) else dnl If $LIBICONV didn't lead to a usable library, we don't need $INCICONV dnl either. CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi AC_SUBST([LIBICONV]) AC_SUBST([LTLIBICONV]) ]) dnl Define AM_ICONV using AC_DEFUN_ONCE for Autoconf >= 2.64, in order to dnl avoid warnings like dnl "warning: AC_REQUIRE: `AM_ICONV' was expanded before it was required". dnl This is tricky because of the way 'aclocal' is implemented: dnl - It requires defining an auxiliary macro whose name ends in AC_DEFUN. dnl Otherwise aclocal's initial scan pass would miss the macro definition. dnl - It requires a line break inside the AC_DEFUN_ONCE and AC_DEFUN expansions. dnl Otherwise aclocal would emit many "Use of uninitialized value $1" dnl warnings. m4_define([gl_iconv_AC_DEFUN], m4_version_prereq([2.64], [[AC_DEFUN_ONCE( [$1], [$2])]], [m4_ifdef([gl_00GNULIB], [[AC_DEFUN_ONCE( [$1], [$2])]], [[AC_DEFUN( [$1], [$2])]])])) gl_iconv_AC_DEFUN([AM_ICONV], [ AM_ICONV_LINK if test "$am_cv_func_iconv" = yes; then AC_MSG_CHECKING([for iconv declaration]) AC_CACHE_VAL([am_cv_proto_iconv], [ AC_COMPILE_IFELSE( [AC_LANG_PROGRAM( [[ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(_MSC_VER) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif ]], [[]])], [am_cv_proto_iconv_arg1=""], [am_cv_proto_iconv_arg1="const"]) am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);"]) am_cv_proto_iconv=`echo "[$]am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` AC_MSG_RESULT([ $am_cv_proto_iconv]) AC_DEFINE_UNQUOTED([ICONV_CONST], [$am_cv_proto_iconv_arg1], [Define as const if the declaration of iconv() needs const.]) dnl Also substitute ICONV_CONST in the gnulib generated . m4_ifdef([gl_ICONV_H_DEFAULTS], [AC_REQUIRE([gl_ICONV_H_DEFAULTS]) if test -n "$am_cv_proto_iconv_arg1"; then ICONV_CONST="const" fi ]) fi ]) openconnect-7.06/m4/lib-prefix.m40000664000076400007640000002042212453040465013542 00000000000000# lib-prefix.m4 serial 7 (gettext-0.18) dnl Copyright (C) 2001-2005, 2008-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. dnl AC_LIB_ARG_WITH is synonymous to AC_ARG_WITH in autoconf-2.13, and dnl similar to AC_ARG_WITH in autoconf 2.52...2.57 except that is doesn't dnl require excessive bracketing. ifdef([AC_HELP_STRING], [AC_DEFUN([AC_LIB_ARG_WITH], [AC_ARG_WITH([$1],[[$2]],[$3],[$4])])], [AC_DEFUN([AC_][LIB_ARG_WITH], [AC_ARG_WITH([$1],[$2],[$3],[$4])])]) dnl AC_LIB_PREFIX adds to the CPPFLAGS and LDFLAGS the flags that are needed dnl to access previously installed libraries. The basic assumption is that dnl a user will want packages to use other packages he previously installed dnl with the same --prefix option. dnl This macro is not needed if only AC_LIB_LINKFLAGS is used to locate dnl libraries, but is otherwise very convenient. AC_DEFUN([AC_LIB_PREFIX], [ AC_BEFORE([$0], [AC_LIB_LINKFLAGS]) AC_REQUIRE([AC_PROG_CC]) AC_REQUIRE([AC_CANONICAL_HOST]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_LIB_ARG_WITH([lib-prefix], [ --with-lib-prefix[=DIR] search for libraries in DIR/include and DIR/lib --without-lib-prefix don't search for libraries in includedir and libdir], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi ]) if test $use_additional = yes; then dnl Potentially add $additional_includedir to $CPPFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's already present in $CPPFLAGS, dnl 3. if it's /usr/local/include and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= for x in $CPPFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $CPPFLAGS. CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }-I$additional_includedir" fi fi fi fi dnl Potentially add $additional_libdir to $LDFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's already present in $LDFLAGS, dnl 3. if it's /usr/local/lib and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= for x in $LDFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux*) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LDFLAGS. LDFLAGS="${LDFLAGS}${LDFLAGS:+ }-L$additional_libdir" fi fi fi fi fi ]) dnl AC_LIB_PREPARE_PREFIX creates variables acl_final_prefix, dnl acl_final_exec_prefix, containing the values to which $prefix and dnl $exec_prefix will expand at the end of the configure script. AC_DEFUN([AC_LIB_PREPARE_PREFIX], [ dnl Unfortunately, prefix and exec_prefix get only finally determined dnl at the end of configure. if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" ]) dnl AC_LIB_WITH_FINAL_PREFIX([statement]) evaluates statement, with the dnl variables prefix and exec_prefix bound to the values they will have dnl at the end of the configure script. AC_DEFUN([AC_LIB_WITH_FINAL_PREFIX], [ acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" $1 exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" ]) dnl AC_LIB_PREPARE_MULTILIB creates dnl - a variable acl_libdirstem, containing the basename of the libdir, either dnl "lib" or "lib64" or "lib/64", dnl - a variable acl_libdirstem2, as a secondary possible value for dnl acl_libdirstem, either the same as acl_libdirstem or "lib/sparcv9" or dnl "lib/amd64". AC_DEFUN([AC_LIB_PREPARE_MULTILIB], [ dnl There is no formal standard regarding lib and lib64. dnl On glibc systems, the current practice is that on a system supporting dnl 32-bit and 64-bit instruction sets or ABIs, 64-bit libraries go under dnl $prefix/lib64 and 32-bit libraries go under $prefix/lib. We determine dnl the compiler's default mode by looking at the compiler's library search dnl path. If at least one of its elements ends in /lib64 or points to a dnl directory whose absolute pathname ends in /lib64, we assume a 64-bit ABI. dnl Otherwise we use the default, namely "lib". dnl On Solaris systems, the current practice is that on a system supporting dnl 32-bit and 64-bit instruction sets or ABIs, 64-bit libraries go under dnl $prefix/lib/64 (which is a symlink to either $prefix/lib/sparcv9 or dnl $prefix/lib/amd64) and 32-bit libraries go under $prefix/lib. AC_REQUIRE([AC_CANONICAL_HOST]) acl_libdirstem=lib acl_libdirstem2= case "$host_os" in solaris*) dnl See Solaris 10 Software Developer Collection > Solaris 64-bit Developer's Guide > The Development Environment dnl . dnl "Portable Makefiles should refer to any library directories using the 64 symbolic link." dnl But we want to recognize the sparcv9 or amd64 subdirectory also if the dnl symlink is missing, so we set acl_libdirstem2 too. AC_CACHE_CHECK([for 64-bit host], [gl_cv_solaris_64bit], [AC_EGREP_CPP([sixtyfour bits], [ #ifdef _LP64 sixtyfour bits #endif ], [gl_cv_solaris_64bit=yes], [gl_cv_solaris_64bit=no]) ]) if test $gl_cv_solaris_64bit = yes; then acl_libdirstem=lib/64 case "$host_cpu" in sparc*) acl_libdirstem2=lib/sparcv9 ;; i*86 | x86_64) acl_libdirstem2=lib/amd64 ;; esac fi ;; *) searchpath=`(LC_ALL=C $CC -print-search-dirs) 2>/dev/null | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib64/ | */lib64 ) acl_libdirstem=lib64 ;; */../ | */.. ) # Better ignore directories of this form. They are misleading. ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib64 ) acl_libdirstem=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" fi ;; esac test -n "$acl_libdirstem2" || acl_libdirstem2="$acl_libdirstem" ]) openconnect-7.06/m4/lib-link.m40000664000076400007640000010044312453040465013204 00000000000000# lib-link.m4 serial 26 (gettext-0.18.2) dnl Copyright (C) 2001-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. AC_PREREQ([2.54]) dnl AC_LIB_LINKFLAGS(name [, dependencies]) searches for libname and dnl the libraries corresponding to explicit and implicit dependencies. dnl Sets and AC_SUBSTs the LIB${NAME} and LTLIB${NAME} variables and dnl augments the CPPFLAGS variable. dnl Sets and AC_SUBSTs the LIB${NAME}_PREFIX variable to nonempty if libname dnl was found in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_LINKFLAGS], [ AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) pushdef([Name],[m4_translit([$1],[./+-], [____])]) pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) AC_CACHE_CHECK([how to link with lib[]$1], [ac_cv_lib[]Name[]_libs], [ AC_LIB_LINKFLAGS_BODY([$1], [$2]) ac_cv_lib[]Name[]_libs="$LIB[]NAME" ac_cv_lib[]Name[]_ltlibs="$LTLIB[]NAME" ac_cv_lib[]Name[]_cppflags="$INC[]NAME" ac_cv_lib[]Name[]_prefix="$LIB[]NAME[]_PREFIX" ]) LIB[]NAME="$ac_cv_lib[]Name[]_libs" LTLIB[]NAME="$ac_cv_lib[]Name[]_ltlibs" INC[]NAME="$ac_cv_lib[]Name[]_cppflags" LIB[]NAME[]_PREFIX="$ac_cv_lib[]Name[]_prefix" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INC]NAME) AC_SUBST([LIB]NAME) AC_SUBST([LTLIB]NAME) AC_SUBST([LIB]NAME[_PREFIX]) dnl Also set HAVE_LIB[]NAME so that AC_LIB_HAVE_LINKFLAGS can reuse the dnl results of this search when this library appears as a dependency. HAVE_LIB[]NAME=yes popdef([NAME]) popdef([Name]) ]) dnl AC_LIB_HAVE_LINKFLAGS(name, dependencies, includes, testcode, [missing-message]) dnl searches for libname and the libraries corresponding to explicit and dnl implicit dependencies, together with the specified include files and dnl the ability to compile and link the specified testcode. The missing-message dnl defaults to 'no' and may contain additional hints for the user. dnl If found, it sets and AC_SUBSTs HAVE_LIB${NAME}=yes and the LIB${NAME} dnl and LTLIB${NAME} variables and augments the CPPFLAGS variable, and dnl #defines HAVE_LIB${NAME} to 1. Otherwise, it sets and AC_SUBSTs dnl HAVE_LIB${NAME}=no and LIB${NAME} and LTLIB${NAME} to empty. dnl Sets and AC_SUBSTs the LIB${NAME}_PREFIX variable to nonempty if libname dnl was found in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_HAVE_LINKFLAGS], [ AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) pushdef([Name],[m4_translit([$1],[./+-], [____])]) pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) dnl Search for lib[]Name and define LIB[]NAME, LTLIB[]NAME and INC[]NAME dnl accordingly. AC_LIB_LINKFLAGS_BODY([$1], [$2]) dnl Add $INC[]NAME to CPPFLAGS before performing the following checks, dnl because if the user has installed lib[]Name and not disabled its use dnl via --without-lib[]Name-prefix, he wants to use it. ac_save_CPPFLAGS="$CPPFLAGS" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INC]NAME) AC_CACHE_CHECK([for lib[]$1], [ac_cv_lib[]Name], [ ac_save_LIBS="$LIBS" dnl If $LIB[]NAME contains some -l options, add it to the end of LIBS, dnl because these -l options might require -L options that are present in dnl LIBS. -l options benefit only from the -L options listed before it. dnl Otherwise, add it to the front of LIBS, because it may be a static dnl library that depends on another static library that is present in LIBS. dnl Static libraries benefit only from the static libraries listed after dnl it. case " $LIB[]NAME" in *" -l"*) LIBS="$LIBS $LIB[]NAME" ;; *) LIBS="$LIB[]NAME $LIBS" ;; esac AC_LINK_IFELSE( [AC_LANG_PROGRAM([[$3]], [[$4]])], [ac_cv_lib[]Name=yes], [ac_cv_lib[]Name='m4_if([$5], [], [no], [[$5]])']) LIBS="$ac_save_LIBS" ]) if test "$ac_cv_lib[]Name" = yes; then HAVE_LIB[]NAME=yes AC_DEFINE([HAVE_LIB]NAME, 1, [Define if you have the lib][$1 library.]) AC_MSG_CHECKING([how to link with lib[]$1]) AC_MSG_RESULT([$LIB[]NAME]) else HAVE_LIB[]NAME=no dnl If $LIB[]NAME didn't lead to a usable library, we don't need dnl $INC[]NAME either. CPPFLAGS="$ac_save_CPPFLAGS" LIB[]NAME= LTLIB[]NAME= LIB[]NAME[]_PREFIX= fi AC_SUBST([HAVE_LIB]NAME) AC_SUBST([LIB]NAME) AC_SUBST([LTLIB]NAME) AC_SUBST([LIB]NAME[_PREFIX]) popdef([NAME]) popdef([Name]) ]) dnl Determine the platform dependent parameters needed to use rpath: dnl acl_libext, dnl acl_shlibext, dnl acl_libname_spec, dnl acl_library_names_spec, dnl acl_hardcode_libdir_flag_spec, dnl acl_hardcode_libdir_separator, dnl acl_hardcode_direct, dnl acl_hardcode_minus_L. AC_DEFUN([AC_LIB_RPATH], [ dnl Tell automake >= 1.10 to complain if config.rpath is missing. m4_ifdef([AC_REQUIRE_AUX_FILE], [AC_REQUIRE_AUX_FILE([config.rpath])]) AC_REQUIRE([AC_PROG_CC]) dnl we use $CC, $GCC, $LDFLAGS AC_REQUIRE([AC_LIB_PROG_LD]) dnl we use $LD, $with_gnu_ld AC_REQUIRE([AC_CANONICAL_HOST]) dnl we use $host AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT]) dnl we use $ac_aux_dir AC_CACHE_CHECK([for shared library run path origin], [acl_cv_rpath], [ CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done ]) wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" dnl Determine whether the user wants rpath handling at all. AC_ARG_ENABLE([rpath], [ --disable-rpath do not hardcode runtime library paths], :, enable_rpath=yes) ]) dnl AC_LIB_FROMPACKAGE(name, package) dnl declares that libname comes from the given package. The configure file dnl will then not have a --with-libname-prefix option but a dnl --with-package-prefix option. Several libraries can come from the same dnl package. This declaration must occur before an AC_LIB_LINKFLAGS or similar dnl macro call that searches for libname. AC_DEFUN([AC_LIB_FROMPACKAGE], [ pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) define([acl_frompackage_]NAME, [$2]) popdef([NAME]) pushdef([PACK],[$2]) pushdef([PACKUP],[m4_translit(PACK,[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) define([acl_libsinpackage_]PACKUP, m4_ifdef([acl_libsinpackage_]PACKUP, [m4_defn([acl_libsinpackage_]PACKUP)[, ]],)[lib$1]) popdef([PACKUP]) popdef([PACK]) ]) dnl AC_LIB_LINKFLAGS_BODY(name [, dependencies]) searches for libname and dnl the libraries corresponding to explicit and implicit dependencies. dnl Sets the LIB${NAME}, LTLIB${NAME} and INC${NAME} variables. dnl Also, sets the LIB${NAME}_PREFIX variable to nonempty if libname was found dnl in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_LINKFLAGS_BODY], [ AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) pushdef([PACK],[m4_ifdef([acl_frompackage_]NAME, [acl_frompackage_]NAME, lib[$1])]) pushdef([PACKUP],[m4_translit(PACK,[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) pushdef([PACKLIBS],[m4_ifdef([acl_frompackage_]NAME, [acl_libsinpackage_]PACKUP, lib[$1])]) dnl Autoconf >= 2.61 supports dots in --with options. pushdef([P_A_C_K],[m4_if(m4_version_compare(m4_defn([m4_PACKAGE_VERSION]),[2.61]),[-1],[m4_translit(PACK,[.],[_])],PACK)]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_ARG_WITH(P_A_C_K[-prefix], [[ --with-]]P_A_C_K[[-prefix[=DIR] search for ]PACKLIBS[ in DIR/include and DIR/lib --without-]]P_A_C_K[[-prefix don't search for ]PACKLIBS[ in includedir and libdir]], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" if test "$acl_libdirstem2" != "$acl_libdirstem" \ && ! test -d "$withval/$acl_libdirstem"; then additional_libdir="$withval/$acl_libdirstem2" fi fi fi ]) dnl Search the library and its dependencies in $additional_libdir and dnl $LDFLAGS. Using breadth-first-seach. LIB[]NAME= LTLIB[]NAME= INC[]NAME= LIB[]NAME[]_PREFIX= dnl HAVE_LIB${NAME} is an indicator that LIB${NAME}, LTLIB${NAME} have been dnl computed. So it has to be reset here. HAVE_LIB[]NAME= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='$1 $2' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" dnl See if it was already located by an earlier AC_LIB_LINKFLAGS dnl or AC_LIB_HAVE_LINKFLAGS call. uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$value" else dnl An earlier call to AC_LIB_HAVE_LINKFLAGS has determined dnl that this library doesn't exist. So just drop it. : fi else dnl Search the library lib$name in $additional_libdir and $LDFLAGS dnl and the already constructed $LIBNAME/$LTLIBNAME. found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" dnl The same code as in the loop below: dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then dnl Found the library. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then dnl Linking with a shared library. We attempt to hardcode its dnl directory into the executable's runpath, unless it's the dnl standard /usr/lib. if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2"; then dnl No hardcoding is needed. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl Use an explicit option to hardcode DIR into the resulting dnl binary. dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi dnl The hardcoding into $LIBNAME is system dependent. if test "$acl_hardcode_direct" = yes; then dnl Using DIR/libNAME.so during linking hardcodes DIR into the dnl resulting binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode DIR into the resulting dnl binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else dnl Rely on "-L$found_dir". dnl But don't add it if it's already contained in the LDFLAGS dnl or the already constructed $LIBNAME haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl We cannot use $acl_hardcode_runpath_var and LD_RUN_PATH dnl here, because this doesn't fit in flags passed to the dnl compiler. So give up. No hardcoding. This affects only dnl very old systems. dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then dnl Linking with a static library. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_a" else dnl We shouldn't come here, but anyway it's good to have a dnl fallback. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir -l$name" fi fi dnl Assume the include files are nearby. additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then dnl Potentially add $additional_includedir to $INCNAME. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's /usr/local/include and we are using GCC on Linux, dnl 3. if it's already present in $CPPFLAGS or the already dnl constructed $INCNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INC[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $INCNAME. INC[]NAME="${INC[]NAME}${INC[]NAME:+ }-I$additional_includedir" fi fi fi fi fi dnl Look for dependencies. if test -n "$found_la"; then dnl Read the .la file. It defines the variables dnl dlname, library_names, old_library, dependency_libs, current, dnl age, revision, installed, dlopen, dlpreopen, libdir. save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" dnl We use only dependency_libs. for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` dnl Potentially add $additional_libdir to $LIBNAME and $LTLIBNAME. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's /usr/local/lib and we are using GCC on Linux, dnl 3. if it's already present in $LDFLAGS or the already dnl constructed $LIBNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem" \ && test "X$additional_libdir" != "X/usr/$acl_libdirstem2"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$additional_libdir" = "X/usr/local/$acl_libdirstem2"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LIBNAME. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LTLIBNAME. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) dnl Handle this in the next round. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) dnl Handle this in the next round. Throw away the .la's dnl directory; it is already contained in a preceding -L dnl option. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) dnl Most likely an immediate library name. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$dep" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$dep" ;; esac done fi else dnl Didn't find the library; assume it is in the system directories dnl known to the linker and runtime loader. (All the system dnl directories known to the linker should also be known to the dnl runtime loader, otherwise the system is severely misconfigured.) LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user must dnl pass all path elements in one option. We can arrange that for a dnl single library, but not when more than one $LIBNAMEs are used. alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done dnl Note: acl_hardcode_libdir_flag_spec uses $libdir and $wl. acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" else dnl The -rpath options are cumulative. for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then dnl When using libtool, the option that works for both libraries and dnl executables is -R. The -R options are cumulative. for found_dir in $ltrpathdirs; do LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-R$found_dir" done fi popdef([P_A_C_K]) popdef([PACKLIBS]) popdef([PACKUP]) popdef([PACK]) popdef([NAME]) ]) dnl AC_LIB_APPENDTOVAR(VAR, CONTENTS) appends the elements of CONTENTS to VAR, dnl unless already present in VAR. dnl Works only for CPPFLAGS, not for LIB* variables because that sometimes dnl contains two or three consecutive elements that belong together. AC_DEFUN([AC_LIB_APPENDTOVAR], [ for element in [$2]; do haveit= for x in $[$1]; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then [$1]="${[$1]}${[$1]:+ }$element" fi done ]) dnl For those cases where a variable contains several -L and -l options dnl referring to unknown libraries and directories, this macro determines the dnl necessary additional linker options for the runtime path. dnl AC_LIB_LINKFLAGS_FROM_LIBS([LDADDVAR], [LIBSVALUE], [USE-LIBTOOL]) dnl sets LDADDVAR to linker options needed together with LIBSVALUE. dnl If USE-LIBTOOL evaluates to non-empty, linking with libtool is assumed, dnl otherwise linking without libtool is assumed. AC_DEFUN([AC_LIB_LINKFLAGS_FROM_LIBS], [ AC_REQUIRE([AC_LIB_RPATH]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) $1= if test "$enable_rpath" != no; then if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode directories into the resulting dnl binary. rpathdirs= next= for opt in $2; do if test -n "$next"; then dir="$next" dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem" \ && test "X$dir" != "X/usr/$acl_libdirstem2"; then rpathdirs="$rpathdirs $dir" fi next= else case $opt in -L) next=yes ;; -L*) dir=`echo "X$opt" | sed -e 's,^X-L,,'` dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem" \ && test "X$dir" != "X/usr/$acl_libdirstem2"; then rpathdirs="$rpathdirs $dir" fi next= ;; *) next= ;; esac fi done if test "X$rpathdirs" != "X"; then if test -n ""$3""; then dnl libtool is used for linking. Use -R options. for dir in $rpathdirs; do $1="${$1}${$1:+ }-R$dir" done else dnl The linker is used for linking directly. if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user dnl must pass all path elements in one option. alldirs= for dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="$flag" else dnl The -rpath options are cumulative. for dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="${$1}${$1:+ }$flag" done fi fi fi fi fi AC_SUBST([$1]) ]) openconnect-7.06/oncp.c0000664000076400007640000010360012502026115012011 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Grateful thanks to Tiebing Zhang, who did much of the hard work * of analysing and decoding the protocol. */ #include #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" static int parse_cookie(struct openconnect_info *vpninfo) { char *p = vpninfo->cookie; /* We currenly expect the "cookie" to be contain multiple cookies: * DSSignInUrl=/; DSID=xxx; DSFirstAccess=xxx; DSLastAccess=xxx * Process those into vpninfo->cookies unless we already had them * (in which case they'll may be newer. */ while (p && *p) { char *semicolon = strchr(p, ';'); char *equals; if (semicolon) *semicolon = 0; equals = strchr(p, '='); if (!equals) { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie '%s'\n"), p); return -EINVAL; } *equals = 0; http_add_cookie(vpninfo, p, equals+1, 0); *equals = '='; p = semicolon; if (p) { *p = ';'; p++; while (*p && isspace((int)(unsigned char)*p)) p++; } } return 0; } static void buf_append_be16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_be16(b, val); buf_append_bytes(buf, b, 2); } static void buf_append_le16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_le16(b, val); buf_append_bytes(buf, b, 2); } static void buf_append_tlv(struct oc_text_buf *buf, uint16_t val, uint32_t len, void *data) { unsigned char b[6]; store_be16(b, val); store_be32(b + 2, len); buf_append_bytes(buf, b, 6); if (len) buf_append_bytes(buf, data, len); } static void buf_append_tlv_be32(struct oc_text_buf *buf, uint16_t val, uint32_t data) { unsigned char d[4]; store_be32(d, data); buf_append_tlv(buf, val, 4, d); } static void buf_hexdump(struct openconnect_info *vpninfo, unsigned char *d, int len) { char linebuf[80]; int i; for (i = 0; i < len; i++) { if (i % 16 == 0) { if (i) vpn_progress(vpninfo, PRG_DEBUG, "%s\n", linebuf); sprintf(linebuf, "%04x:", i); } sprintf(linebuf + strlen(linebuf), " %02x", d[i]); } vpn_progress(vpninfo, PRG_DEBUG, "%s\n", linebuf); } static const char authpkt_head[] = { 0x00, 0x04, 0x00, 0x00, 0x00 }; static const char authpkt_tail[] = { 0xbb, 0x01, 0x00, 0x00, 0x00, 0x00 }; #define GRP_ATTR(g, a) (((g) << 16) | (a)) /* We behave like CSTP — create a linked list in vpninfo->cstp_options * with the strings containing the information we got from the server, * and oc_ip_info contains const copies of those pointers. */ static const char *add_option(struct openconnect_info *vpninfo, const char *opt, const char *val, int val_len) { struct oc_vpn_option *new = malloc(sizeof(*new)); if (!new) return NULL; new->option = strdup(opt); if (!new->option) { free(new); return NULL; } if (val_len >= 0) new->value = strndup(val, val_len); else new->value = strdup(val); if (!new->value) { free(new->option); free(new); return NULL; } new->next = vpninfo->cstp_options; vpninfo->cstp_options = new; return new->value; } static int process_attr(struct openconnect_info *vpninfo, int group, int attr, unsigned char *data, int attrlen) { char buf[80]; int i; switch(GRP_ATTR(group, attr)) { case GRP_ATTR(6, 2): if (attrlen != 4) { badlen: vpn_progress(vpninfo, PRG_ERR, _("Unexpected length %d for TLV %d/%d\n"), attrlen, group, attr); return -EINVAL; } vpninfo->ip_info.mtu = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("Received MTU %d from server\n"), vpninfo->ip_info.mtu); break; case GRP_ATTR(2, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.dns[i]) { vpninfo->ip_info.dns[i] = add_option(vpninfo, "DNS", buf, -1); break; } } break; case GRP_ATTR(2, 2): vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS search domain %.*s\n"), attrlen, (char *)data); vpninfo->ip_info.domain = add_option(vpninfo, "search", (char *)data, attrlen); break; case GRP_ATTR(1, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal IP address %s\n"), buf); vpninfo->ip_info.addr = add_option(vpninfo, "ipaddr", buf, -1); break; case GRP_ATTR(1, 2): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received netmask %s\n"), buf); vpninfo->ip_info.netmask = add_option(vpninfo, "netmask", buf, -1); break; case GRP_ATTR(1, 3): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal gateway address %s\n"), buf); /* Hm, what are we supposed to do with this? It's a tunnel; having a gateway is meaningless. */ add_option(vpninfo, "ipaddr", buf, -1); break; case GRP_ATTR(3, 3): { struct oc_split_include *inc; if (attrlen != 8) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", data[0], data[1], data[2], data[3], data[4], data[5], data[6], data[7]); vpn_progress(vpninfo, PRG_DEBUG, _("Received split include route %s\n"), buf); if (!data[4] && !data[5] && !data[6] && !data[7]) break; inc = malloc(sizeof(*inc)); if (inc) { inc->route = add_option(vpninfo, "split-include", buf, -1); if (inc->route) { inc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = inc; } else free(inc); } break; } case GRP_ATTR(3, 4): { struct oc_split_include *exc; if (attrlen != 8) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", data[0], data[1], data[2], data[3], data[4], data[5], data[6], data[7]); vpn_progress(vpninfo, PRG_DEBUG, _("Received split exclude route %s\n"), buf); if (!data[4] && !data[5] && !data[6] && !data[7]) break; exc = malloc(sizeof(*exc)); if (exc) { exc->route = add_option(vpninfo, "split-exclude", buf, -1); if (exc->route) { exc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = exc; } else free(exc); } break; } case GRP_ATTR(4, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received WINS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.nbns[i]) { vpninfo->ip_info.nbns[i] = add_option(vpninfo, "WINS", buf, -1); break; } } break; case GRP_ATTR(8, 1): { const char *enctype; if (attrlen != 1) goto badlen; if (data[0] == 0x02) enctype = "AES-128"; else if (data[0] == 0x05) enctype = "AES-256"; else enctype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP encryption: 0x%02x (%s)\n"), data[0], enctype); vpninfo->esp_enc = data[0]; break; } case GRP_ATTR(8, 2): { const char *mactype; if (attrlen != 1) goto badlen; if (data[0] == 0x01) mactype = "MD5"; else if (data[0] == 0x02) mactype = "SHA1"; else mactype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP HMAC: 0x%02x (%s)\n"), data[0], mactype); vpninfo->esp_hmac = data[0]; break; } case GRP_ATTR(8, 3): if (attrlen != 1) goto badlen; vpninfo->esp_compr = data[0]; vpn_progress(vpninfo, PRG_DEBUG, _("ESP compression: %d\n"), data[0]); break; case GRP_ATTR(8, 4): if (attrlen != 2) goto badlen; i = load_be16(data); udp_sockaddr(vpninfo, i); vpn_progress(vpninfo, PRG_DEBUG, _("ESP port: %d\n"), i); break; case GRP_ATTR(8, 5): if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_bytes = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u bytes\n"), vpninfo->esp_lifetime_bytes); break; case GRP_ATTR(8, 6): if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_seconds = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u seconds\n"), vpninfo->esp_lifetime_seconds); break; case GRP_ATTR(8, 9): if (attrlen != 4) goto badlen; vpninfo->esp_ssl_fallback = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP to SSL fallback: %u seconds\n"), vpninfo->esp_ssl_fallback); break; case GRP_ATTR(8, 10): if (attrlen != 4) goto badlen; vpninfo->esp_replay_protect = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP replay protection: %d\n"), load_be32(data)); break; case GRP_ATTR(7, 1): if (attrlen != 4) goto badlen; memcpy(&vpninfo->esp_out.spi, data, 4); vpn_progress(vpninfo, PRG_DEBUG, _("ESP SPI (outbound): %x\n"), load_be32(data)); break; case GRP_ATTR(7, 2): if (attrlen != 0x40) goto badlen; memcpy(vpninfo->esp_out.secrets, data, 0x40); vpn_progress(vpninfo, PRG_DEBUG, _("%d bytes of ESP secrets\n"), attrlen); break; default: buf[0] = 0; for (i=0; i < 16 && i < attrlen; i++) sprintf(buf + strlen(buf), " %02x", data[i]); if (attrlen > 16) sprintf(buf + strlen(buf), "..."); vpn_progress(vpninfo, PRG_DEBUG, _("Unknown TLV group %d attr %d len %d:%s\n"), group, attr, attrlen, buf); } return 0; } static void put_len16(struct oc_text_buf *buf, int where) { int len = buf->pos - where; store_be16(buf->data + where - 2, len); } static void put_len32(struct oc_text_buf *buf, int where) { int len = buf->pos - where; store_be32(buf->data + where - 4, len); } /* We don't know what these are so just hope they never change */ static const unsigned char kmp_head[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char kmp_tail[] = { 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char kmp_tail_out[] = { 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char data_hdr[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2c, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char esp_kmp_hdr[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2e, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, /* KMP header */ 0x00, 0x56, /* KMP length */ 0x00, 0x07, 0x00, 0x00, 0x00, 0x50, /* TLV group 7 */ 0x00, 0x01, 0x00, 0x00, 0x00, 0x04, /* Attr 1 (SPI) */ }; /* Followed by 4 bytes of SPI */ static const unsigned char esp_kmp_part2[] = { 0x00, 0x02, 0x00, 0x00, 0x00, 0x40, /* Attr 2 (secrets) */ }; /* And now 0x40 bytes of random secret for encryption and HMAC key */ static const struct pkt esp_enable_pkt = { .next = NULL, { .oncp.rec = { 0x21, 0x00 }, .oncp.kmp = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2f, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x0d } }, .data = { 0x00, 0x06, 0x00, 0x00, 0x00, 0x07, /* Group 6, len 7 */ 0x00, 0x01, 0x00, 0x00, 0x00, 0x01, /* Attr 1, len 1 */ 0x01 }, .len = 13 }; int queue_esp_control(struct openconnect_info *vpninfo, int enable) { struct pkt *new = malloc(sizeof(*new) + 13); if (!new) return -ENOMEM; memcpy(new, &esp_enable_pkt, sizeof(*new) + 13); new->data[12] = enable; queue_packet(&vpninfo->oncp_control_queue, new); return 0; } static int check_kmp_header(struct openconnect_info *vpninfo, unsigned char *bytes, int pktlen) { if (pktlen < 20 || memcmp(bytes, kmp_head, sizeof(kmp_head)) || memcmp(bytes + 8, kmp_tail, sizeof(kmp_tail))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse KMP header\n")); return -EINVAL; } return load_be16(bytes + 6); } static int parse_conf_pkt(struct openconnect_info *vpninfo, unsigned char *bytes, int pktlen, int kmp) { int kmplen, kmpend, grouplen, groupend, group, attr, attrlen; int ofs = 0; kmplen = load_be16(bytes + ofs + 18); kmpend = ofs + kmplen; if (kmpend > pktlen) { eparse: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse KMP message\n")); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Got KMP message %d of size %d\n"), kmp, kmplen); ofs += 0x14; while (ofs < kmpend) { if (ofs + 6 > kmpend) goto eparse; group = load_be16(bytes + ofs); grouplen = load_be32(bytes + ofs + 2); ofs += 6; groupend = ofs + grouplen; if (groupend > pktlen) goto eparse; if (kmp == 302 && group != 7 && group != 8) { vpn_progress(vpninfo, PRG_ERR, _("Received non-ESP TLVs (group %d) in ESP negotiation KMP\n"), group); return -EINVAL; } while (ofs < groupend) { if (ofs + 6 > groupend) goto eparse; attr = load_be16(bytes + ofs); attrlen = load_be32(bytes + ofs + 2); ofs += 6; if (attrlen + ofs > groupend) goto eparse; if (process_attr(vpninfo, group, attr, bytes + ofs, attrlen)) goto eparse; ofs += attrlen; } } return 0; } int oncp_connect(struct openconnect_info *vpninfo) { int ret, len, kmp, group; struct oc_text_buf *reqbuf; unsigned char bytes[4096]; /* XXX: We should do what cstp_connect() does to check that configuration hasn't changed on a reconnect. */ if (!vpninfo->cookies) { ret = parse_cookie(vpninfo); if (ret) return ret; } ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "POST /dana/js?prot=1&svc=1 HTTP/1.1\r\n"); oncp_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; /* The server is fairly weird. It sends Connection: close which would * indicate an HTTP 1.0-style body, but doesn't seem to actually close * the connection. So tell process_http_response() it was a CONNECT * request, since we don't care about the body anyway, and then close * the connection for ourselves. */ ret = process_http_response(vpninfo, 1, NULL, reqbuf); openconnect_close_https(vpninfo, 0); if (ret < 0) { /* We'll already have complained about whatever offended us */ goto out; } if (ret != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = -EINVAL; goto out; } /* Now the second request. We should reduce the duplication here but let's not overthink it for now; we should see what the authentication requests are going to look like, and make do_https_request() or a new helper function work for those too. */ ret = openconnect_open_https(vpninfo); if (ret) goto out; buf_truncate(reqbuf); buf_append(reqbuf, "POST /dana/js?prot=1&svc=4 HTTP/1.1\r\n"); oncp_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; ret = process_http_response(vpninfo, 1, NULL, reqbuf); if (ret < 0) goto out; if (ret != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = -EINVAL; goto out; } /* This is probably some kind of vestigial authentication packet, although * it's mostly obsolete now that the authentication is really done over * HTTP. We only send the hostname. */ buf_truncate(reqbuf); buf_append_le16(reqbuf, sizeof(authpkt_head) + 2 + strlen(vpninfo->localname) + sizeof(authpkt_tail)); buf_append_bytes(reqbuf, authpkt_head, sizeof(authpkt_head)); buf_append_le16(reqbuf, strlen(vpninfo->localname)); buf_append(reqbuf, "%s", vpninfo->localname); buf_append_bytes(reqbuf, authpkt_tail, sizeof(authpkt_tail)); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } buf_hexdump(vpninfo, (void *)reqbuf->data, reqbuf->pos); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret != reqbuf->pos) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in oNCP negotiation\n")); ret = -EIO; } goto out; } /* Now we expect a three-byte response with what's presumably an error code */ ret = vpninfo->ssl_read(vpninfo, (void *)bytes, 3); if (ret < 0) goto out; vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of SSL record\n"), ret); if (ret != 3 || bytes[0] != 1 || bytes[1] != 0) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response of size %d after hostname packet\n"), ret); ret = -EINVAL; goto out; } if (bytes[2]) { vpn_progress(vpninfo, PRG_ERR, _("Server response to hostname packet is error 0x%02x\n"), bytes[2]); ret = -EINVAL; goto out; } /* And then a KMP message 301 with the IP configuration */ len = vpninfo->ssl_read(vpninfo, (void *)bytes, sizeof(bytes)); if (len < 0) { ret = len; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of SSL record\n"), len); if (len < 0x16 || load_le16(bytes) + 2 != len) { vpn_progress(vpninfo, PRG_ERR, _("Invalid packet waiting for KMP 301\n")); buf_hexdump(vpninfo, bytes, len); ret = -EINVAL; goto out; } ret = check_kmp_header(vpninfo, bytes + 2, len); if (ret < 0) goto out; /* We expect KMP message 301 here */ if (ret != 301) { vpn_progress(vpninfo, PRG_ERR, _("Expected KMP message 301 from server but got %d\n"), ret); ret = -EINVAL; goto out; } ret = parse_conf_pkt(vpninfo, bytes + 2, len, ret); if (ret) goto out; buf_truncate(reqbuf); buf_append_le16(reqbuf, 0); /* Length. We'll fix it later. */ buf_append_bytes(reqbuf, kmp_head, sizeof(kmp_head)); buf_append_be16(reqbuf, 303); /* KMP message 303 */ buf_append_bytes(reqbuf, kmp_tail_out, sizeof(kmp_tail_out)); buf_append_be16(reqbuf, 0); /* KMP message length */ kmp = reqbuf->pos; buf_append_tlv(reqbuf, 6, 0, NULL); /* TLV group 6 */ group = reqbuf->pos; buf_append_tlv_be32(reqbuf, 2, vpninfo->ip_info.mtu); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } put_len32(reqbuf, group); put_len16(reqbuf, kmp); #if defined(ESP_GNUTLS) || defined(ESP_OPENSSL) if (!setup_esp_keys(vpninfo)) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; /* Since we'll want to do this in the oncp_mainloop too, where it's easier * *not* to have an oc_text_buf and build it up manually, and since it's * all fixed size and fairly simple anyway, just hard-code the packet */ buf_append_bytes(reqbuf, esp_kmp_hdr, sizeof(esp_kmp_hdr)); buf_append_bytes(reqbuf, &esp->spi, sizeof(esp->spi)); buf_append_bytes(reqbuf, esp_kmp_part2, sizeof(esp_kmp_part2)); buf_append_bytes(reqbuf, &esp->secrets, sizeof(esp->secrets)); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error negotiating ESP keys\n")); ret = buf_error(reqbuf); goto out; } } #endif /* Length at the start of the packet is little-endian */ store_le16(reqbuf->data, reqbuf->pos - 2); buf_hexdump(vpninfo, (void *)reqbuf->data, reqbuf->pos); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret == reqbuf->pos) ret = 0; else if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in oNCP negotiation\n")); ret = -EIO; } out: if (ret) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); } buf_free(reqbuf); vpninfo->oncp_rec_size = 0; free(vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; return ret; } static int oncp_receive_espkeys(struct openconnect_info *vpninfo, int len) { #if defined(ESP_GNUTLS) || defined(ESP_OPENSSL) int ret; ret = parse_conf_pkt(vpninfo, vpninfo->cstp_pkt->oncp.kmp, len + 20, 301); if (!ret && !setup_esp_keys(vpninfo)) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; unsigned char *p = vpninfo->cstp_pkt->oncp.kmp; memcpy(p, esp_kmp_hdr, sizeof(esp_kmp_hdr)); p += sizeof(esp_kmp_hdr); memcpy(p, &esp->spi, sizeof(esp->spi)); p += sizeof(esp->spi); memcpy(p, esp_kmp_part2, sizeof(esp_kmp_part2)); p += sizeof(esp_kmp_part2); memcpy(p, esp->secrets, sizeof(esp->secrets)); p += sizeof(esp->secrets); vpninfo->cstp_pkt->len = p - vpninfo->cstp_pkt->data; store_le16(vpninfo->cstp_pkt->oncp.rec, (p - vpninfo->cstp_pkt->oncp.kmp)); queue_packet(&vpninfo->oncp_control_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; print_esp_keys(vpninfo, _("new incoming"), esp); print_esp_keys(vpninfo, _("new outgoing"), &vpninfo->esp_out); } return ret; #else vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring ESP keys since ESP support not available in this build\n")); return 0; #endif } static int oncp_record_read(struct openconnect_info *vpninfo, void *buf, int len) { int ret; if (!vpninfo->oncp_rec_size) { unsigned char lenbuf[2]; ret = ssl_nonblock_read(vpninfo, lenbuf, 2); if (ret <= 0) return ret; if (ret == 1) { /* Surely at least *this* never happens? The two length bytes * of the oNCP record being split across multiple SSL records */ vpn_progress(vpninfo, PRG_ERR, _("Read only 1 byte of oNCP length field\n")); return -EIO; } vpninfo->oncp_rec_size = load_le16(lenbuf); if (!vpninfo->oncp_rec_size) { ret = ssl_nonblock_read(vpninfo, lenbuf, 1); if (ret == 1) { if (lenbuf[0] == 1) { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (session expired)\n")); vpninfo->quit_reason = "VPN session expired"; } else { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (reason: %d)\n"), lenbuf[0]); vpninfo->quit_reason = "Server terminated connection"; } } else { vpn_progress(vpninfo, PRG_ERR, _("Server sent zero-length oNCP record\n")); vpninfo->quit_reason = "Zero-length oNCP record"; } return -EIO; } } if (len > vpninfo->oncp_rec_size) len = vpninfo->oncp_rec_size; ret = ssl_nonblock_read(vpninfo, buf, len); if (ret > 0) vpninfo->oncp_rec_size -= ret; return ret; } int oncp_mainloop(struct openconnect_info *vpninfo, int *timeout) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (1) { int len, kmp, kmplen, iplen; len = vpninfo->ip_info.mtu + vpninfo->pkt_trailer; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } vpninfo->cstp_pkt->len = 0; } /* * This protocol is horrid. There are encapsulations within * encapsulations within encapsulations. Some of them entirely * gratuitous. * * First there's the SSL records which are a natural part of * using TLS as a transport. They appear to make no use of the * packetisation which these provide. * * Then within the TLS data stream there are "records" preceded * by a 16-bit little-endian length. It's not clear what these * records represent; they appear to be entirely gratuitous and * just need to be discarded. A record boundary sometimes falls * right in the middle of a data packet; there's no apparent * logic to it. * * Then there are the KMP packets themselves, each of which has * a length field of its own. There can be multiple KMP packets * in each of the above-mention "records", and as noted there * even be *partial* KMP packets in each record. * * Finally, a KMP data packet may actually contain multiple IP * packets, which need to be split apart by using the length * field in the IP header. This is Legacy IP only, never IPv6 * for the Network Connect protocol. */ /* Until we pass it up the stack, we use cstp_pkt->len to show * the amount of data received *including* the KMP header. */ len = oncp_record_read(vpninfo, vpninfo->cstp_pkt->oncp.kmp + vpninfo->cstp_pkt->len, vpninfo->ip_info.mtu + 20 - vpninfo->cstp_pkt->len); if (!len) break; else if (len < 0) { if (vpninfo->quit_reason) return len; goto do_reconnect; } vpninfo->cstp_pkt->len += len; vpninfo->ssl_times.last_rx = time(NULL); if (vpninfo->cstp_pkt->len < 20) continue; next_kmp: /* Now we have a KMP header. It might already have been there */ kmp = load_be16(vpninfo->cstp_pkt->oncp.kmp + 6); kmplen = load_be16(vpninfo->cstp_pkt->oncp.kmp + 18); if (len == vpninfo->cstp_pkt->len) vpn_progress(vpninfo, PRG_DEBUG, _("Incoming KMP message %d of size %d (got %d)\n"), kmp, kmplen, vpninfo->cstp_pkt->len - 20); else vpn_progress(vpninfo, PRG_DEBUG, _("Continuing to process KMP message %d now size %d (got %d)\n"), kmp, kmplen, vpninfo->cstp_pkt->len - 20); switch (kmp) { case 300: next_ip: /* Need at least 6 bytes of payload to check the IP packet length */ if (vpninfo->cstp_pkt->len < 26) continue; switch(vpninfo->cstp_pkt->data[0] >> 4) { case 4: iplen = load_be16(vpninfo->cstp_pkt->data + 2); break; case 6: iplen = load_be16(vpninfo->cstp_pkt->data + 4); break; default: badiplen: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised data packet\n")); goto unknown_pkt; } if (!iplen || iplen > vpninfo->ip_info.mtu || iplen > kmplen) goto badiplen; if (iplen > vpninfo->cstp_pkt->len - 20) continue; work_done = 1; vpn_progress(vpninfo, PRG_TRACE, _("Received uncompressed data packet of %d bytes\n"), iplen); /* If there's nothing after the IP packet, and it's the last (or * only) packet in this KMP300 so we don't need to keep the KMP * header either, then just queue it. */ if (iplen == kmplen && iplen == vpninfo->cstp_pkt->len - 20) { vpninfo->cstp_pkt->len = iplen; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; continue; } /* OK, we have a whole packet, and we have stuff after it */ queue_new_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt->data, iplen); kmplen -= iplen; if (kmplen) { /* Still data packets to come in this KMP300 */ store_be16(vpninfo->cstp_pkt->oncp.kmp + 18, kmplen); vpninfo->cstp_pkt->len -= iplen; if (vpninfo->cstp_pkt->len > 20) memmove(vpninfo->cstp_pkt->data, vpninfo->cstp_pkt->data + iplen, vpninfo->cstp_pkt->len - 20); goto next_ip; } /* We have depleted the KMP300, and there are more bytes from * the next KMP message in the buffer. Move it up and process it */ memmove(vpninfo->cstp_pkt->oncp.kmp, vpninfo->cstp_pkt->data + iplen, vpninfo->cstp_pkt->len - iplen - 20); vpninfo->cstp_pkt->len -= (iplen + 20); goto next_kmp; case 302: /* Should never happen; if it does we'll have to cope */ if (kmplen > vpninfo->ip_info.mtu) goto unknown_pkt; /* Probably never happens. We need it in its own record. * If I fix oncp_receive_espkeys() not to reuse cstp_pkt * we can stop doing this. */ if (vpninfo->cstp_pkt->len != kmplen + 20) goto unknown_pkt; ret = oncp_receive_espkeys(vpninfo, kmplen); work_done = 1; break; default: unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown KMP message %d of size %d:\n"), kmp, kmplen); buf_hexdump(vpninfo, vpninfo->cstp_pkt->oncp.kmp, vpninfo->cstp_pkt->len); if (kmplen + 20 != vpninfo->cstp_pkt->len) vpn_progress(vpninfo, PRG_DEBUG, _(".... + %d more bytes unreceived\n"), kmplen + 20 - vpninfo->cstp_pkt->len); vpninfo->quit_reason = "Unknown packet received"; return 1; } } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); vpn_progress(vpninfo, PRG_TRACE, _("Packet outgoing:\n")); buf_hexdump(vpninfo, vpninfo->current_ssl_pkt->oncp.rec, vpninfo->current_ssl_pkt->len + 22); ret = ssl_nonblock_write(vpninfo, vpninfo->current_ssl_pkt->oncp.rec, vpninfo->current_ssl_pkt->len + 22); if (ret < 0) { do_reconnect: /* XXX: Do we have to do this or can we leave it open? * Perhaps we could even reconnect asynchronously while * the ESP is still running? */ esp_shutdown(vpninfo); ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "oNCP reconnect failed"; return ret; } vpninfo->dtls_need_reconnect = 1; return 1; } else if (!ret) { #if 0 /* Not for Juniper yet */ /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ ; } #else return work_done; #endif } if (ret != vpninfo->current_ssl_pkt->len + 22) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 22, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free(vpninfo->pending_deflated_pkt); } else { /* Only set the ESP state to connected and actually start sending packets on it once the enable message has been *sent* over the TCP channel. */ if (vpninfo->dtls_state == DTLS_CONNECTING && vpninfo->current_ssl_pkt->len == 13 && load_be16(&vpninfo->current_ssl_pkt->oncp.kmp[6]) == 0x12f && vpninfo->current_ssl_pkt->data[12]) { vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP enable control packet\n")); vpninfo->dtls_state = DTLS_CONNECTED; work_done = 1; } free(vpninfo->current_ssl_pkt); } vpninfo->current_ssl_pkt = NULL; } #if 0 /* Not understood for Juniper yet */ if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } #endif vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->oncp_control_queue); if (vpninfo->current_ssl_pkt) goto handle_outgoing; /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; /* Little-endian overall record length */ store_le16(this->oncp.rec, (this->len + 20)); memcpy(this->oncp.kmp, data_hdr, 18); /* Big-endian length in KMP message header */ store_be16(this->oncp.kmp + 18, this->len); vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } openconnect-7.06/version.sh0000775000076400007640000000106512502026417012741 00000000000000#!/bin/sh v="v7.06" if [ -d ${GIT_DIR:-.git} ] && tag=`git describe --tags`; then v="$tag" # Update the index from working tree first git update-index --refresh --unmerged > /dev/null # Does the index show uncommitted changes? git diff-index --exit-code HEAD > /dev/null || \ v="$v"-dirty elif [ -n "$RPM_PACKAGE_VERSION" ] && [ -n "$RPM_PACKAGE_RELEASE" ]; then v="v$RPM_PACKAGE_VERSION-$RPM_PACKAGE_RELEASE" else # XXX: Equivalent for .deb packages? v="$v"-unknown fi echo "const char *openconnect_version_str = \"$v\";" > $1 echo "New version: $v" openconnect-7.06/ABOUT-NLS0000644000076400007640000026713312424411475012161 000000000000001 Notes on the Free Translation Project *************************************** Free software is going international! The Free Translation Project is a way to get maintainers of free software, translators, and users all together, so that free software will gradually become able to speak many languages. A few packages already provide translations for their messages. If you found this `ABOUT-NLS' file inside a distribution, you may assume that the distributed package does use GNU `gettext' internally, itself available at your nearest GNU archive site. But you do _not_ need to install GNU `gettext' prior to configuring, installing or using this package with messages translated. Installers will find here some useful hints. These notes also explain how users should proceed for getting the programs to use the available translations. They tell how people wanting to contribute and work on translations can contact the appropriate team. 1.1 INSTALL Matters =================== Some packages are "localizable" when properly installed; the programs they contain can be made to speak your own native language. Most such packages use GNU `gettext'. Other packages have their own ways to internationalization, predating GNU `gettext'. By default, this package will be installed to allow translation of messages. It will automatically detect whether the system already provides the GNU `gettext' functions. Installers may use special options at configuration time for changing the default behaviour. The command: ./configure --disable-nls will _totally_ disable translation of messages. When you already have GNU `gettext' installed on your system and run configure without an option for your new package, `configure' will probably detect the previously built and installed `libintl' library and will decide to use it. If not, you may have to to use the `--with-libintl-prefix' option to tell `configure' where to look for it. Internationalized packages usually have many `po/LL.po' files, where LL gives an ISO 639 two-letter code identifying the language. Unless translations have been forbidden at `configure' time by using the `--disable-nls' switch, all available translations are installed together with the package. However, the environment variable `LINGUAS' may be set, prior to configuration, to limit the installed set. `LINGUAS' should then contain a space separated list of two-letter codes, stating which languages are allowed. 1.2 Using This Package ====================== As a user, if your language has been installed for this package, you only have to set the `LANG' environment variable to the appropriate `LL_CC' combination. If you happen to have the `LC_ALL' or some other `LC_xxx' environment variables set, you should unset them before setting `LANG', otherwise the setting of `LANG' will not have the desired effect. Here `LL' is an ISO 639 two-letter language code, and `CC' is an ISO 3166 two-letter country code. For example, let's suppose that you speak German and live in Germany. At the shell prompt, merely execute `setenv LANG de_DE' (in `csh'), `export LANG; LANG=de_DE' (in `sh') or `export LANG=de_DE' (in `bash'). This can be done from your `.login' or `.profile' file, once and for all. You might think that the country code specification is redundant. But in fact, some languages have dialects in different countries. For example, `de_AT' is used for Austria, and `pt_BR' for Brazil. The country code serves to distinguish the dialects. The locale naming convention of `LL_CC', with `LL' denoting the language and `CC' denoting the country, is the one use on systems based on GNU libc. On other systems, some variations of this scheme are used, such as `LL' or `LL_CC.ENCODING'. You can get the list of locales supported by your system for your language by running the command `locale -a | grep '^LL''. Not all programs have translations for all languages. By default, an English message is shown in place of a nonexistent translation. If you understand other languages, you can set up a priority list of languages. This is done through a different environment variable, called `LANGUAGE'. GNU `gettext' gives preference to `LANGUAGE' over `LANG' for the purpose of message handling, but you still need to have `LANG' set to the primary language; this is required by other parts of the system libraries. For example, some Swedish users who would rather read translations in German than English for when Swedish is not available, set `LANGUAGE' to `sv:de' while leaving `LANG' to `sv_SE'. Special advice for Norwegian users: The language code for Norwegian bokma*l changed from `no' to `nb' recently (in 2003). During the transition period, while some message catalogs for this language are installed under `nb' and some older ones under `no', it's recommended for Norwegian users to set `LANGUAGE' to `nb:no' so that both newer and older translations are used. In the `LANGUAGE' environment variable, but not in the `LANG' environment variable, `LL_CC' combinations can be abbreviated as `LL' to denote the language's main dialect. For example, `de' is equivalent to `de_DE' (German as spoken in Germany), and `pt' to `pt_PT' (Portuguese as spoken in Portugal) in this context. 1.3 Translating Teams ===================== For the Free Translation Project to be a success, we need interested people who like their own language and write it well, and who are also able to synergize with other translators speaking the same language. Each translation team has its own mailing list. The up-to-date list of teams can be found at the Free Translation Project's homepage, `http://translationproject.org/', in the "Teams" area. If you'd like to volunteer to _work_ at translating messages, you should become a member of the translating team for your own language. The subscribing address is _not_ the same as the list itself, it has `-request' appended. For example, speakers of Swedish can send a message to `sv-request@li.org', having this message body: subscribe Keep in mind that team members are expected to participate _actively_ in translations, or at solving translational difficulties, rather than merely lurking around. If your team does not exist yet and you want to start one, or if you are unsure about what to do or how to get started, please write to `coordinator@translationproject.org' to reach the coordinator for all translator teams. The English team is special. It works at improving and uniformizing the terminology in use. Proven linguistic skills are praised more than programming skills, here. 1.4 Available Packages ====================== Languages are not equally supported in all packages. The following matrix shows the current state of internationalization, as of June 2010. The matrix shows, in regard of each package, for which languages PO files have been submitted to translation coordination, with a translation percentage of at least 50%. Ready PO files af am an ar as ast az be be@latin bg bn_IN bs ca +--------------------------------------------------+ a2ps | [] [] | aegis | | ant-phone | | anubis | | aspell | [] [] | bash | | bfd | | bibshelf | [] | binutils | | bison | | bison-runtime | [] | bluez-pin | [] [] | bombono-dvd | | buzztard | | cflow | | clisp | | coreutils | [] [] | cpio | | cppi | | cpplib | [] | cryptsetup | | dfarc | | dialog | [] [] | dico | | diffutils | [] | dink | | doodle | | e2fsprogs | [] | enscript | [] | exif | | fetchmail | [] | findutils | [] | flex | [] | freedink | | gas | | gawk | [] [] | gcal | [] | gcc | | gettext-examples | [] [] [] [] | gettext-runtime | [] [] | gettext-tools | [] [] | gip | [] | gjay | | gliv | [] | glunarclock | [] [] | gnubiff | | gnucash | [] | gnuedu | | gnulib | | gnunet | | gnunet-gtk | | gnutls | | gold | | gpe-aerial | | gpe-beam | | gpe-bluetooth | | gpe-calendar | | gpe-clock | [] | gpe-conf | | gpe-contacts | | gpe-edit | | gpe-filemanager | | gpe-go | | gpe-login | | gpe-ownerinfo | [] | gpe-package | | gpe-sketchbook | | gpe-su | [] | gpe-taskmanager | [] | gpe-timesheet | [] | gpe-today | [] | gpe-todo | | gphoto2 | | gprof | [] | gpsdrive | | gramadoir | | grep | | grub | [] [] | gsasl | | gss | | gst-plugins-bad | [] | gst-plugins-base | [] | gst-plugins-good | [] | gst-plugins-ugly | [] | gstreamer | [] [] [] | gtick | | gtkam | [] | gtkorphan | [] | gtkspell | [] [] [] | gutenprint | | hello | [] | help2man | | hylafax | | idutils | | indent | [] [] | iso_15924 | | iso_3166 | [] [] [] [] [] [] [] | iso_3166_2 | | iso_4217 | | iso_639 | [] [] [] [] | iso_639_3 | | jwhois | | kbd | | keytouch | [] | keytouch-editor | | keytouch-keyboa... | [] | klavaro | [] | latrine | | ld | [] | leafpad | [] [] | libc | [] [] | libexif | () | libextractor | | libgnutls | | libgpewidget | | libgpg-error | | libgphoto2 | | libgphoto2_port | | libgsasl | | libiconv | [] | libidn | | lifelines | | liferea | [] [] | lilypond | | linkdr | [] | lordsawar | | lprng | | lynx | [] | m4 | | mailfromd | | mailutils | | make | | man-db | | man-db-manpages | | minicom | | mkisofs | | myserver | | nano | [] [] | opcodes | | parted | | pies | | popt | | psmisc | | pspp | [] | pwdutils | | radius | [] | recode | [] [] | rosegarden | | rpm | | rush | | sarg | | screem | | scrollkeeper | [] [] [] | sed | [] [] | sharutils | [] [] | shishi | | skencil | | solfege | | solfege-manual | | soundtracker | | sp | | sysstat | | tar | [] | texinfo | | tin | | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] | vice | | vmm | | vorbis-tools | | wastesedge | | wdiff | | wget | [] [] | wyslij-po | | xchat | [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] | +--------------------------------------------------+ af am an ar as ast az be be@latin bg bn_IN bs ca 6 0 1 2 3 19 1 10 3 28 3 1 38 crh cs da de el en en_GB en_ZA eo es et eu fa +-------------------------------------------------+ a2ps | [] [] [] [] [] [] [] | aegis | [] [] [] | ant-phone | [] () | anubis | [] [] | aspell | [] [] [] [] [] | bash | [] [] [] | bfd | [] | bibshelf | [] [] [] | binutils | [] | bison | [] [] | bison-runtime | [] [] [] [] | bluez-pin | [] [] [] [] [] [] | bombono-dvd | [] | buzztard | [] [] [] | cflow | [] [] | clisp | [] [] [] [] | coreutils | [] [] [] [] | cpio | | cppi | | cpplib | [] [] [] | cryptsetup | [] | dfarc | [] [] [] | dialog | [] [] [] [] [] | dico | | diffutils | [] [] [] [] [] [] | dink | [] [] [] | doodle | [] | e2fsprogs | [] [] [] | enscript | [] [] [] | exif | () [] [] | fetchmail | [] [] () [] [] [] | findutils | [] [] [] | flex | [] [] | freedink | [] [] [] | gas | [] | gawk | [] [] [] | gcal | [] | gcc | [] [] | gettext-examples | [] [] [] [] | gettext-runtime | [] [] [] [] | gettext-tools | [] [] [] | gip | [] [] [] [] | gjay | [] | gliv | [] [] [] | glunarclock | [] [] | gnubiff | () | gnucash | [] () () () () | gnuedu | [] [] | gnulib | [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gold | [] | gpe-aerial | [] [] [] [] | gpe-beam | [] [] [] [] | gpe-bluetooth | [] [] | gpe-calendar | [] | gpe-clock | [] [] [] [] | gpe-conf | [] [] [] | gpe-contacts | [] [] [] | gpe-edit | [] [] | gpe-filemanager | [] [] [] | gpe-go | [] [] [] [] | gpe-login | [] [] | gpe-ownerinfo | [] [] [] [] | gpe-package | [] [] [] | gpe-sketchbook | [] [] [] [] | gpe-su | [] [] [] [] | gpe-taskmanager | [] [] [] [] | gpe-timesheet | [] [] [] [] | gpe-today | [] [] [] [] | gpe-todo | [] [] [] | gphoto2 | [] [] () [] [] [] | gprof | [] [] [] | gpsdrive | [] [] [] | gramadoir | [] [] [] | grep | [] | grub | [] [] | gsasl | [] | gss | | gst-plugins-bad | [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] () [] | gtkam | [] [] () [] [] | gtkorphan | [] [] [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | [] [] [] | hello | [] [] [] [] | help2man | [] | hylafax | [] [] | idutils | [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | [] () [] [] | iso_3166 | [] [] [] [] () [] [] [] () | iso_3166_2 | () | iso_4217 | [] [] [] () [] [] | iso_639 | [] [] [] [] () [] [] | iso_639_3 | [] | jwhois | [] | kbd | [] [] [] [] [] | keytouch | [] [] | keytouch-editor | [] [] | keytouch-keyboa... | [] | klavaro | [] [] [] [] | latrine | [] () | ld | [] [] | leafpad | [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] () | libextractor | | libgnutls | [] | libgpewidget | [] [] | libgpg-error | [] [] | libgphoto2 | [] () | libgphoto2_port | [] () [] | libgsasl | | libiconv | [] [] [] [] [] | libidn | [] [] [] | lifelines | [] () | liferea | [] [] [] [] [] | lilypond | [] [] [] | linkdr | [] [] [] | lordsawar | [] | lprng | | lynx | [] [] [] [] | m4 | [] [] [] [] | mailfromd | | mailutils | [] | make | [] [] [] | man-db | | man-db-manpages | | minicom | [] [] [] [] | mkisofs | | myserver | | nano | [] [] [] | opcodes | [] [] | parted | [] [] | pies | | popt | [] [] [] [] [] | psmisc | [] [] [] | pspp | [] | pwdutils | [] | radius | [] | recode | [] [] [] [] [] [] | rosegarden | () () () | rpm | [] [] [] | rush | | sarg | | screem | | scrollkeeper | [] [] [] [] [] | sed | [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | | skencil | [] () [] | solfege | [] [] [] | solfege-manual | [] [] | soundtracker | [] [] [] | sp | [] | sysstat | [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] | tin | [] [] | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] [] [] [] | vice | () () | vmm | [] | vorbis-tools | [] [] | wastesedge | [] | wdiff | [] [] | wget | [] [] [] | wyslij-po | | xchat | [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] [] [] | +-------------------------------------------------+ crh cs da de el en en_GB en_ZA eo es et eu fa 5 64 105 117 18 1 8 0 28 89 18 19 0 fi fr ga gl gu he hi hr hu hy id is it ja ka kn +----------------------------------------------------+ a2ps | [] [] [] [] | aegis | [] [] | ant-phone | [] [] | anubis | [] [] [] [] | aspell | [] [] [] [] | bash | [] [] [] [] | bfd | [] [] [] | bibshelf | [] [] [] [] [] | binutils | [] [] [] | bison | [] [] [] [] | bison-runtime | [] [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] | bombono-dvd | [] | buzztard | [] | cflow | [] [] [] | clisp | [] | coreutils | [] [] [] [] [] | cpio | [] [] [] [] | cppi | [] [] | cpplib | [] [] [] | cryptsetup | [] [] [] | dfarc | [] [] [] | dialog | [] [] [] [] [] [] [] | dico | | diffutils | [] [] [] [] [] [] [] [] [] | dink | [] | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] | exif | [] [] [] [] [] [] | fetchmail | [] [] [] [] | findutils | [] [] [] [] [] [] | flex | [] [] [] | freedink | [] [] [] | gas | [] [] | gawk | [] [] [] [] () [] | gcal | [] | gcc | [] | gettext-examples | [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] | gettext-tools | [] [] [] [] | gip | [] [] [] [] [] [] | gjay | [] | gliv | [] () | glunarclock | [] [] [] [] | gnubiff | () [] () | gnucash | () () () () () [] | gnuedu | [] [] | gnulib | [] [] [] [] [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gold | [] [] | gpe-aerial | [] [] [] | gpe-beam | [] [] [] [] | gpe-bluetooth | [] [] [] [] | gpe-calendar | [] [] | gpe-clock | [] [] [] [] [] | gpe-conf | [] [] [] [] | gpe-contacts | [] [] [] [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] [] [] | gpe-go | [] [] [] [] [] | gpe-login | [] [] [] | gpe-ownerinfo | [] [] [] [] [] | gpe-package | [] [] [] | gpe-sketchbook | [] [] [] [] | gpe-su | [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] | gpe-todo | [] [] [] | gphoto2 | [] [] [] [] [] [] | gprof | [] [] [] [] | gpsdrive | [] [] [] | gramadoir | [] [] [] | grep | [] [] | grub | [] [] [] [] | gsasl | [] [] [] [] [] | gss | [] [] [] [] [] | gst-plugins-bad | [] [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] [] [] [] [] | gtkam | [] [] [] [] [] | gtkorphan | [] [] [] | gtkspell | [] [] [] [] [] [] [] [] [] | gutenprint | [] [] [] [] | hello | [] [] [] | help2man | [] [] | hylafax | [] | idutils | [] [] [] [] [] [] | indent | [] [] [] [] [] [] [] [] | iso_15924 | [] () [] [] | iso_3166 | [] () [] [] [] [] [] [] [] [] [] [] | iso_3166_2 | () [] [] [] | iso_4217 | [] () [] [] [] [] | iso_639 | [] () [] [] [] [] [] [] [] | iso_639_3 | () [] [] | jwhois | [] [] [] [] [] | kbd | [] [] | keytouch | [] [] [] [] [] [] | keytouch-editor | [] [] [] [] [] | keytouch-keyboa... | [] [] [] [] [] | klavaro | [] [] | latrine | [] [] [] | ld | [] [] [] [] | leafpad | [] [] [] [] [] [] [] () | libc | [] [] [] [] [] | libexif | [] | libextractor | | libgnutls | [] [] | libgpewidget | [] [] [] [] | libgpg-error | [] [] | libgphoto2 | [] [] [] | libgphoto2_port | [] [] [] | libgsasl | [] [] [] [] [] | libiconv | [] [] [] [] [] [] | libidn | [] [] [] [] | lifelines | () | liferea | [] [] [] [] | lilypond | [] [] | linkdr | [] [] [] [] [] | lordsawar | | lprng | [] | lynx | [] [] [] [] [] | m4 | [] [] [] [] [] [] | mailfromd | | mailutils | [] [] | make | [] [] [] [] [] [] [] [] [] | man-db | [] [] | man-db-manpages | [] | minicom | [] [] [] [] [] | mkisofs | [] [] [] [] | myserver | | nano | [] [] [] [] [] [] | opcodes | [] [] [] [] | parted | [] [] [] [] | pies | | popt | [] [] [] [] [] [] [] [] [] | psmisc | [] [] [] | pspp | | pwdutils | [] [] | radius | [] [] | recode | [] [] [] [] [] [] [] [] | rosegarden | () () () () () | rpm | [] [] | rush | | sarg | [] | screem | [] [] | scrollkeeper | [] [] [] [] | sed | [] [] [] [] [] [] [] [] | sharutils | [] [] [] [] [] [] [] | shishi | [] | skencil | [] | solfege | [] [] [] [] | solfege-manual | [] [] | soundtracker | [] [] | sp | [] () | sysstat | [] [] [] [] [] | tar | [] [] [] [] [] [] [] | texinfo | [] [] [] [] | tin | [] | unicode-han-tra... | | unicode-transla... | [] [] | util-linux-ng | [] [] [] [] [] [] | vice | () () () | vmm | [] | vorbis-tools | [] | wastesedge | () () | wdiff | [] | wget | [] [] [] [] [] [] [] [] | wyslij-po | [] [] [] | xchat | [] [] [] [] [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] [] | +----------------------------------------------------+ fi fr ga gl gu he hi hr hu hy id is it ja ka kn 105 121 53 20 4 8 3 5 53 2 120 5 84 67 0 4 ko ku ky lg lt lv mk ml mn mr ms mt nb nds ne +-----------------------------------------------+ a2ps | [] | aegis | | ant-phone | | anubis | [] [] | aspell | [] | bash | | bfd | | bibshelf | [] [] | binutils | | bison | [] | bison-runtime | [] [] [] [] [] | bluez-pin | [] [] [] [] [] | bombono-dvd | | buzztard | | cflow | | clisp | | coreutils | [] | cpio | | cppi | | cpplib | | cryptsetup | | dfarc | [] | dialog | [] [] [] [] [] | dico | | diffutils | [] [] | dink | | doodle | | e2fsprogs | | enscript | | exif | [] | fetchmail | | findutils | | flex | | freedink | [] | gas | | gawk | | gcal | | gcc | | gettext-examples | [] [] [] [] | gettext-runtime | [] | gettext-tools | [] | gip | [] [] | gjay | | gliv | | glunarclock | [] | gnubiff | | gnucash | () () () () | gnuedu | | gnulib | | gnunet | | gnunet-gtk | | gnutls | [] | gold | | gpe-aerial | [] | gpe-beam | [] | gpe-bluetooth | [] [] | gpe-calendar | [] | gpe-clock | [] [] [] [] [] | gpe-conf | [] [] | gpe-contacts | [] [] | gpe-edit | [] | gpe-filemanager | [] [] | gpe-go | [] [] [] | gpe-login | [] | gpe-ownerinfo | [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] | gpe-su | [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] | gpe-timesheet | [] [] | gpe-today | [] [] [] [] | gpe-todo | [] [] | gphoto2 | | gprof | [] | gpsdrive | | gramadoir | | grep | | grub | | gsasl | | gss | | gst-plugins-bad | [] [] [] [] | gst-plugins-base | [] [] | gst-plugins-good | [] [] | gst-plugins-ugly | [] [] [] [] [] | gstreamer | | gtick | | gtkam | [] | gtkorphan | [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | | hello | [] [] [] | help2man | | hylafax | | idutils | | indent | | iso_15924 | [] [] | iso_3166 | [] [] () [] [] [] [] [] | iso_3166_2 | | iso_4217 | [] [] | iso_639 | [] [] | iso_639_3 | [] | jwhois | [] | kbd | | keytouch | [] | keytouch-editor | [] | keytouch-keyboa... | [] | klavaro | [] | latrine | [] | ld | | leafpad | [] [] [] | libc | [] | libexif | | libextractor | | libgnutls | [] | libgpewidget | [] [] | libgpg-error | | libgphoto2 | | libgphoto2_port | | libgsasl | | libiconv | | libidn | | lifelines | | liferea | | lilypond | | linkdr | | lordsawar | | lprng | | lynx | | m4 | | mailfromd | | mailutils | | make | [] | man-db | | man-db-manpages | | minicom | [] | mkisofs | | myserver | | nano | [] [] | opcodes | | parted | | pies | | popt | [] [] [] | psmisc | | pspp | | pwdutils | | radius | | recode | | rosegarden | | rpm | | rush | | sarg | | screem | | scrollkeeper | [] [] | sed | | sharutils | | shishi | | skencil | | solfege | [] | solfege-manual | | soundtracker | | sp | | sysstat | [] | tar | [] | texinfo | [] | tin | | unicode-han-tra... | | unicode-transla... | | util-linux-ng | | vice | | vmm | | vorbis-tools | | wastesedge | | wdiff | | wget | [] | wyslij-po | | xchat | [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | +-----------------------------------------------+ ko ku ky lg lt lv mk ml mn mr ms mt nb nds ne 20 5 10 1 13 48 4 2 2 4 24 10 20 3 1 nl nn or pa pl ps pt pt_BR ro ru rw sk sl sq sr +---------------------------------------------------+ a2ps | [] [] [] [] [] [] [] [] | aegis | [] [] [] | ant-phone | [] [] | anubis | [] [] [] | aspell | [] [] [] [] [] | bash | [] [] | bfd | [] | bibshelf | [] [] | binutils | [] [] | bison | [] [] [] | bison-runtime | [] [] [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] | bombono-dvd | [] () | buzztard | [] [] | cflow | [] | clisp | [] [] | coreutils | [] [] [] [] [] [] | cpio | [] [] [] | cppi | [] | cpplib | [] | cryptsetup | [] | dfarc | [] | dialog | [] [] [] [] | dico | [] | diffutils | [] [] [] [] [] [] | dink | () | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] [] | exif | [] [] [] () [] | fetchmail | [] [] [] [] | findutils | [] [] [] [] [] | flex | [] [] [] [] [] | freedink | [] [] | gas | | gawk | [] [] [] [] | gcal | | gcc | [] | gettext-examples | [] [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] [] [] [] | gettext-tools | [] [] [] [] [] [] | gip | [] [] [] [] [] | gjay | | gliv | [] [] [] [] [] [] | glunarclock | [] [] [] [] [] | gnubiff | [] () | gnucash | [] () () () | gnuedu | [] | gnulib | [] [] [] [] | gnunet | | gnunet-gtk | | gnutls | [] [] | gold | | gpe-aerial | [] [] [] [] [] [] [] | gpe-beam | [] [] [] [] [] [] [] | gpe-bluetooth | [] [] | gpe-calendar | [] [] [] [] | gpe-clock | [] [] [] [] [] [] [] [] | gpe-conf | [] [] [] [] [] [] [] | gpe-contacts | [] [] [] [] [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] [] | gpe-go | [] [] [] [] [] [] [] [] | gpe-login | [] [] | gpe-ownerinfo | [] [] [] [] [] [] [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] [] [] [] [] [] | gpe-su | [] [] [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] [] | gpe-todo | [] [] [] [] [] | gphoto2 | [] [] [] [] [] [] [] [] | gprof | [] [] [] | gpsdrive | [] [] | gramadoir | [] [] | grep | [] [] [] [] | grub | [] [] [] | gsasl | [] [] [] [] | gss | [] [] [] | gst-plugins-bad | [] [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] [] [] | gtkam | [] [] [] [] [] [] | gtkorphan | [] | gtkspell | [] [] [] [] [] [] [] [] [] [] | gutenprint | [] [] | hello | [] [] [] [] | help2man | [] [] | hylafax | [] | idutils | [] [] [] [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | [] [] [] [] | iso_3166 | [] [] [] [] [] () [] [] [] [] [] [] [] [] | iso_3166_2 | [] [] [] | iso_4217 | [] [] [] [] [] [] [] [] | iso_639 | [] [] [] [] [] [] [] [] [] | iso_639_3 | [] [] | jwhois | [] [] [] [] | kbd | [] [] [] | keytouch | [] [] [] | keytouch-editor | [] [] [] | keytouch-keyboa... | [] [] [] | klavaro | [] [] | latrine | [] [] | ld | | leafpad | [] [] [] [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] () [] | libextractor | | libgnutls | [] [] | libgpewidget | [] [] [] | libgpg-error | [] [] | libgphoto2 | [] [] | libgphoto2_port | [] [] [] [] [] | libgsasl | [] [] [] [] [] | libiconv | [] [] [] [] [] | libidn | [] [] | lifelines | [] [] | liferea | [] [] [] [] [] () () [] | lilypond | [] | linkdr | [] [] [] | lordsawar | | lprng | [] | lynx | [] [] [] | m4 | [] [] [] [] [] | mailfromd | [] | mailutils | [] | make | [] [] [] [] | man-db | [] [] [] | man-db-manpages | [] [] [] | minicom | [] [] [] [] | mkisofs | [] [] [] | myserver | | nano | [] [] [] [] | opcodes | [] [] | parted | [] [] [] [] | pies | [] | popt | [] [] [] [] | psmisc | [] [] [] | pspp | [] [] | pwdutils | [] | radius | [] [] [] | recode | [] [] [] [] [] [] [] [] | rosegarden | () () | rpm | [] [] [] | rush | [] [] | sarg | | screem | | scrollkeeper | [] [] [] [] [] [] [] [] | sed | [] [] [] [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | [] | skencil | [] [] | solfege | [] [] [] [] | solfege-manual | [] [] [] | soundtracker | [] | sp | | sysstat | [] [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] [] | tin | [] | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] [] [] [] [] | vice | [] | vmm | [] | vorbis-tools | [] [] | wastesedge | [] | wdiff | [] [] | wget | [] [] [] [] [] [] [] | wyslij-po | [] [] [] | xchat | [] [] [] [] [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | +---------------------------------------------------+ nl nn or pa pl ps pt pt_BR ro ru rw sk sl sq sr 135 10 4 7 105 1 29 62 47 91 3 54 46 9 37 sv sw ta te tg th tr uk vi wa zh_CN zh_HK zh_TW +---------------------------------------------------+ a2ps | [] [] [] [] [] | 27 aegis | [] | 9 ant-phone | [] [] [] [] | 9 anubis | [] [] [] [] | 15 aspell | [] [] [] | 20 bash | [] [] [] | 12 bfd | [] | 6 bibshelf | [] [] [] | 16 binutils | [] [] | 8 bison | [] [] | 12 bison-runtime | [] [] [] [] [] [] | 29 bluez-pin | [] [] [] [] [] [] [] [] | 37 bombono-dvd | [] | 4 buzztard | [] | 7 cflow | [] [] [] | 9 clisp | | 10 coreutils | [] [] [] [] | 22 cpio | [] [] [] [] [] [] | 13 cppi | [] [] | 5 cpplib | [] [] [] [] [] [] | 14 cryptsetup | [] [] | 7 dfarc | [] | 9 dialog | [] [] [] [] [] [] [] | 30 dico | [] | 2 diffutils | [] [] [] [] [] [] | 30 dink | | 4 doodle | [] [] | 7 e2fsprogs | [] [] [] | 11 enscript | [] [] [] [] | 17 exif | [] [] [] | 16 fetchmail | [] [] [] | 17 findutils | [] [] [] [] [] | 20 flex | [] [] [] [] | 15 freedink | [] | 10 gas | [] | 4 gawk | [] [] [] [] | 18 gcal | [] [] | 5 gcc | [] [] [] | 7 gettext-examples | [] [] [] [] [] [] [] | 34 gettext-runtime | [] [] [] [] [] [] [] | 29 gettext-tools | [] [] [] [] [] [] | 22 gip | [] [] [] [] | 22 gjay | [] | 3 gliv | [] [] [] | 14 glunarclock | [] [] [] [] [] | 19 gnubiff | [] [] | 4 gnucash | () [] () [] () | 10 gnuedu | [] [] | 7 gnulib | [] [] [] [] | 16 gnunet | [] | 1 gnunet-gtk | [] [] [] | 5 gnutls | [] [] [] | 10 gold | [] | 4 gpe-aerial | [] [] [] | 18 gpe-beam | [] [] [] | 19 gpe-bluetooth | [] [] [] | 13 gpe-calendar | [] [] [] [] | 12 gpe-clock | [] [] [] [] [] | 28 gpe-conf | [] [] [] [] | 20 gpe-contacts | [] [] [] | 17 gpe-edit | [] [] [] | 12 gpe-filemanager | [] [] [] [] | 16 gpe-go | [] [] [] [] [] | 25 gpe-login | [] [] [] | 11 gpe-ownerinfo | [] [] [] [] [] | 25 gpe-package | [] [] [] | 13 gpe-sketchbook | [] [] [] | 20 gpe-su | [] [] [] [] [] | 30 gpe-taskmanager | [] [] [] [] [] | 29 gpe-timesheet | [] [] [] [] [] | 25 gpe-today | [] [] [] [] [] [] | 30 gpe-todo | [] [] [] [] | 17 gphoto2 | [] [] [] [] [] | 24 gprof | [] [] [] | 15 gpsdrive | [] [] [] | 11 gramadoir | [] [] [] | 11 grep | [] [] [] | 10 grub | [] [] [] | 14 gsasl | [] [] [] [] | 14 gss | [] [] [] | 11 gst-plugins-bad | [] [] [] [] | 26 gst-plugins-base | [] [] [] [] [] | 24 gst-plugins-good | [] [] [] [] | 24 gst-plugins-ugly | [] [] [] [] [] | 29 gstreamer | [] [] [] [] | 22 gtick | [] [] [] | 13 gtkam | [] [] [] | 20 gtkorphan | [] [] [] | 14 gtkspell | [] [] [] [] [] [] [] [] [] | 45 gutenprint | [] | 10 hello | [] [] [] [] [] [] | 21 help2man | [] [] | 7 hylafax | [] | 5 idutils | [] [] [] [] | 17 indent | [] [] [] [] [] [] | 30 iso_15924 | () [] () [] [] | 16 iso_3166 | [] [] () [] [] () [] [] [] () | 53 iso_3166_2 | () [] () [] | 9 iso_4217 | [] () [] [] () [] [] | 26 iso_639 | [] [] [] () [] () [] [] [] [] | 38 iso_639_3 | [] () | 8 jwhois | [] [] [] [] [] | 16 kbd | [] [] [] [] [] | 15 keytouch | [] [] [] | 16 keytouch-editor | [] [] [] | 14 keytouch-keyboa... | [] [] [] | 14 klavaro | [] | 11 latrine | [] [] [] | 10 ld | [] [] [] [] | 11 leafpad | [] [] [] [] [] [] | 33 libc | [] [] [] [] [] | 21 libexif | [] () | 7 libextractor | [] | 1 libgnutls | [] [] [] | 9 libgpewidget | [] [] [] | 14 libgpg-error | [] [] [] | 9 libgphoto2 | [] [] | 8 libgphoto2_port | [] [] [] [] | 14 libgsasl | [] [] [] | 13 libiconv | [] [] [] [] | 21 libidn | () [] [] | 11 lifelines | [] | 4 liferea | [] [] [] | 21 lilypond | [] | 7 linkdr | [] [] [] [] [] | 17 lordsawar | | 1 lprng | [] | 3 lynx | [] [] [] [] | 17 m4 | [] [] [] [] | 19 mailfromd | [] [] | 3 mailutils | [] | 5 make | [] [] [] [] | 21 man-db | [] [] [] | 8 man-db-manpages | | 4 minicom | [] [] | 16 mkisofs | [] [] | 9 myserver | | 0 nano | [] [] [] [] | 21 opcodes | [] [] [] | 11 parted | [] [] [] [] [] | 15 pies | [] [] | 3 popt | [] [] [] [] [] [] | 27 psmisc | [] [] | 11 pspp | | 4 pwdutils | [] [] | 6 radius | [] [] | 9 recode | [] [] [] [] | 28 rosegarden | () | 0 rpm | [] [] [] | 11 rush | [] [] | 4 sarg | | 1 screem | [] | 3 scrollkeeper | [] [] [] [] [] | 27 sed | [] [] [] [] [] | 30 sharutils | [] [] [] [] [] | 22 shishi | [] | 3 skencil | [] [] | 7 solfege | [] [] [] [] | 16 solfege-manual | [] | 8 soundtracker | [] [] [] | 9 sp | [] | 3 sysstat | [] [] | 15 tar | [] [] [] [] [] [] | 23 texinfo | [] [] [] [] [] | 17 tin | | 4 unicode-han-tra... | | 0 unicode-transla... | | 2 util-linux-ng | [] [] [] [] | 20 vice | () () | 1 vmm | [] | 4 vorbis-tools | [] | 6 wastesedge | | 2 wdiff | [] [] | 7 wget | [] [] [] [] [] | 26 wyslij-po | [] [] | 8 xchat | [] [] [] [] [] [] | 36 xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] | 63 xkeyboard-config | [] [] [] | 22 +---------------------------------------------------+ 85 teams sv sw ta te tg th tr uk vi wa zh_CN zh_HK zh_TW 178 domains 119 1 3 3 0 10 65 51 155 17 98 7 41 2618 Some counters in the preceding matrix are higher than the number of visible blocks let us expect. This is because a few extra PO files are used for implementing regional variants of languages, or language dialects. For a PO file in the matrix above to be effective, the package to which it applies should also have been internationalized and distributed as such by its maintainer. There might be an observable lag between the mere existence a PO file and its wide availability in a distribution. If June 2010 seems to be old, you may fetch a more recent copy of this `ABOUT-NLS' file on most GNU archive sites. The most up-to-date matrix with full percentage details can be found at `http://translationproject.org/extra/matrix.html'. 1.5 Using `gettext' in new packages =================================== If you are writing a freely available program and want to internationalize it you are welcome to use GNU `gettext' in your package. Of course you have to respect the GNU Library General Public License which covers the use of the GNU `gettext' library. This means in particular that even non-free programs can use `libintl' as a shared library, whereas only free software can use `libintl' as a static library or use modified versions of `libintl'. Once the sources are changed appropriately and the setup can handle the use of `gettext' the only thing missing are the translations. The Free Translation Project is also available for packages which are not developed inside the GNU project. Therefore the information given above applies also for every other Free Software Project. Contact `coordinator@translationproject.org' to make the `.pot' files available to the translation teams. openconnect-7.06/Makefile.in0000664000076400007640000030453312502026423012765 00000000000000# Makefile.in generated by automake 1.14.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2013 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = test -n '$(MAKEFILE_LIST)' && test -n '$(MAKELEVEL)' am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @BUILD_WWW_TRUE@am__append_1 = www @USE_NLS_TRUE@am__append_2 = po sbin_PROGRAMS = openconnect$(EXEEXT) @BUILD_LZSTEST_TRUE@noinst_PROGRAMS = lzstest$(EXEEXT) @OPENCONNECT_LIBPCSCLITE_TRUE@am__append_3 = $(lib_srcs_yubikey) @OPENCONNECT_STOKEN_TRUE@am__append_4 = $(lib_srcs_stoken) @OPENCONNECT_GSSAPI_TRUE@am__append_5 = $(lib_srcs_gssapi) @OPENCONNECT_GNUTLS_TRUE@am__append_6 = $(lib_srcs_gnutls) @ESP_GNUTLS_TRUE@am__append_7 = gnutls-esp.c esp.c @ESP_OPENSSL_TRUE@am__append_8 = openssl-esp.c esp.c @OPENCONNECT_OPENSSL_TRUE@am__append_9 = $(lib_srcs_openssl) @OPENCONNECT_ICONV_TRUE@am__append_10 = $(lib_srcs_iconv) @OPENCONNECT_WIN32_TRUE@am__append_11 = $(lib_srcs_win32) @OPENCONNECT_WIN32_FALSE@am__append_12 = $(lib_srcs_posix) @HAVE_VSCRIPT_TRUE@am__append_13 = @VSCRIPT_LDFLAGS@,libopenconnect.map @HAVE_VSCRIPT_FALSE@libopenconnect_la_DEPENDENCIES = \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__append_14 = jni.c @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__append_15 = $(JNI_CFLAGS) -Wno-missing-declarations @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am__append_16 = libopenconnect-wrapper.la subdir = . DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/Makefile.am \ $(top_srcdir)/configure $(am__configure_deps) \ $(srcdir)/config.h.in $(srcdir)/openconnect.pc.in \ $(srcdir)/libopenconnect.map.in $(srcdir)/openconnect.8.in \ depcomp $(include_HEADERS) $(noinst_HEADERS) ABOUT-NLS AUTHORS \ ChangeLog TODO compile config.guess config.rpath config.sub \ install-sh missing ltmain.sh ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) am__CONFIG_DISTCLEAN_FILES = config.status config.cache config.log \ configure.lineno config.status.lineno mkinstalldirs = $(install_sh) -d CONFIG_HEADER = config.h CONFIG_CLEAN_FILES = openconnect.pc libopenconnect.map openconnect.8 CONFIG_CLEAN_VPATH_FILES = am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(libdir)" "$(DESTDIR)$(sbindir)" \ "$(DESTDIR)$(man8dir)" "$(DESTDIR)$(pkgconfigdir)" \ "$(DESTDIR)$(includedir)" LTLIBRARIES = $(lib_LTLIBRARIES) @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_DEPENDENCIES = \ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@ libopenconnect.la am__libopenconnect_wrapper_la_SOURCES_DIST = jni.c @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am_libopenconnect_wrapper_la_OBJECTS = libopenconnect_wrapper_la-jni.lo libopenconnect_wrapper_la_OBJECTS = \ $(am_libopenconnect_wrapper_la_OBJECTS) AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = libopenconnect_wrapper_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am_libopenconnect_wrapper_la_rpath = \ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@ -rpath $(libdir) am__DEPENDENCIES_1 = am__libopenconnect_la_SOURCES_DIST = version.c ssl.c http.c \ http-auth.c auth-common.c library.c compat.c lzs.c mainloop.c \ script.c ntlm.c digest.c oncp.c lzo.c auth-juniper.c \ gnutls-esp.c esp.c openssl-esp.c auth.c cstp.c dtls.c oath.c \ yubikey.c stoken.c gssapi.c gnutls.c gnutls_pkcs12.c \ gnutls_tpm.c openssl.c openssl-pkcs11.c iconv.c tun-win32.c \ sspi.c tun.c jni.c @ESP_GNUTLS_TRUE@am__objects_1 = libopenconnect_la-gnutls-esp.lo \ @ESP_GNUTLS_TRUE@ libopenconnect_la-esp.lo @ESP_OPENSSL_TRUE@am__objects_2 = libopenconnect_la-openssl-esp.lo \ @ESP_OPENSSL_TRUE@ libopenconnect_la-esp.lo am__objects_3 = libopenconnect_la-oncp.lo libopenconnect_la-lzo.lo \ libopenconnect_la-auth-juniper.lo $(am__objects_1) \ $(am__objects_2) am__objects_4 = libopenconnect_la-auth.lo libopenconnect_la-cstp.lo \ libopenconnect_la-dtls.lo am__objects_5 = libopenconnect_la-oath.lo am__objects_6 = libopenconnect_la-yubikey.lo @OPENCONNECT_LIBPCSCLITE_TRUE@am__objects_7 = $(am__objects_6) am__objects_8 = libopenconnect_la-stoken.lo @OPENCONNECT_STOKEN_TRUE@am__objects_9 = $(am__objects_8) am__objects_10 = libopenconnect_la-gssapi.lo @OPENCONNECT_GSSAPI_TRUE@am__objects_11 = $(am__objects_10) am__objects_12 = libopenconnect_la-gnutls.lo \ libopenconnect_la-gnutls_pkcs12.lo \ libopenconnect_la-gnutls_tpm.lo @OPENCONNECT_GNUTLS_TRUE@am__objects_13 = $(am__objects_12) am__objects_14 = libopenconnect_la-openssl.lo \ libopenconnect_la-openssl-pkcs11.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_15 = $(am__objects_14) am__objects_16 = libopenconnect_la-iconv.lo @OPENCONNECT_ICONV_TRUE@am__objects_17 = $(am__objects_16) am__objects_18 = libopenconnect_la-tun-win32.lo \ libopenconnect_la-sspi.lo @OPENCONNECT_WIN32_TRUE@am__objects_19 = $(am__objects_18) am__objects_20 = libopenconnect_la-tun.lo @OPENCONNECT_WIN32_FALSE@am__objects_21 = $(am__objects_20) am__objects_22 = libopenconnect_la-ssl.lo libopenconnect_la-http.lo \ libopenconnect_la-http-auth.lo \ libopenconnect_la-auth-common.lo libopenconnect_la-library.lo \ libopenconnect_la-compat.lo libopenconnect_la-lzs.lo \ libopenconnect_la-mainloop.lo libopenconnect_la-script.lo \ libopenconnect_la-ntlm.lo libopenconnect_la-digest.lo \ $(am__objects_3) $(am__objects_4) $(am__objects_5) \ $(am__objects_7) $(am__objects_9) $(am__objects_11) \ $(am__objects_13) $(am__objects_15) $(am__objects_17) \ $(am__objects_19) $(am__objects_21) @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__objects_23 = libopenconnect_la-jni.lo am_libopenconnect_la_OBJECTS = libopenconnect_la-version.lo \ $(am__objects_22) $(am__objects_23) libopenconnect_la_OBJECTS = $(am_libopenconnect_la_OBJECTS) libopenconnect_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(libopenconnect_la_CFLAGS) $(CFLAGS) \ $(libopenconnect_la_LDFLAGS) $(LDFLAGS) -o $@ PROGRAMS = $(noinst_PROGRAMS) $(sbin_PROGRAMS) am__lzstest_SOURCES_DIST = lzstest.c @BUILD_LZSTEST_TRUE@am_lzstest_OBJECTS = lzstest.$(OBJEXT) lzstest_OBJECTS = $(am_lzstest_OBJECTS) lzstest_LDADD = $(LDADD) am_openconnect_OBJECTS = openconnect-xml.$(OBJEXT) \ openconnect-main.$(OBJEXT) openconnect_OBJECTS = $(am_openconnect_OBJECTS) openconnect_DEPENDENCIES = libopenconnect.la $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) openconnect_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(openconnect_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ depcomp = $(SHELL) $(top_srcdir)/depcomp am__depfiles_maybe = depfiles am__mv = mv -f COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) LTCOMPILE = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) \ $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) \ $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(libopenconnect_wrapper_la_SOURCES) \ $(libopenconnect_la_SOURCES) $(lzstest_SOURCES) \ $(openconnect_SOURCES) DIST_SOURCES = $(am__libopenconnect_wrapper_la_SOURCES_DIST) \ $(am__libopenconnect_la_SOURCES_DIST) \ $(am__lzstest_SOURCES_DIST) $(openconnect_SOURCES) RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac man8dir = $(mandir)/man8 NROFF = nroff MANS = $(man8_MANS) DATA = $(pkgconfig_DATA) HEADERS = $(include_HEADERS) $(noinst_HEADERS) RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ cscope distdir dist dist-all distcheck am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) \ $(LISP)config.h.in # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags CSCOPE = cscope DIST_SUBDIRS = www po DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) distdir = $(PACKAGE)-$(VERSION) top_distdir = $(distdir) am__remove_distdir = \ if test -d "$(distdir)"; then \ find "$(distdir)" -type d ! -perm -200 -exec chmod u+w {} ';' \ && rm -rf "$(distdir)" \ || { sleep 5 && rm -rf "$(distdir)"; }; \ else :; fi am__post_remove_distdir = $(am__remove_distdir) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" DIST_ARCHIVES = $(distdir).tar.gz GZIP_ENV = --best DIST_TARGETS = dist-gzip distuninstallcheck_listfiles = find . -type f -print am__distuninstallcheck_listfiles = $(distuninstallcheck_listfiles) \ | sed 's|^\./|$(prefix)/|' | grep -v '$(infodir)/dir$$' distcleancheck_listfiles = find . -type f -print ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DTLS_SSL_CFLAGS = @DTLS_SSL_CFLAGS@ DTLS_SSL_LIBS = @DTLS_SSL_LIBS@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_DTLS_PC = @SSL_DTLS_PC@ SSL_LIBS = @SSL_LIBS@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ target_alias = @target_alias@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = $(am__append_1) $(am__append_2) lib_LTLIBRARIES = libopenconnect.la $(am__append_16) man8_MANS = openconnect.8 AM_CFLAGS = @WFLAGS@ AM_CPPFLAGS = -DLOCALEDIR="\"$(localedir)\"" @BUILD_LZSTEST_TRUE@lzstest_SOURCES = lzstest.c openconnect_SOURCES = xml.c main.c openconnect_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) openconnect_LDADD = libopenconnect.la $(SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(INTL_LIBS) $(ICONV_LIBS) library_srcs = ssl.c http.c http-auth.c auth-common.c library.c \ compat.c lzs.c mainloop.c script.c ntlm.c digest.c \ $(lib_srcs_juniper) $(lib_srcs_cisco) $(lib_srcs_oath) \ $(am__append_3) $(am__append_4) $(am__append_5) \ $(am__append_6) $(am__append_9) $(am__append_10) \ $(am__append_11) $(am__append_12) lib_srcs_cisco = auth.c cstp.c dtls.c lib_srcs_juniper = oncp.c lzo.c auth-juniper.c $(am__append_7) \ $(am__append_8) lib_srcs_gnutls = gnutls.c gnutls_pkcs12.c gnutls_tpm.c lib_srcs_openssl = openssl.c openssl-pkcs11.c lib_srcs_win32 = tun-win32.c sspi.c lib_srcs_posix = tun.c lib_srcs_gssapi = gssapi.c lib_srcs_iconv = iconv.c lib_srcs_oath = oath.c lib_srcs_yubikey = yubikey.c lib_srcs_stoken = stoken.c POTFILES = $(openconnect_SOURCES) $(lib_srcs_cisco) $(lib_srcs_juniper) \ gnutls-esp.c openssl-esp.c esp.c \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(library_srcs) \ $(lib_srcs_win32) $(lib_srcs_posix) $(lib_srcs_gssapi) $(lib_srcs_iconv) \ $(lib_srcs_oath) $(lib_srcs_yubikey) $(lib_srcs_stoken) openconnect-internal.h libopenconnect_la_SOURCES = version.c $(library_srcs) $(am__append_14) libopenconnect_la_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) \ $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) \ $(ZLIB_CFLAGS) $(P11KIT_CFLAGS) $(TSS_CFLAGS) \ $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) \ $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) \ $(LIBP11_CFLAGS) $(LIBLZ4_CFLAGS) $(am__append_15) libopenconnect_la_LIBADD = $(SSL_LIBS) $(DTLS_SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(ZLIB_LIBS) $(P11KIT_LIBS) $(TSS_LIBS) $(LIBSTOKEN_LIBS) $(LIBPSKC_LIBS) $(GSSAPI_LIBS) $(INTL_LIBS) $(ICONV_LIBS) $(LIBPCSCLITE_LIBS) $(LIBP11_LIBS) $(LIBLZ4_LIBS) @OPENBSD_LIBTOOL_FALSE@LT_VER_ARG = -version-number # OpenBSD's libtool doesn't have -version-number, but its -version-info arg # does what GNU libtool's -version-number does. Which arguably is what the # GNU -version-info arg ought to do too. I hate libtool. @OPENBSD_LIBTOOL_TRUE@LT_VER_ARG = -version-info libopenconnect_la_LDFLAGS = $(LT_VER_ARG) @APIMAJOR@:@APIMINOR@ \ -no-undefined $(am__append_13) noinst_HEADERS = openconnect-internal.h openconnect.h gnutls.h lzo.h include_HEADERS = openconnect.h @HAVE_VSCRIPT_TRUE@libopenconnect_la_DEPENDENCIES = libopenconnect.map @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_SOURCES = jni.c @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_CFLAGS = $(AM_CFLAGS) $(JNI_CFLAGS) -Wno-missing-declarations @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_LIBADD = libopenconnect.la pkgconfig_DATA = openconnect.pc EXTRA_DIST = version.sh COPYING.LGPL $(lib_srcs_openssl) \ $(lib_srcs_gnutls) $(shell cd "$(top_srcdir)" && git ls-tree \ HEAD -r --name-only -- android/ java/ 2>/dev/null) DISTCLEANFILES = $(pkgconfig_DATA) DISTHOOK = 1 ACLOCAL_AMFLAGS = -I m4 all: config.h $(MAKE) $(AM_MAKEFLAGS) all-recursive .SUFFIXES: .SUFFIXES: .c .lo .o .obj am--refresh: Makefile @: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ echo ' cd $(srcdir) && $(AUTOMAKE) --foreign'; \ $(am__cd) $(srcdir) && $(AUTOMAKE) --foreign \ && exit 0; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign Makefile .PRECIOUS: Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ echo ' $(SHELL) ./config.status'; \ $(SHELL) ./config.status;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__depfiles_maybe)'; \ cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__depfiles_maybe);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) $(SHELL) ./config.status --recheck $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) $(am__cd) $(srcdir) && $(AUTOCONF) $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) $(am__cd) $(srcdir) && $(ACLOCAL) $(ACLOCAL_AMFLAGS) $(am__aclocal_m4_deps): config.h: stamp-h1 @test -f $@ || rm -f stamp-h1 @test -f $@ || $(MAKE) $(AM_MAKEFLAGS) stamp-h1 stamp-h1: $(srcdir)/config.h.in $(top_builddir)/config.status @rm -f stamp-h1 cd $(top_builddir) && $(SHELL) ./config.status config.h $(srcdir)/config.h.in: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) ($(am__cd) $(top_srcdir) && $(AUTOHEADER)) rm -f stamp-h1 touch $@ distclean-hdr: -rm -f config.h stamp-h1 openconnect.pc: $(top_builddir)/config.status $(srcdir)/openconnect.pc.in cd $(top_builddir) && $(SHELL) ./config.status $@ libopenconnect.map: $(top_builddir)/config.status $(srcdir)/libopenconnect.map.in cd $(top_builddir) && $(SHELL) ./config.status $@ openconnect.8: $(top_builddir)/config.status $(srcdir)/openconnect.8.in cd $(top_builddir) && $(SHELL) ./config.status $@ install-libLTLIBRARIES: $(lib_LTLIBRARIES) @$(NORMAL_INSTALL) @list='$(lib_LTLIBRARIES)'; test -n "$(libdir)" || list=; \ list2=; for p in $$list; do \ if test -f $$p; then \ list2="$$list2 $$p"; \ else :; fi; \ done; \ test -z "$$list2" || { \ echo " $(MKDIR_P) '$(DESTDIR)$(libdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(libdir)" || exit 1; \ echo " $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL) $(INSTALL_STRIP_FLAG) $$list2 '$(DESTDIR)$(libdir)'"; \ $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL) $(INSTALL_STRIP_FLAG) $$list2 "$(DESTDIR)$(libdir)"; \ } uninstall-libLTLIBRARIES: @$(NORMAL_UNINSTALL) @list='$(lib_LTLIBRARIES)'; test -n "$(libdir)" || list=; \ for p in $$list; do \ $(am__strip_dir) \ echo " $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=uninstall rm -f '$(DESTDIR)$(libdir)/$$f'"; \ $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=uninstall rm -f "$(DESTDIR)$(libdir)/$$f"; \ done clean-libLTLIBRARIES: -test -z "$(lib_LTLIBRARIES)" || rm -f $(lib_LTLIBRARIES) @list='$(lib_LTLIBRARIES)'; \ locs=`for p in $$list; do echo $$p; done | \ sed 's|^[^/]*$$|.|; s|/[^/]*$$||; s|$$|/so_locations|' | \ sort -u`; \ test -z "$$locs" || { \ echo rm -f $${locs}; \ rm -f $${locs}; \ } libopenconnect-wrapper.la: $(libopenconnect_wrapper_la_OBJECTS) $(libopenconnect_wrapper_la_DEPENDENCIES) $(EXTRA_libopenconnect_wrapper_la_DEPENDENCIES) $(AM_V_CCLD)$(libopenconnect_wrapper_la_LINK) $(am_libopenconnect_wrapper_la_rpath) $(libopenconnect_wrapper_la_OBJECTS) $(libopenconnect_wrapper_la_LIBADD) $(LIBS) libopenconnect.la: $(libopenconnect_la_OBJECTS) $(libopenconnect_la_DEPENDENCIES) $(EXTRA_libopenconnect_la_DEPENDENCIES) $(AM_V_CCLD)$(libopenconnect_la_LINK) -rpath $(libdir) $(libopenconnect_la_OBJECTS) $(libopenconnect_la_LIBADD) $(LIBS) clean-noinstPROGRAMS: @list='$(noinst_PROGRAMS)'; test -n "$$list" || exit 0; \ echo " rm -f" $$list; \ rm -f $$list || exit $$?; \ test -n "$(EXEEXT)" || exit 0; \ list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ echo " rm -f" $$list; \ rm -f $$list install-sbinPROGRAMS: $(sbin_PROGRAMS) @$(NORMAL_INSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(sbindir)'"; \ $(MKDIR_P) "$(DESTDIR)$(sbindir)" || exit 1; \ fi; \ for p in $$list; do echo "$$p $$p"; done | \ sed 's/$(EXEEXT)$$//' | \ while read p p1; do if test -f $$p \ || test -f $$p1 \ ; then echo "$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n;h' \ -e 's|.*|.|' \ -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) files[d] = files[d] " " $$1; \ else { print "f", $$3 "/" $$4, $$1; } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(sbindir)$$dir'"; \ $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(sbindir)$$dir" || exit $$?; \ } \ ; done uninstall-sbinPROGRAMS: @$(NORMAL_UNINSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ -e 's/$$/$(EXEEXT)/' \ `; \ test -n "$$list" || exit 0; \ echo " ( cd '$(DESTDIR)$(sbindir)' && rm -f" $$files ")"; \ cd "$(DESTDIR)$(sbindir)" && rm -f $$files clean-sbinPROGRAMS: @list='$(sbin_PROGRAMS)'; test -n "$$list" || exit 0; \ echo " rm -f" $$list; \ rm -f $$list || exit $$?; \ test -n "$(EXEEXT)" || exit 0; \ list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ echo " rm -f" $$list; \ rm -f $$list lzstest$(EXEEXT): $(lzstest_OBJECTS) $(lzstest_DEPENDENCIES) $(EXTRA_lzstest_DEPENDENCIES) @rm -f lzstest$(EXEEXT) $(AM_V_CCLD)$(LINK) $(lzstest_OBJECTS) $(lzstest_LDADD) $(LIBS) openconnect$(EXEEXT): $(openconnect_OBJECTS) $(openconnect_DEPENDENCIES) $(EXTRA_openconnect_DEPENDENCIES) @rm -f openconnect$(EXEEXT) $(AM_V_CCLD)$(openconnect_LINK) $(openconnect_OBJECTS) $(openconnect_LDADD) $(LIBS) mostlyclean-compile: -rm -f *.$(OBJEXT) distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-common.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-compat.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-cstp.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-digest.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-dtls.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-esp.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_pkcs12.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gssapi.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-http-auth.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-http.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-iconv.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-jni.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-library.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-lzo.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-lzs.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-mainloop.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ntlm.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oath.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oncp.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-script.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ssl.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-sspi.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-stoken.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-tun-win32.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-tun.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-version.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-yubikey.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/lzstest.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/openconnect-main.Po@am__quote@ @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/openconnect-xml.Po@am__quote@ .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ `$(CYGPATH_W) '$<'` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` .c.lo: @am__fastdepCC_TRUE@ $(AM_V_CC)$(LTCOMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LTCOMPILE) -c -o $@ $< libopenconnect_wrapper_la-jni.lo: jni.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) -MT libopenconnect_wrapper_la-jni.lo -MD -MP -MF $(DEPDIR)/libopenconnect_wrapper_la-jni.Tpo -c -o libopenconnect_wrapper_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_wrapper_la-jni.Tpo $(DEPDIR)/libopenconnect_wrapper_la-jni.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jni.c' object='libopenconnect_wrapper_la-jni.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_wrapper_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c libopenconnect_la-version.lo: version.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-version.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-version.Tpo -c -o libopenconnect_la-version.lo `test -f 'version.c' || echo '$(srcdir)/'`version.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-version.Tpo $(DEPDIR)/libopenconnect_la-version.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='version.c' object='libopenconnect_la-version.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-version.lo `test -f 'version.c' || echo '$(srcdir)/'`version.c libopenconnect_la-ssl.lo: ssl.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ssl.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ssl.Tpo -c -o libopenconnect_la-ssl.lo `test -f 'ssl.c' || echo '$(srcdir)/'`ssl.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ssl.Tpo $(DEPDIR)/libopenconnect_la-ssl.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ssl.c' object='libopenconnect_la-ssl.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ssl.lo `test -f 'ssl.c' || echo '$(srcdir)/'`ssl.c libopenconnect_la-http.lo: http.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-http.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-http.Tpo -c -o libopenconnect_la-http.lo `test -f 'http.c' || echo '$(srcdir)/'`http.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-http.Tpo $(DEPDIR)/libopenconnect_la-http.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='http.c' object='libopenconnect_la-http.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-http.lo `test -f 'http.c' || echo '$(srcdir)/'`http.c libopenconnect_la-http-auth.lo: http-auth.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-http-auth.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-http-auth.Tpo -c -o libopenconnect_la-http-auth.lo `test -f 'http-auth.c' || echo '$(srcdir)/'`http-auth.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-http-auth.Tpo $(DEPDIR)/libopenconnect_la-http-auth.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='http-auth.c' object='libopenconnect_la-http-auth.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-http-auth.lo `test -f 'http-auth.c' || echo '$(srcdir)/'`http-auth.c libopenconnect_la-auth-common.lo: auth-common.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-common.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-common.Tpo -c -o libopenconnect_la-auth-common.lo `test -f 'auth-common.c' || echo '$(srcdir)/'`auth-common.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-common.Tpo $(DEPDIR)/libopenconnect_la-auth-common.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-common.c' object='libopenconnect_la-auth-common.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-common.lo `test -f 'auth-common.c' || echo '$(srcdir)/'`auth-common.c libopenconnect_la-library.lo: library.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-library.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-library.Tpo -c -o libopenconnect_la-library.lo `test -f 'library.c' || echo '$(srcdir)/'`library.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-library.Tpo $(DEPDIR)/libopenconnect_la-library.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='library.c' object='libopenconnect_la-library.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-library.lo `test -f 'library.c' || echo '$(srcdir)/'`library.c libopenconnect_la-compat.lo: compat.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-compat.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-compat.Tpo -c -o libopenconnect_la-compat.lo `test -f 'compat.c' || echo '$(srcdir)/'`compat.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-compat.Tpo $(DEPDIR)/libopenconnect_la-compat.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='compat.c' object='libopenconnect_la-compat.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-compat.lo `test -f 'compat.c' || echo '$(srcdir)/'`compat.c libopenconnect_la-lzs.lo: lzs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-lzs.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-lzs.Tpo -c -o libopenconnect_la-lzs.lo `test -f 'lzs.c' || echo '$(srcdir)/'`lzs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-lzs.Tpo $(DEPDIR)/libopenconnect_la-lzs.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='lzs.c' object='libopenconnect_la-lzs.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-lzs.lo `test -f 'lzs.c' || echo '$(srcdir)/'`lzs.c libopenconnect_la-mainloop.lo: mainloop.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-mainloop.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-mainloop.Tpo -c -o libopenconnect_la-mainloop.lo `test -f 'mainloop.c' || echo '$(srcdir)/'`mainloop.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-mainloop.Tpo $(DEPDIR)/libopenconnect_la-mainloop.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='mainloop.c' object='libopenconnect_la-mainloop.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-mainloop.lo `test -f 'mainloop.c' || echo '$(srcdir)/'`mainloop.c libopenconnect_la-script.lo: script.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-script.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-script.Tpo -c -o libopenconnect_la-script.lo `test -f 'script.c' || echo '$(srcdir)/'`script.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-script.Tpo $(DEPDIR)/libopenconnect_la-script.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='script.c' object='libopenconnect_la-script.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-script.lo `test -f 'script.c' || echo '$(srcdir)/'`script.c libopenconnect_la-ntlm.lo: ntlm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ntlm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ntlm.Tpo -c -o libopenconnect_la-ntlm.lo `test -f 'ntlm.c' || echo '$(srcdir)/'`ntlm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ntlm.Tpo $(DEPDIR)/libopenconnect_la-ntlm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ntlm.c' object='libopenconnect_la-ntlm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ntlm.lo `test -f 'ntlm.c' || echo '$(srcdir)/'`ntlm.c libopenconnect_la-digest.lo: digest.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-digest.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-digest.Tpo -c -o libopenconnect_la-digest.lo `test -f 'digest.c' || echo '$(srcdir)/'`digest.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-digest.Tpo $(DEPDIR)/libopenconnect_la-digest.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='digest.c' object='libopenconnect_la-digest.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-digest.lo `test -f 'digest.c' || echo '$(srcdir)/'`digest.c libopenconnect_la-oncp.lo: oncp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oncp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oncp.Tpo -c -o libopenconnect_la-oncp.lo `test -f 'oncp.c' || echo '$(srcdir)/'`oncp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oncp.Tpo $(DEPDIR)/libopenconnect_la-oncp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oncp.c' object='libopenconnect_la-oncp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oncp.lo `test -f 'oncp.c' || echo '$(srcdir)/'`oncp.c libopenconnect_la-lzo.lo: lzo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-lzo.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-lzo.Tpo -c -o libopenconnect_la-lzo.lo `test -f 'lzo.c' || echo '$(srcdir)/'`lzo.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-lzo.Tpo $(DEPDIR)/libopenconnect_la-lzo.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='lzo.c' object='libopenconnect_la-lzo.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-lzo.lo `test -f 'lzo.c' || echo '$(srcdir)/'`lzo.c libopenconnect_la-auth-juniper.lo: auth-juniper.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-juniper.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-juniper.Tpo -c -o libopenconnect_la-auth-juniper.lo `test -f 'auth-juniper.c' || echo '$(srcdir)/'`auth-juniper.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-juniper.Tpo $(DEPDIR)/libopenconnect_la-auth-juniper.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-juniper.c' object='libopenconnect_la-auth-juniper.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-juniper.lo `test -f 'auth-juniper.c' || echo '$(srcdir)/'`auth-juniper.c libopenconnect_la-gnutls-esp.lo: gnutls-esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls-esp.Tpo -c -o libopenconnect_la-gnutls-esp.lo `test -f 'gnutls-esp.c' || echo '$(srcdir)/'`gnutls-esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls-esp.Tpo $(DEPDIR)/libopenconnect_la-gnutls-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls-esp.c' object='libopenconnect_la-gnutls-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls-esp.lo `test -f 'gnutls-esp.c' || echo '$(srcdir)/'`gnutls-esp.c libopenconnect_la-esp.lo: esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-esp.Tpo -c -o libopenconnect_la-esp.lo `test -f 'esp.c' || echo '$(srcdir)/'`esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-esp.Tpo $(DEPDIR)/libopenconnect_la-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='esp.c' object='libopenconnect_la-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-esp.lo `test -f 'esp.c' || echo '$(srcdir)/'`esp.c libopenconnect_la-openssl-esp.lo: openssl-esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-esp.Tpo -c -o libopenconnect_la-openssl-esp.lo `test -f 'openssl-esp.c' || echo '$(srcdir)/'`openssl-esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-esp.Tpo $(DEPDIR)/libopenconnect_la-openssl-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-esp.c' object='libopenconnect_la-openssl-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-esp.lo `test -f 'openssl-esp.c' || echo '$(srcdir)/'`openssl-esp.c libopenconnect_la-auth.lo: auth.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth.Tpo -c -o libopenconnect_la-auth.lo `test -f 'auth.c' || echo '$(srcdir)/'`auth.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth.Tpo $(DEPDIR)/libopenconnect_la-auth.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth.c' object='libopenconnect_la-auth.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth.lo `test -f 'auth.c' || echo '$(srcdir)/'`auth.c libopenconnect_la-cstp.lo: cstp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-cstp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-cstp.Tpo -c -o libopenconnect_la-cstp.lo `test -f 'cstp.c' || echo '$(srcdir)/'`cstp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-cstp.Tpo $(DEPDIR)/libopenconnect_la-cstp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cstp.c' object='libopenconnect_la-cstp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-cstp.lo `test -f 'cstp.c' || echo '$(srcdir)/'`cstp.c libopenconnect_la-dtls.lo: dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-dtls.Tpo -c -o libopenconnect_la-dtls.lo `test -f 'dtls.c' || echo '$(srcdir)/'`dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-dtls.Tpo $(DEPDIR)/libopenconnect_la-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dtls.c' object='libopenconnect_la-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-dtls.lo `test -f 'dtls.c' || echo '$(srcdir)/'`dtls.c libopenconnect_la-oath.lo: oath.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oath.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oath.Tpo -c -o libopenconnect_la-oath.lo `test -f 'oath.c' || echo '$(srcdir)/'`oath.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oath.Tpo $(DEPDIR)/libopenconnect_la-oath.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oath.c' object='libopenconnect_la-oath.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oath.lo `test -f 'oath.c' || echo '$(srcdir)/'`oath.c libopenconnect_la-yubikey.lo: yubikey.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-yubikey.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-yubikey.Tpo -c -o libopenconnect_la-yubikey.lo `test -f 'yubikey.c' || echo '$(srcdir)/'`yubikey.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-yubikey.Tpo $(DEPDIR)/libopenconnect_la-yubikey.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='yubikey.c' object='libopenconnect_la-yubikey.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-yubikey.lo `test -f 'yubikey.c' || echo '$(srcdir)/'`yubikey.c libopenconnect_la-stoken.lo: stoken.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-stoken.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-stoken.Tpo -c -o libopenconnect_la-stoken.lo `test -f 'stoken.c' || echo '$(srcdir)/'`stoken.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-stoken.Tpo $(DEPDIR)/libopenconnect_la-stoken.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='stoken.c' object='libopenconnect_la-stoken.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-stoken.lo `test -f 'stoken.c' || echo '$(srcdir)/'`stoken.c libopenconnect_la-gssapi.lo: gssapi.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gssapi.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gssapi.Tpo -c -o libopenconnect_la-gssapi.lo `test -f 'gssapi.c' || echo '$(srcdir)/'`gssapi.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gssapi.Tpo $(DEPDIR)/libopenconnect_la-gssapi.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gssapi.c' object='libopenconnect_la-gssapi.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gssapi.lo `test -f 'gssapi.c' || echo '$(srcdir)/'`gssapi.c libopenconnect_la-gnutls.lo: gnutls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls.Tpo -c -o libopenconnect_la-gnutls.lo `test -f 'gnutls.c' || echo '$(srcdir)/'`gnutls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls.Tpo $(DEPDIR)/libopenconnect_la-gnutls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls.c' object='libopenconnect_la-gnutls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls.lo `test -f 'gnutls.c' || echo '$(srcdir)/'`gnutls.c libopenconnect_la-gnutls_pkcs12.lo: gnutls_pkcs12.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_pkcs12.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_pkcs12.Tpo -c -o libopenconnect_la-gnutls_pkcs12.lo `test -f 'gnutls_pkcs12.c' || echo '$(srcdir)/'`gnutls_pkcs12.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_pkcs12.Tpo $(DEPDIR)/libopenconnect_la-gnutls_pkcs12.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_pkcs12.c' object='libopenconnect_la-gnutls_pkcs12.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_pkcs12.lo `test -f 'gnutls_pkcs12.c' || echo '$(srcdir)/'`gnutls_pkcs12.c libopenconnect_la-gnutls_tpm.lo: gnutls_tpm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm.Tpo -c -o libopenconnect_la-gnutls_tpm.lo `test -f 'gnutls_tpm.c' || echo '$(srcdir)/'`gnutls_tpm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm.c' object='libopenconnect_la-gnutls_tpm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm.lo `test -f 'gnutls_tpm.c' || echo '$(srcdir)/'`gnutls_tpm.c libopenconnect_la-openssl.lo: openssl.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl.Tpo -c -o libopenconnect_la-openssl.lo `test -f 'openssl.c' || echo '$(srcdir)/'`openssl.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl.Tpo $(DEPDIR)/libopenconnect_la-openssl.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl.c' object='libopenconnect_la-openssl.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl.lo `test -f 'openssl.c' || echo '$(srcdir)/'`openssl.c libopenconnect_la-openssl-pkcs11.lo: openssl-pkcs11.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-pkcs11.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Tpo -c -o libopenconnect_la-openssl-pkcs11.lo `test -f 'openssl-pkcs11.c' || echo '$(srcdir)/'`openssl-pkcs11.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Tpo $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-pkcs11.c' object='libopenconnect_la-openssl-pkcs11.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-pkcs11.lo `test -f 'openssl-pkcs11.c' || echo '$(srcdir)/'`openssl-pkcs11.c libopenconnect_la-iconv.lo: iconv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-iconv.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-iconv.Tpo -c -o libopenconnect_la-iconv.lo `test -f 'iconv.c' || echo '$(srcdir)/'`iconv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-iconv.Tpo $(DEPDIR)/libopenconnect_la-iconv.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='iconv.c' object='libopenconnect_la-iconv.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-iconv.lo `test -f 'iconv.c' || echo '$(srcdir)/'`iconv.c libopenconnect_la-tun-win32.lo: tun-win32.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-tun-win32.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-tun-win32.Tpo -c -o libopenconnect_la-tun-win32.lo `test -f 'tun-win32.c' || echo '$(srcdir)/'`tun-win32.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-tun-win32.Tpo $(DEPDIR)/libopenconnect_la-tun-win32.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tun-win32.c' object='libopenconnect_la-tun-win32.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-tun-win32.lo `test -f 'tun-win32.c' || echo '$(srcdir)/'`tun-win32.c libopenconnect_la-sspi.lo: sspi.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-sspi.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-sspi.Tpo -c -o libopenconnect_la-sspi.lo `test -f 'sspi.c' || echo '$(srcdir)/'`sspi.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-sspi.Tpo $(DEPDIR)/libopenconnect_la-sspi.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='sspi.c' object='libopenconnect_la-sspi.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-sspi.lo `test -f 'sspi.c' || echo '$(srcdir)/'`sspi.c libopenconnect_la-tun.lo: tun.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-tun.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-tun.Tpo -c -o libopenconnect_la-tun.lo `test -f 'tun.c' || echo '$(srcdir)/'`tun.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-tun.Tpo $(DEPDIR)/libopenconnect_la-tun.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tun.c' object='libopenconnect_la-tun.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-tun.lo `test -f 'tun.c' || echo '$(srcdir)/'`tun.c libopenconnect_la-jni.lo: jni.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-jni.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-jni.Tpo -c -o libopenconnect_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-jni.Tpo $(DEPDIR)/libopenconnect_la-jni.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jni.c' object='libopenconnect_la-jni.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c openconnect-xml.o: xml.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-xml.o -MD -MP -MF $(DEPDIR)/openconnect-xml.Tpo -c -o openconnect-xml.o `test -f 'xml.c' || echo '$(srcdir)/'`xml.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-xml.Tpo $(DEPDIR)/openconnect-xml.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='xml.c' object='openconnect-xml.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-xml.o `test -f 'xml.c' || echo '$(srcdir)/'`xml.c openconnect-xml.obj: xml.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-xml.obj -MD -MP -MF $(DEPDIR)/openconnect-xml.Tpo -c -o openconnect-xml.obj `if test -f 'xml.c'; then $(CYGPATH_W) 'xml.c'; else $(CYGPATH_W) '$(srcdir)/xml.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-xml.Tpo $(DEPDIR)/openconnect-xml.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='xml.c' object='openconnect-xml.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-xml.obj `if test -f 'xml.c'; then $(CYGPATH_W) 'xml.c'; else $(CYGPATH_W) '$(srcdir)/xml.c'; fi` openconnect-main.o: main.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-main.o -MD -MP -MF $(DEPDIR)/openconnect-main.Tpo -c -o openconnect-main.o `test -f 'main.c' || echo '$(srcdir)/'`main.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-main.Tpo $(DEPDIR)/openconnect-main.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='main.c' object='openconnect-main.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-main.o `test -f 'main.c' || echo '$(srcdir)/'`main.c openconnect-main.obj: main.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-main.obj -MD -MP -MF $(DEPDIR)/openconnect-main.Tpo -c -o openconnect-main.obj `if test -f 'main.c'; then $(CYGPATH_W) 'main.c'; else $(CYGPATH_W) '$(srcdir)/main.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-main.Tpo $(DEPDIR)/openconnect-main.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='main.c' object='openconnect-main.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-main.obj `if test -f 'main.c'; then $(CYGPATH_W) 'main.c'; else $(CYGPATH_W) '$(srcdir)/main.c'; fi` mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs distclean-libtool: -rm -f libtool config.lt install-man8: $(man8_MANS) @$(NORMAL_INSTALL) @list1='$(man8_MANS)'; \ list2=''; \ test -n "$(man8dir)" \ && test -n "`echo $$list1$$list2`" \ || exit 0; \ echo " $(MKDIR_P) '$(DESTDIR)$(man8dir)'"; \ $(MKDIR_P) "$(DESTDIR)$(man8dir)" || exit 1; \ { for i in $$list1; do echo "$$i"; done; \ if test -n "$$list2"; then \ for i in $$list2; do echo "$$i"; done \ | sed -n '/\.8[a-z]*$$/p'; \ fi; \ } | while read p; do \ if test -f $$p; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; echo "$$p"; \ done | \ sed -e 'n;s,.*/,,;p;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,' | \ sed 'N;N;s,\n, ,g' | { \ list=; while read file base inst; do \ if test "$$base" = "$$inst"; then list="$$list $$file"; else \ echo " $(INSTALL_DATA) '$$file' '$(DESTDIR)$(man8dir)/$$inst'"; \ $(INSTALL_DATA) "$$file" "$(DESTDIR)$(man8dir)/$$inst" || exit $$?; \ fi; \ done; \ for i in $$list; do echo "$$i"; done | $(am__base_list) | \ while read files; do \ test -z "$$files" || { \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(man8dir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(man8dir)" || exit $$?; }; \ done; } uninstall-man8: @$(NORMAL_UNINSTALL) @list='$(man8_MANS)'; test -n "$(man8dir)" || exit 0; \ files=`{ for i in $$list; do echo "$$i"; done; \ } | sed -e 's,.*/,,;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,'`; \ dir='$(DESTDIR)$(man8dir)'; $(am__uninstall_files_from_dir) install-pkgconfigDATA: $(pkgconfig_DATA) @$(NORMAL_INSTALL) @list='$(pkgconfig_DATA)'; test -n "$(pkgconfigdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkgconfigdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkgconfigdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(pkgconfigdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(pkgconfigdir)" || exit $$?; \ done uninstall-pkgconfigDATA: @$(NORMAL_UNINSTALL) @list='$(pkgconfig_DATA)'; test -n "$(pkgconfigdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(pkgconfigdir)'; $(am__uninstall_files_from_dir) install-includeHEADERS: $(include_HEADERS) @$(NORMAL_INSTALL) @list='$(include_HEADERS)'; test -n "$(includedir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(includedir)'"; \ $(MKDIR_P) "$(DESTDIR)$(includedir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_HEADER) $$files '$(DESTDIR)$(includedir)'"; \ $(INSTALL_HEADER) $$files "$(DESTDIR)$(includedir)" || exit $$?; \ done uninstall-includeHEADERS: @$(NORMAL_UNINSTALL) @list='$(include_HEADERS)'; test -n "$(includedir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(includedir)'; $(am__uninstall_files_from_dir) # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscope: cscope.files test ! -s cscope.files \ || $(CSCOPE) -b -q $(AM_CSCOPEFLAGS) $(CSCOPEFLAGS) -i cscope.files $(CSCOPE_ARGS) clean-cscope: -rm -f cscope.files cscope.files: clean-cscope cscopelist cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags -rm -f cscope.out cscope.in.out cscope.po.out cscope.files distdir: $(DISTFILES) $(am__remove_distdir) test -d "$(distdir)" || mkdir "$(distdir)" @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$(top_distdir)" distdir="$(distdir)" \ dist-hook -test -n "$(am__skip_mode_fix)" \ || find "$(distdir)" -type d ! -perm -755 \ -exec chmod u+rwx,go+rx {} \; -o \ ! -type d ! -perm -444 -links 1 -exec chmod a+r {} \; -o \ ! -type d ! -perm -400 -exec chmod a+r {} \; -o \ ! -type d ! -perm -444 -exec $(install_sh) -c -m a+r {} {} \; \ || chmod -R a+r "$(distdir)" dist-gzip: distdir tardir=$(distdir) && $(am__tar) | GZIP=$(GZIP_ENV) gzip -c >$(distdir).tar.gz $(am__post_remove_distdir) dist-bzip2: distdir tardir=$(distdir) && $(am__tar) | BZIP2=$${BZIP2--9} bzip2 -c >$(distdir).tar.bz2 $(am__post_remove_distdir) dist-lzip: distdir tardir=$(distdir) && $(am__tar) | lzip -c $${LZIP_OPT--9} >$(distdir).tar.lz $(am__post_remove_distdir) dist-xz: distdir tardir=$(distdir) && $(am__tar) | XZ_OPT=$${XZ_OPT--e} xz -c >$(distdir).tar.xz $(am__post_remove_distdir) dist-tarZ: distdir @echo WARNING: "Support for shar distribution archives is" \ "deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 tardir=$(distdir) && $(am__tar) | compress -c >$(distdir).tar.Z $(am__post_remove_distdir) dist-shar: distdir @echo WARNING: "Support for distribution archives compressed with" \ "legacy program 'compress' is deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 shar $(distdir) | GZIP=$(GZIP_ENV) gzip -c >$(distdir).shar.gz $(am__post_remove_distdir) dist-zip: distdir -rm -f $(distdir).zip zip -rq $(distdir).zip $(distdir) $(am__post_remove_distdir) dist dist-all: $(MAKE) $(AM_MAKEFLAGS) $(DIST_TARGETS) am__post_remove_distdir='@:' $(am__post_remove_distdir) # This target untars the dist file and tries a VPATH configuration. Then # it guarantees that the distribution is self-contained by making another # tarfile. distcheck: dist case '$(DIST_ARCHIVES)' in \ *.tar.gz*) \ GZIP=$(GZIP_ENV) gzip -dc $(distdir).tar.gz | $(am__untar) ;;\ *.tar.bz2*) \ bzip2 -dc $(distdir).tar.bz2 | $(am__untar) ;;\ *.tar.lz*) \ lzip -dc $(distdir).tar.lz | $(am__untar) ;;\ *.tar.xz*) \ xz -dc $(distdir).tar.xz | $(am__untar) ;;\ *.tar.Z*) \ uncompress -c $(distdir).tar.Z | $(am__untar) ;;\ *.shar.gz*) \ GZIP=$(GZIP_ENV) gzip -dc $(distdir).shar.gz | unshar ;;\ *.zip*) \ unzip $(distdir).zip ;;\ esac chmod -R a-w $(distdir) chmod u+w $(distdir) mkdir $(distdir)/_build $(distdir)/_inst chmod a-w $(distdir) test -d $(distdir)/_build || exit 0; \ dc_install_base=`$(am__cd) $(distdir)/_inst && pwd | sed -e 's,^[^:\\/]:[\\/],/,'` \ && dc_destdir="$${TMPDIR-/tmp}/am-dc-$$$$/" \ && am__cwd=`pwd` \ && $(am__cd) $(distdir)/_build \ && ../configure \ $(AM_DISTCHECK_CONFIGURE_FLAGS) \ $(DISTCHECK_CONFIGURE_FLAGS) \ --srcdir=.. --prefix="$$dc_install_base" \ && $(MAKE) $(AM_MAKEFLAGS) \ && $(MAKE) $(AM_MAKEFLAGS) dvi \ && $(MAKE) $(AM_MAKEFLAGS) check \ && $(MAKE) $(AM_MAKEFLAGS) install \ && $(MAKE) $(AM_MAKEFLAGS) installcheck \ && $(MAKE) $(AM_MAKEFLAGS) uninstall \ && $(MAKE) $(AM_MAKEFLAGS) distuninstallcheck_dir="$$dc_install_base" \ distuninstallcheck \ && chmod -R a-w "$$dc_install_base" \ && ({ \ (cd ../.. && umask 077 && mkdir "$$dc_destdir") \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" install \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" uninstall \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" \ distuninstallcheck_dir="$$dc_destdir" distuninstallcheck; \ } || { rm -rf "$$dc_destdir"; exit 1; }) \ && rm -rf "$$dc_destdir" \ && $(MAKE) $(AM_MAKEFLAGS) dist \ && rm -rf $(DIST_ARCHIVES) \ && $(MAKE) $(AM_MAKEFLAGS) distcleancheck \ && cd "$$am__cwd" \ || exit 1 $(am__post_remove_distdir) @(echo "$(distdir) archives ready for distribution: "; \ list='$(DIST_ARCHIVES)'; for i in $$list; do echo $$i; done) | \ sed -e 1h -e 1s/./=/g -e 1p -e 1x -e '$$p' -e '$$x' distuninstallcheck: @test -n '$(distuninstallcheck_dir)' || { \ echo 'ERROR: trying to run $@ with an empty' \ '$$(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ $(am__cd) '$(distuninstallcheck_dir)' || { \ echo 'ERROR: cannot chdir into $(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ test `$(am__distuninstallcheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left after uninstall:" ; \ if test -n "$(DESTDIR)"; then \ echo " (check DESTDIR support)"; \ fi ; \ $(distuninstallcheck_listfiles) ; \ exit 1; } >&2 distcleancheck: distclean @if test '$(srcdir)' = . ; then \ echo "ERROR: distcleancheck can only run from a VPATH build" ; \ exit 1 ; \ fi @test `$(distcleancheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left in build directory after distclean:" ; \ $(distcleancheck_listfiles) ; \ exit 1; } >&2 check-am: all-am check: check-recursive all-am: Makefile $(LTLIBRARIES) $(PROGRAMS) $(MANS) $(DATA) $(HEADERS) \ config.h installdirs: installdirs-recursive installdirs-am: for dir in "$(DESTDIR)$(libdir)" "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(man8dir)" "$(DESTDIR)$(pkgconfigdir)" "$(DESTDIR)$(includedir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic clean-libLTLIBRARIES clean-libtool \ clean-noinstPROGRAMS clean-sbinPROGRAMS mostlyclean-am distclean: distclean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -rf ./$(DEPDIR) -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-hdr distclean-libtool distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-includeHEADERS install-man \ install-pkgconfigDATA install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-libLTLIBRARIES install-sbinPROGRAMS install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-man8 install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -rf $(top_srcdir)/autom4te.cache -rm -rf ./$(DEPDIR) -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-compile mostlyclean-generic \ mostlyclean-libtool pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: uninstall-includeHEADERS uninstall-libLTLIBRARIES \ uninstall-man uninstall-pkgconfigDATA uninstall-sbinPROGRAMS uninstall-man: uninstall-man8 .MAKE: $(am__recursive_targets) all install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am \ am--refresh check check-am clean clean-cscope clean-generic \ clean-libLTLIBRARIES clean-libtool clean-noinstPROGRAMS \ clean-sbinPROGRAMS cscope cscopelist-am ctags ctags-am dist \ dist-all dist-bzip2 dist-gzip dist-hook dist-lzip dist-shar \ dist-tarZ dist-xz dist-zip distcheck distclean \ distclean-compile distclean-generic distclean-hdr \ distclean-libtool distclean-tags distcleancheck distdir \ distuninstallcheck dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am install-dvi \ install-dvi-am install-exec install-exec-am install-html \ install-html-am install-includeHEADERS install-info \ install-info-am install-libLTLIBRARIES install-man \ install-man8 install-pdf install-pdf-am install-pkgconfigDATA \ install-ps install-ps-am install-sbinPROGRAMS install-strip \ installcheck installcheck-am installdirs installdirs-am \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-compile mostlyclean-generic mostlyclean-libtool \ pdf pdf-am ps ps-am tags tags-am uninstall uninstall-am \ uninstall-includeHEADERS uninstall-libLTLIBRARIES \ uninstall-man uninstall-man8 uninstall-pkgconfigDATA \ uninstall-sbinPROGRAMS main.o: version.c version.c: $(library_srcs) $(lib_openssl_srcs) $(lib_gnutls_srcs) \ $(openconnect_SOURCES) Makefile.am configure.ac \ openconnect.h openconnect-internal.h version.sh @GITVERSIONDEPS@ @cd $(srcdir) && ./version.sh $(abs_builddir)/version.c tmp-dist: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 dist uncommitted-check: @if ! git update-index --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; fi dist-hook: uncommitted-check @if [ $(DISTHOOK) = 1 ]; then \ if ! git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is not tagged"; exit 1; fi ; \ if ! git diff --name-only --exit-code v$(VERSION) HEAD > /dev/null; then \ echo "*** ERROR: Git checkout not at version v$(VERSION)"; exit 1; fi ; \ fi sign-dist: dist @for a in $(DIST_ARCHIVES); do \ gpg --default-key 67E2F359 --detach-sign -a $$a ; \ done tag: uncommitted-check @if git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is already tagged"; exit 1; fi @sed 's/AC_INIT.*/AC_INIT(openconnect, $(VERSION))/' -i $(srcdir)/configure.ac @sed 's/^v=.*/v="v$(VERSION)"/' -i $(srcdir)/version.sh @( echo '1,//p' ;\ echo '//,$$p' ;\ echo '//a\' ;\ echo 'The latest release is OpenConnect v$(VERSION)\' ;\ echo '(PGP signature),\' ;\ echo 'released on $(shell date +%Y-%m-%d) with the following changelog:

\' ;\ sed '0,/OpenConnect HEAD/d;/<\/ul>/,$$d;s/$$/\\/' $(srcdir)/www/changelog.xml ;\ echo ' ' ) | \ sed -n -f - -i $(srcdir)/www/download.xml @( echo "s/Last modified: .*/Last modified: $(shell date)/" ;\ echo '/
  • OpenConnect HEAD/a\' ;\ echo '
      \' ;\ echo '
    • No changelog entries yet
      • \';\ echo '

    \' ; echo '
    • \' ;\ echo '
  • OpenConnect v$(VERSION)\' ;\ echo ' (PGP signature) — $(shell date +%Y-%m-%d)' ) | \ sed -f - -i $(srcdir)/www/changelog.xml # stupid syntax highlighting ' @cd $(srcdir) && git commit -s -m "Tag version $(VERSION)" configure.ac version.sh www/download.xml www/changelog.xml @git tag v$(VERSION) @cd $(srcdir) && ./autogen.sh update-po: po/$(PACKAGE).pot @cd $(top_srcdir); if ! git diff-index --name-only --exit-code HEAD -- po/; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; \ else \ > po/LINGUAS; \ for a in po/*.po; do \ msgmerge -q -N -F $$a $(abs_builddir)/po/$(PACKAGE).pot > $$a.merge ; \ msgattrib -F --no-fuzzy --no-obsolete $$a.merge > $$a ; \ rm $$a.merge ; \ if msgattrib --translated $$a | grep -q msgstr; then \ echo $$a | sed 's%^po/\(.*\)\.po%\1%' >> po/LINGUAS ; \ fi ; \ done && \ if ! git update-index -q --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD -- po/ >/dev/null; then \ git commit -s -m "Resync translations with sources" -- po/ ; \ else \ echo No changes to commit ; \ fi; \ fi po/$(PACKAGE).pot: $(POTFILES) version.sh @echo "Regenerating $@" ; rm -f $@ && \ xgettext --directory=$(top_srcdir) --from-code=UTF-8 \ --sort-by-file --add-comments --keyword=_ --keyword=N_ \ --package-name="@PACKAGE@" --package-version="@VERSION@" \ --msgid-bugs-address=openconnect-devel@lists.infradead.org \ -o $@ $(POTFILES) # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-7.06/gnutls_tpm.c0000664000076400007640000002277412461546130013272 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * TPM code based on client-tpm.c from * Carolin Latze and Tobias Soder */ #include #include #include #include #include "openconnect-internal.h" #include "gnutls.h" #ifdef HAVE_TROUSERS /* Signing function for TPM privkeys, set with gnutls_privkey_import_ext() */ static int tpm_sign_fn(gnutls_privkey_t key, void *_vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig); #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY /* We *want* to use gnutls_privkey_import_ext() to create a privkey with our own signing function tpm_sign_fn(). But GnuTLS 2.12 doesn't support that, so instead we have to register this sign_callback function with the *session* */ int gtls2_tpm_sign_cb(gnutls_session_t sess, void *_vpninfo, gnutls_certificate_type_t cert_type, const gnutls_datum_t *cert, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; if (cert_type != GNUTLS_CRT_X509) return GNUTLS_E_UNSUPPORTED_CERTIFICATE_TYPE; return tpm_sign_fn(NULL, vpninfo, data, sig); } /* In GnuTLS 2.12 since we don't have a normal privkey and hence can't just use gnutls_privkey_sign_data() with it, we have to jump through hoops to prepare the hash in exactly the right way and call our internal TPM signing function. */ int gtls2_tpm_sign_dummy_data(struct openconnect_info *vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { static const unsigned char ber_encode[15] = { 0x30, 0x21, /* SEQUENCE, length 31 */ 0x30, 0x09, /* SEQUENCE, length 9 */ 0x06, 0x05, /* OBJECT_ID, length 5 */ 0x2b, 0x0e, 0x03, 0x02, 0x1a, /* SHA1 OID: 1.3.14.3.2.26 */ 0x05, 0x00, /* NULL (parameters) */ 0x04, 0x14, /* OCTET_STRING, length 20 */ /* followed by the 20-byte sha1 */ }; gnutls_datum_t hash; unsigned char digest[sizeof(ber_encode) + SHA1_SIZE]; size_t shalen = SHA1_SIZE; int err; err = gnutls_fingerprint(GNUTLS_DIG_SHA1, data, &digest[sizeof(ber_encode)], &shalen); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to SHA1 input data for signing: %s\n"), gnutls_strerror(err)); return err; } memcpy(digest, ber_encode, sizeof(ber_encode)); hash.data = digest; hash.size = sizeof(digest); return tpm_sign_fn(NULL, vpninfo, &hash, sig); } #endif /* !HAVE_GNUTLS_CERTIFICATE_SET_KEY */ static int tpm_sign_fn(gnutls_privkey_t key, void *_vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; TSS_HHASH hash; int err; vpn_progress(vpninfo, PRG_DEBUG, _("TPM sign function called for %d bytes.\n"), data->size); err = Tspi_Context_CreateObject(vpninfo->tpm_context, TSS_OBJECT_TYPE_HASH, TSS_HASH_OTHER, &hash); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create TPM hash object: %s\n"), Trspi_Error_String(err)); return GNUTLS_E_PK_SIGN_FAILED; } err = Tspi_Hash_SetHashValue(hash, data->size, data->data); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set value in TPM hash object: %s\n"), Trspi_Error_String(err)); Tspi_Context_CloseObject(vpninfo->tpm_context, hash); return GNUTLS_E_PK_SIGN_FAILED; } err = Tspi_Hash_Sign(hash, vpninfo->tpm_key, &sig->size, &sig->data); Tspi_Context_CloseObject(vpninfo->tpm_context, hash); if (err) { if (vpninfo->tpm_key_policy || err != TPM_E_AUTHFAIL) vpn_progress(vpninfo, PRG_ERR, _("TPM hash signature failed: %s\n"), Trspi_Error_String(err)); if (err == TPM_E_AUTHFAIL) return GNUTLS_E_INSUFFICIENT_CREDENTIALS; else return GNUTLS_E_PK_SIGN_FAILED; } return 0; } int load_tpm_key(struct openconnect_info *vpninfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig) { static const TSS_UUID SRK_UUID = TSS_UUID_SRK; gnutls_datum_t asn1; unsigned int tss_len; char *pass; int ofs, err; err = gnutls_pem_base64_decode_alloc("TSS KEY BLOB", fdata, &asn1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error decoding TSS key blob: %s\n"), gnutls_strerror(err)); return -EINVAL; } /* Ick. We have to parse the ASN1 OCTET_STRING for ourselves. */ if (asn1.size < 2 || asn1.data[0] != 0x04 /* OCTET_STRING */) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } tss_len = asn1.data[1]; ofs = 2; if (tss_len & 0x80) { int lenlen = tss_len & 0x7f; if (asn1.size < 2 + lenlen || lenlen > 3) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } tss_len = 0; while (lenlen) { tss_len <<= 8; tss_len |= asn1.data[ofs++]; lenlen--; } } if (tss_len + ofs != asn1.size) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } err = Tspi_Context_Create(&vpninfo->tpm_context); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create TPM context: %s\n"), Trspi_Error_String(err)); goto out_blob; } err = Tspi_Context_Connect(vpninfo->tpm_context, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect TPM context: %s\n"), Trspi_Error_String(err)); goto out_context; } err = Tspi_Context_LoadKeyByUUID(vpninfo->tpm_context, TSS_PS_TYPE_SYSTEM, SRK_UUID, &vpninfo->srk); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM SRK key: %s\n"), Trspi_Error_String(err)); goto out_context; } err = Tspi_GetPolicyObject(vpninfo->srk, TSS_POLICY_USAGE, &vpninfo->srk_policy); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM SRK policy object: %s\n"), Trspi_Error_String(err)); goto out_srk; } pass = vpninfo->cert_password; vpninfo->cert_password = NULL; while (1) { static const char nullpass[20]; /* We don't seem to get the error here... */ if (pass) err = Tspi_Policy_SetSecret(vpninfo->srk_policy, TSS_SECRET_MODE_PLAIN, strlen(pass), (BYTE *)pass); else /* Well-known NULL key */ err = Tspi_Policy_SetSecret(vpninfo->srk_policy, TSS_SECRET_MODE_SHA1, sizeof(nullpass), (BYTE *)nullpass); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TPM PIN: %s\n"), Trspi_Error_String(err)); goto out_srkpol; } free(pass); /* ... we get it here instead. */ err = Tspi_Context_LoadKeyByBlob(vpninfo->tpm_context, vpninfo->srk, tss_len, asn1.data + ofs, &vpninfo->tpm_key); if (!err) break; if (pass) vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM key blob: %s\n"), Trspi_Error_String(err)); if (err != TPM_E_AUTHFAIL) goto out_srkpol; err = request_passphrase(vpninfo, "openconnect_tpm_srk", &pass, _("Enter TPM SRK PIN:")); if (err) goto out_srkpol; } #ifdef HAVE_GNUTLS_CERTIFICATE_SET_KEY gnutls_privkey_init(pkey); /* This would be nicer if there was a destructor callback. I could allocate a data structure with the TPM handles and the vpninfo pointer, and destroy that properly when the key is destroyed. */ gnutls_privkey_import_ext(*pkey, GNUTLS_PK_RSA, vpninfo, tpm_sign_fn, NULL, 0); #else *pkey = OPENCONNECT_TPM_PKEY; #endif retry_sign: err = sign_dummy_data(vpninfo, *pkey, fdata, pkey_sig); if (err == GNUTLS_E_INSUFFICIENT_CREDENTIALS) { if (!vpninfo->tpm_key_policy) { err = Tspi_Context_CreateObject(vpninfo->tpm_context, TSS_OBJECT_TYPE_POLICY, TSS_POLICY_USAGE, &vpninfo->tpm_key_policy); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create key policy object: %s\n"), Trspi_Error_String(err)); goto out_key; } err = Tspi_Policy_AssignToObject(vpninfo->tpm_key_policy, vpninfo->tpm_key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to assign policy to key: %s\n"), Trspi_Error_String(err)); goto out_key_policy; } } err = request_passphrase(vpninfo, "openconnect_tpm_key", &pass, _("Enter TPM key PIN:")); if (err) goto out_key_policy; err = Tspi_Policy_SetSecret(vpninfo->tpm_key_policy, TSS_SECRET_MODE_PLAIN, strlen(pass), (void *)pass); free(pass); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set key PIN: %s\n"), Trspi_Error_String(err)); goto out_key_policy; } goto retry_sign; } free(asn1.data); return 0; out_key_policy: Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->tpm_key_policy); vpninfo->tpm_key_policy = 0; out_key: Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->tpm_key); vpninfo->tpm_key = 0; out_srkpol: Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->srk_policy); vpninfo->srk_policy = 0; out_srk: Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->srk); vpninfo->srk = 0; out_context: Tspi_Context_Close(vpninfo->tpm_context); vpninfo->tpm_context = 0; out_blob: free(asn1.data); return -EIO; } #endif /* HAVE_TROUSERS */ openconnect-7.06/mainloop.c0000644000076400007640000001717412462470736012721 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include "openconnect-internal.h" int queue_new_packet(struct pkt_q *q, void *buf, int len) { struct pkt *new = malloc(sizeof(struct pkt) + len); if (!new) return -ENOMEM; new->len = len; new->next = NULL; memcpy(new->data, buf, len); queue_packet(q, new); return 0; } /* This is here because it's generic and hence can't live in either of the tun*.c files for specific platforms */ int tun_mainloop(struct openconnect_info *vpninfo, int *timeout) { struct pkt *this; int work_done = 0; if (read_fd_monitored(vpninfo, tun)) { struct pkt *out_pkt = vpninfo->tun_pkt; while (1) { int len = vpninfo->ip_info.mtu; if (!out_pkt) { out_pkt = malloc(sizeof(struct pkt) + len + vpninfo->pkt_trailer); if (!out_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } out_pkt->len = len; } if (os_read_tun(vpninfo, out_pkt)) break; vpninfo->stats.tx_pkts++; vpninfo->stats.tx_bytes += out_pkt->len; work_done = 1; if (queue_packet(&vpninfo->outgoing_queue, out_pkt) == vpninfo->max_qlen) { out_pkt = NULL; unmonitor_read_fd(vpninfo, tun); break; } out_pkt = NULL; } vpninfo->tun_pkt = out_pkt; } else if (vpninfo->outgoing_queue.count < vpninfo->max_qlen) { monitor_read_fd(vpninfo, tun); } while ((this = dequeue_packet(&vpninfo->incoming_queue))) { if (os_write_tun(vpninfo, this)) { requeue_packet(&vpninfo->incoming_queue, this); break; } vpninfo->stats.rx_pkts++; vpninfo->stats.rx_bytes += this->len; free(this); } /* Work is not done if we just got rid of packets off the queue */ return work_done; } /* Return value: * = 0, when successfully paused (may call again) * = -EINTR, if aborted locally via OC_CMD_CANCEL * = -ECONNABORTED, if aborted locally via OC_CMD_DETACH * = -EPIPE, if the remote end explicitly terminated the session * = -EPERM, if the gateway sent 401 Unauthorized (cookie expired) * < 0, for any other error */ int openconnect_mainloop(struct openconnect_info *vpninfo, int reconnect_timeout, int reconnect_interval) { int ret = 0; vpninfo->reconnect_timeout = reconnect_timeout; vpninfo->reconnect_interval = reconnect_interval; if (vpninfo->cmd_fd != -1) { monitor_fd_new(vpninfo, cmd); monitor_read_fd(vpninfo, cmd); } while (!vpninfo->quit_reason) { int did_work = 0; int timeout = INT_MAX; #ifdef _WIN32 HANDLE events[4]; int nr_events = 0; #else struct timeval tv; fd_set rfds, wfds, efds; #endif if (vpninfo->dtls_state > DTLS_DISABLED) { ret = vpninfo->proto.udp_mainloop(vpninfo, &timeout); if (vpninfo->quit_reason) break; did_work += ret; } ret = vpninfo->proto.tcp_mainloop(vpninfo, &timeout); if (vpninfo->quit_reason) break; did_work += ret; /* Tun must be last because it will set/clear its bit in the select_rfds according to the queue length */ did_work += tun_mainloop(vpninfo, &timeout); if (vpninfo->quit_reason) break; poll_cmd_fd(vpninfo, 0); if (vpninfo->got_cancel_cmd) { if (vpninfo->cancel_type == OC_CMD_CANCEL) { vpninfo->quit_reason = "Aborted by caller"; ret = -EINTR; } else { ret = -ECONNABORTED; } break; } if (vpninfo->got_pause_cmd) { /* close all connections and wait for the user to call openconnect_mainloop() again */ openconnect_close_https(vpninfo, 0); if (vpninfo->dtls_state != DTLS_DISABLED) { vpninfo->proto.udp_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; vpninfo->new_dtls_started = 0; } vpninfo->got_pause_cmd = 0; vpn_progress(vpninfo, PRG_INFO, _("Caller paused the connection\n")); return 0; } if (did_work) continue; vpn_progress(vpninfo, PRG_TRACE, _("No work to do; sleeping for %d ms...\n"), timeout); #ifdef _WIN32 if (vpninfo->dtls_monitored) { WSAEventSelect(vpninfo->dtls_fd, vpninfo->dtls_event, vpninfo->dtls_monitored); events[nr_events++] = vpninfo->dtls_event; } if (vpninfo->ssl_monitored) { WSAEventSelect(vpninfo->ssl_fd, vpninfo->ssl_event, vpninfo->ssl_monitored); events[nr_events++] = vpninfo->ssl_event; } if (vpninfo->cmd_monitored) { WSAEventSelect(vpninfo->cmd_fd, vpninfo->cmd_event, vpninfo->cmd_monitored); events[nr_events++] = vpninfo->cmd_event; } if (vpninfo->tun_monitored) { events[nr_events++] = vpninfo->tun_rd_overlap.hEvent; } if (WaitForMultipleObjects(nr_events, events, FALSE, timeout) == WAIT_FAILED) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("WaitForMultipleObjects failed: %s\n"), errstr); free(errstr); } #else memcpy(&rfds, &vpninfo->_select_rfds, sizeof(rfds)); memcpy(&wfds, &vpninfo->_select_wfds, sizeof(wfds)); memcpy(&efds, &vpninfo->_select_efds, sizeof(efds)); tv.tv_sec = timeout / 1000; tv.tv_usec = (timeout % 1000) * 1000; select(vpninfo->_select_nfds, &rfds, &wfds, &efds, &tv); #endif } if (vpninfo->quit_reason && vpninfo->proto.vpn_close_session) vpninfo->proto.vpn_close_session(vpninfo, vpninfo->quit_reason); os_shutdown_tun(vpninfo); return ret < 0 ? ret : -EIO; } static int ka_check_deadline(int *timeout, time_t now, time_t due) { if (now >= due) return 1; if (*timeout > (due - now) * 1000) *timeout = (due - now) * 1000; return 0; } /* Called when the socket is unwritable, to get the deadline for DPD. Returns 1 if DPD deadline has already arrived. */ int ka_stalled_action(struct keepalive_info *ka, int *timeout) { time_t now = time(NULL); /* We only support the new-tunnel rekey method for now. */ if (ka->rekey_method != REKEY_NONE && ka_check_deadline(timeout, now, ka->last_rekey + ka->rekey)) { ka->last_rekey = now; return KA_REKEY; } if (ka->dpd && ka_check_deadline(timeout, now, ka->last_rx + (2 * ka->dpd))) return KA_DPD_DEAD; return KA_NONE; } int keepalive_action(struct keepalive_info *ka, int *timeout) { time_t now = time(NULL); if (ka->rekey_method != REKEY_NONE && ka_check_deadline(timeout, now, ka->last_rekey + ka->rekey)) { ka->last_rekey = now; return KA_REKEY; } /* DPD is bidirectional -- PKT 3 out, PKT 4 back */ if (ka->dpd) { time_t due = ka->last_rx + ka->dpd; time_t overdue = ka->last_rx + (2 * ka->dpd); /* Peer didn't respond */ if (now > overdue) return KA_DPD_DEAD; /* If we already have DPD outstanding, don't flood. Repeat by all means, but only after half the DPD period. */ if (ka->last_dpd > ka->last_rx) due = ka->last_dpd + ka->dpd / 2; /* We haven't seen a packet from this host for $DPD seconds. Prod it to see if it's still alive */ if (ka_check_deadline(timeout, now, due)) { ka->last_dpd = now; return KA_DPD; } } /* Keepalive is just client -> server. If we haven't sent anything for $KEEPALIVE seconds, send a dummy packet (which the server will discard) */ if (ka->keepalive && ka_check_deadline(timeout, now, ka->last_tx + ka->keepalive)) return KA_KEEPALIVE; return KA_NONE; } openconnect-7.06/gnutls.c0000664000076400007640000022253112474046503012406 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY /* Shut up about gnutls_sign_callback_set() being deprecated. We only use it in the GnuTLS 2.12 case, and there just isn't another way of doing it. */ #define GNUTLS_INTERNAL_BUILD 1 #endif #include #include #include #include #include #ifdef HAVE_TROUSERS #include #include #endif #ifdef HAVE_P11KIT #include #include #include #endif #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) static int gnutls_pin_callback(void *priv, int attempt, const char *uri, const char *token_label, unsigned int flags, char *pin, size_t pin_max); #ifndef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION /* If we don't have this (3.1.0+) then we'll use p11-kit callbacks instead * because the old GnuTLS callback was global rather than context-specific, * which makes it basically unusable from libopenconnect. The p11-kit * callback function is a simple wrapper around the GnuTLS native version. */ typedef enum { GNUTLS_PIN_USER = (1 << 0), GNUTLS_PIN_SO = (1 << 1), GNUTLS_PIN_FINAL_TRY = (1 << 2), GNUTLS_PIN_COUNT_LOW = (1 << 3), GNUTLS_PIN_CONTEXT_SPECIFIC = (1 << 4), GNUTLS_PIN_WRONG = (1 << 5) } gnutls_pin_flag_t; static P11KitPin *p11kit_pin_callback(const char *pin_source, P11KitUri *pin_uri, const char *pin_description, P11KitPinFlags flags, void *_vpninfo); #endif /* !HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION */ #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ #include "gnutls.h" #include "openconnect-internal.h" /* Helper functions for reading/writing lines over SSL. */ static int openconnect_gnutls_write(struct openconnect_info *vpninfo, char *buf, size_t len) { size_t orig_len = len; while (len) { int done = gnutls_record_send(vpninfo->https_sess, buf, len); if (done > 0) len -= done; else if (done == GNUTLS_E_AGAIN) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set wr_set, rd_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(vpninfo->ssl_fd, &wr_set); else FD_SET(vpninfo->ssl_fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL write cancelled\n")); return -EINTR; } } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to write to SSL socket: %s\n"), gnutls_strerror(done)); return -EIO; } } return orig_len; } static int openconnect_gnutls_read(struct openconnect_info *vpninfo, char *buf, size_t len) { int done; while ((done = gnutls_record_recv(vpninfo->https_sess, buf, len)) < 0) { if (done == GNUTLS_E_AGAIN) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set wr_set, rd_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(vpninfo->ssl_fd, &wr_set); else FD_SET(vpninfo->ssl_fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); return -EINTR; } #ifdef GNUTLS_E_PREMATURE_TERMINATION } else if (done == GNUTLS_E_PREMATURE_TERMINATION) { /* We've seen this with HTTP 1.0 responses followed by abrupt socket closure and no clean SSL shutdown. https://bugs.launchpad.net/bugs/1225276 */ vpn_progress(vpninfo, PRG_DEBUG, _("SSL socket closed uncleanly\n")); return 0; #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket: %s\n"), gnutls_strerror(done)); return -EIO; } } return done; } static int openconnect_gnutls_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while (1) { ret = gnutls_record_recv(vpninfo->https_sess, buf + i, 1); if (ret == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } else if (ret == GNUTLS_E_AGAIN) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set rd_set, wr_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&rd_set); FD_ZERO(&wr_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(vpninfo->ssl_fd, &wr_set); else FD_SET(vpninfo->ssl_fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); ret = -EINTR; break; } } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket: %s\n"), gnutls_strerror(ret)); ret = -EIO; break; } } buf[i] = 0; return i ?: ret; } int ssl_nonblock_read(struct openconnect_info *vpninfo, void *buf, int maxlen) { int ret; ret = gnutls_record_recv(vpninfo->https_sess, buf, maxlen); if (ret > 0) return ret; if (ret != GNUTLS_E_AGAIN) { vpn_progress(vpninfo, PRG_ERR, _("SSL read error: %s; reconnecting.\n"), gnutls_strerror(ret)); return -EIO; } return 0; } int ssl_nonblock_write(struct openconnect_info *vpninfo, void *buf, int buflen) { int ret; ret = gnutls_record_send(vpninfo->https_sess, buf, buflen); if (ret > 0) return ret; if (ret == GNUTLS_E_AGAIN) { /* * Before 3.3.13, GnuTLS could return zero instead of one, * indicating that it was waiting for a read when in fact * it was waiting for a write. That caused us to block for * ever, waiting for the read that it said it wanted. * * So instead, just *assume* it actually wants a write. * Which is true most of the time, and on the rare occasion * that it *isn't* true, the failure mode will just be that * we keep waking up and calling GnuTLS again until the read * that it's waiting for does arrive. */ if (GNUTLS_VERSION_NUMBER < 0x03030d || gnutls_record_get_direction(vpninfo->https_sess)) { /* Waiting for the socket to become writable — it's probably stalled, and/or the buffers are full */ monitor_write_fd(vpninfo, ssl); } return 0; } vpn_progress(vpninfo, PRG_ERR, _("SSL send failed: %s\n"), gnutls_strerror(ret)); return -1; } static int check_certificate_expiry(struct openconnect_info *vpninfo, gnutls_x509_crt_t cert) { const char *reason = NULL; time_t expires = gnutls_x509_crt_get_expiration_time(cert); time_t now = time(NULL); if (expires == -1) { vpn_progress(vpninfo, PRG_ERR, _("Could not extract expiration time of certificate\n")); return -EINVAL; } if (expires < now) reason = _("Client certificate has expired at"); else if (expires < now + vpninfo->cert_expire_warning) reason = _("Client certificate expires soon at"); if (reason) { char buf[80]; #ifdef _WIN32 /* * Windows doesn't have gmtime_r but apparently its gmtime() * *is* thread-safe because it uses a per-thread static buffer. * cf. http://sourceforge.net/p/mingw/bugs/1625/ * * We also explicitly say 'GMT' because %Z would give us the * Microsoft stupidity "GMT Standard Time". Which is not only * silly, but also ambiguous because Windows actually says that * even when it means British Summer Time (GMT+1). And having * used gmtime() we really *are* giving the time in GMT. */ struct tm *tm = gmtime(&expires); strftime(buf, 80, "%a, %d %b %Y %H:%M:%S GMT", tm); #else struct tm tm; gmtime_r(&expires, &tm); strftime(buf, 80, "%a, %d %b %Y %T %Z", &tm); #endif vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", reason, buf); } return 0; } static int load_datum(struct openconnect_info *vpninfo, gnutls_datum_t *datum, const char *fname) { struct stat st; int fd, err; #ifdef ANDROID_KEYSTORE if (!strncmp(fname, "keystore:", 9)) { int len; const char *p = fname + 9; /* Skip first two slashes if the user has given it as keystore://foo ... */ if (*p == '/') p++; if (*p == '/') p++; len = keystore_fetch(p, &datum->data); if (len <= 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load item '%s' from keystore: %s\n"), p, keystore_strerror(len)); return -EINVAL; } datum->size = len; return 0; } #endif /* ANDROID_KEYSTORE */ fd = openconnect_open_utf8(vpninfo, fname, O_RDONLY|O_CLOEXEC|O_BINARY); if (fd == -1) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open key/certificate file %s: %s\n"), fname, strerror(err)); return -ENOENT; } if (fstat(fd, &st)) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to stat key/certificate file %s: %s\n"), fname, strerror(err)); close(fd); return -EIO; } datum->size = st.st_size; datum->data = gnutls_malloc(st.st_size + 1); if (!datum->data) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate certificate buffer\n")); close(fd); return -ENOMEM; } errno = EAGAIN; if (read(fd, datum->data, datum->size) != datum->size) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to read certificate into memory: %s\n"), strerror(err)); close(fd); gnutls_free(datum->data); return -EIO; } datum->data[st.st_size] = 0; close(fd); return 0; } /* A non-zero, non-error return to make load_certificate() continue and interpreting the file as other types */ #define NOT_PKCS12 1 static int load_pkcs12_certificate(struct openconnect_info *vpninfo, gnutls_datum_t *datum, gnutls_x509_privkey_t *key, gnutls_x509_crt_t **chain, unsigned int *chain_len, gnutls_x509_crt_t **extra_certs, unsigned int *extra_certs_len, gnutls_x509_crl_t *crl) { gnutls_pkcs12_t p12; char *pass; int err; err = gnutls_pkcs12_init(&p12); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to setup PKCS#12 data structure: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_pkcs12_import(p12, datum, GNUTLS_X509_FMT_DER, 0); if (err) { gnutls_pkcs12_deinit(p12); return NOT_PKCS12; } pass = vpninfo->cert_password; while ((err = gnutls_pkcs12_verify_mac(p12, pass)) == GNUTLS_E_MAC_VERIFY_FAILED) { if (!pass) { /* OpenSSL's PKCS12_parse() code will try both NULL and "" automatically, * but GnuTLS requires two separate attempts. */ err = gnutls_pkcs12_verify_mac(p12, ""); if (!err) { pass = strdup(""); break; } } else vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#12 certificate file\n")); free(pass); vpninfo->cert_password = NULL; err = request_passphrase(vpninfo, "openconnect_pkcs12", &pass, _("Enter PKCS#12 pass phrase:")); if (err) { gnutls_pkcs12_deinit(p12); return -EINVAL; } } /* If it wasn't GNUTLS_E_MAC_VERIFY_FAILED, then the problem wasn't just a bad password. Give up. */ if (err) { int level = PRG_ERR; int ret = -EINVAL; gnutls_pkcs12_deinit(p12); /* If the first attempt, and we didn't know for sure it was PKCS#12 anyway, bail out and try loading it as something different. */ if (pass == vpninfo->cert_password) { /* Make it non-fatal... */ level = PRG_DEBUG; ret = NOT_PKCS12; } vpn_progress(vpninfo, level, _("Failed to process PKCS#12 file: %s\n"), gnutls_strerror(err)); return ret; } err = gnutls_pkcs12_simple_parse(p12, pass, key, chain, chain_len, extra_certs, extra_certs_len, crl, 0); free(pass); vpninfo->cert_password = NULL; gnutls_pkcs12_deinit(p12); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#12 certificate: %s\n"), gnutls_strerror(err)); return -EINVAL; } return 0; } /* Older versions of GnuTLS didn't actually bother to check this, so we'll do it for them. Is there a bug reference for this? Or just the git commit reference (c1ef7efb in master, 5196786c in gnutls_3_0_x-2)? */ static int check_issuer_sanity(gnutls_x509_crt_t cert, gnutls_x509_crt_t issuer) { #if GNUTLS_VERSION_NUMBER > 0x030014 return 0; #else unsigned char id1[512], id2[512]; size_t id1_size = 512, id2_size = 512; int err; err = gnutls_x509_crt_get_authority_key_id(cert, id1, &id1_size, NULL); if (err) return 0; err = gnutls_x509_crt_get_subject_key_id(issuer, id2, &id2_size, NULL); if (err) return 0; if (id1_size == id2_size && !memcmp(id1, id2, id1_size)) return 0; /* EEP! */ return -EIO; #endif } static int count_x509_certificates(gnutls_datum_t *datum) { int count = 0; char *p = (char *)datum->data; while (p) { p = strstr(p, "-----BEGIN "); if (!p) break; p += 11; if (!strncmp(p, "CERTIFICATE", 11) || !strncmp(p, "X509 CERTIFICATE", 16)) count++; } return count; } static int get_cert_name(gnutls_x509_crt_t cert, char *name, size_t namelen) { if (gnutls_x509_crt_get_dn_by_oid(cert, GNUTLS_OID_X520_COMMON_NAME, 0, 0, name, &namelen) && gnutls_x509_crt_get_dn(cert, name, &namelen)) { name[namelen-1] = 0; snprintf(name, namelen-1, ""); return -EINVAL; } return 0; } #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined (HAVE_GNUTLS_SYSTEM_KEYS) #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY /* For GnuTLS 2.12 even if we *have* a privkey (as we do for PKCS#11), we can't register it. So we have to use the cert_callback function. This just hands out the certificate chain we prepared in load_certificate(). If we have a pkey then return that too; otherwise leave the key NULL — we'll also have registered a sign_callback for the session, which will handle that. */ static int gtls_cert_cb(gnutls_session_t sess, const gnutls_datum_t *req_ca_dn, int nreqs, const gnutls_pk_algorithm_t *pk_algos, int pk_algos_length, gnutls_retr2_st *st) { struct openconnect_info *vpninfo = gnutls_session_get_ptr(sess); int algo = GNUTLS_PK_RSA; /* TPM */ int i; #ifdef HAVE_P11KIT if (vpninfo->my_p11key) { st->key_type = GNUTLS_PRIVKEY_PKCS11; st->key.pkcs11 = vpninfo->my_p11key; algo = gnutls_pkcs11_privkey_get_pk_algorithm(vpninfo->my_p11key, NULL); }; #endif for (i = 0; i < pk_algos_length; i++) { if (algo == pk_algos[i]) break; } if (i == pk_algos_length) return GNUTLS_E_UNKNOWN_PK_ALGORITHM; st->cert_type = GNUTLS_CRT_X509; st->cert.x509 = vpninfo->my_certs; st->ncerts = vpninfo->nr_my_certs; st->deinit_all = 0; return 0; } /* For GnuTLS 2.12, this has to set the cert_callback to the function above, which will return the pkey and certs on demand. Or in the case of TPM we can't make a suitable pkey, so we have to set a sign_callback too (which is done in openconnect_open_https() since it has to be done on the *session*). */ static int assign_privkey(struct openconnect_info *vpninfo, gnutls_privkey_t pkey, gnutls_x509_crt_t *certs, unsigned int nr_certs, uint8_t *free_certs) { vpninfo->my_certs = gnutls_calloc(nr_certs, sizeof(*certs)); if (!vpninfo->my_certs) return GNUTLS_E_MEMORY_ERROR; vpninfo->free_my_certs = gnutls_malloc(nr_certs); if (!vpninfo->free_my_certs) { gnutls_free(vpninfo->my_certs); vpninfo->my_certs = NULL; return GNUTLS_E_MEMORY_ERROR; } memcpy(vpninfo->free_my_certs, free_certs, nr_certs); memcpy(vpninfo->my_certs, certs, nr_certs * sizeof(*certs)); vpninfo->nr_my_certs = nr_certs; /* We are *keeping* the certs, unlike in GnuTLS 3 where our caller can free them after gnutls_certificate_set_key() has been called. So wipe the 'free_certs' array. */ memset(free_certs, 0, nr_certs); gnutls_certificate_set_retrieve_function(vpninfo->https_cred, gtls_cert_cb); vpninfo->my_pkey = pkey; return 0; } #else /* !SET_KEY */ /* For GnuTLS 3+ this is saner than the GnuTLS 2.12 version. But still we have to convert the array of X509 certificates to gnutls_pcert_st for ourselves. There's no function that takes a gnutls_privkey_t as the key and gnutls_x509_crt_t certificates. */ static int assign_privkey(struct openconnect_info *vpninfo, gnutls_privkey_t pkey, gnutls_x509_crt_t *certs, unsigned int nr_certs, uint8_t *free_certs) { gnutls_pcert_st *pcerts = calloc(nr_certs, sizeof(*pcerts)); int i, err; if (!pcerts) return GNUTLS_E_MEMORY_ERROR; for (i = 0 ; i < nr_certs; i++) { err = gnutls_pcert_import_x509(pcerts + i, certs[i], 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Importing X509 certificate failed: %s\n"), gnutls_strerror(err)); goto free_pcerts; } } err = gnutls_certificate_set_key(vpninfo->https_cred, NULL, 0, pcerts, nr_certs, pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting PKCS#11 certificate failed: %s\n"), gnutls_strerror(err)); free_pcerts: for (i = 0 ; i < nr_certs; i++) gnutls_pcert_deinit(pcerts + i); free(pcerts); } return err; } #endif /* !SET_KEY */ static int verify_signed_data(gnutls_pubkey_t pubkey, gnutls_privkey_t privkey, const gnutls_datum_t *data, const gnutls_datum_t *sig) { #ifdef HAVE_GNUTLS_PK_TO_SIGN gnutls_sign_algorithm_t algo = GNUTLS_SIGN_RSA_SHA1; /* TPM keys */ if (privkey != OPENCONNECT_TPM_PKEY) algo = gnutls_pk_to_sign(gnutls_privkey_get_pk_algorithm(privkey, NULL), GNUTLS_DIG_SHA1); return gnutls_pubkey_verify_data2(pubkey, algo, 0, data, sig); #else return gnutls_pubkey_verify_data(pubkey, 0, data, sig); #endif } #endif /* (P11KIT || TROUSERS || SYSTEM_KEYS) */ static int openssl_hash_password(struct openconnect_info *vpninfo, char *pass, gnutls_datum_t *key, gnutls_datum_t *salt) { unsigned char md5[16]; gnutls_hash_hd_t hash; int count = 0; int err; while (count < key->size) { err = gnutls_hash_init(&hash, GNUTLS_DIG_MD5); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Could not initialise MD5 hash: %s\n"), gnutls_strerror(err)); return -EIO; } if (count) { err = gnutls_hash(hash, md5, sizeof(md5)); if (err) { hash_err: gnutls_hash_deinit(hash, NULL); vpn_progress(vpninfo, PRG_ERR, _("MD5 hash error: %s\n"), gnutls_strerror(err)); return -EIO; } } if (pass) { err = gnutls_hash(hash, pass, strlen(pass)); if (err) goto hash_err; } /* We only use the first 8 bytes of the salt for this */ err = gnutls_hash(hash, salt->data, 8); if (err) goto hash_err; gnutls_hash_deinit(hash, md5); if (key->size - count <= sizeof(md5)) { memcpy(&key->data[count], md5, key->size - count); break; } memcpy(&key->data[count], md5, sizeof(md5)); count += sizeof(md5); } return 0; } static int import_openssl_pem(struct openconnect_info *vpninfo, gnutls_x509_privkey_t key, char type, char *pem_header, size_t pem_size) { gnutls_cipher_hd_t handle; gnutls_cipher_algorithm_t cipher; gnutls_datum_t constructed_pem; gnutls_datum_t b64_data; gnutls_datum_t salt, enc_key; unsigned char *key_data; const char *begin; char *pass, *p; char *pem_start = pem_header; int ret, err, i; if (type == 'E') begin = "EC PRIVATE KEY"; else if (type == 'R') begin = "RSA PRIVATE KEY"; else if (type == 'D') begin = "DSA PRIVATE KEY"; else return -EINVAL; while (*pem_header == '\r' || *pem_header == '\n') pem_header++; if (strncmp(pem_header, "DEK-Info: ", 10)) { vpn_progress(vpninfo, PRG_ERR, _("Missing DEK-Info: header from OpenSSL encrypted key\n")); return -EIO; } pem_header += 10; p = strchr(pem_header, ','); if (!p) { vpn_progress(vpninfo, PRG_ERR, _("Cannot determine PEM encryption type\n")); return -EINVAL; } *p = 0; cipher = gnutls_cipher_get_id(pem_header); /* GnuTLS calls this '3DES-CBC' but all other names match */ if (cipher == GNUTLS_CIPHER_UNKNOWN && !strcmp(pem_header, "DES-EDE3-CBC")) cipher = GNUTLS_CIPHER_3DES_CBC; if (cipher == GNUTLS_CIPHER_UNKNOWN) { vpn_progress(vpninfo, PRG_ERR, _("Unsupported PEM encryption type: %s\n"), pem_header); return -EINVAL; } pem_header = p + 1; /* No supported algorithms have an IV larger than this, and dynamically allocating it would be painful. */ salt.size = 64; salt.data = malloc(salt.size); if (!salt.data) return -ENOMEM; for (i = 0; i < salt.size * 2; i++) { unsigned char x; char *c = &pem_header[i]; if (*c >= '0' && *c <= '9') x = (*c) - '0'; else if (*c >= 'A' && *c <= 'F') x = (*c) - 'A' + 10; else if ((*c == '\r' || *c == '\n') && i >= 16 && !(i % 16)) { salt.size = i / 2; break; } else { vpn_progress(vpninfo, PRG_ERR, _("Invalid salt in encrypted PEM file\n")); ret = -EINVAL; goto out_salt; } if (i & 1) salt.data[i/2] |= x; else salt.data[i/2] = x << 4; } pem_header += salt.size * 2; if (*pem_header != '\r' && *pem_header != '\n') { vpn_progress(vpninfo, PRG_ERR, _("Invalid salt in encrypted PEM file\n")); ret = -EINVAL; goto out_salt; } while (*pem_header == '\n' || *pem_header == '\r') pem_header++; /* pem_header should now point to the start of the base64 content. Put a -----BEGIN banner in place before it, so that we can use gnutls_pem_base64_decode_alloc(). The banner has to match the -----END banner, so make sure we get it right... */ pem_header -= 6; memcpy(pem_header, "-----\n", 6); pem_header -= strlen(begin); memcpy(pem_header, begin, strlen(begin)); pem_header -= 11; memcpy(pem_header, "-----BEGIN ", 11); constructed_pem.data = (void *)pem_header; constructed_pem.size = pem_size - (pem_header - pem_start); err = gnutls_pem_base64_decode_alloc(begin, &constructed_pem, &b64_data); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error base64-decoding encrypted PEM file: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out_salt; } if (b64_data.size < 16) { /* Just to be sure our parsing is OK */ vpn_progress(vpninfo, PRG_ERR, _("Encrypted PEM file too short\n")); ret = -EINVAL; goto out_b64; } ret = -ENOMEM; enc_key.size = gnutls_cipher_get_key_size(cipher); enc_key.data = malloc(enc_key.size); if (!enc_key.data) goto out_b64; key_data = malloc(b64_data.size); if (!key_data) goto out_enc_key; pass = vpninfo->cert_password; vpninfo->cert_password = NULL; while (1) { memcpy(key_data, b64_data.data, b64_data.size); ret = openssl_hash_password(vpninfo, pass, &enc_key, &salt); if (ret) goto out; err = gnutls_cipher_init(&handle, cipher, &enc_key, &salt); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise cipher for decrypting PEM file: %s\n"), gnutls_strerror(err)); gnutls_cipher_deinit(handle); ret = -EIO; goto out; } err = gnutls_cipher_decrypt(handle, key_data, b64_data.size); gnutls_cipher_deinit(handle); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PEM key: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } /* We have to strip any padding for GnuTLS to accept it. So a bit more ASN.1 parsing for us. FIXME: Consolidate with similar code in gnutls_tpm.c */ if (key_data[0] == 0x30) { gnutls_datum_t key_datum; int blocksize = gnutls_cipher_get_block_size(cipher); int keylen = key_data[1]; int ofs = 2; if (keylen & 0x80) { int lenlen = keylen & 0x7f; keylen = 0; if (lenlen > 3) goto fail; while (lenlen) { keylen <<= 8; keylen |= key_data[ofs++]; lenlen--; } } keylen += ofs; /* If there appears to be more padding than required, fail */ if (b64_data.size - keylen >= blocksize) goto fail; /* If the padding bytes aren't all equal to the amount of padding, fail */ ofs = keylen; while (ofs < b64_data.size) { if (key_data[ofs] != b64_data.size - keylen) goto fail; ofs++; } key_datum.data = key_data; key_datum.size = keylen; err = gnutls_x509_privkey_import(key, &key_datum, GNUTLS_X509_FMT_DER); if (!err) { ret = 0; goto out; } } fail: if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Decrypting PEM key failed\n")); free(pass); pass = NULL; } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:")); if (err) { ret = -EINVAL; goto out; } } out: free(key_data); free(pass); out_enc_key: free(enc_key.data); out_b64: free(b64_data.data); out_salt: free(salt.data); return ret; } static int load_certificate(struct openconnect_info *vpninfo) { gnutls_datum_t fdata; gnutls_x509_privkey_t key = NULL; #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_GNUTLS_SYSTEM_KEYS) gnutls_privkey_t pkey = NULL; gnutls_datum_t pkey_sig = {NULL, 0}; void *dummy_hash_data = &load_certificate; #endif #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) char *cert_url = (char *)vpninfo->cert; #endif #ifdef HAVE_P11KIT char *key_url = (char *)vpninfo->sslkey; gnutls_pkcs11_privkey_t p11key = NULL; #endif char *pem_header; gnutls_x509_crl_t crl = NULL; gnutls_x509_crt_t last_cert, cert = NULL; gnutls_x509_crt_t *extra_certs = NULL, *supporting_certs = NULL; unsigned int nr_supporting_certs = 0, nr_extra_certs = 0; uint8_t *free_supporting_certs = NULL; int err; /* GnuTLS error */ int ret; int i; int cert_is_p11 = 0, key_is_p11 = 0; int cert_is_sys = 0, key_is_sys = 0; unsigned char key_id[20]; size_t key_id_size = sizeof(key_id); char name[80]; fdata.data = NULL; key_is_p11 = !strncmp(vpninfo->sslkey, "pkcs11:", 7); cert_is_p11 = !strncmp(vpninfo->cert, "pkcs11:", 7); key_is_sys = !strncmp(vpninfo->sslkey, "system:", 7); cert_is_sys = !strncmp(vpninfo->cert, "system:", 7); #ifndef HAVE_GNUTLS_SYSTEM_KEYS if (key_is_sys || cert_is_sys) { vpn_progress(vpninfo, PRG_ERR, _("This binary built without system key support\n")); return -EINVAL; } #endif #ifndef HAVE_P11KIT if (key_is_p11 || cert_is_p11) { vpn_progress(vpninfo, PRG_ERR, _("This binary built without PKCS#11 support\n")); return -EINVAL; } #else /* Install PIN handler if either certificate or key are coming from PKCS#11 */ if (key_is_p11 || cert_is_p11) { CK_OBJECT_CLASS class; CK_ATTRIBUTE attr; P11KitUri *uri; #ifndef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION char pin_source[40]; sprintf(pin_source, "openconnect:%p", vpninfo); p11_kit_pin_register_callback(pin_source, p11kit_pin_callback, vpninfo, NULL); #endif uri = p11_kit_uri_new(); attr.type = CKA_CLASS; attr.pValue = &class; attr.ulValueLen = sizeof(class); /* Add appropriate pin-source and object-type attributes to both certificate and key URLs, unless they already exist. */ if (cert_is_p11 && !p11_kit_uri_parse(cert_url, P11_KIT_URI_FOR_ANY, uri)) { #ifndef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION if (!p11_kit_uri_get_pin_source(uri)) p11_kit_uri_set_pin_source(uri, pin_source); #endif if (!p11_kit_uri_get_attribute(uri, CKA_CLASS)) { class = CKO_CERTIFICATE; p11_kit_uri_set_attribute(uri, &attr); } p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &cert_url); } if (key_is_p11 && !p11_kit_uri_parse(key_url, P11_KIT_URI_FOR_ANY, uri)) { #ifndef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION if (!p11_kit_uri_get_pin_source(uri)) p11_kit_uri_set_pin_source(uri, pin_source); #endif if (vpninfo->sslkey == vpninfo->cert || !p11_kit_uri_get_attribute(uri, CKA_CLASS)) { class = CKO_PRIVATE_KEY; p11_kit_uri_set_attribute(uri, &attr); } p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url); } p11_kit_uri_free(uri); } #endif /* HAVE_PKCS11 */ #if defined (HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) /* Load certificate(s) first... */ if (cert_is_p11 || cert_is_sys) { vpn_progress(vpninfo, PRG_DEBUG, cert_is_p11 ? _("Using PKCS#11 certificate %s\n") : _("Using system certificate %s\n"), cert_url); err = gnutls_x509_crt_init(&cert); if (err) { ret = -ENOMEM; goto out; } #ifdef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION gnutls_x509_crt_set_pin_function(cert, gnutls_pin_callback, vpninfo); #endif /* Yes, even for *system* URLs the only API GnuTLS offers us is ...import_pkcs11_url(). */ err = gnutls_x509_crt_import_pkcs11_url(cert, cert_url, 0); if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE) err = gnutls_x509_crt_import_pkcs11_url(cert, cert_url, GNUTLS_PKCS11_OBJ_FLAG_LOGIN); if (err) { vpn_progress(vpninfo, PRG_ERR, cert_is_p11 ? _("Error loading certificate from PKCS#11: %s\n") : _("Error loading system certificate: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } goto got_certs; } #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ /* OK, not a PKCS#11 certificate so it must be coming from a file... */ vpn_progress(vpninfo, PRG_DEBUG, _("Using certificate file %s\n"), vpninfo->cert); /* Load file contents */ ret = load_datum(vpninfo, &fdata, vpninfo->cert); if (ret) return ret; /* Is it PKCS#12? */ if (!key_is_p11) { /* PKCS#12 should actually contain certificates *and* private key */ ret = load_pkcs12_certificate(vpninfo, &fdata, &key, &supporting_certs, &nr_supporting_certs, &extra_certs, &nr_extra_certs, &crl); if (ret < 0) goto out; else if (!ret) { if (nr_supporting_certs) { cert = supporting_certs[0]; free_supporting_certs = gnutls_malloc(nr_supporting_certs); if (!free_supporting_certs) { ret = -ENOMEM; goto out; } memset(free_supporting_certs, 1, nr_supporting_certs); goto got_key; } vpn_progress(vpninfo, PRG_ERR, _("PKCS#11 file contained no certificate\n")); ret = -EINVAL; goto out; } /* It returned NOT_PKCS12. Fall through to try PEM formats. */ } /* We need to know how many there are in *advance*; it won't just allocate the array for us :( */ nr_extra_certs = count_x509_certificates(&fdata); if (!nr_extra_certs) nr_extra_certs = 1; /* wtf? Oh well, we'll fail later... */ extra_certs = calloc(nr_extra_certs, sizeof(cert)); if (!extra_certs) { nr_extra_certs = 0; ret = -ENOMEM; goto out; } err = gnutls_x509_crt_list_import(extra_certs, &nr_extra_certs, &fdata, GNUTLS_X509_FMT_PEM, 0); if (err <= 0) { const char *reason; if (!err || err == GNUTLS_E_NO_CERTIFICATE_FOUND) reason = _("No certificate found in file"); else reason = gnutls_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed: %s\n"), reason); ret = -EINVAL; goto out; } nr_extra_certs = err; err = 0; goto got_certs; got_certs: /* Now we have either a single certificate in 'cert', or an array of them in extra_certs[]. Next we look for the private key ... */ #ifdef HAVE_GNUTLS_SYSTEM_KEYS if (key_is_sys) { vpn_progress(vpninfo, PRG_DEBUG, _("Using system key %s\n"), vpninfo->sslkey); err = gnutls_privkey_init(&pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising private key structure: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } #ifdef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION gnutls_privkey_set_pin_function(pkey, gnutls_pin_callback, vpninfo); #endif err = gnutls_privkey_import_url(pkey, vpninfo->sslkey, 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing system key %s: %s\n"), vpninfo->sslkey, gnutls_strerror(err)); ret = -EIO; goto out; } goto match_cert; } #endif /* HAVE_GNUTLS_SYSTEM_KEYS */ #if defined(HAVE_P11KIT) if (key_is_p11) { vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_init(&p11key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising PKCS#11 key structure: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } #ifdef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION gnutls_pkcs11_privkey_set_pin_function(p11key, gnutls_pin_callback, vpninfo); #endif err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); /* Annoyingly, some tokens don't even admit the *existence* of the key until they're logged in. And thus a search doesn't work unless it specifies the *token* too. But if the URI for key and cert are the same, and the cert was found, then we can work out what token the *cert* was found in and try that before we give up... */ if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && vpninfo->cert == vpninfo->sslkey) { gnutls_pkcs11_obj_t crt; P11KitUri *uri; CK_TOKEN_INFO *token; char buf[65]; size_t s; if (gnutls_pkcs11_obj_init(&crt)) goto key_err; if (gnutls_pkcs11_obj_import_url(crt, cert_url, 0)) goto key_err_obj; uri = p11_kit_uri_new(); if (!uri) goto key_err_obj; if (p11_kit_uri_parse(key_url, P11_KIT_URI_FOR_ANY, uri)) goto key_err_uri; token = p11_kit_uri_get_token_info(uri); if (!token) goto key_err_uri; if (!token->label[0]) { s = sizeof(token->label) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_LABEL, buf, &s)) { s--; memcpy(token->label, buf, s); memset(token->label + s, ' ', sizeof(token->label) - s); } } if (!token->manufacturerID[0]) { s = sizeof(token->manufacturerID) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_MANUFACTURER, buf, &s)) { s--; memcpy(token->manufacturerID, buf, s); memset(token->manufacturerID + s, ' ', sizeof(token->manufacturerID) - s); } } if (!token->model[0]) { s = sizeof(token->model) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_MODEL, buf, &s)) { s--; memcpy(token->model, buf, s); memset(token->model + s, ' ', sizeof(token->model) - s); } } if (!token->serialNumber[0]) { s = sizeof(token->serialNumber) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_SERIAL, buf, &s)) { s--; memcpy(token->serialNumber, buf, s); memset(token->serialNumber + s, ' ', sizeof(token->serialNumber) - s); } } free(key_url); key_url = NULL; if (p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url)) goto key_err_uri; vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); /* If it still doesn't work then try dropping CKA_LABEL and adding the CKA_ID of the cert. */ if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && (p11_kit_uri_get_attribute(uri, CKA_LABEL) || !p11_kit_uri_get_attribute(uri, CKA_ID))) { CK_ATTRIBUTE attr; s = sizeof(buf); if (gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_ID, buf, &s)) goto key_err_uri; attr.type = CKA_ID; attr.pValue = buf; attr.ulValueLen = s; p11_kit_uri_set_attribute(uri, &attr); p11_kit_uri_clear_attribute(uri, CKA_LABEL); free(key_url); key_url = NULL; if (p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url)) goto key_err_uri; vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); } key_err_uri: p11_kit_uri_free(uri); key_err_obj: gnutls_pkcs11_obj_deinit(crt); key_err: ; } if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing PKCS#11 URL %s: %s\n"), key_url, gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 key %s\n"), key_url); err = gnutls_privkey_init(&pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising private key structure: %s\n"), gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } err = gnutls_privkey_import_pkcs11(pkey, p11key, GNUTLS_PRIVKEY_IMPORT_AUTO_RELEASE); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing PKCS#11 key into private key structure: %s\n"), gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY /* This can be set now and doesn't need to be separately freed. It goes with the pkey. This is a PITA; it would be better if there was a way to get the p11key *back* from a privkey that we *know* is based on one. In fact, since this is only for GnuTLS 2.12 and we *know* the gnutls_privkey_st won't ever change there, so we *could* do something evil... but we won't :) */ vpninfo->my_p11key = p11key; #endif /* !SET_KEY */ goto match_cert; } #endif /* HAVE_P11KIT */ /* OK, not a PKCS#11 key so it must be coming from a file... load the file into memory, unless it's the same as the cert file and we already loaded that. */ if (!fdata.data || vpninfo->sslkey != vpninfo->cert) { gnutls_free(fdata.data); fdata.data = NULL; vpn_progress(vpninfo, PRG_DEBUG, _("Using private key file %s\n"), vpninfo->sslkey); ret = load_datum(vpninfo, &fdata, vpninfo->sslkey); if (ret) goto out; } /* Is it a PEM file with a TPM key blob? */ if (strstr((char *)fdata.data, "-----BEGIN TSS KEY BLOB-----")) { #ifndef HAVE_TROUSERS vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM support\n")); return -EINVAL; #else ret = load_tpm_key(vpninfo, &fdata, &pkey, &pkey_sig); if (ret) goto out; goto match_cert; #endif } /* OK, try other PEM files... */ gnutls_x509_privkey_init(&key); if ((pem_header = strstr((char *)fdata.data, "-----BEGIN RSA PRIVATE KEY-----")) || (pem_header = strstr((char *)fdata.data, "-----BEGIN DSA PRIVATE KEY-----")) || (pem_header = strstr((char *)fdata.data, "-----BEGIN EC PRIVATE KEY-----"))) { /* PKCS#1 files, including OpenSSL's odd encrypted version */ char type = pem_header[11]; char *p = strchr(pem_header, '\n'); if (!p) { vpn_progress(vpninfo, PRG_ERR, _("Failed to interpret PEM file\n")); ret = -EINVAL; goto out; } while (*p == '\n' || *p == '\r') p++; if (!strncmp(p, "Proc-Type: 4,ENCRYPTED", 22)) { p += 22; while (*p == '\n' || *p == '\r') p++; ret = import_openssl_pem(vpninfo, key, type, p, fdata.size - (p - (char *)fdata.data)); if (ret) goto out; } else { err = gnutls_x509_privkey_import(key, &fdata, GNUTLS_X509_FMT_PEM); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#1 private key: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } } else if (strstr((char *)fdata.data, "-----BEGIN PRIVATE KEY-----")) { /* Unencrypted PKCS#8 */ err = gnutls_x509_privkey_import_pkcs8(key, &fdata, GNUTLS_X509_FMT_PEM, NULL, GNUTLS_PKCS_PLAIN); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load private key as PKCS#8: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } else if (strstr((char *)fdata.data, "-----BEGIN ENCRYPTED PRIVATE KEY-----")) { /* Encrypted PKCS#8 */ char *pass = vpninfo->cert_password; while ((err = gnutls_x509_privkey_import_pkcs8(key, &fdata, GNUTLS_X509_FMT_PEM, pass?:"", 0))) { if (err != GNUTLS_E_DECRYPTION_FAILED) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load private key as PKCS#8: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } vpninfo->cert_password = NULL; if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); free(pass); } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:")); if (err) { ret = -EINVAL; goto out; } } free(pass); vpninfo->cert_password = NULL; } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to determine type of private key %s\n"), vpninfo->sslkey); ret = -EINVAL; goto out; } /* Now attempt to make sure we use the *correct* certificate, to match the key. Since we have a software key, we can easily query it and compare its key_id with each certificate till we find a match. */ err = gnutls_x509_privkey_get_key_id(key, 0, key_id, &key_id_size); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to get key ID: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } /* If extra_certs[] is NULL, we have one candidate in 'cert' to check. */ for (i = 0; i < (extra_certs ? nr_extra_certs : 1); i++) { unsigned char cert_id[20]; size_t cert_id_size = sizeof(cert_id); err = gnutls_x509_crt_get_key_id(extra_certs ? extra_certs[i] : cert, 0, cert_id, &cert_id_size); if (err) continue; if (cert_id_size == key_id_size && !memcmp(cert_id, key_id, key_id_size)) { if (extra_certs) { cert = extra_certs[i]; extra_certs[i] = NULL; } goto got_key; } } /* There's no pkey (there's an x509 key), so even if p11-kit or trousers is enabled we'll fall straight through the bit at match_cert: below, and go directly to the bit where it prints the 'no match found' error and exits. */ #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_GNUTLS_SYSTEM_KEYS) match_cert: /* If we have a privkey from PKCS#11 or TPM, we can't do the simple comparison of key ID that we do for software keys to find which certificate is a match. So sign some dummy data and then check the signature against each of the available certificates until we find the right one. */ if (pkey) { /* The TPM code may have already signed it, to test authorisation. We only sign here for PKCS#11 keys, in which case fdata might be empty too so point it at dummy data. */ if (!pkey_sig.data) { if (!fdata.data) { fdata.data = dummy_hash_data; fdata.size = 20; } err = sign_dummy_data(vpninfo, pkey, &fdata, &pkey_sig); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error signing test data with private key: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } /* If extra_certs[] is NULL, we have one candidate in 'cert' to check. */ for (i = 0; i < (extra_certs ? nr_extra_certs : 1); i++) { gnutls_pubkey_t pubkey; gnutls_pubkey_init(&pubkey); err = gnutls_pubkey_import_x509(pubkey, extra_certs ? extra_certs[i] : cert, 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error validating signature against certificate: %s\n"), gnutls_strerror(err)); /* We'll probably fail shortly if we don't find it. */ gnutls_pubkey_deinit(pubkey); continue; } err = verify_signed_data(pubkey, pkey, &fdata, &pkey_sig); gnutls_pubkey_deinit(pubkey); if (err >= 0) { if (extra_certs) { cert = extra_certs[i]; extra_certs[i] = NULL; } gnutls_free(pkey_sig.data); goto got_key; } } gnutls_free(pkey_sig.data); } #endif /* P11KIT || TROUSERS || SYSTEM_KEYS */ /* We shouldn't reach this. It means that we didn't find *any* matching cert */ vpn_progress(vpninfo, PRG_ERR, _("No SSL certificate found to match private key\n")); ret = -EINVAL; goto out; /********************************************************************/ got_key: /* Now we have a key in either 'key' or 'pkey', a matching cert in 'cert', and potentially a list of other certs in 'extra_certs[]'. If we loaded a PKCS#12 file we may have a trust chain in 'supporting_certs[]' too. */ check_certificate_expiry(vpninfo, cert); get_cert_name(cert, name, sizeof(name)); get_cert_md5_fingerprint(vpninfo, cert, vpninfo->local_cert_md5); vpn_progress(vpninfo, PRG_INFO, _("Using client certificate '%s'\n"), name); if (crl) { err = gnutls_certificate_set_x509_crl(vpninfo->https_cred, &crl, 1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting certificate recovation list failed: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } /* OpenSSL has problems with certificate chains — if there are multiple certs with the same name, it doesn't necessarily choose the _right_ one. (RT#1942) Pick the right ones for ourselves and add them manually. */ /* We may have already got a bunch of certs from PKCS#12 file. Remember how many need to be freed when we're done, since we'll expand the supporting_certs array with more from the cafile and extra_certs[] array if we can, and those extra certs must not be freed (twice). */ if (!nr_supporting_certs) { supporting_certs = gnutls_malloc(sizeof(*supporting_certs)); if (!supporting_certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for certificate\n")); ret = -ENOMEM; goto out; } supporting_certs[0] = cert; nr_supporting_certs = 1; free_supporting_certs = gnutls_malloc(1); if (!free_supporting_certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for certificate\n")); ret = -ENOMEM; goto out; } free_supporting_certs[0] = 1; } last_cert = supporting_certs[nr_supporting_certs-1]; while (1) { uint8_t free_issuer; gnutls_x509_crt_t issuer; void *tmp; for (i = 0; i < nr_extra_certs; i++) { if (extra_certs[i] && gnutls_x509_crt_check_issuer(last_cert, extra_certs[i]) && !check_issuer_sanity(last_cert, extra_certs[i])) break; } if (i < nr_extra_certs) { /* We found the next cert in the chain in extra_certs[] */ issuer = extra_certs[i]; extra_certs[i] = NULL; free_issuer = 1; } else { /* Look for it in the system trust cafile too. */ err = gnutls_certificate_get_issuer(vpninfo->https_cred, last_cert, &issuer, 0); /* The check_issuer_sanity() function works fine as a workaround where it was used above, but when gnutls_certificate_get_issuer() returns a bogus cert, there's nothing we can do to fix it up. We don't get to iterate over all the available certs like we can over our own list. */ if (!err && check_issuer_sanity(last_cert, issuer)) { vpn_progress(vpninfo, PRG_ERR, _("WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n")); break; } free_issuer = 0; #if defined(HAVE_P11KIT) && defined(HAVE_GNUTLS_PKCS11_GET_RAW_ISSUER) if (err && cert_is_p11) { gnutls_datum_t t; err = gnutls_pkcs11_get_raw_issuer(cert_url, last_cert, &t, GNUTLS_X509_FMT_DER, 0); if (!err) { err = gnutls_x509_crt_init(&issuer); if (!err) { err = gnutls_x509_crt_import(issuer, &t, GNUTLS_X509_FMT_DER); if (err) gnutls_x509_crt_deinit(issuer); else free_issuer = 1; } gnutls_free(t.data); } if (err) { vpn_progress(vpninfo, PRG_ERR, "Got no issuer from PKCS#11\n"); } else { get_cert_name(issuer, name, sizeof(name)); vpn_progress(vpninfo, PRG_ERR, _("Got next CA '%s' from PKCS11\n"), name); } } #endif if (err) break; } if (gnutls_x509_crt_check_issuer(issuer, issuer)) { /* Don't actually include the root CA. If they don't already trust it, then handing it to them isn't going to help. But don't omit the original certificate if it's self-signed. */ if (free_issuer) gnutls_x509_crt_deinit(issuer); break; } /* OK, we found a new cert to add to our chain. */ tmp = supporting_certs; supporting_certs = gnutls_realloc(supporting_certs, sizeof(cert) * (nr_supporting_certs+1)); if (!supporting_certs) { supporting_certs = tmp; realloc_failed: vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for supporting certificates\n")); if (free_issuer) gnutls_x509_crt_deinit(issuer); break; } tmp = free_supporting_certs; free_supporting_certs = gnutls_realloc(free_supporting_certs, nr_supporting_certs+1); if (!free_supporting_certs) { free_supporting_certs = tmp; goto realloc_failed; } /* Append the new one */ supporting_certs[nr_supporting_certs] = issuer; free_supporting_certs[nr_supporting_certs] = free_issuer; nr_supporting_certs++; last_cert = issuer; } for (i = 1; i < nr_supporting_certs; i++) { get_cert_name(supporting_certs[i], name, sizeof(name)); vpn_progress(vpninfo, PRG_DEBUG, _("Adding supporting CA '%s'\n"), name); } /* OK, now we've checked the cert expiry and warned the user if it's going to expire soon, and we've built up as much of a trust chain in supporting_certs[] as we can find, to help the server work around OpenSSL RT#1942. Set up the GnuTLS credentials with the appropriate key and certs. GnuTLS makes us do this differently for X509 privkeys vs. TPM/PKCS#11 "generic" privkeys, and the latter is particularly 'fun' for GnuTLS 2.12... */ #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_GNUTLS_SYSTEM_KEYS) if (pkey) { err = assign_privkey(vpninfo, pkey, supporting_certs, nr_supporting_certs, free_supporting_certs); if (!err) { pkey = NULL; /* we gave it away, and potentially also some of extra_certs[] may have been zeroed. */ } } else #endif /* P11KIT || TROUSERS */ err = gnutls_certificate_set_x509_key(vpninfo->https_cred, supporting_certs, nr_supporting_certs, key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting certificate failed: %s\n"), gnutls_strerror(err)); ret = -EIO; } else ret = 0; out: if (crl) gnutls_x509_crl_deinit(crl); if (key) gnutls_x509_privkey_deinit(key); if (supporting_certs) { for (i = 0; i < nr_supporting_certs; i++) { /* We get here in an error case with !free_supporting_certs and should free them all in that case */ if (!free_supporting_certs || free_supporting_certs[i]) gnutls_x509_crt_deinit(supporting_certs[i]); } gnutls_free(supporting_certs); gnutls_free(free_supporting_certs); } else if (cert) { /* Not if supporting_certs. It's supporting_certs[0] then and was already freed. */ gnutls_x509_crt_deinit(cert); } for (i = 0; i < nr_extra_certs; i++) { if (extra_certs[i]) gnutls_x509_crt_deinit(extra_certs[i]); } gnutls_free(extra_certs); #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_GNUTLS_SYSTEM_KEYS) if (pkey && pkey != OPENCONNECT_TPM_PKEY) gnutls_privkey_deinit(pkey); /* If we support arbitrary privkeys, we might have abused fdata.data just to point to something to hash. Don't free it in that case! */ if (fdata.data != dummy_hash_data) #endif gnutls_free(fdata.data); #ifdef HAVE_P11KIT /* This exists in the HAVE_GNUTLS_SYSTEM_KEYS case but will never change so it's OK not to add to the #ifdef mess here. */ if (cert_url != vpninfo->cert) free(cert_url); if (key_url != vpninfo->sslkey) free(key_url); #endif return ret; } static int get_cert_fingerprint(struct openconnect_info *vpninfo, gnutls_x509_crt_t cert, gnutls_digest_algorithm_t algo, char *buf) { unsigned char md[256]; size_t md_size = sizeof(md); unsigned int i; if (gnutls_x509_crt_get_fingerprint(cert, algo, md, &md_size)) return -EIO; for (i = 0; i < md_size; i++) sprintf(&buf[i*2], "%02X", md[i]); return 0; } int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf) { return get_cert_fingerprint(vpninfo, cert, GNUTLS_DIG_MD5, buf); } static int set_peer_cert_hash(struct openconnect_info *vpninfo) { unsigned char sha1[SHA1_SIZE]; size_t shalen; gnutls_pubkey_t pkey; gnutls_datum_t d; int i, err; err = gnutls_pubkey_init(&pkey); if (err) return err; err = gnutls_pubkey_import_x509(pkey, vpninfo->peer_cert, 0); if (err) { gnutls_pubkey_deinit(pkey); return err; } #ifdef HAVE_GNUTLS_PUBKEY_EXPORT2 err = gnutls_pubkey_export2(pkey, GNUTLS_X509_FMT_DER, &d); if (err) { gnutls_pubkey_deinit(pkey); return err; } #else shalen = 0; err = gnutls_pubkey_export(pkey, GNUTLS_X509_FMT_DER, NULL, &shalen); if (err != GNUTLS_E_SHORT_MEMORY_BUFFER) { gnutls_pubkey_deinit(pkey); return err; } d.size = shalen; d.data = gnutls_malloc(d.size); if (!d.data) { gnutls_pubkey_deinit(pkey); return -ENOMEM; } err = gnutls_pubkey_export(pkey, GNUTLS_X509_FMT_DER, d.data, &shalen); if (err) { gnutls_free(d.data); gnutls_pubkey_deinit(pkey); return err; } #endif gnutls_pubkey_deinit(pkey); shalen = SHA1_SIZE; err = gnutls_fingerprint(GNUTLS_DIG_SHA1, &d, sha1, &shalen); if (err) { gnutls_free(d.data); return err; } gnutls_free(d.data); vpninfo->peer_cert_hash = malloc(SHA1_SIZE * 2 + 6); if (vpninfo->peer_cert_hash) { snprintf(vpninfo->peer_cert_hash, 6, "sha1:"); for (i = 0; i < shalen; i++) sprintf(&vpninfo->peer_cert_hash[i*2 + 5], "%02x", sha1[i]); } return 0; } char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo) { gnutls_datum_t buf; if (gnutls_x509_crt_print(vpninfo->peer_cert, GNUTLS_CRT_PRINT_FULL, &buf)) return NULL; return (char *)buf.data; } int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf) { size_t l = 0; unsigned char *ret = NULL; if (gnutls_x509_crt_export(vpninfo->peer_cert, GNUTLS_X509_FMT_DER, ret, &l) != GNUTLS_E_SHORT_MEMORY_BUFFER) return -EIO; ret = gnutls_malloc(l); if (!ret) return -ENOMEM; if (gnutls_x509_crt_export(vpninfo->peer_cert, GNUTLS_X509_FMT_DER, ret, &l)) { gnutls_free(ret); return -EIO; } *buf = ret; return l; } void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf) { gnutls_free(buf); } static int verify_peer(gnutls_session_t session) { struct openconnect_info *vpninfo = gnutls_session_get_ptr(session); const gnutls_datum_t *cert_list; gnutls_x509_crt_t cert; unsigned int status, cert_list_size; const char *reason = NULL; int err = 0; cert_list = gnutls_certificate_get_peers(session, &cert_list_size); if (!cert_list) { vpn_progress(vpninfo, PRG_ERR, _("Server presented no certificate\n")); return GNUTLS_E_CERTIFICATE_ERROR; } err = gnutls_x509_crt_init(&cert); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising X509 cert structure\n")); return GNUTLS_E_CERTIFICATE_ERROR; } err = gnutls_x509_crt_import(cert, &cert_list[0], GNUTLS_X509_FMT_DER); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing server's cert\n")); gnutls_x509_crt_deinit(cert); return GNUTLS_E_CERTIFICATE_ERROR; } vpninfo->peer_cert = cert; err = set_peer_cert_hash(vpninfo); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Could not calculate hash of server's certificate\n")); } err = gnutls_certificate_verify_peers2(session, &status); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error checking server cert status\n")); return GNUTLS_E_CERTIFICATE_ERROR; } if (status & GNUTLS_CERT_REVOKED) reason = _("certificate revoked"); else if (status & GNUTLS_CERT_SIGNER_NOT_FOUND) reason = _("signer not found"); else if (status & GNUTLS_CERT_SIGNER_NOT_CA) reason = _("signer not a CA certificate"); else if (status & GNUTLS_CERT_INSECURE_ALGORITHM) reason = _("insecure algorithm"); else if (status & GNUTLS_CERT_NOT_ACTIVATED) reason = _("certificate not yet activated"); else if (status & GNUTLS_CERT_EXPIRED) reason = _("certificate expired"); else if (status & GNUTLS_CERT_INVALID) /* If this is set and no other reason, it apparently means that signature verification failed. Not entirely sure why we don't just set a bit for that too. */ reason = _("signature verification failed"); if (reason) goto done; if (!gnutls_x509_crt_check_hostname(cert, vpninfo->hostname)) { int i, ret; unsigned char addrbuf[sizeof(struct in6_addr)]; unsigned char certaddr[sizeof(struct in6_addr)]; size_t addrlen = 0, certaddrlen; /* gnutls_x509_crt_check_hostname() doesn't cope with IPv6 literals in URI form with surrounding [] so we must check for ourselves. */ if (vpninfo->hostname[0] == '[' && vpninfo->hostname[strlen(vpninfo->hostname)-1] == ']') { char *p = &vpninfo->hostname[strlen(vpninfo->hostname)-1]; *p = 0; if (inet_pton(AF_INET6, vpninfo->hostname + 1, addrbuf) > 0) addrlen = 16; *p = ']'; } #if GNUTLS_VERSION_NUMBER < 0x030306 /* And before 3.3.6 it didn't check IP addresses at all. */ else if (inet_pton(AF_INET, vpninfo->hostname, addrbuf) > 0) addrlen = 4; else if (inet_pton(AF_INET6, vpninfo->hostname, addrbuf) > 0) addrlen = 16; #endif if (!addrlen) { /* vpninfo->hostname was not a bare IP address. Nothing to do */ goto badhost; } for (i = 0; ; i++) { certaddrlen = sizeof(certaddr); ret = gnutls_x509_crt_get_subject_alt_name(cert, i, certaddr, &certaddrlen, NULL); /* If this happens, it wasn't an IP address. */ if (ret == GNUTLS_E_SHORT_MEMORY_BUFFER) continue; if (ret < 0) break; if (ret != GNUTLS_SAN_IPADDRESS) continue; if (certaddrlen == addrlen && !memcmp(addrbuf, certaddr, addrlen)) goto done; } badhost: reason = _("certificate does not match hostname"); } done: if (reason) { vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), reason); if (vpninfo->validate_peer_cert) err = vpninfo->validate_peer_cert(vpninfo->cbdata, reason) ? GNUTLS_E_CERTIFICATE_ERROR : 0; else err = GNUTLS_E_CERTIFICATE_ERROR; } return err; } /* The F5 firewall is confused when the TLS client hello is between * 256 and 512 bytes. By disabling several TLS options we force the * client hello to be < 256 bytes. We don't do that in gnutls versions * >= 3.2.9 as there the %COMPAT keyword ensures that the client hello * will be outside that range. */ #if GNUTLS_VERSION_NUMBER >= 0x030209 # define DEFAULT_PRIO "NORMAL:-VERS-SSL3.0:%COMPAT" #else # define _DEFAULT_PRIO "NORMAL:-VERS-TLS-ALL:+VERS-TLS1.0:" \ "%COMPAT:%DISABLE_SAFE_RENEGOTIATION:%LATEST_RECORD_VERSION" # if GNUTLS_VERSION_MAJOR >= 3 # define DEFAULT_PRIO _DEFAULT_PRIO":-CURVE-ALL:-ECDHE-RSA:-ECDHE-ECDSA" #else # define DEFAULT_PRIO _DEFAULT_PRIO # endif #endif int openconnect_open_https(struct openconnect_info *vpninfo) { int ssl_sock = -1; int err; const char * prio; if (vpninfo->https_sess) return 0; if (vpninfo->peer_cert) { gnutls_x509_crt_deinit(vpninfo->peer_cert); vpninfo->peer_cert = NULL; } free(vpninfo->peer_cert_hash); vpninfo->peer_cert_hash = 0; gnutls_free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = NULL; ssl_sock = connect_https_socket(vpninfo); if (ssl_sock < 0) return ssl_sock; if (!vpninfo->https_cred) { gnutls_certificate_allocate_credentials(&vpninfo->https_cred); if (!vpninfo->no_system_trust) { #ifdef HAVE_GNUTLS_CERTIFICATE_SET_X509_SYSTEM_TRUST gnutls_certificate_set_x509_system_trust(vpninfo->https_cred); #else gnutls_certificate_set_x509_trust_file(vpninfo->https_cred, DEFAULT_SYSTEM_CAFILE, GNUTLS_X509_FMT_PEM); #endif } gnutls_certificate_set_verify_function(vpninfo->https_cred, verify_peer); #ifdef ANDROID_KEYSTORE if (vpninfo->cafile && !strncmp(vpninfo->cafile, "keystore:", 9)) { gnutls_datum_t datum; unsigned int nr_certs; err = load_datum(vpninfo, &datum, vpninfo->cafile); if (err < 0) { gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; return err; } /* For GnuTLS 3.x We should use gnutls_x509_crt_list_import2() */ nr_certs = count_x509_certificates(&datum); if (nr_certs) { gnutls_x509_crt_t *certs; int i; certs = calloc(nr_certs, sizeof(*certs)); if (!certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for cafile certs\n")); gnutls_free(datum.data); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -ENOMEM; } err = gnutls_x509_crt_list_import(certs, &nr_certs, &datum, GNUTLS_X509_FMT_PEM, 0); gnutls_free(datum.data); if (err >= 0) { nr_certs = err; err = gnutls_certificate_set_x509_trust(vpninfo->https_cred, certs, nr_certs); } for (i = 0; i < nr_certs; i++) gnutls_x509_crt_deinit(certs[i]); free(certs); if (err < 0) { /* From crt_list_import or set_x509_trust */ vpn_progress(vpninfo, PRG_ERR, _("Failed to read certs from cafile: %s\n"), gnutls_strerror(err)); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -EINVAL; } } } else #endif if (vpninfo->cafile) { err = gnutls_certificate_set_x509_trust_file(vpninfo->https_cred, vpninfo->cafile, GNUTLS_X509_FMT_PEM); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open CA file '%s': %s\n"), vpninfo->cafile, gnutls_strerror(err)); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -EINVAL; } } if (vpninfo->cert) { err = load_certificate(vpninfo); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed. Aborting.\n")); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return err; } } } gnutls_init(&vpninfo->https_sess, GNUTLS_CLIENT); gnutls_session_set_ptr(vpninfo->https_sess, (void *) vpninfo); #if defined(HAVE_TROUSERS) && !defined(HAVE_GNUTLS_CERTIFICATE_SET_KEY) if (vpninfo->my_pkey == OPENCONNECT_TPM_PKEY) gnutls_sign_callback_set(vpninfo->https_sess, gtls2_tpm_sign_cb, vpninfo); #endif /* We depend on 3.2.9 because that has the workaround for the obnoxious F5 firewall that drops packets of certain sizes */ if (gnutls_check_version("3.2.9") && string_is_hostname(vpninfo->hostname)) gnutls_server_name_set(vpninfo->https_sess, GNUTLS_NAME_DNS, vpninfo->hostname, strlen(vpninfo->hostname)); if (vpninfo->pfs) { prio = DEFAULT_PRIO":-RSA"; } else { prio = DEFAULT_PRIO; } err = gnutls_priority_set_direct(vpninfo->https_sess, prio, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TLS priority string: %s\n"), gnutls_strerror(err)); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EIO; } gnutls_record_disable_padding(vpninfo->https_sess); gnutls_credentials_set(vpninfo->https_sess, GNUTLS_CRD_CERTIFICATE, vpninfo->https_cred); gnutls_transport_set_ptr(vpninfo->https_sess,(gnutls_transport_ptr_t)(intptr_t)ssl_sock); vpn_progress(vpninfo, PRG_INFO, _("SSL negotiation with %s\n"), vpninfo->hostname); #ifdef GNUTLS_DEFAULT_HANDSHAKE_TIMEOUT gnutls_handshake_set_timeout(vpninfo->https_sess, GNUTLS_DEFAULT_HANDSHAKE_TIMEOUT); #endif err = cstp_handshake(vpninfo, 1); if (err) return err; gnutls_free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = get_gnutls_cipher(vpninfo->https_sess); vpninfo->ssl_fd = ssl_sock; vpninfo->ssl_read = openconnect_gnutls_read; vpninfo->ssl_write = openconnect_gnutls_write; vpninfo->ssl_gets = openconnect_gnutls_gets; return 0; } int cstp_handshake(struct openconnect_info *vpninfo, unsigned init) { int err; int ssl_sock = -1; ssl_sock = (intptr_t)gnutls_transport_get_ptr(vpninfo->https_sess); while ((err = gnutls_handshake(vpninfo->https_sess))) { if (err == GNUTLS_E_AGAIN) { fd_set rd_set, wr_set; int maxfd = ssl_sock; FD_ZERO(&rd_set); FD_ZERO(&wr_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(ssl_sock, &wr_set); else FD_SET(ssl_sock, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection cancelled\n")); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EINTR; } } else if (err == GNUTLS_E_INTERRUPTED || gnutls_error_is_fatal(err)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection failure: %s\n"), gnutls_strerror(err)); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EIO; } else { /* non-fatal error or warning. Ignore it and continue */ vpn_progress(vpninfo, PRG_DEBUG, _("GnuTLS non-fatal return during handshake: %s\n"), gnutls_strerror(err)); } } if (init) { vpn_progress(vpninfo, PRG_INFO, _("Connected to HTTPS on %s\n"), vpninfo->hostname); } else { vpn_progress(vpninfo, PRG_INFO, _("Renegotiated SSL on %s\n"), vpninfo->hostname); } return 0; } void openconnect_close_https(struct openconnect_info *vpninfo, int final) { if (vpninfo->https_sess) { gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; } if (vpninfo->ssl_fd != -1) { closesocket(vpninfo->ssl_fd); unmonitor_read_fd(vpninfo, ssl); unmonitor_write_fd(vpninfo, ssl); unmonitor_except_fd(vpninfo, ssl); vpninfo->ssl_fd = -1; } if (final && vpninfo->https_cred) { gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; #if defined(HAVE_P11KIT) && !defined(HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION) if ((vpninfo->cert && !strncmp(vpninfo->cert, "pkcs11:", 7)) || (vpninfo->sslkey && !strncmp(vpninfo->sslkey, "pkcs11:", 7))) { char pin_source[40]; sprintf(pin_source, "openconnect:%p", vpninfo); p11_kit_pin_unregister_callback(pin_source, p11kit_pin_callback, vpninfo); } #endif #ifdef HAVE_TROUSERS if (vpninfo->tpm_key_policy) { Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->tpm_key_policy); vpninfo->tpm_key = 0; } if (vpninfo->tpm_key) { Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->tpm_key); vpninfo->tpm_key = 0; } if (vpninfo->srk_policy) { Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->srk_policy); vpninfo->srk_policy = 0; } if (vpninfo->srk) { Tspi_Context_CloseObject(vpninfo->tpm_context, vpninfo->srk); vpninfo->srk = 0; } if (vpninfo->tpm_context) { Tspi_Context_Close(vpninfo->tpm_context); vpninfo->tpm_context = 0; } #endif #ifndef HAVE_GNUTLS_CERTIFICATE_SET_KEY if (vpninfo->my_pkey && vpninfo->my_pkey != OPENCONNECT_TPM_PKEY) { gnutls_privkey_deinit(vpninfo->my_pkey); vpninfo->my_pkey = NULL; /* my_p11key went with it */ } if (vpninfo->my_certs) { int i; for (i = 0; i < vpninfo->nr_my_certs; i++) if (vpninfo->free_my_certs[i]) gnutls_x509_crt_deinit(vpninfo->my_certs[i]); gnutls_free(vpninfo->my_certs); gnutls_free(vpninfo->free_my_certs); vpninfo->my_certs = NULL; vpninfo->free_my_certs = NULL; } #endif } } int openconnect_init_ssl(void) { #ifdef _WIN32 int ret = openconnect__win32_sock_init(); if (ret) return ret; #endif if (gnutls_global_init()) return -EIO; return 0; } char *get_gnutls_cipher(gnutls_session_t session) { char *str; #if GNUTLS_VERSION_NUMBER > 0x03010a str = gnutls_session_get_desc(session); #else str = gnutls_strdup(gnutls_cipher_suite_get_name( gnutls_kx_get(session), gnutls_cipher_get(session), gnutls_mac_get(session))); #endif return str; } int openconnect_sha1(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t shalen = SHA1_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_SHA1, &d, result, &shalen)) return -1; return 0; } int openconnect_md5(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t md5len = MD5_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_MD5, &d, result, &md5len)) return -1; return 0; } int openconnect_random(void *bytes, int len) { if (gnutls_rnd(GNUTLS_RND_RANDOM, bytes, len)) return -EIO; return 0; } int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf) { memcpy(buf, vpninfo->local_cert_md5, sizeof(vpninfo->local_cert_md5)); return 0; } #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) static int gnutls_pin_callback(void *priv, int attempt, const char *uri, const char *token_label, unsigned int flags, char *pin, size_t pin_max) { struct openconnect_info *vpninfo = priv; struct pin_cache **cache = &vpninfo->pin_cache; struct oc_auth_form f; struct oc_form_opt o; char message[1024]; int ret; if (!vpninfo || !vpninfo->process_auth_form) return -1; while (*cache) { if (!strcmp(uri, (*cache)->token)) { if ((*cache)->pin) { if (attempt == 0) { snprintf(pin, pin_max, "%s", (*cache)->pin); return 0; } memset((*cache)->pin, 0x5a, strlen((*cache)->pin)); free((*cache)->pin); (*cache)->pin = NULL; } break; } cache = &(*cache)->next; } if (!*cache) { *cache = calloc(1, sizeof(struct pin_cache)); if (!*cache) return -1; (*cache)->token = strdup(uri); } memset(&f, 0, sizeof(f)); f.auth_id = (char *)"pkcs11_pin"; f.opts = &o; message[sizeof(message)-1] = 0; snprintf(message, sizeof(message) - 1, _("PIN required for %s"), token_label); f.message = message; if (flags & GNUTLS_PIN_WRONG) f.error = (char *)_("Wrong PIN"); if (flags & GNUTLS_PIN_FINAL_TRY) f.banner = (char *)_("This is the final try before locking!"); else if (flags & GNUTLS_PIN_COUNT_LOW) f.banner = (char *)_("Only a few tries left before locking!"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"pkcs11_pin"; o.label = (char *)_("Enter PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret || !o._value) return -1; snprintf(pin, pin_max, "%s", o._value); (*cache)->pin = o._value; return 0; } #ifndef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION static P11KitPin *p11kit_pin_callback(const char *pin_source, P11KitUri *pin_uri, const char *pin_description, P11KitPinFlags flags, void *_vpninfo) { struct openconnect_info *vpninfo = _vpninfo; char *uri; P11KitPin *pin = NULL; char pin_str[1024]; unsigned gnutls_flags = 0; int attempt = 0; if (!vpninfo || !vpninfo->process_auth_form) return NULL; if (p11_kit_uri_format(pin_uri, P11_KIT_URI_FOR_TOKEN, &uri)) return NULL; /* * In p11-kit <= 0.12, these flags are *odd*. * RETRY is 0xa, FINAL_TRY is 0x14 and MANY_TRIES is 0x28. * So don't treat it like a sane bitmask. Fixed in * http://cgit.freedesktop.org/p11-glue/p11-kit/commit/?id=59774b11 */ if ((flags & P11_KIT_PIN_FLAGS_RETRY) == P11_KIT_PIN_FLAGS_RETRY) { attempt = 1; gnutls_flags |= GNUTLS_PIN_WRONG; } if ((flags & P11_KIT_PIN_FLAGS_FINAL_TRY) == P11_KIT_PIN_FLAGS_FINAL_TRY) gnutls_flags |= GNUTLS_PIN_FINAL_TRY; if ((flags & P11_KIT_PIN_FLAGS_MANY_TRIES) == P11_KIT_PIN_FLAGS_MANY_TRIES) gnutls_flags |= GNUTLS_PIN_COUNT_LOW; if (!gnutls_pin_callback(vpninfo, attempt, uri, pin_description, gnutls_flags, pin_str, sizeof(pin_str))) pin = p11_kit_pin_new_for_string(pin_str); memset(pin_str, 0x5a, sizeof(pin_str)); free(uri); return pin; } #endif /* !HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION */ #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ #ifdef HAVE_LIBPCSCLITE int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len) { unsigned char U[SHA1_SIZE]; gnutls_hmac_hd_t dgst; int ret = -EIO; int i, j; if (gnutls_hmac_init(&dgst, GNUTLS_MAC_SHA1, password, pwlen)) return -EIO; if (gnutls_hmac(dgst, ident, id_len)) goto out; /* This is a subset of full PBKDF2, where we know the outer loop is only * run once because our output length (16) is less than the hash output * size (20). So just hard-code the value. */ if (gnutls_hmac(dgst, "\x0\x0\x0\x1", 4)) goto out; gnutls_hmac_output(dgst, U); memcpy(vpninfo->yubikey_pwhash, U, 16); for (i = 1; i < 1000; i++) { if (gnutls_hmac(dgst, U, SHA1_SIZE)) goto out; gnutls_hmac_output(dgst, U); for (j = 0; j < 16; j++) vpninfo->yubikey_pwhash[j] ^= U[j]; } ret = 0; out: gnutls_hmac_deinit(dgst, NULL); return ret; } int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result) { if (gnutls_hmac_fast(GNUTLS_MAC_SHA1, vpninfo->yubikey_pwhash, 16, challenge, chall_len, result)) return -EIO; return 0; } #endif int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge) { int ret; int hpos; unsigned char hash[64]; /* Enough for a SHA256 */ gnutls_mac_algorithm_t alg; switch(vpninfo->oath_hmac_alg) { case OATH_ALG_HMAC_SHA1: alg = GNUTLS_MAC_SHA1; hpos = 19; break; case OATH_ALG_HMAC_SHA256: alg = GNUTLS_MAC_SHA256; hpos = 31; break; case OATH_ALG_HMAC_SHA512: alg = GNUTLS_MAC_SHA512; hpos = 63; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unsupported OATH HMAC algorithm\n")); return -EINVAL; } ret = gnutls_hmac_fast(alg, vpninfo->oath_secret, vpninfo->oath_secret_len, challenge, 8, hash); if (ret) { vpninfo->progress(vpninfo, PRG_ERR, _("Failed to calculate OATH HMAC: %s\n"), gnutls_strerror(ret)); return -EINVAL; } hpos = hash[hpos] & 15; return load_be32(&hash[hpos]) & 0x7fffffff; } openconnect-7.06/compile0000755000076400007640000001624512404036304012274 00000000000000#! /bin/sh # Wrapper for compilers which do not understand '-c -o'. scriptversion=2012-10-14.11; # UTC # Copyright (C) 1999-2013 Free Software Foundation, Inc. # Written by Tom Tromey . # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # This file is maintained in Automake, please report # bugs to or send patches to # . nl=' ' # We need space, tab and new line, in precisely that order. Quoting is # there to prevent tools from complaining about whitespace usage. IFS=" "" $nl" file_conv= # func_file_conv build_file lazy # Convert a $build file to $host form and store it in $file # Currently only supports Windows hosts. If the determined conversion # type is listed in (the comma separated) LAZY, no conversion will # take place. func_file_conv () { file=$1 case $file in / | /[!/]*) # absolute file, and not a UNC file if test -z "$file_conv"; then # lazily determine how to convert abs files case `uname -s` in MINGW*) file_conv=mingw ;; CYGWIN*) file_conv=cygwin ;; *) file_conv=wine ;; esac fi case $file_conv/,$2, in *,$file_conv,*) ;; mingw/*) file=`cmd //C echo "$file " | sed -e 's/"\(.*\) " *$/\1/'` ;; cygwin/*) file=`cygpath -m "$file" || echo "$file"` ;; wine/*) file=`winepath -w "$file" || echo "$file"` ;; esac ;; esac } # func_cl_dashL linkdir # Make cl look for libraries in LINKDIR func_cl_dashL () { func_file_conv "$1" if test -z "$lib_path"; then lib_path=$file else lib_path="$lib_path;$file" fi linker_opts="$linker_opts -LIBPATH:$file" } # func_cl_dashl library # Do a library search-path lookup for cl func_cl_dashl () { lib=$1 found=no save_IFS=$IFS IFS=';' for dir in $lib_path $LIB do IFS=$save_IFS if $shared && test -f "$dir/$lib.dll.lib"; then found=yes lib=$dir/$lib.dll.lib break fi if test -f "$dir/$lib.lib"; then found=yes lib=$dir/$lib.lib break fi if test -f "$dir/lib$lib.a"; then found=yes lib=$dir/lib$lib.a break fi done IFS=$save_IFS if test "$found" != yes; then lib=$lib.lib fi } # func_cl_wrapper cl arg... # Adjust compile command to suit cl func_cl_wrapper () { # Assume a capable shell lib_path= shared=: linker_opts= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. eat=1 case $2 in *.o | *.[oO][bB][jJ]) func_file_conv "$2" set x "$@" -Fo"$file" shift ;; *) func_file_conv "$2" set x "$@" -Fe"$file" shift ;; esac ;; -I) eat=1 func_file_conv "$2" mingw set x "$@" -I"$file" shift ;; -I*) func_file_conv "${1#-I}" mingw set x "$@" -I"$file" shift ;; -l) eat=1 func_cl_dashl "$2" set x "$@" "$lib" shift ;; -l*) func_cl_dashl "${1#-l}" set x "$@" "$lib" shift ;; -L) eat=1 func_cl_dashL "$2" ;; -L*) func_cl_dashL "${1#-L}" ;; -static) shared=false ;; -Wl,*) arg=${1#-Wl,} save_ifs="$IFS"; IFS=',' for flag in $arg; do IFS="$save_ifs" linker_opts="$linker_opts $flag" done IFS="$save_ifs" ;; -Xlinker) eat=1 linker_opts="$linker_opts $2" ;; -*) set x "$@" "$1" shift ;; *.cc | *.CC | *.cxx | *.CXX | *.[cC]++) func_file_conv "$1" set x "$@" -Tp"$file" shift ;; *.c | *.cpp | *.CPP | *.lib | *.LIB | *.Lib | *.OBJ | *.obj | *.[oO]) func_file_conv "$1" mingw set x "$@" "$file" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -n "$linker_opts"; then linker_opts="-link$linker_opts" fi exec "$@" $linker_opts exit 1 } eat= case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: compile [--help] [--version] PROGRAM [ARGS] Wrapper for compilers which do not understand '-c -o'. Remove '-o dest.o' from ARGS, run PROGRAM with the remaining arguments, and rename the output as expected. If you are trying to build a whole package this is not the right script to run: please start by reading the file 'INSTALL'. Report bugs to . EOF exit $? ;; -v | --v*) echo "compile $scriptversion" exit $? ;; cl | *[/\\]cl | cl.exe | *[/\\]cl.exe ) func_cl_wrapper "$@" # Doesn't return... ;; esac ofile= cfile= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. # So we strip '-o arg' only if arg is an object. eat=1 case $2 in *.o | *.obj) ofile=$2 ;; *) set x "$@" -o "$2" shift ;; esac ;; *.c) cfile=$1 set x "$@" "$1" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -z "$ofile" || test -z "$cfile"; then # If no '-o' option was seen then we might have been invoked from a # pattern rule where we don't need one. That is ok -- this is a # normal compilation that the losing compiler can handle. If no # '.c' file was seen then we are probably linking. That is also # ok. exec "$@" fi # Name of file we expect compiler to create. cofile=`echo "$cfile" | sed 's|^.*[\\/]||; s|^[a-zA-Z]:||; s/\.c$/.o/'` # Create the lock directory. # Note: use '[/\\:.-]' here to ensure that we don't use the same name # that we are using for the .o file. Also, base the name on the expected # object file name, since that is what matters with a parallel build. lockdir=`echo "$cofile" | sed -e 's|[/\\:.-]|_|g'`.d while true; do if mkdir "$lockdir" >/dev/null 2>&1; then break fi sleep 1 done # FIXME: race condition here if user kills between mkdir and trap. trap "rmdir '$lockdir'; exit 1" 1 2 15 # Run the compile. "$@" ret=$? if test -f "$cofile"; then test "$cofile" = "$ofile" || mv "$cofile" "$ofile" elif test -f "${cofile}bj"; then test "${cofile}bj" = "$ofile" || mv "${cofile}bj" "$ofile" fi rmdir "$lockdir" exit $ret # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'write-file-hooks 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC" # time-stamp-end: "; # UTC" # End: openconnect-7.06/config.rpath0000775000076400007640000004421612453040465013236 00000000000000#! /bin/sh # Output a system dependent set of variables, describing how to set the # run time search path of shared libraries in an executable. # # Copyright 1996-2014 Free Software Foundation, Inc. # Taken from GNU libtool, 2001 # Originally by Gordon Matzigkeit , 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # # The first argument passed to this file is the canonical host specification, # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # The environment variables CC, GCC, LDFLAGS, LD, with_gnu_ld # should be set by the caller. # # The set of defined variables is at the end of this script. # Known limitations: # - On IRIX 6.5 with CC="cc", the run time search patch must not be longer # than 256 bytes, otherwise the compiler driver will dump core. The only # known workaround is to choose shorter directory names for the build # directory and/or the installation directory. # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a shrext=.so host="$1" host_cpu=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\1/'` host_vendor=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\2/'` host_os=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\3/'` # Code taken from libtool.m4's _LT_CC_BASENAME. for cc_temp in $CC""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done cc_basename=`echo "$cc_temp" | sed -e 's%^.*/%%'` # Code taken from libtool.m4's _LT_COMPILER_PIC. wl= if test "$GCC" = yes; then wl='-Wl,' else case "$host_os" in aix*) wl='-Wl,' ;; mingw* | cygwin* | pw32* | os2* | cegcc*) ;; hpux9* | hpux10* | hpux11*) wl='-Wl,' ;; irix5* | irix6* | nonstopux*) wl='-Wl,' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in ecc*) wl='-Wl,' ;; icc* | ifort*) wl='-Wl,' ;; lf95*) wl='-Wl,' ;; nagfor*) wl='-Wl,-Wl,,' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) wl='-Wl,' ;; ccc*) wl='-Wl,' ;; xl* | bgxl* | bgf* | mpixl*) wl='-Wl,' ;; como) wl='-lopt=' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ F* | *Sun*Fortran*) wl= ;; *Sun\ C*) wl='-Wl,' ;; esac ;; esac ;; newsos6) ;; *nto* | *qnx*) ;; osf3* | osf4* | osf5*) wl='-Wl,' ;; rdos*) ;; solaris*) case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) wl='-Qoption ld ' ;; *) wl='-Wl,' ;; esac ;; sunos4*) wl='-Qoption ld ' ;; sysv4 | sysv4.2uw2* | sysv4.3*) wl='-Wl,' ;; sysv4*MP*) ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) wl='-Wl,' ;; unicos*) wl='-Wl,' ;; uts4*) ;; esac fi # Code taken from libtool.m4's _LT_LINKER_SHLIBS. hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_direct=no hardcode_minus_L=no case "$host_os" in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test "$GCC" != yes; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd*) with_gnu_ld=no ;; esac ld_shlibs=yes if test "$with_gnu_ld" = yes; then # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. # Unlike libtool, we use -rpath here, not --rpath, since the documented # option of GNU ld is called -rpath, not --rpath. hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' case "$host_os" in aix[3-9]*) # On AIX/PPC, the GNU linker is very broken if test "$host_cpu" != ia64; then ld_shlibs=no fi ;; amigaos*) case "$host_cpu" in powerpc) ;; m68k) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; beos*) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' if $LD --help 2>&1 | grep 'auto-import' > /dev/null; then : else ld_shlibs=no fi ;; haiku*) ;; interix[3-9]*) hardcode_direct=no hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; netbsd*) ;; solaris*) if $LD -v 2>&1 | grep 'BFD 2\.8' > /dev/null; then ld_shlibs=no elif $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-rpath,$libdir`' else ld_shlibs=no fi ;; esac ;; sunos4*) hardcode_direct=yes ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; esac if test "$ld_shlibs" = no; then hardcode_libdir_flag_spec= fi else case "$host_os" in aix3*) # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test "$GCC" = yes; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix[4-9]*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[23]|aix4.[23].*|aix[5-9]*) for ld_flag in $LDFLAGS; do if (test $ld_flag = "-brtl" || test $ld_flag = "-Wl,-brtl"); then aix_use_runtimelinking=yes break fi done ;; esac fi hardcode_direct=yes hardcode_libdir_separator=':' if test "$GCC" = yes; then case $host_os in aix4.[012]|aix4.[012].*) collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && \ strings "$collect2name" | grep resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac fi # Begin _LT_AC_SYS_LIBPATH_AIX. echo 'int main () { return 0; }' > conftest.c ${CC} ${LDFLAGS} conftest.c -o conftest aix_libpath=`dump -H conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` if test -z "$aix_libpath"; then aix_libpath=`dump -HX64 conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` fi if test -z "$aix_libpath"; then aix_libpath="/usr/lib:/lib" fi rm -f conftest.c conftest # End _LT_AC_SYS_LIBPATH_AIX. if test "$aix_use_runtimelinking" = yes; then hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" else if test "$host_cpu" = ia64; then hardcode_libdir_flag_spec='${wl}-R $libdir:/usr/lib:/lib' else hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" fi fi ;; amigaos*) case "$host_cpu" in powerpc) ;; m68k) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; bsdi[45]*) ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec=' ' libext=lib ;; darwin* | rhapsody*) hardcode_direct=no if { case $cc_basename in ifort*) true;; *) test "$GCC" = yes;; esac; }; then : else ld_shlibs=no fi ;; dgux*) hardcode_libdir_flag_spec='-L$libdir' ;; freebsd2.[01]*) hardcode_direct=yes hardcode_minus_L=yes ;; freebsd* | dragonfly*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; hpux9*) hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; hpux10*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no ;; *) hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; netbsd*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; newsos6) hardcode_direct=yes hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; *nto* | *qnx*) ;; openbsd*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then hardcode_libdir_flag_spec='${wl}-rpath,$libdir' else case "$host_os" in openbsd[01].* | openbsd2.[0-7] | openbsd2.[0-7].*) hardcode_libdir_flag_spec='-R$libdir' ;; *) hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; esac fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; osf3*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) if test "$GCC" = yes; then hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' else # Both cc and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi hardcode_libdir_separator=: ;; solaris*) hardcode_libdir_flag_spec='-R$libdir' ;; sunos4*) hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes ;; sysv4) case $host_vendor in sni) hardcode_direct=yes # is this really true??? ;; siemens) hardcode_direct=no ;; motorola) hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac ;; sysv4.3*) ;; sysv4*MP*) if test -d /usr/nec; then ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) ;; sysv5* | sco3.2v5* | sco5v6*) hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-R,$libdir`' hardcode_libdir_separator=':' ;; uts4*) hardcode_libdir_flag_spec='-L$libdir' ;; *) ld_shlibs=no ;; esac fi # Check dynamic linker characteristics # Code taken from libtool.m4's _LT_SYS_DYNAMIC_LINKER. # Unlike libtool.m4, here we don't care about _all_ names of the library, but # only about the one the linker finds when passed -lNAME. This is the last # element of library_names_spec in libtool.m4, or possibly two of them if the # linker has special search rules. library_names_spec= # the last element of library_names_spec in libtool.m4 libname_spec='lib$name' case "$host_os" in aix3*) library_names_spec='$libname.a' ;; aix[4-9]*) library_names_spec='$libname$shrext' ;; amigaos*) case "$host_cpu" in powerpc*) library_names_spec='$libname$shrext' ;; m68k) library_names_spec='$libname.a' ;; esac ;; beos*) library_names_spec='$libname$shrext' ;; bsdi[45]*) library_names_spec='$libname$shrext' ;; cygwin* | mingw* | pw32* | cegcc*) shrext=.dll library_names_spec='$libname.dll.a $libname.lib' ;; darwin* | rhapsody*) shrext=.dylib library_names_spec='$libname$shrext' ;; dgux*) library_names_spec='$libname$shrext' ;; freebsd[23].*) library_names_spec='$libname$shrext$versuffix' ;; freebsd* | dragonfly*) library_names_spec='$libname$shrext' ;; gnu*) library_names_spec='$libname$shrext' ;; haiku*) library_names_spec='$libname$shrext' ;; hpux9* | hpux10* | hpux11*) case $host_cpu in ia64*) shrext=.so ;; hppa*64*) shrext=.sl ;; *) shrext=.sl ;; esac library_names_spec='$libname$shrext' ;; interix[3-9]*) library_names_spec='$libname$shrext' ;; irix5* | irix6* | nonstopux*) library_names_spec='$libname$shrext' case "$host_os" in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= ;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 ;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 ;; *) libsuff= shlibsuff= ;; esac ;; esac ;; linux*oldld* | linux*aout* | linux*coff*) ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) library_names_spec='$libname$shrext' ;; knetbsd*-gnu) library_names_spec='$libname$shrext' ;; netbsd*) library_names_spec='$libname$shrext' ;; newsos6) library_names_spec='$libname$shrext' ;; *nto* | *qnx*) library_names_spec='$libname$shrext' ;; openbsd*) library_names_spec='$libname$shrext$versuffix' ;; os2*) libname_spec='$name' shrext=.dll library_names_spec='$libname.a' ;; osf3* | osf4* | osf5*) library_names_spec='$libname$shrext' ;; rdos*) ;; solaris*) library_names_spec='$libname$shrext' ;; sunos4*) library_names_spec='$libname$shrext$versuffix' ;; sysv4 | sysv4.3*) library_names_spec='$libname$shrext' ;; sysv4*MP*) library_names_spec='$libname$shrext' ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) library_names_spec='$libname$shrext' ;; tpf*) library_names_spec='$libname$shrext' ;; uts4*) library_names_spec='$libname$shrext' ;; esac sed_quote_subst='s/\(["`$\\]\)/\\\1/g' escaped_wl=`echo "X$wl" | sed -e 's/^X//' -e "$sed_quote_subst"` shlibext=`echo "$shrext" | sed -e 's,^\.,,'` escaped_libname_spec=`echo "X$libname_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_library_names_spec=`echo "X$library_names_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_hardcode_libdir_flag_spec=`echo "X$hardcode_libdir_flag_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` LC_ALL=C sed -e 's/^\([a-zA-Z0-9_]*\)=/acl_cv_\1=/' < Copyright (C) This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Also add information on how to contact you by electronic and paper mail. You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the library, if necessary. Here is a sample; alter the names: Yoyodyne, Inc., hereby disclaims all copyright interest in the library `Frob' (a library for tweaking knobs) written by James Random Hacker. , 1 April 1990 Ty Coon, President of Vice That's all there is to it! openconnect-7.06/config.h.in0000664000076400007640000001123212502026422012731 00000000000000/* config.h.in. Generated from configure.ac by autoheader. */ /* p11-kit proxy */ #undef DEFAULT_PKCS11_MODULE /* Location of System CA trust file */ #undef DEFAULT_SYSTEM_CAFILE /* Default vpnc-script locatin */ #undef DEFAULT_VPNCSCRIPT /* Using GnuTLS for DTLS */ #undef DTLS_GNUTLS /* Using OpenSSL for DTLS */ #undef DTLS_OPENSSL /* Enable NLS support */ #undef ENABLE_NLS /* endian header include path */ #undef ENDIAN_HDR /* Using GnuTLS for ESP */ #undef ESP_GNUTLS /* Using OpenSSL for ESP */ #undef ESP_OPENSSL /* GSSAPI header */ #undef GSSAPI_HDR /* Have alloca.h */ #undef HAVE_ALLOCA_H /* Have asprintf() function */ #undef HAVE_ASPRINTF /* Define to 1 if you have the header file. */ #undef HAVE_DLFCN_H /* OpenSSL has DTLSv1_2_client_method() function */ #undef HAVE_DTLS12 /* OpenSSL has dtls1_stop_timer() function */ #undef HAVE_DTLS1_STOP_TIMER /* OpenSSL has ENGINE support */ #undef HAVE_ENGINE /* Have fdevname_r() function */ #undef HAVE_FDEVNAME_R /* Have getline() function */ #undef HAVE_GETLINE /* stupid */ #undef HAVE_GNUTLS_CERTIFICATE_SET_KEY /* I hate autoheader */ #undef HAVE_GNUTLS_CERTIFICATE_SET_X509_SYSTEM_TRUST /* Have this function */ #undef HAVE_GNUTLS_DTLS_SET_DATA_MTU /* Have this function */ #undef HAVE_GNUTLS_PKCS11_GET_RAW_ISSUER /* This one was obvious too */ #undef HAVE_GNUTLS_PKCS12_SIMPLE_PARSE /* autoheader */ #undef HAVE_GNUTLS_PK_TO_SIGN /* autoheader sucks donkey balls */ #undef HAVE_GNUTLS_PUBKEY_EXPORT2 /* the fish are hungry tonight */ #undef HAVE_GNUTLS_SESSION_SET_PREMASTER /* From GnuTLS 3.4.0 */ #undef HAVE_GNUTLS_SYSTEM_KEYS /* From GnuTLS 3.1.0 */ #undef HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION /* Have GSSAPI support */ #undef HAVE_GSSAPI /* Have iconv() function */ #undef HAVE_ICONV /* Have inet_aton() */ #undef HAVE_INET_ATON /* Define to 1 if you have the header file. */ #undef HAVE_INTTYPES_H /* Define to 1 if you have the `log' library (-llog). */ #undef HAVE_LIBLOG /* Define to 1 if you have the `nsl' library (-lnsl). */ #undef HAVE_LIBNSL /* Have libp11 and p11-kit for OpenSSL */ #undef HAVE_LIBP11 /* Have libpcsclite */ #undef HAVE_LIBPCSCLITE /* Have libpskc */ #undef HAVE_LIBPSKC /* Define to 1 if you have the `socket' library (-lsocket). */ #undef HAVE_LIBSOCKET /* Have libstoken */ #undef HAVE_LIBSTOKEN /* LZ4 was found */ #undef HAVE_LZ4 /* Define to 1 if you have the header file. */ #undef HAVE_MEMORY_H /* Have net/utun.h */ #undef HAVE_NET_UTUN_H /* Have nl_langinfo() function */ #undef HAVE_NL_LANGINFO /* Have. P11. Kit. */ #undef HAVE_P11KIT /* Define to 1 if you have the header file. */ #undef HAVE_STDINT_H /* Define to 1 if you have the header file. */ #undef HAVE_STDLIB_H /* Have strcasestr() function */ #undef HAVE_STRCASESTR /* Define to 1 if you have the header file. */ #undef HAVE_STRINGS_H /* Define to 1 if you have the header file. */ #undef HAVE_STRING_H /* Have strndup() function */ #undef HAVE_STRNDUP /* On SunOS time() can go backwards */ #undef HAVE_SUNOS_BROKEN_TIME /* Define to 1 if you have the header file. */ #undef HAVE_SYS_STAT_H /* Define to 1 if you have the header file. */ #undef HAVE_SYS_TYPES_H /* Have Trousers TSS library */ #undef HAVE_TROUSERS /* Define to 1 if you have the header file. */ #undef HAVE_UNISTD_H /* Have vasprintf() function */ #undef HAVE_VASPRINTF /* Have va_copy() */ #undef HAVE_VA_COPY /* Have __va_copy() */ #undef HAVE___VA_COPY /* Define as const if the declaration of iconv() needs const. */ #undef ICONV_CONST /* if_tun.h include path */ #undef IF_TUN_HDR /* libproxy header file */ #undef LIBPROXY_HDR /* Define to the sub-directory in which libtool stores uninstalled libraries. */ #undef LT_OBJDIR /* Using GnuTLS */ #undef OPENCONNECT_GNUTLS /* Using OpenSSL */ #undef OPENCONNECT_OPENSSL /* Name of package */ #undef PACKAGE /* Define to the address where bug reports for this package should be sent. */ #undef PACKAGE_BUGREPORT /* Define to the full name of this package. */ #undef PACKAGE_NAME /* Define to the full name and version of this package. */ #undef PACKAGE_STRING /* Define to the one symbol short name of this package. */ #undef PACKAGE_TARNAME /* Define to the home page for this package. */ #undef PACKAGE_URL /* Define to the version of this package. */ #undef PACKAGE_VERSION /* Define to 1 if you have the ANSI C header files. */ #undef STDC_HEADERS /* Version number of package */ #undef VERSION /* _GNU_SOURCE */ #undef _GNU_SOURCE /* _NETBSD_SOURCE */ #undef _NETBSD_SOURCE /* _POSIX_C_SOURCE */ #undef _POSIX_C_SOURCE /* Windows API version */ #undef _WIN32_WINNT openconnect-7.06/android/0000775000076400007640000000000012502026432012410 500000000000000openconnect-7.06/android/run_pie.c0000664000076400007640000000720212453040465014145 00000000000000// Copyright 2014 The Chromium Authors. All rights reserved. // // Redistribution and use in source and binary forms, with or without // modification, are permitted provided that the following conditions are // met: // // * Redistributions of source code must retain the above copyright // notice, this list of conditions and the following disclaimer. // * Redistributions in binary form must reproduce the above // copyright notice, this list of conditions and the following disclaimer // in the documentation and/or other materials provided with the // distribution. // * Neither the name of Google Inc. nor the names of its // contributors may be used to endorse or promote products derived from // this software without specific prior written permission. // // THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS // "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT // LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR // A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT // OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, // SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT // LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, // DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY // THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. #include #include #include #include #include // This is a wrapper to run position independent executables on Android ICS, // where the linker doesn't support PIE. This requires the PIE binaries to be // built with CFLAGS +=-fvisibility=default -fPIE, and LDFLAGS += -rdynamic -pie // such that the main() symbol remains exported and can be dlsym-ed. #define ERR_PREFIX "[PIE Loader] " typedef int (*main_t)(int, char**); int main(int argc, char** argv) { if (argc < 2) { printf("Usage: %s path_to_pie_executable [args]\n", argv[0]); return -1; } // Shift left the argv[]. argv is what /proc/PID/cmdline prints out. In turn // cmdline is what Android "ps" prints out. In turn "ps" is what many scripts // look for to decide which processes to kill / killall. int i; char* next_argv_start = argv[0]; for (i = 1; i < argc; ++i) { const size_t argv_len = strlen(argv[i]) + 1; memmove(argv[i - 1], argv[i], argv_len); next_argv_start += argv_len; argv[i] = next_argv_start; } argv[argc - 1] = NULL; // The last argv must be a NULL ptr. // Set also the proc name accordingly (/proc/PID/comm). prctl(PR_SET_NAME, (long) argv[0]); // dlopen should not fail, unless: // - The target binary does not exists: // - The dependent .so libs cannot be loaded. // In both cases, just bail out with an explicit error message. void* handle = dlopen(argv[0], RTLD_NOW); if (handle == NULL) { printf(ERR_PREFIX "dlopen() failed: %s.\n", dlerror()); return -1; } main_t pie_main = (main_t) dlsym(handle, "main"); if (pie_main) { return pie_main(argc - 1, argv); } // If we reached this point dlsym failed, very likely because the target // binary has not been compiled with the proper CFLAGS / LDFLAGS. // At this point the most sensible thing to do is running that normally // via exec and hope that the target binary wasn't a PIE. execv(argv[0], argv); // exevc is supposed to never return, unless it fails. printf(ERR_PREFIX "Both dlsym() and the execv() fallback failed.\n"); perror("execv"); return -1; } openconnect-7.06/android/install_symlink.sh0000775000076400007640000000047412453040465016117 00000000000000#!/bin/bash unset SRCS unset DST while [ $# -gt 1 ]; do case "$1" in -d) MAKEDIR=1 shift ;; -c|-C|-s) shift ;; -m|-g|-o) shift 2; ;; *) SRCS="$SRCS $(readlink -f "$1")" shift ;; esac done if [ ! -z $MAKEDIR ]; then mkdir -p $1 fi cp -f $SRCS "$1" openconnect-7.06/android/Makefile0000664000076400007640000003116112474046503014003 00000000000000# # This Makefile attempts to build OpenConnect and its dependencies for Android # # It doesn't do a stunning job of tracking changes in the dependencies and # automatically rebuilding them, but it's good enough for getting them built # and installed into its own local sysroot. # # As long as you have the Android NDK toolchain on your path, you should then # be able to edit fairly much anything in place and rebuild it locally. # # It should also be fairly simple to extend this to cross-compile for any target NDK := /opt/android-sdk-linux_x86/android-ndk-r10d/ ARCH := arm # You should be able to just 'make ARCH=x86' and it should DTRT. ifeq ($(ARCH),arm) TRIPLET := arm-linux-androideabi OPENSSL_TARGET := android-armv7 EXTRA_CFLAGS := -march=armv7-a endif ifeq ($(ARCH),x86) TRIPLET := i686-linux-android OPENSSL_TARGET := android-x86 endif ifeq ($(ARCH),mips) TRIPLET := mipsel-linux-android OPENSSL_TARGET := android EXTRA_LDFLAGS := -lz endif TOPDIR := $(shell pwd) DESTDIR := $(TOPDIR)/$(TRIPLET)/out TOOLCHAIN := $(TOPDIR)/$(TRIPLET)/toolchain TOOLCHAIN_BUILT := $(TOOLCHAIN)/.built TOOLCHAIN_OPTS := --platform=android-14 --arch=$(ARCH) \ --install-dir=$(TOOLCHAIN) PATH := $(TOOLCHAIN)/bin:$(PATH) OC_SYSROOT := $(TOOLCHAIN)/sysroot/usr PKG_CONFIG_LIBDIR := $(OC_SYSROOT)/lib/pkgconfig export PATH PKG_CONFIG_LIBDIR # PKG_CONFIG_LIBDIR gets exported to sub-makes, but not to $(shell PKG_CONFIG := PKG_CONFIG_LIBDIR=$(PKG_CONFIG_LIBDIR) pkg-config MAKEINSTALL=$(MAKE) INSTALL=$(TOPDIR)/install_symlink.sh FETCH=$(TOPDIR)/fetch.sh CONFIGURE_ARGS := --host=$(TRIPLET) --prefix=$(OC_SYSROOT) \ --disable-shared --enable-static \ CFLAGS="$(EXTRA_CFLAGS)" SOURCE_LIST = $(LIBXML2_SRC)/configure $(GMP_SRC)/configure \ $(NETTLE_SRC)/configure $(GNUTLS_SRC)/configure \ $(STOKEN_SRC)/configure $(OATH_SRC)/configure \ $(LZ4_DIR)/Makefile PKG_LIST := LIBXML2 OPENSSL GMP NETTLE GNUTLS STOKEN OATH LZ4 MIRROR_TEST_TARGETS := $(addprefix mirror-test-,$(PKG_LIST)) all: openconnect run_pie ##################################################################### # # Install a local cross toolchain + sysroot # # (The fallback logic is because NDK versions <= r8e can fail after trying to # use 32-bit binaries on a 64-bit NDK installation.) # $(TOOLCHAIN_BUILT): mkdir -p $(TOOLCHAIN) $(NDK)/build/tools/make-standalone-toolchain.sh $(TOOLCHAIN_OPTS) || \ $(NDK)/build/tools/make-standalone-toolchain.sh \ $(TOOLCHAIN_OPTS) --system=linux-x86_64 touch $@ ##################################################################### # # Build libxml2 with minimal configuration for OpenConnect # LIBXML2_VER := 2.9.0 LIBXML2_TAR := libxml2-$(LIBXML2_VER).tar.gz LIBXML2_SHA1 := a43d7c0a8e463ac5a7846254f2a732a9af146fab LIBXML2_SRC := sources/libxml2-$(LIBXML2_VER) LIBXML2_BUILD := $(TRIPLET)/libxml2 $(LIBXML2_TAR): $(FETCH) $@ $(LIBXML2_SHA1) $(LIBXML2_SRC)/configure: $(LIBXML2_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(LIBXML2_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(LIBXML2_SRC)/configure mkdir -p $(LIBXML2_BUILD) cd $(LIBXML2_BUILD) && ../../$(LIBXML2_SRC)/configure $(CONFIGURE_ARGS) \ --without-c14n -without-catalog --without-debug --without-docbook \ --without-fexceptions --without-ftp --without-history \ --without-http --without-iconv --without-iconv \ --without-iso8859x --without-legacy --without-pattern \ --without-push --without-regexps --without-run-debug \ --without-sax1 --without-schemas --without-schematron \ --without-threads --without-valid --without-xinclude \ --without-xpath --without-xptr --without-zlib --without-lzma \ --without-coverage --without-python $(LIBXML2_BUILD)/libxml2.la: $(LIBXML2_BUILD)/Makefile $(MAKE) -C $(LIBXML2_BUILD) libxml2.la $(LIBXML2_BUILD)/libxml-2.0.pc: $(LIBXML2_BUILD)/Makefile $(MAKE) -C $(LIBXML2_BUILD) libxml-2.0.pc $(OC_SYSROOT)/lib/libxml2.la: $(LIBXML2_BUILD)/libxml2.la $(MAKEINSTALL) -C $(LIBXML2_BUILD) install-libLTLIBRARIES $(OC_SYSROOT)/lib/pkgconfig/libxml-2.0.pc: $(LIBXML2_BUILD)/libxml-2.0.pc $(MAKEINSTALL) -C $(LIBXML2_BUILD) install-data LIBXML_DEPS := $(OC_SYSROOT)/lib/libxml2.la $(OC_SYSROOT)/lib/pkgconfig/libxml-2.0.pc libxml: $(LIBXML_DEPS) ##################################################################### # # Build OpenSSL for Android # OPENSSL_VER := 1.0.1g OPENSSL_TAR := openssl-$(OPENSSL_VER).tar.gz OPENSSL_SHA1 := b28b3bcb1dc3ee7b55024c9f795be60eb3183e3c OPENSSL_DIR := $(TRIPLET)/openssl-$(OPENSSL_VER) $(OPENSSL_TAR): $(FETCH) $@ $(OPENSSL_SHA1) $(OPENSSL_DIR)/Configure: $(OPENSSL_TAR) mkdir -p $(TRIPLET) tar xfz $< -C $(TRIPLET) touch $(OPENSSL_DIR)/Configure # Make sure it's newer than Makefile and tarball $(OPENSSL_DIR)/Makefile: $(TOOLCHAIN_BUILT) $(OPENSSL_DIR)/Configure cd $(OPENSSL_DIR) && perl Configure --prefix=$(OC_SYSROOT) \ --cross-compile-prefix=$(TRIPLET)- no-shared \ $(OPENSSL_TARGET):gcc $(OPENSSL_DIR)/libssl.a: $(OPENSSL_DIR)/Makefile $(MAKE) -C $(OPENSSL_DIR) $(OC_SYSROOT)/lib/libssl.a: $(OPENSSL_DIR)/libssl.a # Do this manually instead of using 'make install' since we want symlinks mkdir -p $(OC_SYSROOT)/include/openssl ln -sf $(shell pwd)/$(OPENSSL_DIR)/include/openssl/*.h $(OC_SYSROOT)/include/openssl mkdir -p $(OC_SYSROOT)/lib/pkgconfig ln -sf $(shell pwd)/$(OPENSSL_DIR)/*.pc $(OC_SYSROOT)/lib/pkgconfig ln -sf $(shell pwd)/$(OPENSSL_DIR)/*.a $(OC_SYSROOT)/lib OPENSSL_DEPS := $(OC_SYSROOT)/lib/libssl.a openssl: $(OPENSSL_DEPS) ##################################################################### # # Build GNU MP # GMP_VER := 5.1.2 GMP_TAR := gmp-$(GMP_VER).tar.bz2 GMP_SHA1 := 2cb498322b9be4713829d94dee944259c017d615 GMP_SRC := sources/gmp-$(GMP_VER) GMP_BUILD := $(TRIPLET)/gmp $(GMP_TAR): $(FETCH) $@ $(GMP_SHA1) $(GMP_SRC)/configure: $(GMP_TAR) mkdir -p sources tar xfj $< -C sources touch $@ $(GMP_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GMP_SRC)/configure mkdir -p $(GMP_BUILD) cd $(GMP_BUILD) && ../../$(GMP_SRC)/configure $(CONFIGURE_ARGS) $(GMP_BUILD)/libgmp.la: $(GMP_BUILD)/Makefile $(MAKE) -C $(GMP_BUILD) $(OC_SYSROOT)/lib/libgmp.la: $(GMP_BUILD)/libgmp.la $(MAKEINSTALL) -C $(GMP_BUILD) install GMP_DEPS := $(OC_SYSROOT)/lib/libgmp.la gmp: $(GMP_DEPS) ##################################################################### # # Build nettle # NETTLE_VER := 2.7.1 NETTLE_TAR := nettle-$(NETTLE_VER).tar.gz NETTLE_SHA1 := e7477df5f66e650c4c4738ec8e01c2efdb5d1211 NETTLE_SRC := sources/nettle-$(NETTLE_VER) NETTLE_BUILD := $(TRIPLET)/nettle $(NETTLE_TAR): $(FETCH) $@ $(NETTLE_SHA1) $(NETTLE_SRC)/configure: $(NETTLE_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(NETTLE_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(NETTLE_SRC)/configure $(GMP_DEPS) mkdir -p $(NETTLE_BUILD) cd $(NETTLE_BUILD) && ../../$(NETTLE_SRC)/configure $(CONFIGURE_ARGS) $(NETTLE_BUILD)/libnettle.a: $(NETTLE_BUILD)/Makefile $(MAKE) -C $(NETTLE_BUILD) SUBDIRS= $(OC_SYSROOT)/lib/libnettle.a: $(NETTLE_BUILD)/libnettle.a $(MAKEINSTALL) -C $(NETTLE_BUILD) SUBDIRS= install NETTLE_DEPS := $(OC_SYSROOT)/lib/libnettle.a nettle: $(NETTLE_DEPS) ##################################################################### # # Build GnuTLS # GNUTLS_VER := 3.2.21 GNUTLS_TAR := gnutls-$(GNUTLS_VER).tar.xz GNUTLS_SHA1 := fa12e643ad21bcaf450d534f262c813d75843966 GNUTLS_SRC := sources/gnutls-$(GNUTLS_VER) GNUTLS_BUILD := $(TRIPLET)/gnutls $(GNUTLS_TAR): $(FETCH) $@ $(GNUTLS_SHA1) $(GNUTLS_SRC)/configure: $(GNUTLS_TAR) mkdir -p sources xz -d < $< | tar xf - -C sources touch $@ #$(GNUTLS_SRC)/configure.ac: # mkdir -p sources # cd sources && git clone git://gitorious.org/gnutls/gnutls.git #$(GNUTLS_SRC)/configure: $(GNUTLS_SRC)/configure.ac # touch $(GNUTLS_SRC)/ChangeLog # cd $(GNUTLS_SRC) && autoreconf -fvi $(GNUTLS_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GNUTLS_SRC)/configure $(NETTLE_DEPS) mkdir -p $(GNUTLS_BUILD) cd $(GNUTLS_BUILD) && ../../$(GNUTLS_SRC)/configure $(CONFIGURE_ARGS) \ AUTOGEN=/bin/true \ --disable-threads --disable-tests --without-zlib --disable-nls \ --disable-doc --disable-openssl-compatibility --disable-cxx \ --disable-openssl-compatibility --disable-ocsp \ --disable-openpgp-authentication --disable-anon-authentication \ --disable-psk-authentication --disable-srp-authentication \ --disable-dtls-srtp-support --enable-dhe --enable-ecdhe \ --disable-rsa-export $(GNUTLS_BUILD)/lib/libgnutls.la: $(GNUTLS_BUILD)/Makefile $(MAKE) -C $(GNUTLS_BUILD) $(OC_SYSROOT)/lib/libgnutls.la: $(GNUTLS_BUILD)/lib/libgnutls.la $(MAKEINSTALL) -C $(GNUTLS_BUILD) install GNUTLS_DEPS := $(OC_SYSROOT)/lib/libgnutls.la gnutls: $(GNUTLS_DEPS) ##################################################################### # # Build libstoken # STOKEN_VER := 0.81 STOKEN_TAR := stoken-$(STOKEN_VER).tar.gz STOKEN_SHA1 := db36aec5a8bd3f5f92deaebdea08cb639b78da73 STOKEN_SRC := sources/stoken-$(STOKEN_VER) STOKEN_BUILD := $(TRIPLET)/stoken $(STOKEN_TAR): $(FETCH) $@ $(STOKEN_SHA1) $(STOKEN_SRC)/configure: $(STOKEN_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(STOKEN_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(STOKEN_SRC)/configure $(NETTLE_DEPS) mkdir -p $(STOKEN_BUILD) cd $(STOKEN_BUILD) && ../../$(STOKEN_SRC)/configure $(CONFIGURE_ARGS) \ --without-gtk $(STOKEN_BUILD)/libstoken.la: $(STOKEN_BUILD)/Makefile $(MAKE) -C $(STOKEN_BUILD) $(OC_SYSROOT)/lib/libstoken.la: $(STOKEN_BUILD)/libstoken.la $(MAKEINSTALL) -C $(STOKEN_BUILD) install STOKEN_DEPS := $(OC_SYSROOT)/lib/libstoken.la stoken: $(STOKEN_DEPS) ##################################################################### # # Build liboath # OATH_VER := 2.4.1 OATH_TAR := oath-toolkit-$(OATH_VER).tar.gz OATH_SHA1 := b0ca4c5f89c12c550f7227123c2f21f45b2bf969 OATH_SRC := sources/oath-toolkit-$(OATH_VER) OATH_BUILD := $(TRIPLET)/oath $(OATH_TAR): $(FETCH) $@ $(OATH_SHA1) $(OATH_SRC)/configure: $(OATH_TAR) mkdir -p sources tar xfz $< -C sources cd $(OATH_SRC) && patch -p1 < ../../0001-fflush-freadahead-fseeko-Fix-for-Android.patch touch $@ $(OATH_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(OATH_SRC)/configure mkdir -p $(OATH_BUILD) cd $(OATH_BUILD) && ../../$(OATH_SRC)/configure $(CONFIGURE_ARGS) \ --disable-pskc --disable-pam $(OATH_BUILD)/liboath/liboath.la: $(OATH_BUILD)/Makefile $(MAKE) -C $(OATH_BUILD) $(OC_SYSROOT)/lib/liboath.la: $(OATH_BUILD)/liboath/liboath.la $(MAKEINSTALL) -C $(OATH_BUILD) install OATH_DEPS := $(OC_SYSROOT)/lib/liboath.la oath: $(OATH_DEPS) ##################################################################### # # Build liblz4 # LZ4_VER := r127 LZ4_TAR := lz4-$(LZ4_VER).tar.gz LZ4_SHA1 := 1aa7d4bb62eb79f88b33f86f9890dc9f96797af5 LZ4_DIR := $(TRIPLET)/lz4-$(LZ4_VER) $(LZ4_TAR): $(FETCH) $@ $(LZ4_SHA1) $(LZ4_DIR)/Makefile: $(LZ4_TAR) mkdir -p $(TRIPLET) tar xzf $< -C $(TRIPLET) touch $@ $(OC_SYSROOT)/lib/liblz4.a: $(TOOLCHAIN_BUILT) $(LZ4_DIR)/Makefile $(MAKE) -C $(LZ4_DIR)/lib \ CC="$(TRIPLET)-gcc $(EXTRA_CFLAGS)" \ AR="$(TRIPLET)-ar" \ LIBDIR=$(OC_SYSROOT)/lib \ INCLUDEDIR=$(OC_SYSROOT)/include \ install rm -f $(OC_SYSROOT)/lib/liblz4.so* LZ4_DEPS := $(OC_SYSROOT)/lib/liblz4.a lz4: $(LZ4_DEPS) ##################################################################### # # Build OpenConnect for Android # OPENCONNECT_SRC := .. OPENCONNECT_BUILD := $(TRIPLET)/openconnect $(OPENCONNECT_SRC)/configure: cd $(OPENCONNECT_SRC) && ./autogen.sh $(OPENCONNECT_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GNUTLS_DEPS) $(LIBXML_DEPS) \ $(STOKEN_DEPS) $(OATH_DEPS) $(LZ4_DEPS) $(OPENCONNECT_SRC)/configure mkdir -p $(OPENCONNECT_BUILD) cd $(OPENCONNECT_BUILD) && ../../../configure \ --host=$(TRIPLET) --prefix=/ \ CFLAGS="$(EXTRA_CFLAGS) -fvisibility=default -fPIE" \ LDFLAGS="$(EXTRA_LDFLAGS) -rdynamic -pie" \ GNUTLS_LIBS="$(shell $(PKG_CONFIG) --static --libs gnutls)" \ LIBSTOKEN_LIBS="$(shell $(PKG_CONFIG) --static --libs stoken)" \ --enable-shared --with-vpnc-script=/etc/vpnc/vpnc-script \ --with-java=$(OC_SYSROOT)/include --enable-jni-standalone \ --disable-symvers openconnect: $(OPENCONNECT_BUILD)/Makefile make -C $(OPENCONNECT_BUILD) make -C $(OPENCONNECT_BUILD) install-strip DESTDIR=$(DESTDIR) ##################################################################### # # Build run_pie helper program # $(DESTDIR)/sbin/run_pie: run_pie.c $(TOOLCHAIN_BUILT) mkdir -p $(DESTDIR)/sbin $(TRIPLET)-gcc $< -o $@ -ldl .PHONY: run_pie run_pie: $(DESTDIR)/sbin/run_pie ##################################################################### # # Special targets for maintainer use # # download + extract, but do not build .PHONY: sources sources: $(SOURCE_LIST) .PHONY: $(MIRROR_TEST_TARGETS) $(MIRROR_TEST_TARGETS) : mirror-test-% : $(FETCH) --mirror-test $($(*)_TAR) $($(*)_SHA1) # (re)test all mirrors for all packages. safe for use with "make -jN" .PHONY: mirror-test mirror-test: $(MIRROR_TEST_TARGETS) openconnect-7.06/android/0001-fflush-freadahead-fseeko-Fix-for-Android.patch0000664000076400007640000000356312466645633023452 00000000000000fflush, freadahead, and fseeko have trouble compiling on Android[1] because they need access to internal elements of the FILE struct. Bionic libc[2], like OpenBSD libc[3], puts the ungetc buffer "_ub" at the beginning of the __sfileext struct. Therefore we can reuse the existing OpenBSD implementation for Android. Test results (Android 4.2.2, ARMv7, NDK r9): root@android:/data/local/tmp # export srcdir=`pwd` root@android:/data/local/tmp # ./test-fflush2.sh ; echo $? 0 root@android:/data/local/tmp # ./test-freadahead.sh ; echo $? 0 root@android:/data/local/tmp # ./test-fseeko.sh ; echo $? 0 root@android:/data/local/tmp # ./test-fseeko2.sh ; echo $? Skipping test: ungetc cannot handle arbitrary bytes 77 root@android:/data/local/tmp # ./test-fseeko3.sh ; echo $? 0 root@android:/data/local/tmp # ./test-fseeko4.sh ; echo $? 0 [1] http://lists.gnu.org/archive/html/bug-gnulib/2012-01/msg00295.html [2] https://android.googlesource.com/platform/bionic/+/android-4.3_r2.2/libc/stdio/fileext.h [3] http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/stdio/fileext.h?rev=1.2;content-type=text%2Fplain diff --git a/liboath/gl/stdio-impl.h b/liboath/gl/stdio-impl.h index e00600a..45291cf 100644 --- a/liboath/gl/stdio-impl.h +++ b/liboath/gl/stdio-impl.h @@ -57,7 +57,7 @@ # define fp_ fp # endif -# if (defined __NetBSD__ && __NetBSD_Version__ >= 105270000) || defined __OpenBSD__ /* NetBSD >= 1.5ZA, OpenBSD */ +# if (defined __NetBSD__ && __NetBSD_Version__ >= 105270000) || defined __OpenBSD__ || defined __ANDROID__ /* NetBSD >= 1.5ZA, OpenBSD, Android */ /* See and */ struct __sfileext -- 1.7.10.4 openconnect-7.06/android/fetch.sh0000775000076400007640000001206012474046503013770 00000000000000#!/bin/bash # # OpenConnect (SSL + DTLS) VPN client # # Copyright © 2014 Kevin Cernekee # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # version 2.1, as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # set -e libxml2_MIRROR_0=ftp://xmlsoft.org/libxml2 libxml2_MIRROR_1=ftp://gd.tuwien.ac.at/pub/libxml libxml2_MIRROR_2=http://distfiles.macports.org/libxml2 openssl_MIRROR_0=http://www.openssl.org/source openssl_MIRROR_1=http://mirror.switch.ch/ftp/mirror/openssl/source openssl_MIRROR_2=ftp://ftp.pca.dfn.de/pub/tools/net/openssl/source openssl_MIRROR_3=ftp://sunsite.uio.no/pub/security/openssl/source gmp_MIRROR_0=http://ftp.gnu.org/gnu/gmp gmp_MIRROR_1=ftp://ftp.gmplib.org/pub/gmp gmp_MIRROR_2=http://mirror.anl.gov/pub/gnu/gmp gmp_MIRROR_3=http://www.mirrorservice.org/sites/ftp.gnu.org/gnu/gmp nettle_MIRROR_0=http://www.lysator.liu.se/~nisse/archive nettle_MIRROR_1=http://mirror.anl.gov/pub/gnu/nettle nettle_MIRROR_2=http://ftp.gnu.org/gnu/nettle nettle_MIRROR_3=http://gd.tuwien.ac.at/gnu/gnusrc/nettle gnutls_MIRROR_0=ftp://ftp.gnutls.org/gcrypt/gnutls/v3.2 gnutls_MIRROR_1=http://ftp.heanet.ie/mirrors/ftp.gnupg.org/gcrypt/gnutls/v3.2 gnutls_MIRROR_2=http://gd.tuwien.ac.at/pub/gnupg/gnutls/v3.2 gnutls_MIRROR_3=http://thammuz.tchpc.tcd.ie/mirrors/gnupg/gnutls/v3.2 stoken_MIRROR_0=http://sourceforge.net/projects/stoken/files stoken_SUFFIX_0=/download oath_toolkit_MIRROR_0=http://download.savannah.gnu.org/releases/oath-toolkit oath_toolkit_MIRROR_1=http://packetstorm.wowhacker.com/UNIX/utilities oath_toolkit_MIRROR_2=ftp://ftp.netbsd.org/pub/pkgsrc/distfiles lz4_MIRROR_0=https://github.com/Cyan4973/lz4/archive MAX_TRIES=5 function make_url { local tarball="$1" local mirror_idx="$2" local pkg="${tarball%-*}" pkg="${pkg/-/_}" if [[ "$pkg" =~ [^[:alnum:]_] ]]; then echo "" return fi eval local mirror_base="\$${pkg}_MIRROR_${mirror_idx}" eval local mirror_suffix="\$${pkg}_SUFFIX_${mirror_idx}" if [ -z "$mirror_base" ]; then echo "" return fi if [[ "${mirror_base}" = *//github.com*/archive* ]]; then # typical format: https://github.com/USER/PKG/archive/TAG.tar.gz echo "${mirror_base}/${tarball#*-}" else # typical format: http://.../PKG-TAG.tar.gz echo "${mirror_base}/${tarball}${mirror_suffix}" fi return } function check_hash { local tarball="$1" local good_hash="$2" local actual_hash=$(sha1sum "$tarball") actual_hash=${actual_hash:0:40} if [ "$actual_hash" = "$good_hash" ]; then return 0 else echo "$tarball: hash mismatch" echo " expected: $good_hash" echo " got instead: $actual_hash" return 1 fi } function download_and_check { local url="$1" local tmpfile="$2" local hash="$3" rm -f "$tmpfile" if curl --location --connect-timeout 30 --speed-limit 1024 \ -o "$tmpfile" "$url"; then if [ -n "$hash" ]; then if ! check_hash "$tmpfile" "$hash"; then return 1 fi fi return 0 fi return 1 } # iterate through all available mirrors and make sure they have a good copy # of $tarball function mirror_test { local tarball="$1" local good_hash="$2" if [ -z "$good_hash" ]; then echo "ERROR: you must specify the hash for testing mirrors" exit 1 fi local mirror_idx=0 local tmpfile="${tarball}.mirror-test.tmp" while :; do local url=$(make_url "$tarball" "$mirror_idx") if [ -z "$url" ]; then break fi echo "" echo "Testing mirror $url" echo "" if download_and_check "$url" "$tmpfile" "$good_hash"; then echo "" echo "SHA1 $good_hash OK." echo "" else exit 1 fi echo "" mirror_idx=$((mirror_idx + 1)) done rm -f "$tmpfile" echo "Mirror test for $tarball PASSED" echo "" exit 0 } # # MAIN # if [ "$1" = "--mirror-test" ]; then mirror_test=1 shift else mirror_test=0 fi if [ -z "$1" ]; then echo "usage: $0 [ --mirror-test ] [ ]" exit 1 fi tarball="$1" hash="$2" if [ $mirror_test = 1 ]; then mirror_test "$tarball" "$hash" exit 1 fi if [ -e "$tarball" -a -n "$hash" ]; then if check_hash "$tarball" "$hash"; then echo "$tarball hash check passed. Done." echo "" exit 0 fi fi tries=1 tmpfile="${tarball}.tmp" while :; do mirror_idx=0 while :; do url=$(make_url "$tarball" "$mirror_idx") if [ -z "$url" ]; then if [ $mirror_idx = 0 ]; then echo "No mirrors found for $tarball" exit 1 else break fi fi echo "" echo "Attempt #$tries for mirror $url:" echo "" if download_and_check "$url" "$tmpfile" "$hash"; then mv "$tmpfile" "$tarball" exit 0 fi echo "" mirror_idx=$((mirror_idx + 1)) done tries=$((tries + 1)) if [ $tries -gt $MAX_TRIES ]; then break fi echo "All mirrors failed; sleeping 10 seconds..." echo "" sleep 10 done rm -f "$tarball" "$tmpfile" echo "ERROR: Unable to download $tarball" echo "" exit 1 openconnect-7.06/gnutls_pkcs12.c0000664000076400007640000003500212461546130013561 00000000000000/* * This is (now) gnutls_pkcs12_simple_parse() from GnuTLS 3.1, although * it was actually taken from parse_pkcs12() in GnuTLS 2.12.x (where it * was under LGPLv2.1) and modified locally. The modifications were * accepted back into GnuTLS in commit 9a43e8fa. Further modifications * by Nikos Mavrogiannopoulos are included here under LGPLv2.1 with his * explicit permission. */ #include #ifndef HAVE_GNUTLS_PKCS12_SIMPLE_PARSE #include #include "gnutls.h" #define opaque unsigned char #define gnutls_assert() do {} while(0) #define gnutls_assert_val(x) (x) /* * Copyright (C) 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010 * Free Software Foundation, Inc. * * Author: Nikos Mavrogiannopoulos * * This file WAS part of GnuTLS. * * The GnuTLS is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * as published by the Free Software Foundation; either version 2.1 of * the License, or (at your option) any later version. * * This library is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* Checks if the extra_certs contain certificates that may form a chain * with the first certificate in chain (it is expected that chain_len==1) * and appends those in the chain. */ static int make_chain(gnutls_x509_crt_t **chain, unsigned int *chain_len, gnutls_x509_crt_t **extra_certs, unsigned int *extra_certs_len) { unsigned int i; if (*chain_len != 1) return gnutls_assert_val(GNUTLS_E_INVALID_REQUEST); i = 0; while(i<*extra_certs_len) { /* if it is an issuer but not a self-signed one */ if (gnutls_x509_crt_check_issuer((*chain)[*chain_len - 1], (*extra_certs)[i]) != 0 && gnutls_x509_crt_check_issuer((*extra_certs)[i], (*extra_certs)[i]) == 0) { void *tmp = *chain; *chain = gnutls_realloc (*chain, sizeof((*chain)[0]) * ++(*chain_len)); if (*chain == NULL) { gnutls_assert(); gnutls_free(tmp); return GNUTLS_E_MEMORY_ERROR; } (*chain)[*chain_len - 1] = (*extra_certs)[i]; (*extra_certs)[i] = (*extra_certs)[*extra_certs_len-1]; (*extra_certs_len)--; i=0; continue; } i++; } return 0; } /** * gnutls_pkcs12_simple_parse: * @p12: the PKCS#12 blob. * @password: optional password used to decrypt PKCS#12 blob, bags and keys. * @key: a structure to store the parsed private key. * @chain: the corresponding to key certificate chain * @chain_len: will be updated with the number of additional * @extra_certs: optional pointer to receive an array of additional * certificates found in the PKCS#12 blob. * @extra_certs_len: will be updated with the number of additional * certs. * @crl: an optional structure to store the parsed CRL. * @flags: should be zero * * This function parses a PKCS#12 blob in @p12blob and extracts the * private key, the corresponding certificate chain, and any additional * certificates and a CRL. * * The @extra_certs_ret and @extra_certs_ret_len parameters are optional * and both may be set to %NULL. If either is non-%NULL, then both must * be. * * MAC:ed PKCS#12 files are supported. Encrypted PKCS#12 bags are * supported. Encrypted PKCS#8 private keys are supported. However, * only password based security, and the same password for all * operations, are supported. * * The private keys may be RSA PKCS#1 or DSA private keys encoded in * the OpenSSL way. * * PKCS#12 file may contain many keys and/or certificates, and there * is no way to identify which key/certificate pair you want. You * should make sure the PKCS#12 file only contain one key/certificate * pair and/or one CRL. * * It is believed that the limitations of this function is acceptable * for most usage, and that any more flexibility would introduce * complexity that would make it harder to use this functionality at * all. * * If the provided structure has encrypted fields but no password * is provided then this function returns %GNUTLS_E_DECRYPTION_FAILED. * * Returns: On success, %GNUTLS_E_SUCCESS (0) is returned, otherwise a * negative error value. * * Since: 3.1 **/ int gnutls_pkcs12_simple_parse (gnutls_pkcs12_t p12, const char *password, gnutls_x509_privkey_t * key, gnutls_x509_crt_t ** chain, unsigned int * chain_len, gnutls_x509_crt_t ** extra_certs, unsigned int * extra_certs_len, gnutls_x509_crl_t * crl, unsigned int flags) { gnutls_pkcs12_bag_t bag = NULL; gnutls_x509_crt_t *_extra_certs = NULL; unsigned int _extra_certs_len = 0; gnutls_x509_crt_t *_chain = NULL; unsigned int _chain_len = 0; int idx = 0; int ret; size_t cert_id_size = 0; size_t key_id_size = 0; opaque cert_id[20]; opaque key_id[20]; int privkey_ok = 0; *key = NULL; if (crl) *crl = NULL; /* find the first private key */ for (;;) { int elements_in_bag; int i; ret = gnutls_pkcs12_bag_init (&bag); if (ret < 0) { bag = NULL; gnutls_assert (); goto done; } ret = gnutls_pkcs12_get_bag (p12, idx, bag); if (ret == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE) break; if (ret < 0) { gnutls_assert (); goto done; } ret = gnutls_pkcs12_bag_get_type (bag, 0); if (ret < 0) { gnutls_assert (); goto done; } if (ret == GNUTLS_BAG_ENCRYPTED) { if (password == NULL) { ret = gnutls_assert_val(GNUTLS_E_DECRYPTION_FAILED); goto done; } ret = gnutls_pkcs12_bag_decrypt (bag, password); if (ret < 0) { gnutls_assert (); goto done; } } elements_in_bag = gnutls_pkcs12_bag_get_count (bag); if (elements_in_bag < 0) { gnutls_assert (); goto done; } for (i = 0; i < elements_in_bag; i++) { int type; gnutls_datum_t data; type = gnutls_pkcs12_bag_get_type (bag, i); if (type < 0) { gnutls_assert (); goto done; } ret = gnutls_pkcs12_bag_get_data (bag, i, &data); if (ret < 0) { gnutls_assert (); goto done; } switch (type) { case GNUTLS_BAG_PKCS8_ENCRYPTED_KEY: if (password == NULL) { ret = gnutls_assert_val(GNUTLS_E_DECRYPTION_FAILED); goto done; } case GNUTLS_BAG_PKCS8_KEY: if (*key != NULL) /* too simple to continue */ { gnutls_assert (); break; } ret = gnutls_x509_privkey_init (key); if (ret < 0) { gnutls_assert (); goto done; } ret = gnutls_x509_privkey_import_pkcs8 (*key, &data, GNUTLS_X509_FMT_DER, password, type == GNUTLS_BAG_PKCS8_KEY ? GNUTLS_PKCS_PLAIN : 0); if (ret < 0) { gnutls_assert (); goto done; } key_id_size = sizeof (key_id); ret = gnutls_x509_privkey_get_key_id (*key, 0, key_id, &key_id_size); if (ret < 0) { gnutls_assert (); goto done; } privkey_ok = 1; /* break */ break; default: break; } } idx++; gnutls_pkcs12_bag_deinit (bag); if (privkey_ok != 0) /* private key was found */ break; } if (privkey_ok == 0) /* no private key */ { gnutls_assert (); return GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE; } /* now find the corresponding certificate */ idx = 0; bag = NULL; for (;;) { int elements_in_bag; int i; ret = gnutls_pkcs12_bag_init (&bag); if (ret < 0) { bag = NULL; gnutls_assert (); goto done; } ret = gnutls_pkcs12_get_bag (p12, idx, bag); if (ret == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE) break; if (ret < 0) { gnutls_assert (); goto done; } ret = gnutls_pkcs12_bag_get_type (bag, 0); if (ret < 0) { gnutls_assert (); goto done; } if (ret == GNUTLS_BAG_ENCRYPTED) { ret = gnutls_pkcs12_bag_decrypt (bag, password); if (ret < 0) { gnutls_assert (); goto done; } } elements_in_bag = gnutls_pkcs12_bag_get_count (bag); if (elements_in_bag < 0) { gnutls_assert (); goto done; } for (i = 0; i < elements_in_bag; i++) { int type; gnutls_datum_t data; gnutls_x509_crt_t this_cert; type = gnutls_pkcs12_bag_get_type (bag, i); if (type < 0) { gnutls_assert (); goto done; } ret = gnutls_pkcs12_bag_get_data (bag, i, &data); if (ret < 0) { gnutls_assert (); goto done; } switch (type) { case GNUTLS_BAG_CERTIFICATE: ret = gnutls_x509_crt_init (&this_cert); if (ret < 0) { gnutls_assert (); goto done; } ret = gnutls_x509_crt_import (this_cert, &data, GNUTLS_X509_FMT_DER); if (ret < 0) { gnutls_assert (); gnutls_x509_crt_deinit (this_cert); goto done; } /* check if the key id match */ cert_id_size = sizeof (cert_id); ret = gnutls_x509_crt_get_key_id (this_cert, 0, cert_id, &cert_id_size); if (ret < 0) { gnutls_assert (); gnutls_x509_crt_deinit (this_cert); goto done; } if (memcmp (cert_id, key_id, cert_id_size) != 0) { /* they don't match - skip the certificate */ if (extra_certs) { void *tmp = _extra_certs; _extra_certs = gnutls_realloc (_extra_certs, sizeof(_extra_certs[0]) * ++_extra_certs_len); if (!_extra_certs) { gnutls_assert (); gnutls_free(tmp); ret = GNUTLS_E_MEMORY_ERROR; goto done; } _extra_certs[_extra_certs_len - 1] = this_cert; this_cert = NULL; } else { gnutls_x509_crt_deinit (this_cert); } } else { if (_chain_len == 0) { _chain = gnutls_malloc (sizeof(_chain[0]) * (++_chain_len)); if (!_chain) { gnutls_assert (); ret = GNUTLS_E_MEMORY_ERROR; goto done; } _chain[_chain_len - 1] = this_cert; this_cert = NULL; } else { gnutls_x509_crt_deinit (this_cert); } } break; case GNUTLS_BAG_CRL: if (crl == NULL || *crl != NULL) { gnutls_assert (); break; } ret = gnutls_x509_crl_init (crl); if (ret < 0) { gnutls_assert (); goto done; } ret = gnutls_x509_crl_import (*crl, &data, GNUTLS_X509_FMT_DER); if (ret < 0) { gnutls_assert (); gnutls_x509_crl_deinit (*crl); goto done; } break; case GNUTLS_BAG_ENCRYPTED: /* XXX Bother to recurse one level down? Unlikely to use the same password anyway. */ case GNUTLS_BAG_EMPTY: default: break; } } idx++; gnutls_pkcs12_bag_deinit (bag); } if (_chain_len != 1) { ret = GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE; goto done; } ret = make_chain(&_chain, &_chain_len, &_extra_certs, &_extra_certs_len); if (ret < 0) { gnutls_assert(); goto done; } ret = 0; done: if (bag) gnutls_pkcs12_bag_deinit (bag); if (ret < 0) { if (*key) gnutls_x509_privkey_deinit(*key); if (_extra_certs_len && _extra_certs != NULL) { unsigned int i; for (i = 0; i < _extra_certs_len; i++) gnutls_x509_crt_deinit(_extra_certs[i]); gnutls_free(_extra_certs); } if (_chain_len && _chain != NULL) { unsigned int i; for (i = 0; i < _chain_len; i++) gnutls_x509_crt_deinit(_chain[i]); gnutls_free(_chain); } } else { if (extra_certs) { *extra_certs = _extra_certs; *extra_certs_len = _extra_certs_len; } *chain = _chain; *chain_len = _chain_len; } return ret; } #endif /* HAVE_GNUTLS_PKCS12_SIMPLE_PARSE */ openconnect-7.06/lzo.h0000664000076400007640000000465612461737050011711 00000000000000/* * LZO 1x decompression * copyright (c) 2006 Reimar Doeffinger * * This file is part of FFmpeg. * * FFmpeg is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * FFmpeg is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public * License along with FFmpeg; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ #ifndef AVUTIL_LZO_H #define AVUTIL_LZO_H /** * @defgroup lavu_lzo LZO * @ingroup lavu_crypto * * @{ */ #include /** @name Error flags returned by av_lzo1x_decode * @{ */ /// end of the input buffer reached before decoding finished #define AV_LZO_INPUT_DEPLETED 1 /// decoded data did not fit into output buffer #define AV_LZO_OUTPUT_FULL 2 /// a reference to previously decoded data was wrong #define AV_LZO_INVALID_BACKPTR 4 /// a non-specific error in the compressed bitstream #define AV_LZO_ERROR 8 /** @} */ #define AV_LZO_INPUT_PADDING 8 #define AV_LZO_OUTPUT_PADDING 12 /** * @brief Decodes LZO 1x compressed data. * @param out output buffer * @param outlen size of output buffer, number of bytes left are returned here * @param in input buffer * @param inlen size of input buffer, number of bytes left are returned here * @return 0 on success, otherwise a combination of the error flags above * * Make sure all buffers are appropriately padded, in must provide * AV_LZO_INPUT_PADDING, out must provide AV_LZO_OUTPUT_PADDING additional bytes. */ int av_lzo1x_decode(void *out, int *outlen, const void *in, int *inlen); /** * @} */ #define FFMAX(x,y) ({ typeof(x) _x = (x) ; typeof(y) _y = (y); \ _x > _y ? _x : _y; }) struct lzo_packed_uint32 { uint32_t d; } __attribute__((packed)); #define AV_COPY32U(dst,src) do { \ ((struct lzo_packed_uint32 *)dst)->d = \ ((struct lzo_packed_uint32 *)src)->d; \ } while (0) static inline void av_memcpy_backptr(unsigned char *dst, int back, int cnt) { while (cnt--) { *dst = *(dst - back); dst++; } } #endif /* AVUTIL_LZO_H */ openconnect-7.06/tun.c0000664000076400007640000003344412474046503011703 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #if defined(__APPLE__) && defined(HAVE_NET_UTUN_H) #include #include #include #endif #include "openconnect-internal.h" /* * If an if_tun.h include file was found anywhere (by the Makefile), it's * included. Else, we end up assuming that we have BSD-style devices such * as /dev/tun0 etc. */ #ifdef IF_TUN_HDR #include IF_TUN_HDR #endif /* * The OS X tun/tap driver doesn't provide a header file; you're expected * to define this for yourself. */ #ifdef __APPLE__ #define TUNSIFHEAD _IOW('t', 96, int) #endif /* * OpenBSD always puts the protocol family prefix onto packets. Other * systems let us enable that with the TUNSIFHEAD ioctl, and some of them * (e.g. FreeBSD) _need_ it otherwise they'll interpret IPv6 packets as IPv4. */ #if defined(__OpenBSD__) || defined(TUNSIFHEAD) #define TUN_HAS_AF_PREFIX 1 #endif #ifdef __sun__ #include #include #ifndef TUNNEWPPA #error "Install TAP driver from http://www.whiteboard.ne.jp/~admin2/tuntap/" #endif static int link_proto(struct openconnect_info *vpninfo, int unit_nr, const char *devname, uint64_t flags) { int ip_fd, mux_id, tun2_fd; struct lifreq ifr; tun2_fd = open("/dev/tun", O_RDWR); if (tun2_fd < 0) { vpn_perror(vpninfo, _("Could not open /dev/tun for plumbing")); return -EIO; } if (ioctl(tun2_fd, I_PUSH, "ip") < 0) { vpn_perror(vpninfo, _("Can't push IP")); close(tun2_fd); return -EIO; } sprintf(ifr.lifr_name, "tun%d", unit_nr); ifr.lifr_ppa = unit_nr; ifr.lifr_flags = flags; if (ioctl(tun2_fd, SIOCSLIFNAME, &ifr) < 0) { vpn_perror(vpninfo, _("Can't set ifname")); close(tun2_fd); return -1; } ip_fd = open(devname, O_RDWR); if (ip_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Can't open %s: %s"), devname, strerror(errno)); close(tun2_fd); return -1; } mux_id = ioctl(ip_fd, I_LINK, tun2_fd); if (mux_id < 0) { vpn_progress(vpninfo, PRG_ERR, _("Can't plumb %s for IPv%d: %s\n"), ifr.lifr_name, (flags == IFF_IPV4) ? 4 : 6, strerror(errno)); close(tun2_fd); close(ip_fd); return -1; } close(tun2_fd); return ip_fd; } intptr_t os_setup_tun(struct openconnect_info *vpninfo) { int tun_fd = -1; static char tun_name[80]; int unit_nr; tun_fd = open("/dev/tun", O_RDWR); if (tun_fd < 0) { vpn_perror(vpninfo, _("open /dev/tun")); return -EIO; } unit_nr = ioctl(tun_fd, TUNNEWPPA, -1); if (unit_nr < 0) { vpn_perror(vpninfo, _("Failed to create new tun")); close(tun_fd); return -EIO; } if (ioctl(tun_fd, I_SRDOPT, RMSGD) < 0) { vpn_perror(vpninfo, _("Failed to put tun file descriptor into message-discard mode")); close(tun_fd); return -EIO; } sprintf(tun_name, "tun%d", unit_nr); vpninfo->ifname = strdup(tun_name); vpninfo->ip_fd = link_proto(vpninfo, unit_nr, "/dev/udp", IFF_IPV4); if (vpninfo->ip_fd < 0) { close(tun_fd); return -EIO; } if (vpninfo->ip_info.addr6) { vpninfo->ip6_fd = link_proto(vpninfo, unit_nr, "/dev/udp6", IFF_IPV6); if (vpninfo->ip6_fd < 0) { close(tun_fd); close(vpninfo->ip_fd); vpninfo->ip_fd = -1; return -EIO; } } else vpninfo->ip6_fd = -1; return tun_fd; } #else /* !__sun__ */ /* MTU setting code for both Linux and BSD systems */ static void ifreq_set_ifname(struct openconnect_info *vpninfo, struct ifreq *ifr) { char *ifname = openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname); strncpy(ifr->ifr_name, ifname, sizeof(ifr->ifr_name) - 1); if (ifname != vpninfo->ifname) free(ifname); } static int set_tun_mtu(struct openconnect_info *vpninfo) { struct ifreq ifr; int net_fd; net_fd = socket(PF_INET, SOCK_DGRAM, 0); if (net_fd < 0) { vpn_perror(vpninfo, _("open net")); return -EINVAL; } memset(&ifr, 0, sizeof(ifr)); ifreq_set_ifname(vpninfo, &ifr); ifr.ifr_mtu = vpninfo->ip_info.mtu; if (ioctl(net_fd, SIOCSIFMTU, &ifr) < 0) vpn_perror(vpninfo, _("SIOCSIFMTU")); close(net_fd); return 0; } #ifdef IFF_TUN /* Linux */ intptr_t os_setup_tun(struct openconnect_info *vpninfo) { int tun_fd = -1; struct ifreq ifr; int tunerr; tun_fd = open("/dev/net/tun", O_RDWR); if (tun_fd < 0) { /* Android has /dev/tun instead of /dev/net/tun Since other systems might have too, just try it as a fallback instead of using ifdef __ANDROID__ */ tunerr = errno; tun_fd = open("/dev/tun", O_RDWR); } if (tun_fd < 0) { /* If the error on /dev/tun is ENOENT, that's boring. Use the error we got on /dev/net/tun instead */ if (errno != ENOENT) tunerr = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open tun device: %s\n"), strerror(tunerr)); return -EIO; } memset(&ifr, 0, sizeof(ifr)); ifr.ifr_flags = IFF_TUN | IFF_NO_PI; if (vpninfo->ifname) ifreq_set_ifname(vpninfo, &ifr); if (ioctl(tun_fd, TUNSETIFF, (void *) &ifr) < 0) { int err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to bind local tun device (TUNSETIFF): %s\n"), strerror(err)); if (err == EPERM) { vpn_progress(vpninfo, PRG_ERR, _("To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n")); } close(tun_fd); return -EIO; } if (!vpninfo->ifname) vpninfo->ifname = strdup(ifr.ifr_name); /* Ancient vpnc-scripts might not get this right */ set_tun_mtu(vpninfo); return tun_fd; } #else /* BSD et al, including OS X */ #ifdef SIOCIFCREATE static int bsd_open_tun(char *tun_name) { int fd; int s; struct ifreq ifr; fd = open(tun_name, O_RDWR); if (fd == -1) { s = socket(AF_INET, SOCK_DGRAM, 0); if (s < 0) return -1; memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, tun_name + 5, sizeof(ifr.ifr_name) - 1); if (!ioctl(s, SIOCIFCREATE, &ifr)) fd = open(tun_name, O_RDWR); close(s); } return fd; } #else #define bsd_open_tun(tun_name) open(tun_name, O_RDWR) #endif intptr_t os_setup_tun(struct openconnect_info *vpninfo) { static char tun_name[80]; int unit_nr = 0; int tun_fd = -1; #if defined(__APPLE__) && defined (HAVE_NET_UTUN_H) /* OS X (since 10.6) can do this as well as the traditional BSD devices supported via tuntaposx. */ struct sockaddr_ctl sc; struct ctl_info ci; if (vpninfo->ifname) { char *endp = NULL; if (!strncmp(vpninfo->ifname, "tun", 3)) goto do_bsdtun; if (strncmp(vpninfo->ifname, "utun", 4) || (unit_nr = strtol(vpninfo->ifname + 4, &endp, 10), !endp) || (unit_nr && vpninfo->ifname[4] == '0') || *endp) { vpn_progress(vpninfo, PRG_ERR, _("Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n"), vpninfo->ifname); return -EINVAL; } } tun_fd = socket(PF_SYSTEM, SOCK_DGRAM, SYSPROTO_CONTROL); if (tun_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open SYSPROTO_CONTROL socket: %s\n"), strerror(errno)); goto utun_fail; } snprintf(ci.ctl_name, sizeof(ci.ctl_name), UTUN_CONTROL_NAME); if (ioctl(tun_fd, CTLIOCGINFO, &ci) == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to query utun control id: %s\n"), strerror(errno)); close(tun_fd); goto utun_fail; } sc.sc_id = ci.ctl_id; sc.sc_len = sizeof(sc); sc.sc_family = AF_SYSTEM; sc.ss_sysaddr = AF_SYS_CONTROL; do { sc.sc_unit = unit_nr + 1; if (!connect(tun_fd, (struct sockaddr * )&sc, sizeof(sc))) { if (!vpninfo->ifname && asprintf(&vpninfo->ifname, "utun%d", unit_nr) == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate utun device name\n")); close(tun_fd); goto utun_fail; } return tun_fd; } unit_nr++; } while (sc.sc_unit < 255 && !vpninfo->ifname); vpn_progress(vpninfo, PRG_ERR, _("Failed to connect utun unit: %s\n"), strerror(errno)); close(tun_fd); utun_fail: /* If we were explicitly asked for a utun device, fail. Else try tuntaposx */ if (vpninfo->ifname) return -EIO; tun_fd = -1; do_bsdtun: #endif /* __APPLE__ && HAVE_NET_UTUN_H */ if (vpninfo->ifname) { char *endp = NULL; if (strncmp(vpninfo->ifname, "tun", 3) || ((void)strtol(vpninfo->ifname + 3, &endp, 10), !endp) || *endp) { vpn_progress(vpninfo, PRG_ERR, _("Invalid interface name '%s'; must match 'tun%%d'\n"), vpninfo->ifname); return -EINVAL; } snprintf(tun_name, sizeof(tun_name), "/dev/%s", vpninfo->ifname); tun_fd = bsd_open_tun(tun_name); if (tun_fd < 0) { int err = errno; vpn_progress(vpninfo, PRG_ERR, _("Cannot open '%s': %s\n"), tun_name, strerror(err)); return -EINVAL; } } #ifdef HAVE_FDEVNAME_R /* We don't have to iterate over the possible devices; on FreeBSD at least, opening /dev/tun will give us the next available device. */ if (tun_fd < 0) { tun_fd = open("/dev/tun", O_RDWR); if (tun_fd >= 0) { if (!fdevname_r(tun_fd, tun_name, sizeof(tun_name)) || strncmp(tun_name, "tun", 3)) { close(tun_fd); tun_fd = -1; } else vpninfo->ifname = strdup(tun_name); } } #endif if (tun_fd < 0) { for (unit_nr = 0; unit_nr < 255; unit_nr++) { sprintf(tun_name, "/dev/tun%d", unit_nr); tun_fd = bsd_open_tun(tun_name); if (tun_fd >= 0) break; } if (tun_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open tun device: %s\n"), strerror(errno)); return -EIO; } vpninfo->ifname = strdup(tun_name + 5); } #ifdef TUNSIFHEAD unit_nr = 1; if (ioctl(tun_fd, TUNSIFHEAD, &unit_nr) < 0) { vpn_perror(vpninfo, _("TUNSIFHEAD")); close(tun_fd); return -EIO; } #endif /* Ancient vpnc-scripts might not get this right */ set_tun_mtu(vpninfo); return tun_fd; } #endif /* !IFF_TUN (i.e. BSD) */ #endif /* !__sun__ */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, int tun_fd) { set_fd_cloexec(tun_fd); if (vpninfo->tun_fd != -1) unmonitor_read_fd(vpninfo, tun); vpninfo->tun_fd = tun_fd; monitor_fd_new(vpninfo, tun); monitor_read_fd(vpninfo, tun); set_sock_nonblock(tun_fd); return 0; } int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script) { pid_t child; int fds[2]; STRDUP(vpninfo->vpnc_script, tun_script); vpninfo->script_tun = 1; prepare_script_env(vpninfo); if (socketpair(AF_UNIX, SOCK_DGRAM, 0, fds)) { vpn_progress(vpninfo, PRG_ERR, _("socketpair failed: %s\n"), strerror(errno)); return -EIO; } child = fork(); if (child < 0) { vpn_progress(vpninfo, PRG_ERR, _("fork failed: %s\n"), strerror(errno)); return -EIO; } else if (!child) { if (setpgid(0, getpid()) < 0) perror(_("setpgid")); close(fds[0]); script_setenv_int(vpninfo, "VPNFD", fds[1]); apply_script_env(vpninfo->script_env); execl("/bin/sh", "/bin/sh", "-c", vpninfo->vpnc_script, NULL); perror(_("execl")); exit(1); } close(fds[1]); vpninfo->script_tun = child; vpninfo->ifname = strdup(_("(script)")); return openconnect_setup_tun_fd(vpninfo, fds[0]); } int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { int prefix_size = 0; int len; #ifdef TUN_HAS_AF_PREFIX if (!vpninfo->script_tun) prefix_size = sizeof(int); #endif /* Sanity. Just non-blocking reads on a select()able file descriptor... */ len = read(vpninfo->tun_fd, pkt->data - prefix_size, pkt->len + prefix_size); if (len <= prefix_size) return -1; pkt->len = len - prefix_size; return 0; } int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { unsigned char *data = pkt->data; int len = pkt->len; #ifdef TUN_HAS_AF_PREFIX if (!vpninfo->script_tun) { struct ip *iph = (void *)data; int type; if (iph->ip_v == 6) type = AF_INET6; else if (iph->ip_v == 4) type = AF_INET; else { static int complained = 0; if (!complained) { complained = 1; vpn_progress(vpninfo, PRG_ERR, _("Unknown packet (len %d) received: %02x %02x %02x %02x...\n"), len, data[0], data[1], data[2], data[3]); } return 0; } data -= sizeof(int); len += sizeof(int); *(int *)data = htonl(type); } #endif if (write(vpninfo->tun_fd, data, len) < 0) { /* Handle death of "script" socket */ if (vpninfo->script_tun && errno == ENOTCONN) { vpninfo->quit_reason = "Client connection terminated"; return -1; } vpn_progress(vpninfo, PRG_ERR, _("Failed to write incoming packet: %s\n"), strerror(errno)); /* The kernel returns -ENOMEM when the queue is full, so theoretically we could handle that and retry... but it doesn't let us poll() for the no-longer-full situation, so let's not bother. */ } return 0; } void os_shutdown_tun(struct openconnect_info *vpninfo) { if (vpninfo->script_tun) { /* nuke the whole process group */ kill(-vpninfo->script_tun, SIGHUP); } else { script_config_tun(vpninfo, "disconnect"); #ifdef __sun__ close(vpninfo->ip_fd); vpninfo->ip_fd = -1; if (vpninfo->ip6_fd != -1) { close(vpninfo->ip6_fd); vpninfo->ip6_fd = -1; } #endif } if (vpninfo->vpnc_script) close(vpninfo->tun_fd); vpninfo->tun_fd = -1; } openconnect-7.06/compat.c0000664000076400007640000002424212474046503012354 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Authors: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include "openconnect-internal.h" #ifdef HAVE_SUNOS_BROKEN_TIME /* * On SunOS, time() goes backwards. Thankfully, gethrtime() doesn't. * https://www.illumos.org/issues/1871 and, for Solaris 11, Oracle * bug ID #15760793 (previously Sun CR ID 7121035). */ #include time_t openconnect__time(time_t *t) { time_t s = gethrtime() / 1000000000LL; if (t) *t = s; return s; } #endif #ifndef HAVE_VASPRINTF int openconnect__vasprintf(char **strp, const char *fmt, va_list ap) { va_list ap2; char *res = NULL; int len = 160, len2; int ret = 0; int errno_save = -ENOMEM; res = malloc(160); if (!res) goto err; /* Use a copy of 'ap', preserving it in case we need to retry into a larger buffer. 160 characters should be sufficient for most strings in openconnect. */ #ifdef HAVE_VA_COPY va_copy(ap2, ap); #elif defined(HAVE___VA_COPY) __va_copy(ap2, ap); #else #error No va_copy()! /* You could try this. */ ap2 = ap; /* Or this */ *ap2 = *ap; #endif len = vsnprintf(res, 160, fmt, ap2); va_end(ap2); if (len < 0) { printf_err: errno_save = errno; free(res); res = NULL; goto err; } if (len >= 0 && len < 160) goto out; free(res); res = malloc(len+1); if (!res) goto err; len2 = vsnprintf(res, len+1, fmt, ap); if (len2 < 0 || len2 > len) goto printf_err; ret = 0; goto out; err: errno = errno_save; ret = -1; out: *strp = res; return ret; } #endif #ifndef HAVE_ASPRINTF int openconnect__asprintf(char **strp, const char *fmt, ...) { va_list ap; int ret; va_start(ap, fmt); ret = vasprintf(strp, fmt, ap); va_end(ap); return ret; } #endif #ifndef HAVE_GETLINE ssize_t openconnect__getline(char **lineptr, size_t *n, FILE *stream) { int len = 0; if (!*lineptr) { *n = 2; *lineptr = malloc(*n); if (!*lineptr) return -1; } while (fgets((*lineptr) + len, (*n) - len, stream)) { len += strlen((*lineptr) + len); if ((*lineptr)[len-1] == '\n') break; *n *= 2; realloc_inplace(*lineptr, *n); if (!*lineptr) return -1; } if (len) return len; return -1; } #endif #ifndef HAVE_STRCASESTR char *openconnect__strcasestr(const char *haystack, const char *needle) { int hlen = strlen(haystack); int nlen = strlen(needle); int i, j; for (i = 0; i < hlen - nlen + 1; i++) { for (j = 0; j < nlen; j++) { if (tolower(haystack[i + j]) != tolower(needle[j])) break; } if (j == nlen) return (char *)haystack + i; } return NULL; } #endif #ifndef HAVE_STRNDUP char *openconnect__strndup(const char *s, size_t n) { char *r; if (n > strlen(s)) n = strlen(s); r = malloc(n + 1); if (r) { memcpy(r, s, n); r[n] = 0; } return r; } #endif #ifndef HAVE_INET_ATON int openconnect__inet_aton(const char *cp, struct in_addr *addr) { return inet_pton(AF_INET, cp, addr); } #endif #ifdef _WIN32 char *openconnect__win32_strerror(DWORD err) { wchar_t *msgw; char *msgutf8; int nr_chars; if (!FormatMessageW(FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_ALLOCATE_BUFFER, NULL, err, MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), (LPWSTR)&msgw, 0, NULL)) { if (asprintf(&msgutf8, _("(error 0x%x)"), err) != -1) return msgutf8; fail: return strdup(_("(Error while describing error!)")); } nr_chars = wcslen(msgw); if (nr_chars && msgw[nr_chars - 1] == 10) msgw[--nr_chars] = 0; if (nr_chars && msgw[nr_chars - 1] == 13) msgw[--nr_chars] = 0; nr_chars = WideCharToMultiByte(CP_UTF8, 0, msgw, -1, NULL, 0, NULL, NULL); msgutf8 = malloc(nr_chars); if (!msgutf8) goto fail; WideCharToMultiByte(CP_UTF8, 0, msgw, -1, msgutf8, nr_chars, NULL, NULL); LocalFree(msgw); return msgutf8; } int openconnect__win32_sock_init() { WSADATA data; if (WSAStartup (MAKEWORD(1, 1), &data) != 0) { fprintf(stderr, _("ERROR: Cannot initialize sockets\n")); return -EIO; } return 0; } int openconnect__win32_inet_pton(int af, const char *src, void *dst) { union { struct sockaddr_in s4; struct sockaddr_in6 s6; } sa; int salen = sizeof(sa); if (af != AF_INET && af != AF_INET6) { errno = EAFNOSUPPORT; return -1; } memset(&sa, 0, sizeof(sa)); sa.s4.sin_family = af; if (WSAStringToAddressA((char *)src, af, NULL, (void *)&sa, &salen)) return 0; /* For Legacy IP we need to filter out a lot of crap that * inet_aton() (and WSAStringToAddress()) will support, but * which inet_pton() should not. Not to mention the fact that * Wine's implementation will even succeed for strings like * "2001::1" (http://bugs.winehq.org/show_bug.cgi?id=36991) */ if (af == AF_INET) { char canon[16]; unsigned char *a = (unsigned char *)&sa.s4.sin_addr; snprintf(canon, sizeof(canon), "%d.%d.%d.%d", a[0], a[1], a[2], a[3]); if (strcmp(canon, src)) return 0; memcpy(dst, &sa.s4.sin_addr, sizeof(sa.s4.sin_addr)); return 1; } else { memcpy(dst, &sa.s6.sin6_addr, sizeof(sa.s6.sin6_addr)); return 1; } } /* https://github.com/ncm/selectable-socketpair Copyright 2007, 2010 by Nathan C. Myers Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. The name of the author must not be used to endorse or promote products derived from this software without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ /* Changes: * 2013-07-18: Change to BSD 3-clause license * 2010-03-31: * set addr to 127.0.0.1 because win32 getsockname does not always set it. * 2010-02-25: * set SO_REUSEADDR option to avoid leaking some windows resource. * Windows System Error 10049, "Event ID 4226 TCP/IP has reached * the security limit imposed on the number of concurrent TCP connect * attempts." Bleah. * 2007-04-25: * preserve value of WSAGetLastError() on all error returns. * 2007-04-22: (Thanks to Matthew Gregan ) * s/EINVAL/WSAEINVAL/ fix trivial compile failure * s/socket/WSASocket/ enable creation of sockets suitable as stdin/stdout * of a child process. * add argument make_overlapped */ #include # include # include # include /* dumb_socketpair: * If make_overlapped is nonzero, both sockets created will be usable for * "overlapped" operations via WSASend etc. If make_overlapped is zero, * socks[0] (only) will be usable with regular ReadFile etc., and thus * suitable for use as stdin or stdout of a child process. Note that the * sockets must be closed with closesocket() regardless. */ OPENCONNECT_CMD_SOCKET dumb_socketpair(OPENCONNECT_CMD_SOCKET socks[2], int make_overlapped) { union { struct sockaddr_in inaddr; struct sockaddr addr; } a; OPENCONNECT_CMD_SOCKET listener; int e; socklen_t addrlen = sizeof(a.inaddr); DWORD flags = (make_overlapped ? WSA_FLAG_OVERLAPPED : 0); int reuse = 1; if (socks == 0) { WSASetLastError(WSAEINVAL); return SOCKET_ERROR; } listener = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); if (listener == INVALID_SOCKET) return SOCKET_ERROR; memset(&a, 0, sizeof(a)); a.inaddr.sin_family = AF_INET; a.inaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK); a.inaddr.sin_port = 0; socks[0] = socks[1] = -1; do { if (setsockopt(listener, SOL_SOCKET, SO_REUSEADDR, (char*) &reuse, (socklen_t) sizeof(reuse)) == -1) break; if (bind(listener, &a.addr, sizeof(a.inaddr)) == SOCKET_ERROR) break; memset(&a, 0, sizeof(a)); if (getsockname(listener, &a.addr, &addrlen) == SOCKET_ERROR) break; // win32 getsockname may only set the port number, p=0.0005. // ( http://msdn.microsoft.com/library/ms738543.aspx ): a.inaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK); a.inaddr.sin_family = AF_INET; if (listen(listener, 1) == SOCKET_ERROR) break; socks[0] = WSASocket(AF_INET, SOCK_STREAM, 0, NULL, 0, flags); if (socks[0] == INVALID_SOCKET) break; if (connect(socks[0], &a.addr, sizeof(a.inaddr)) == SOCKET_ERROR) break; socks[1] = accept(listener, NULL, NULL); if (socks[1] == INVALID_SOCKET) break; closesocket(listener); return 0; } while (0); e = WSAGetLastError(); closesocket(listener); closesocket(socks[0]); closesocket(socks[1]); WSASetLastError(e); return SOCKET_ERROR; } #endif /* _WIN32 */ openconnect-7.06/esp.c0000664000076400007640000003077012474364513011667 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include "openconnect-internal.h" #include "lzo.h" /* Eventually we're going to have to have more than one incoming ESP context at a time, to allow for the overlap period during a rekey. So pass the 'esp' even though for now it's redundant. */ int verify_packet_seqno(struct openconnect_info *vpninfo, struct esp *esp, uint32_t seq) { /* * For incoming, esp->seq is the next *expected* packet, being * the sequence number *after* the latest we have received. * * Since it must always be true that packet esp->seq-1 has been * received, so there's no need to explicitly record that. * * So the backlog bitmap covers the 32 packets prior to that, * with the LSB representing packet (esp->seq - 2), and the MSB * representing (esp->seq - 33). A received packet is represented * by a zero bit, and a missing packet is represented by a one. * * Thus we can allow out-of-order reception of packets that are * within a reasonable interval of the latest packet received. */ if (seq == esp->seq) { /* The common case. This is the packet we expected next. */ esp->seq_backlog <<= 1; esp->seq++; vpn_progress(vpninfo, PRG_TRACE, _("Accepting expected ESP packet with seq %u\n"), seq); return 0; } else if (seq + 33 < esp->seq) { /* Too old. We can't know if it's a replay. */ vpn_progress(vpninfo, PRG_DEBUG, _("Discarding ancient ESP packet with seq %u (expected %u)\n"), seq, esp->seq); return -EINVAL; } else if (seq < esp->seq) { /* Within the backlog window, so we remember whether we've seen it or not. */ uint32_t mask = 1 << (esp->seq - seq - 2); if (esp->seq_backlog & mask) { vpn_progress(vpninfo, PRG_TRACE, _("Accepting out-of-order ESP packet with seq %u (expected %u)\n"), seq, esp->seq); esp->seq_backlog &= ~mask; return 0; } vpn_progress(vpninfo, PRG_DEBUG, _("Discarding replayed ESP packet with seq %u\n"), seq); return -EINVAL; } else { /* The packet we were expecting has gone missing; this one is newer. */ int delta = seq - esp->seq; if (delta >= 32) { /* We jumped a long way into the future. We have not seen * any of the previous 32 packets so set the backlog bitmap * to all ones. */ esp->seq_backlog = 0xffffffff; } else if (delta == 31) { /* Avoid undefined behaviour that shifting by 32 would incur. * The (clear) top bit represents the packet which is currently * esp->seq - 1, which we know was already received. */ esp->seq_backlog = 0x7fffffff; } else { /* We have missed (delta) packets. Shift the backlog by that * amount *plus* the one we would have shifted it anyway if * we'd received the packet we were expecting. The zero bit * representing the packet which is currently esp->seq - 1, * which we know has been received, ends up at bit position * (1<seq_backlog <<= delta + 1; esp->seq_backlog |= (1<seq); esp->seq = seq + 1; return 0; } } int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp) { int i; const char *enctype, *mactype; char enckey[256], mackey[256]; int enclen, maclen; switch(vpninfo->esp_enc) { case 0x02: enctype = "AES-128-CBC (RFC3602)"; enclen = 16; break; case 0x05: enctype = "AES-256-CBC (RFC3602)"; enclen = 32; break; default: return -EINVAL; } switch(vpninfo->esp_hmac) { case 0x01: mactype = "HMAC-MD5-96 (RFC2403)"; maclen = 16; break; case 0x02: mactype = "HMAC-SHA-1-96 (RFC2404)"; maclen = 20; break; default: return -EINVAL; } for (i = 0; i < enclen; i++) sprintf(enckey + (2 * i), "%02x", esp->secrets[i]); for (i = 0; i < maclen; i++) sprintf(mackey + (2 * i), "%02x", esp->secrets[enclen + i]); vpn_progress(vpninfo, PRG_TRACE, _("Parameters for %s ESP: SPI 0x%08x\n"), name, (unsigned)ntohl(esp->spi)); vpn_progress(vpninfo, PRG_TRACE, _("ESP encryption type %s key 0x%s\n"), enctype, enckey); vpn_progress(vpninfo, PRG_TRACE, _("ESP authentication type %s key 0x%s\n"), mactype, mackey); return 0; } static int esp_send_probes(struct openconnect_info *vpninfo) { struct pkt *pkt; int pktlen; if (vpninfo->dtls_fd == -1) { int fd = udp_connect(vpninfo); if (fd < 0) return fd; /* We are not connected until we get an ESP packet back */ vpninfo->dtls_state = DTLS_SLEEPING; vpninfo->dtls_fd = fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); } pkt = malloc(sizeof(*pkt) + 1 + vpninfo->pkt_trailer); if (!pkt) return -ENOMEM; pkt->len = 1; pkt->data[0] = 0; pktlen = encrypt_esp_packet(vpninfo, pkt); if (pktlen >= 0) send(vpninfo->dtls_fd, (void *)&pkt->esp, pktlen, 0); pkt->len = 1; pkt->data[0] = 0; pktlen = encrypt_esp_packet(vpninfo, pkt); if (pktlen >= 0) send(vpninfo->dtls_fd, (void *)&pkt->esp, pktlen, 0); free(pkt); vpninfo->dtls_times.last_tx = time(&vpninfo->new_dtls_started); return 0; }; int esp_setup(struct openconnect_info *vpninfo, int dtls_attempt_period) { if (vpninfo->dtls_state == DTLS_DISABLED || vpninfo->dtls_state == DTLS_NOSECRET) return -EINVAL; if (vpninfo->esp_ssl_fallback) vpninfo->dtls_times.dpd = vpninfo->esp_ssl_fallback; else vpninfo->dtls_times.dpd = dtls_attempt_period; vpninfo->dtls_attempt_period = dtls_attempt_period; print_esp_keys(vpninfo, _("incoming"), &vpninfo->esp_in[vpninfo->current_esp_in]); print_esp_keys(vpninfo, _("outgoing"), &vpninfo->esp_out); vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n")); esp_send_probes(vpninfo); return 0; } int esp_mainloop(struct openconnect_info *vpninfo, int *timeout) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; struct esp *old_esp = &vpninfo->esp_in[vpninfo->current_esp_in ^ 1]; struct pkt *this; int work_done = 0; int ret; if (vpninfo->dtls_state == DTLS_SLEEPING) { int when = vpninfo->new_dtls_started + vpninfo->dtls_attempt_period - time(NULL); if (when <= 0 || vpninfo->dtls_need_reconnect) { vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n")); esp_send_probes(vpninfo); when = vpninfo->dtls_attempt_period; } if (*timeout > when * 1000) *timeout = when * 1000; } if (vpninfo->dtls_fd == -1) return 0; while (1) { int len = vpninfo->ip_info.mtu + vpninfo->pkt_trailer; int i; struct pkt *pkt; if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } pkt = vpninfo->dtls_pkt; len = recv(vpninfo->dtls_fd, (void *)&pkt->esp, len + sizeof(pkt->esp), 0); if (len <= 0) break; vpn_progress(vpninfo, PRG_TRACE, _("Received ESP packet of %d bytes\n"), len); work_done = 1; if (len <= sizeof(pkt->esp) + 12) continue; len -= sizeof(pkt->esp) + 12; pkt->len = len; if (pkt->esp.spi == esp->spi) { if (decrypt_esp_packet(vpninfo, esp, pkt)) continue; } else if (pkt->esp.spi == old_esp->spi && ntohl(pkt->esp.seq) + esp->seq < vpninfo->old_esp_maxseq) { vpn_progress(vpninfo, PRG_TRACE, _("Consider SPI 0x%x, seq %u against outgoing ESP setup\n"), (unsigned)ntohl(old_esp->spi), (unsigned)ntohl(pkt->esp.seq)); if (decrypt_esp_packet(vpninfo, old_esp, pkt)) continue; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid SPI 0x%08x\n"), (unsigned)ntohl(pkt->esp.spi)); continue; } if (pkt->data[len - 1] != 0x04 && pkt->data[len - 1] != 0x29 && pkt->data[len - 1] != 0x05) { vpn_progress(vpninfo, PRG_ERR, _("Received ESP packet with unrecognised payload type %02x\n"), pkt->data[len-1]); continue; } if (len <= 2 + pkt->data[len - 2]) { vpn_progress(vpninfo, PRG_ERR, _("Invalid padding length %02x in ESP\n"), pkt->data[len - 2]); continue; } pkt->len = len - 2 - pkt->data[len - 2]; for (i = 0 ; i < pkt->data[len - 2]; i++) { if (pkt->data[pkt->len + i] != i + 1) break; /* We can't just 'continue' here because it * would only break out of this 'for' loop */ } if (i != pkt->data[len - 2]) { vpn_progress(vpninfo, PRG_ERR, _("Invalid padding bytes in ESP\n")); continue; /* We can here, though */ } vpninfo->dtls_times.last_rx = time(NULL); if (pkt->len == 1 && pkt->data[0] == 0) { if (vpninfo->dtls_state == DTLS_SLEEPING) { vpn_progress(vpninfo, PRG_INFO, _("ESP session established with server\n")); queue_esp_control(vpninfo, 1); vpninfo->dtls_state = DTLS_CONNECTING; } continue; } if (pkt->data[len - 1] == 0x05) { struct pkt *newpkt = malloc(sizeof(*pkt) + vpninfo->ip_info.mtu + vpninfo->pkt_trailer); int newlen = vpninfo->ip_info.mtu; if (!newpkt) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory to decrypt ESP packet\n")); continue; } if (av_lzo1x_decode(newpkt->data, &newlen, pkt->data, &pkt->len) || pkt->len) { vpn_progress(vpninfo, PRG_ERR, _("LZO decompression of ESP packet failed\n")); free(newpkt); continue; } newpkt->len = vpninfo->ip_info.mtu - newlen; vpn_progress(vpninfo, PRG_TRACE, _("LZO decompressed %d bytes into %d\n"), len - 2 - pkt->data[len-2], newpkt->len); queue_packet(&vpninfo->incoming_queue, newpkt); } else { queue_packet(&vpninfo->incoming_queue, pkt); vpninfo->dtls_pkt = NULL; } } if (vpninfo->dtls_state != DTLS_CONNECTED) return 0; switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: vpn_progress(vpninfo, PRG_ERR, _("Rekey not implemented for ESP\n")); break; case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("ESP detected dead peer\n")); queue_esp_control(vpninfo, 0); esp_close(vpninfo); esp_send_probes(vpninfo); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes for DPD\n")); esp_send_probes(vpninfo); work_done = 1; break; case KA_KEEPALIVE: vpn_progress(vpninfo, PRG_ERR, _("Keepalive not implemented for ESP\n")); break; case KA_NONE: break; } unmonitor_write_fd(vpninfo, dtls); while ((this = dequeue_packet(&vpninfo->outgoing_queue))) { int len; len = encrypt_esp_packet(vpninfo, this); if (len > 0) { ret = send(vpninfo->dtls_fd, (void *)&this->esp, len, 0); if (ret < 0) { /* Not that this is likely to happen with UDP, but... */ if (errno == ENOBUFS || errno == EAGAIN || errno == EWOULDBLOCK) { monitor_write_fd(vpninfo, dtls); /* XXX: Keep the packet somewhere? */ free(this); return work_done; } else { /* A real error in sending. Fall back to TCP? */ vpn_progress(vpninfo, PRG_ERR, _("Failed to send ESP packet: %s\n"), strerror(errno)); } } else { vpninfo->dtls_times.last_tx = time(NULL); vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP packet of %d bytes\n"), len); } } else { /* XXX: Fall back to TCP transport? */ } free(this); work_done = 1; } return work_done; } void esp_close(struct openconnect_info *vpninfo) { /* We close and reopen the socket in case we roamed and our local IP address has changed. */ if (vpninfo->dtls_fd != -1) { closesocket(vpninfo->dtls_fd); unmonitor_read_fd(vpninfo, dtls); unmonitor_write_fd(vpninfo, dtls); unmonitor_except_fd(vpninfo, dtls); vpninfo->dtls_fd = -1; } vpninfo->dtls_state = DTLS_SLEEPING; } void esp_shutdown(struct openconnect_info *vpninfo) { destroy_esp_ciphers(&vpninfo->esp_in[0]); destroy_esp_ciphers(&vpninfo->esp_in[1]); destroy_esp_ciphers(&vpninfo->esp_out); esp_close(vpninfo); } openconnect-7.06/auth.c0000664000076400007640000011436212474364513012041 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #endif #include #include #include "openconnect-internal.h" static int xmlpost_append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body); static int cstp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int openconnect_set_option_value(struct oc_form_opt *opt, const char *value) { if (opt->type == OC_FORM_OPT_SELECT) { struct oc_form_opt_select *sopt = (void *)opt; int i; for (i=0; inr_choices; i++) { if (!strcmp(value, sopt->choices[i]->name)) { opt->_value = sopt->choices[i]->name; return 0; } } return -EINVAL; } opt->_value = strdup(value); if (!opt->_value) return -ENOMEM; return 0; } static int prop_equals(xmlNode *xml_node, const char *name, const char *value) { char *tmp = (char *)xmlGetProp(xml_node, (unsigned char *)name); int ret = 0; if (tmp && !strcasecmp(tmp, value)) ret = 1; free(tmp); return ret; } static int parse_auth_choice(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNode *xml_node) { struct oc_form_opt_select *opt; xmlNode *opt_node; int max_choices = 0, selection = 0; opt = calloc(1, sizeof(*opt)); if (!opt) return -ENOMEM; opt->form.type = OC_FORM_OPT_SELECT; opt->form.name = (char *)xmlGetProp(xml_node, (unsigned char *)"name"); opt->form.label = (char *)xmlGetProp(xml_node, (unsigned char *)"label"); if (!opt->form.name) { vpn_progress(vpninfo, PRG_ERR, _("Form choice has no name\n")); free_opt((struct oc_form_opt *)opt); return -EINVAL; } for (opt_node = xml_node->children; opt_node; opt_node = opt_node->next) max_choices++; opt->choices = calloc(1, max_choices * sizeof(struct oc_choice *)); if (!opt->choices) { free_opt((struct oc_form_opt *)opt); return -ENOMEM; } for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { char *form_id; struct oc_choice *choice; if (xml_node->type != XML_ELEMENT_NODE) continue; if (strcmp((char *)xml_node->name, "option")) continue; form_id = (char *)xmlGetProp(xml_node, (unsigned char *)"value"); if (!form_id) form_id = (char *)xmlNodeGetContent(xml_node); if (!form_id) continue; choice = calloc(1, sizeof(*choice)); if (!choice) { free_opt((struct oc_form_opt *)opt); return -ENOMEM; } choice->name = form_id; choice->label = (char *)xmlNodeGetContent(xml_node); choice->auth_type = (char *)xmlGetProp(xml_node, (unsigned char *)"auth-type"); choice->override_name = (char *)xmlGetProp(xml_node, (unsigned char *)"override-name"); choice->override_label = (char *)xmlGetProp(xml_node, (unsigned char *)"override-label"); choice->second_auth = prop_equals(xml_node, "second-auth", "1"); choice->secondary_username = (char *)xmlGetProp(xml_node, (unsigned char *)"secondary_username"); choice->secondary_username_editable = prop_equals(xml_node, "secondary_username_editable", "true"); choice->noaaa = prop_equals(xml_node, "noaaa", "1"); if (prop_equals(xml_node, "selected", "true")) selection = opt->nr_choices; opt->choices[opt->nr_choices++] = choice; } if (!strcmp(opt->form.name, "group_list")) { form->authgroup_opt = opt; form->authgroup_selection = selection; } /* We link the choice _first_ so it's at the top of what we present to the user */ opt->form.next = form->opts; form->opts = &opt->form; return 0; } static int parse_form(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNode *xml_node) { char *input_type, *input_name, *input_label; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { struct oc_form_opt *opt, **p; if (xml_node->type != XML_ELEMENT_NODE) continue; if (!strcmp((char *)xml_node->name, "select")) { if (parse_auth_choice(vpninfo, form, xml_node)) return -EINVAL; continue; } if (strcmp((char *)xml_node->name, "input")) { vpn_progress(vpninfo, PRG_DEBUG, _("name %s not input\n"), xml_node->name); continue; } input_type = (char *)xmlGetProp(xml_node, (unsigned char *)"type"); if (!input_type) { vpn_progress(vpninfo, PRG_INFO, _("No input type in form\n")); continue; } if (!strcmp(input_type, "submit") || !strcmp(input_type, "reset")) { free(input_type); continue; } input_name = (char *)xmlGetProp(xml_node, (unsigned char *)"name"); if (!input_name) { vpn_progress(vpninfo, PRG_INFO, _("No input name in form\n")); free(input_type); continue; } input_label = (char *)xmlGetProp(xml_node, (unsigned char *)"label"); opt = calloc(1, sizeof(*opt)); if (!opt) { free(input_type); free(input_name); free(input_label); return -ENOMEM; } opt->name = input_name; opt->label = input_label; opt->flags = prop_equals(xml_node, "second-auth", "1") ? OC_FORM_OPT_SECOND_AUTH : 0; if (!strcmp(input_type, "hidden")) { opt->type = OC_FORM_OPT_HIDDEN; opt->_value = (char *)xmlGetProp(xml_node, (unsigned char *)"value"); } else if (!strcmp(input_type, "text")) { opt->type = OC_FORM_OPT_TEXT; } else if (!strcmp(input_type, "password")) { if (!cstp_can_gen_tokencode(vpninfo, form, opt)) opt->type = OC_FORM_OPT_TOKEN; else opt->type = OC_FORM_OPT_PASSWORD; } else { vpn_progress(vpninfo, PRG_INFO, _("Unknown input type %s in form\n"), input_type); free(input_type); free(input_name); free(input_label); free(opt); continue; } free(input_type); p = &form->opts; while (*p) p = &(*p)->next; *p = opt; } return 0; } static char *xmlnode_msg(xmlNode *xml_node) { char *fmt = (char *)xmlNodeGetContent(xml_node); char *result, *params[2], *pct; int len; int nr_params = 0; if (!fmt || !fmt[0]) { free(fmt); return NULL; } len = strlen(fmt) + 1; params[0] = (char *)xmlGetProp(xml_node, (unsigned char *)"param1"); if (params[0]) len += strlen(params[0]); params[1] = (char *)xmlGetProp(xml_node, (unsigned char *)"param2"); if (params[1]) len += strlen(params[1]); result = malloc(len); if (!result) { result = fmt; goto out; } strcpy(result, fmt); free(fmt); for (pct = strchr(result, '%'); pct; (pct = strchr(pct, '%'))) { int paramlen; /* We only cope with '%s' */ if (pct[1] != 's') goto out; if (params[nr_params]) { paramlen = strlen(params[nr_params]); /* Move rest of fmt string up... */ memmove(pct + paramlen, pct + 2, strlen(pct + 2) + 1); /* ... and put the string parameter in where the '%s' was */ memcpy(pct, params[nr_params], paramlen); pct += paramlen; } else pct++; if (++nr_params == 2) break; } out: free(params[0]); free(params[1]); return result; } static int xmlnode_get_text(xmlNode *xml_node, const char *name, char **var) { char *str; if (name && !xmlnode_is_named(xml_node, name)) return -EINVAL; str = xmlnode_msg(xml_node); if (!str) return -ENOENT; free(*var); *var = str; return 0; } /* * Legacy server response looks like: * * "> * <!-- title to display to user --> * * * * * Please enter your username and password. *
    * * * * * *
    *     * * New server response looks like: * * * * * * * foobar * 1234567 * * banner); xmlnode_get_text(xml_node, "message", &form->message); xmlnode_get_text(xml_node, "error", &form->error); if (xmlnode_is_named(xml_node, "form")) { /* defaults for new XML POST */ form->method = strdup("POST"); form->action = strdup("/"); xmlnode_get_prop(xml_node, "method", &form->method); xmlnode_get_prop(xml_node, "action", &form->action); if (!form->method || !form->action || strcasecmp(form->method, "POST") || !form->action[0]) { vpn_progress(vpninfo, PRG_ERR, _("Cannot handle form method='%s', action='%s'\n"), form->method, form->action); ret = -EINVAL; goto out; } ret = parse_form(vpninfo, form, xml_node); if (ret < 0) goto out; } else if (!vpninfo->csd_scriptname && xmlnode_is_named(xml_node, "csd")) { xmlnode_get_prop(xml_node, "token", &vpninfo->csd_token); xmlnode_get_prop(xml_node, "ticket", &vpninfo->csd_ticket); } /* For Windows, vpninfo->csd_xmltag will be "csd" and there are *two* nodes; one with token/ticket and one with the URLs. Process them both the same and rely on the fact that xmlnode_get_prop() will not *clear* the variable if no such property is found. */ if (!vpninfo->csd_scriptname && xmlnode_is_named(xml_node, vpninfo->csd_xmltag)) { /* ignore the CSD trojan binary on mobile platforms */ if (!vpninfo->csd_nostub) xmlnode_get_prop(xml_node, "stuburl", &vpninfo->csd_stuburl); xmlnode_get_prop(xml_node, "starturl", &vpninfo->csd_starturl); xmlnode_get_prop(xml_node, "waiturl", &vpninfo->csd_waiturl); vpninfo->csd_preurl = strdup(vpninfo->urlpath); } } out: return ret; } static int parse_host_scan_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { /* ignore this whole section if the CSD trojan has already run */ if (vpninfo->csd_scriptname) return 0; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "host-scan-ticket", &vpninfo->csd_ticket); xmlnode_get_text(xml_node, "host-scan-token", &vpninfo->csd_token); xmlnode_get_text(xml_node, "host-scan-base-uri", &vpninfo->csd_starturl); xmlnode_get_text(xml_node, "host-scan-wait-uri", &vpninfo->csd_waiturl); } return 0; } static void parse_profile_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { /* ignore this whole section if we already have a URL */ if (vpninfo->profile_url && vpninfo->profile_sha1) return; /* Find child... */ xml_node = xml_node->children; while (1) { if (!xml_node) return; if (xml_node->type == XML_ELEMENT_NODE && xmlnode_is_named(xml_node, "vpn") && !xmlnode_match_prop(xml_node, "rev", "1.0")) break; xml_node = xml_node->next; } /* Find */ xml_node = xml_node->children; while (1) { if (!xml_node) return; if (xml_node->type == XML_ELEMENT_NODE && xmlnode_is_named(xml_node, "file") && !xmlnode_match_prop(xml_node, "type", "profile") && !xmlnode_match_prop(xml_node, "service-type", "user")) break; xml_node = xml_node->next; } for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "uri", &vpninfo->profile_url); /* FIXME: Check for */ xmlnode_get_text(xml_node, "hash", &vpninfo->profile_sha1); } } static void parse_config_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; if (xmlnode_is_named(xml_node, "vpn-profile-manifest")) parse_profile_node(vpninfo, xml_node); } } /* Return value: * < 0, on error * = 0, on success; *form is populated */ static int parse_xml_response(struct openconnect_info *vpninfo, char *response, struct oc_auth_form **formp, int *cert_rq) { struct oc_auth_form *form; xmlDocPtr xml_doc; xmlNode *xml_node; int ret; if (*formp) { free_auth_form(*formp); *formp = NULL; } if (cert_rq) *cert_rq = 0; if (!response) { vpn_progress(vpninfo, PRG_DEBUG, _("Empty response from server\n")); return -EINVAL; } form = calloc(1, sizeof(*form)); if (!form) return -ENOMEM; xml_doc = xmlReadMemory(response, strlen(response), "noname.xml", NULL, XML_PARSE_NOERROR|XML_PARSE_RECOVER); if (!xml_doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), response); free(form); return -EINVAL; } xml_node = xmlDocGetRootElement(xml_doc); while (xml_node) { ret = 0; if (xml_node->type != XML_ELEMENT_NODE) { xml_node = xml_node->next; continue; } if (xmlnode_is_named(xml_node, "config-auth")) { /* if we do have a config-auth node, it is the root element */ xml_node = xml_node->children; continue; } else if (xmlnode_is_named(xml_node, "client-cert-request")) { if (cert_rq) *cert_rq = 1; else { vpn_progress(vpninfo, PRG_ERR, _("Received when not expected.\n")); ret = -EINVAL; } } else if (xmlnode_is_named(xml_node, "auth")) { xmlnode_get_prop(xml_node, "id", &form->auth_id); ret = parse_auth_node(vpninfo, xml_node, form); } else if (xmlnode_is_named(xml_node, "opaque")) { if (vpninfo->opaque_srvdata) xmlFreeNode(vpninfo->opaque_srvdata); vpninfo->opaque_srvdata = xmlCopyNode(xml_node, 1); if (!vpninfo->opaque_srvdata) ret = -ENOMEM; } else if (xmlnode_is_named(xml_node, "host-scan")) { ret = parse_host_scan_node(vpninfo, xml_node); } else if (xmlnode_is_named(xml_node, "config")) { parse_config_node(vpninfo, xml_node); } else { xmlnode_get_text(xml_node, "session-token", &vpninfo->cookie); xmlnode_get_text(xml_node, "error", &form->error); } if (ret) goto out; xml_node = xml_node->next; } if (!form->auth_id && (!cert_rq || !*cert_rq)) { vpn_progress(vpninfo, PRG_ERR, _("XML response has no \"auth\" node\n")); ret = -EINVAL; goto out; } *formp = form; xmlFreeDoc(xml_doc); return 0; out: xmlFreeDoc(xml_doc); free_auth_form(form); return ret; } /* Return value: * < 0, on error * = OC_FORM_RESULT_OK (0), when form parsed and POST required * = OC_FORM_RESULT_CANCELLED, when response was cancelled by user * = OC_FORM_RESULT_LOGGEDIN, when form indicates that login was already successful */ static int handle_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *request_body, const char **method, const char **request_body_type) { int ret; struct oc_vpn_option *opt, *next; if (!strcmp(form->auth_id, "success")) return OC_FORM_RESULT_LOGGEDIN; if (vpninfo->nopasswd) { vpn_progress(vpninfo, PRG_ERR, _("Asked for password but '--no-passwd' set\n")); return -EPERM; } if (vpninfo->csd_token && vpninfo->csd_ticket && vpninfo->csd_starturl && vpninfo->csd_waiturl) { /* AB: remove all cookies */ for (opt = vpninfo->cookies; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } vpninfo->cookies = NULL; return OC_FORM_RESULT_OK; } if (!form->opts) { if (form->message) vpn_progress(vpninfo, PRG_INFO, "%s\n", form->message); if (form->error) vpn_progress(vpninfo, PRG_ERR, "%s\n", form->error); return -EPERM; } ret = process_auth_form(vpninfo, form); if (ret) return ret; /* tokencode generation is deferred until after username prompts and CSD */ ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; return ret; } ret = vpninfo->xmlpost ? xmlpost_append_form_opts(vpninfo, form, request_body) : append_form_opts(vpninfo, form, request_body); if (!ret) { *method = "POST"; *request_body_type = "application/x-www-form-urlencoded"; } return ret; } /* * Old submission format is just an HTTP query string: * * password=12345678&username=joe * * New XML format is more complicated: * * * * * * * * * For init only, add: * https:// * * For auth-reply only, add: * * * * * * */ #define XCAST(x) ((const xmlChar *)(x)) static xmlDocPtr xmlpost_new_query(struct openconnect_info *vpninfo, const char *type, xmlNodePtr *rootp) { xmlDocPtr doc; xmlNodePtr root, node; doc = xmlNewDoc(XCAST("1.0")); if (!doc) return NULL; *rootp = root = xmlNewNode(NULL, XCAST("config-auth")); if (!root) goto bad; if (!xmlNewProp(root, XCAST("client"), XCAST("vpn"))) goto bad; if (!xmlNewProp(root, XCAST("type"), XCAST(type))) goto bad; xmlDocSetRootElement(doc, root); node = xmlNewTextChild(root, NULL, XCAST("version"), XCAST(openconnect_version_str)); if (!node) goto bad; if (!xmlNewProp(node, XCAST("who"), XCAST("vpn"))) goto bad; node = xmlNewTextChild(root, NULL, XCAST("device-id"), XCAST(vpninfo->platname)); if (!node) goto bad; if (vpninfo->mobile_platform_version) { if (!xmlNewProp(node, XCAST("platform-version"), XCAST(vpninfo->mobile_platform_version)) || !xmlNewProp(node, XCAST("device-type"), XCAST(vpninfo->mobile_device_type)) || !xmlNewProp(node, XCAST("unique-id"), XCAST(vpninfo->mobile_device_uniqueid))) goto bad; } return doc; bad: xmlFreeDoc(doc); return NULL; } static int xmlpost_complete(xmlDocPtr doc, struct oc_text_buf *body) { xmlChar *mem = NULL; int len, ret = 0; if (!body) { xmlFree(doc); return 0; } xmlDocDumpMemoryEnc(doc, &mem, &len, "UTF-8"); if (!mem) { xmlFreeDoc(doc); return -ENOMEM; } buf_append_bytes(body, mem, len); xmlFreeDoc(doc); xmlFree(mem); return ret; } static int xmlpost_initial_req(struct openconnect_info *vpninfo, struct oc_text_buf *request_body, int cert_fail) { xmlNodePtr root, node; xmlDocPtr doc = xmlpost_new_query(vpninfo, "init", &root); char *url; int result; if (!doc) return -ENOMEM; if (vpninfo->urlpath) result = asprintf(&url, "https://%s/%s", vpninfo->hostname, vpninfo->urlpath); else result = asprintf(&url, "https://%s", vpninfo->hostname); if (result == -1) goto bad; node = xmlNewTextChild(root, NULL, XCAST("group-access"), XCAST(url)); free(url); if (!node) goto bad; if (cert_fail) { node = xmlNewTextChild(root, NULL, XCAST("client-cert-fail"), NULL); if (!node) goto bad; } if (vpninfo->authgroup) { node = xmlNewTextChild(root, NULL, XCAST("group-select"), XCAST(vpninfo->authgroup)); if (!node) goto bad; } return xmlpost_complete(doc, request_body); bad: xmlpost_complete(doc, NULL); return -ENOMEM; } static int xmlpost_append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body) { xmlNodePtr root, node; xmlDocPtr doc = xmlpost_new_query(vpninfo, "auth-reply", &root); struct oc_form_opt *opt; if (!doc) return -ENOMEM; if (vpninfo->opaque_srvdata) { node = xmlCopyNode(vpninfo->opaque_srvdata, 1); if (!node) goto bad; if (!xmlAddChild(root, node)) goto bad; } node = xmlNewChild(root, NULL, XCAST("auth"), NULL); if (!node) goto bad; for (opt = form->opts; opt; opt = opt->next) { /* group_list: create a new node under */ if (!strcmp(opt->name, "group_list")) { if (!xmlNewTextChild(root, NULL, XCAST("group-select"), XCAST(opt->_value))) goto bad; continue; } /* answer,whichpin,new_password: rename to "password" */ if (!strcmp(opt->name, "answer") || !strcmp(opt->name, "whichpin") || !strcmp(opt->name, "new_password")) { if (!xmlNewTextChild(node, NULL, XCAST("password"), XCAST(opt->_value))) goto bad; continue; } /* verify_pin,verify_password: ignore */ if (!strcmp(opt->name, "verify_pin") || !strcmp(opt->name, "verify_password")) { continue; } /* everything else: create user_input under */ if (!xmlNewTextChild(node, NULL, XCAST(opt->name), XCAST(opt->_value))) goto bad; } if (vpninfo->csd_token && !xmlNewTextChild(root, NULL, XCAST("host-scan-token"), XCAST(vpninfo->csd_token))) goto bad; return xmlpost_complete(doc, body); bad: xmlpost_complete(doc, NULL); return -ENOMEM; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ static int cstp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_mode == OC_TOKEN_MODE_NONE || vpninfo->token_bypassed) return -EINVAL; #ifdef HAVE_LIBSTOKEN if (vpninfo->token_mode == OC_TOKEN_MODE_STOKEN) { if (strcmp(opt->name, "password") && strcmp(opt->name, "answer")) return -EINVAL; return can_gen_stoken_code(vpninfo, form, opt); } #endif /* Otherwise it's an OATH token of some kind. */ if (strcmp(opt->name, "secondary_password")) return -EINVAL; return can_gen_tokencode(vpninfo, form, opt); } static int fetch_config(struct openconnect_info *vpninfo) { struct oc_text_buf *buf; int result; unsigned char local_sha1_bin[SHA1_SIZE]; char local_sha1_ascii[(SHA1_SIZE * 2)+1]; int i; if (!vpninfo->profile_url || !vpninfo->profile_sha1 || !vpninfo->write_new_config) return -ENOENT; if (!strncasecmp(vpninfo->xmlsha1, vpninfo->profile_sha1, SHA1_SIZE * 2)) { vpn_progress(vpninfo, PRG_TRACE, _("Not downloading XML profile because SHA1 already matches\n")); return 0; } if ((result = openconnect_open_https(vpninfo))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); return result; } buf = buf_alloc(); buf_append(buf, "GET %s HTTP/1.1\r\n", vpninfo->profile_url); cstp_common_headers(vpninfo, buf); if (vpninfo->xmlpost) buf_append(buf, "Cookie: webvpn=%s\r\n", vpninfo->cookie); buf_append(buf, "\r\n"); if (buf_error(buf)) return buf_free(buf); if (vpninfo->ssl_write(vpninfo, buf->data, buf->pos) != buf->pos) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GET request for new config\n")); buf_free(buf); return -EIO; } result = process_http_response(vpninfo, 0, NULL, buf); if (result < 0) { /* We'll already have complained about whatever offended us */ buf_free(buf); return -EINVAL; } if (result != 200) { buf_free(buf); return -EINVAL; } openconnect_sha1(local_sha1_bin, buf->data, buf->pos); for (i = 0; i < SHA1_SIZE; i++) sprintf(&local_sha1_ascii[i*2], "%02x", local_sha1_bin[i]); if (strcasecmp(vpninfo->profile_sha1, local_sha1_ascii)) { vpn_progress(vpninfo, PRG_ERR, _("Downloaded config file did not match intended SHA1\n")); buf_free(buf); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Downloaded new XML profile\n")); result = vpninfo->write_new_config(vpninfo->cbdata, buf->data, buf->pos); buf_free(buf); return result; } static int run_csd_script(struct openconnect_info *vpninfo, char *buf, int buflen) { #ifdef _WIN32 vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'Cisco Secure Desktop' trojan on Windows is not yet implemented.\n")); return -EPERM; #else char fname[64]; int fd, ret; if (!vpninfo->csd_wrapper && !buflen) { vpn_progress(vpninfo, PRG_ERR, _("Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n")); return -EINVAL; } if (!vpninfo->uid_csd_given && !vpninfo->csd_wrapper) { vpn_progress(vpninfo, PRG_ERR, _("Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish to enable it.\n")); return -EPERM; } #ifndef __linux__ vpn_progress(vpninfo, PRG_INFO, _("Trying to run Linux CSD trojan script.\n")); #endif fname[0] = 0; if (buflen) { struct oc_vpn_option *opt; const char *tmpdir = NULL; /* If the caller wanted $TMPDIR set for the CSD script, that means for us too; look through the csd_env for a TMPDIR override. */ for (opt = vpninfo->csd_env; opt; opt = opt->next) { if (!strcmp(opt->option, "TMPDIR")) { tmpdir = opt->value; break; } } if (!opt) tmpdir = getenv("TMPDIR"); if (!tmpdir && !access("/var/tmp", W_OK)) tmpdir = "/var/tmp"; if (!tmpdir) tmpdir = "/tmp"; if (access(tmpdir, W_OK)) vpn_progress(vpninfo, PRG_ERR, _("Temporary directory '%s' is not writable: %s\n"), tmpdir, strerror(errno)); snprintf(fname, 64, "%s/csdXXXXXX", tmpdir); fd = mkstemp(fname); if (fd < 0) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open temporary CSD script file: %s\n"), strerror(errno)); return err; } ret = write(fd, (void *)buf, buflen); if (ret != buflen) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to write temporary CSD script file: %s\n"), strerror(errno)); return err; } fchmod(fd, 0755); close(fd); } if (!fork()) { char scertbuf[MD5_SIZE * 2 + 1]; char ccertbuf[MD5_SIZE * 2 + 1]; char *csd_argv[32]; int i = 0; if (vpninfo->uid_csd_given && vpninfo->uid_csd != getuid()) { struct passwd *pw; if (setuid(vpninfo->uid_csd)) { fprintf(stderr, _("Failed to set uid %ld\n"), (long)vpninfo->uid_csd); exit(1); } if (!(pw = getpwuid(vpninfo->uid_csd))) { fprintf(stderr, _("Invalid user uid=%ld\n"), (long)vpninfo->uid_csd); exit(1); } setenv("HOME", pw->pw_dir, 1); if (chdir(pw->pw_dir)) { fprintf(stderr, _("Failed to change to CSD home directory '%s': %s\n"), pw->pw_dir, strerror(errno)); exit(1); } } if (getuid() == 0 && !vpninfo->csd_wrapper) { fprintf(stderr, _("Warning: you are running insecure " "CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n")); } /* Spurious stdout output from the CSD trojan will break both the NM tool and the various cookieonly modes. */ dup2(2, 1); if (vpninfo->csd_wrapper) csd_argv[i++] = openconnect_utf8_to_legacy(vpninfo, vpninfo->csd_wrapper); csd_argv[i++] = fname; csd_argv[i++] = (char *)"-ticket"; if (asprintf(&csd_argv[i++], "\"%s\"", vpninfo->csd_ticket) == -1) goto out; csd_argv[i++] = (char *)"-stub"; csd_argv[i++] = (char *)"\"0\""; csd_argv[i++] = (char *)"-group"; if (asprintf(&csd_argv[i++], "\"%s\"", vpninfo->authgroup?:"") == -1) goto out; openconnect_local_cert_md5(vpninfo, ccertbuf); scertbuf[0] = 0; get_cert_md5_fingerprint(vpninfo, vpninfo->peer_cert, scertbuf); csd_argv[i++] = (char *)"-certhash"; if (asprintf(&csd_argv[i++], "\"%s:%s\"", scertbuf, ccertbuf) == -1) goto out; csd_argv[i++] = (char *)"-url"; if (asprintf(&csd_argv[i++], "\"https://%s%s\"", vpninfo->hostname, vpninfo->csd_starturl) == -1) goto out; csd_argv[i++] = (char *)"-langselen"; csd_argv[i++] = NULL; if (setenv("CSD_TOKEN", vpninfo->csd_token, 1)) goto out; if (setenv("CSD_HOSTNAME", vpninfo->hostname, 1)) goto out; apply_script_env(vpninfo->csd_env); execv(csd_argv[0], csd_argv); out: vpn_progress(vpninfo, PRG_ERR, _("Failed to exec CSD script %s\n"), csd_argv[0]); exit(1); } free(vpninfo->csd_stuburl); vpninfo->csd_stuburl = NULL; free(vpninfo->urlpath); vpninfo->urlpath = strdup(vpninfo->csd_waiturl + (vpninfo->csd_waiturl[0] == '/' ? 1 : 0)); free(vpninfo->csd_waiturl); vpninfo->csd_waiturl = NULL; vpninfo->csd_scriptname = strdup(fname); http_add_cookie(vpninfo, "sdesktop", vpninfo->csd_token, 1); return 0; #endif /* !_WIN32 */ } /* Return value: * < 0, if the data is unrecognized * = 0, if the page contains an XML document * = 1, if the page is a wait/refresh HTML page */ static int check_response_type(struct openconnect_info *vpninfo, char *form_buf) { if (strncmp(form_buf, " 0, no cookie (user cancel) * = 0, obtained cookie */ int cstp_obtain_cookie(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt; char *form_buf = NULL; struct oc_auth_form *form = NULL; int result, buflen, tries; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *orig_host = NULL, *orig_path = NULL, *form_path = NULL; int orig_port = 0; int cert_rq, cert_sent = !vpninfo->cert; int newgroup_attempts = 5; #ifdef HAVE_LIBSTOKEN /* Step 1: Unlock software token (if applicable) */ if (vpninfo->token_mode == OC_TOKEN_MODE_STOKEN) { result = prepare_stoken(vpninfo); if (result) goto out; } #endif if (!vpninfo->xmlpost) goto no_xmlpost; /* * Step 2: Probe for XML POST compatibility * * This can get stuck in a redirect loop, so give up after any of: * * a) HTTP error (e.g. 400 Bad Request) * b) Same-host redirect (e.g. Location: /foo/bar) * c) Three redirects without seeing a plausible login form */ newgroup: if (newgroup_attempts-- <= 0) { result = -1; goto out; } buf_truncate(request_body); result = xmlpost_initial_req(vpninfo, request_body, 0); if (result < 0) goto out; free(orig_host); free(orig_path); orig_host = strdup(vpninfo->hostname); orig_path = vpninfo->urlpath ? strdup(vpninfo->urlpath) : NULL; orig_port = vpninfo->port; for (tries = 0; ; tries++) { if (tries == 3) { fail: if (vpninfo->xmlpost) { no_xmlpost: /* Try without XML POST this time... */ tries = 0; vpninfo->xmlpost = 0; request_body_type = NULL; buf_truncate(request_body); method = "GET"; if (orig_host) { openconnect_set_hostname(vpninfo, orig_host); free(orig_host); orig_host = NULL; free(vpninfo->urlpath); vpninfo->urlpath = orig_path; orig_path = NULL; vpninfo->port = orig_port; } openconnect_close_https(vpninfo, 0); } else { result = -EIO; goto out; } } result = do_https_request(vpninfo, method, request_body_type, request_body, &form_buf, 0); if (vpninfo->got_cancel_cmd) { result = 1; goto out; } if (result == -EINVAL) goto fail; if (result < 0) goto out; /* Some ASAs forget to send the TLS cert request on the initial connection. * If we have a client cert, disable HTTP keepalive until we get a real * login form (not a redirect). */ if (!cert_sent) openconnect_close_https(vpninfo, 0); /* XML POST does not allow local redirects, but GET does. */ if (vpninfo->xmlpost && vpninfo->redirect_type == REDIR_TYPE_LOCAL) goto fail; else if (vpninfo->redirect_type != REDIR_TYPE_NONE) continue; result = parse_xml_response(vpninfo, form_buf, &form, &cert_rq); if (result < 0) goto fail; if (cert_rq) { int cert_failed = 0; free_auth_form(form); form = NULL; if (!cert_sent && vpninfo->cert) { /* Try again on a fresh connection. */ cert_sent = 1; } else if (cert_sent && vpninfo->cert) { /* Try again with in the request */ vpn_progress(vpninfo, PRG_ERR, _("Server requested SSL client certificate after one was provided\n")); cert_failed = 1; } else { vpn_progress(vpninfo, PRG_INFO, _("Server requested SSL client certificate; none was configured\n")); cert_failed = 1; } buf_truncate(request_body); result = xmlpost_initial_req(vpninfo, request_body, cert_failed); if (result < 0) goto fail; continue; } if (form && form->action) { vpninfo->redirect_url = strdup(form->action); handle_redirect(vpninfo); } break; } if (vpninfo->xmlpost) vpn_progress(vpninfo, PRG_INFO, _("XML POST enabled\n")); /* Step 4: Run the CSD trojan, if applicable */ if (vpninfo->csd_starturl && vpninfo->csd_waiturl) { buflen = 0; if (vpninfo->urlpath) { form_path = strdup(vpninfo->urlpath); if (!form_path) { result = -ENOMEM; goto out; } } /* fetch the CSD program, if available */ if (vpninfo->csd_stuburl) { vpninfo->redirect_url = vpninfo->csd_stuburl; vpninfo->csd_stuburl = NULL; handle_redirect(vpninfo); buflen = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, 0); if (buflen <= 0) { result = -EINVAL; goto out; } } /* This is the CSD stub script, which we now need to run */ result = run_csd_script(vpninfo, form_buf, buflen); if (result) goto out; /* vpninfo->urlpath now points to the wait page */ while (1) { result = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, 0); if (result <= 0) break; result = check_response_type(vpninfo, form_buf); if (result <= 0) break; vpn_progress(vpninfo, PRG_INFO, _("Refreshing %s after 1 second...\n"), vpninfo->urlpath); sleep(1); } if (result < 0) goto out; /* refresh the form page, to see if we're authorized now */ free(vpninfo->urlpath); vpninfo->urlpath = form_path; form_path = NULL; result = do_https_request(vpninfo, vpninfo->xmlpost ? "POST" : "GET", request_body_type, request_body, &form_buf, 1); if (result < 0) goto out; result = parse_xml_response(vpninfo, form_buf, &form, NULL); if (result < 0) goto out; } /* Step 5: Ask the user to fill in the auth form; repeat as necessary */ while (1) { buf_truncate(request_body); result = handle_auth_form(vpninfo, form, request_body, &method, &request_body_type); if (result < 0 || result == OC_FORM_RESULT_CANCELLED) goto out; if (result == OC_FORM_RESULT_LOGGEDIN) break; if (result == OC_FORM_RESULT_NEWGROUP) { free(form_buf); form_buf = NULL; free_auth_form(form); form = NULL; goto newgroup; } result = do_https_request(vpninfo, method, request_body_type, request_body, &form_buf, 1); if (result < 0) goto out; result = parse_xml_response(vpninfo, form_buf, &form, NULL); if (result < 0) goto out; if (form->action) { vpninfo->redirect_url = strdup(form->action); handle_redirect(vpninfo); } } /* A return value of 2 means the XML form indicated success. We _should_ have a cookie... */ for (opt = vpninfo->cookies; opt; opt = opt->next) { if (!strcmp(opt->option, "webvpn")) { free(vpninfo->cookie); vpninfo->cookie = strdup(opt->value); } else if (vpninfo->write_new_config && !strcmp(opt->option, "webvpnc")) { char *tok = opt->value; char *bu = NULL, *fu = NULL, *sha = NULL; do { if (tok != opt->value) *(tok++) = 0; if (!strncmp(tok, "bu:", 3)) bu = tok + 3; else if (!strncmp(tok, "fu:", 3)) fu = tok + 3; else if (!strncmp(tok, "fh:", 3)) sha = tok + 3; } while ((tok = strchr(tok, '&'))); if (bu && fu && sha) { if (asprintf(&vpninfo->profile_url, "%s%s", bu, fu) == -1) { result = -ENOMEM; goto out; } vpninfo->profile_sha1 = strdup(sha); } } } result = 0; fetch_config(vpninfo); out: buf_free(request_body); free (orig_host); free (orig_path); free(form_path); free(form_buf); free_auth_form(form); if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); free(vpninfo->csd_scriptname); vpninfo->csd_scriptname = NULL; } return result; } openconnect-7.06/configure.ac0000664000076400007640000010545412502026417013212 00000000000000AC_INIT(openconnect, 7.06) AC_CONFIG_HEADERS([config.h]) PKG_PROG_PKG_CONFIG AC_LANG_C AC_CANONICAL_HOST AM_MAINTAINER_MODE([enable]) AM_INIT_AUTOMAKE([foreign]) m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])]) AC_PREREQ([2.62], [], [AC_SUBST([localedir], ['$(datadir)/locale'])]) # Upstream's pkg.m4 (since 0.27) offers this now, but define our own # compatible version in case the local version of pkgconfig isn't new enough. # https://bugs.freedesktop.org/show_bug.cgi?id=48743 m4_ifdef([PKG_INSTALLDIR], [PKG_INSTALLDIR], [AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], [install directory for openconnect.pc pkg-config file])], [],[with_pkgconfigdir='$(libdir)/pkgconfig']) AC_SUBST([pkgconfigdir], [${with_pkgconfigdir}])]) use_openbsd_libtool= symver_time= symver_getline= symver_asprintf= symver_vasprintf= symver_win32_strerror= case $host_os in *linux* | *gnu*) AC_MSG_NOTICE([Applying feature macros for GNU build]) AC_DEFINE(_POSIX_C_SOURCE, 200112L, [_POSIX_C_SOURCE]) # For asprintf() AC_DEFINE(_GNU_SOURCE, 1, [_GNU_SOURCE]) ;; *netbsd*) AC_MSG_NOTICE([Applying feature macros for NetBSD build]) AC_DEFINE(_POSIX_C_SOURCE, 200112L, [_POSIX_C_SOURCE]) AC_DEFINE(_NETBSD_SOURCE, 1, [_NETBSD_SOURCE]) ;; *openbsd*) AC_MSG_NOTICE([Applying feature macros for OpenBSD build]) use_openbsd_libtool=true ;; *solaris*|*sunos*) AC_MSG_NOTICE([Applying workaround for broken SunOS time() function]) AC_DEFINE(HAVE_SUNOS_BROKEN_TIME, 1, [On SunOS time() can go backwards]) symver_time="openconnect__time;" ;; *mingw32*|*mingw64*|*msys*) AC_MSG_NOTICE([Applying feature macros for MinGW/Windows build]) # For GetVolumeInformationByHandleW() which is Vista+ AC_DEFINE(_WIN32_WINNT, 0x600, [Windows API version]) have_win=yes # For asprintf() AC_DEFINE(_GNU_SOURCE, 1, [_GNU_SOURCE]) symver_win32_strerror="openconnect__win32_strerror;" # Win32 does have the SCard API LIBPCSCLITE_LIBS=-lwinscard LIBPCSCLITE_CFLAGS=" " ;; *darwin*) LIBPCSCLITE_LIBS="-Wl,-framework -Wl,PCSC" LIBPCSCLITE_CFLAGS=" " ;; *) # On FreeBSD the only way to get vsyslog() visible is to define # *nothing*, which makes absolutely everything visible. # On Darwin enabling _POSIX_C_SOURCE breaks because # u_long and other types don't get defined. OpenBSD is similar. ;; esac AM_CONDITIONAL(OPENCONNECT_WIN32, [ test "$have_win" = "yes" ]) AC_ARG_WITH([vpnc-script], [AS_HELP_STRING([--with-vpnc-script], [default location of vpnc-script helper])]) if test "$with_vpnc_script" = "yes" || test "$with_vpnc_script" = ""; then if test "$have_win" = "yes"; then with_vpnc_script=vpnc-script-win.js else with_vpnc_script=/etc/vpnc/vpnc-script if ! test -x "$with_vpnc_script"; then AC_MSG_ERROR([${with_vpnc_script} does not seem to be executable.] [OpenConnect will not function correctly without a vpnc-script.] [See http://www.infradead.org/openconnect/vpnc-script.html for more details.] [] [If you are building a distribution package, please ensure that your] [packaging is correct, and that a vpnc-script will be installed when the] [user installs your package. You should provide a --with-vpnc-script=] [argument to this configure script, giving the full path where the script] [will be installed.] [] [The standard location is ${with_vpnc_script}. To bypass this error and] [build OpenConnect to use the script from this location, even though it is] [not present at the time you are building OpenConnect, pass the argument] ["--with-vpnc-script=${with_vpnc_script}"]) fi fi elif test "$with_vpnc_script" = "no"; then AC_ERROR([You cannot disable vpnc-script.] [OpenConnect will not function correctly without it.] [See http://www.infradead.org/openconnect/vpnc-script.html]) elif test "$have_win" = "yes"; then # Oh Windows how we hate thee. If user specifies a vpnc-script and it contains # backslashes, double them all up to survive escaping. with_vpnc_script="$(echo "${with_vpnc_script}" | sed s/\\\\/\\\\\\\\/g)" fi AC_DEFINE_UNQUOTED(DEFAULT_VPNCSCRIPT, "${with_vpnc_script}", [Default vpnc-script locatin]) AC_SUBST(DEFAULT_VPNCSCRIPT, "${with_vpnc_script}") AC_CHECK_FUNC(fdevname_r, [AC_DEFINE(HAVE_FDEVNAME_R, 1, [Have fdevname_r() function])], []) AC_CHECK_FUNC(getline, [AC_DEFINE(HAVE_GETLINE, 1, [Have getline() function])], [symver_getline="openconnect__getline;"]) AC_CHECK_FUNC(strcasestr, [AC_DEFINE(HAVE_STRCASESTR, 1, [Have strcasestr() function])], []) AC_CHECK_FUNC(strndup, [AC_DEFINE(HAVE_STRNDUP, 1, [Have strndup() function])], []) AC_CHECK_FUNC(asprintf, [AC_DEFINE(HAVE_ASPRINTF, 1, [Have asprintf() function])], [symver_asprintf="openconnect__asprintf;"]) AC_CHECK_FUNC(vasprintf, [AC_DEFINE(HAVE_VASPRINTF, 1, [Have vasprintf() function])], [symver_vasprintf="openconnect__vasprintf;"]) if test -n "$symver_vasprintf"; then AC_MSG_CHECKING([for va_copy]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include va_list a;],[ va_list b; va_copy(b,a); va_end(b);])], [AC_DEFINE(HAVE_VA_COPY, 1, [Have va_copy()]) AC_MSG_RESULT(va_copy)], [AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include va_list a;],[ va_list b; __va_copy(b,a); va_end(b);])], [AC_DEFINE(HAVE___VA_COPY, 1, [Have __va_copy()]) AC_MSG_RESULT(__va_copy)], [AC_MSG_RESULT(no) AC_MSG_ERROR([Your system lacks vasprintf() and va_copy()])]) ]) fi AC_SUBST(SYMVER_TIME, $symver_time) AC_SUBST(SYMVER_GETLINE, $symver_getline) AC_SUBST(SYMVER_ASPRINTF, $symver_asprintf) AC_SUBST(SYMVER_VASPRINTF, $symver_vasprintf) AC_SUBST(SYMVER_WIN32_STRERROR, $symver_win32_strerror) AS_COMPILER_FLAGS(WFLAGS, "-Wall -Wextra -Wno-missing-field-initializers -Wno-sign-compare -Wno-unused-parameter -Werror=pointer-to-int-cast -Wdeclaration-after-statement -Werror-implicit-function-declaration -Wformat-nonliteral -Wformat-security -Winit-self -Wmissing-declarations -Wmissing-include-dirs -Wnested-externs -Wpointer-arith -Wwrite-strings") AC_SUBST(WFLAGS, [$WFLAGS]) if test "$have_win" = yes; then # Checking "properly" for __attribute__((dllimport,stdcall)) functions is non-trivial LIBS="$LIBS -lws2_32 -lshlwapi -lsecur32" else AC_CHECK_FUNC(socket, [], AC_CHECK_LIB(socket, socket, [], AC_ERROR(Cannot find socket() function))) fi have_inet_aton=yes AC_CHECK_FUNC(inet_aton, [], AC_CHECK_LIB(nsl, inet_aton, [], have_inet_aton=no)) if test "$have_inet_aton" = "yes"; then AC_DEFINE(HAVE_INET_ATON, 1, [Have inet_aton()]) fi AC_CHECK_FUNC(__android_log_vprint, [], AC_CHECK_LIB(log, __android_log_vprint, [], [])) AC_ENABLE_SHARED AC_DISABLE_STATIC AC_CHECK_FUNC(nl_langinfo, [AC_DEFINE(HAVE_NL_LANGINFO, 1, [Have nl_langinfo() function])], []) if test "$ac_cv_func_nl_langinfo" = "yes"; then AM_ICONV if test "$am_cv_func_iconv" = "yes"; then AC_SUBST(ICONV_LIBS, [$LTLIBICONV]) AC_SUBST(ICONV_CFLAGS, [$INCICONV]) AC_DEFINE(HAVE_ICONV, 1, [Have iconv() function]) fi fi AM_CONDITIONAL(OPENCONNECT_ICONV, [test "$am_cv_func_iconv" = "yes"]) AC_ARG_ENABLE([lzstest], [ --enable-lzstest build LZS test harness], [BUILD_LZSTEST=$enableval], [BUILD_LZSTEST=no]) AM_CONDITIONAL(BUILD_LZSTEST, [test "$BUILD_LZSTEST" = "yes"]) AC_ARG_ENABLE([nls], [ --disable-nls do not use Native Language Support], [USE_NLS=$enableval], [USE_NLS=yes]) LIBINTL= if test "$USE_NLS" = "yes"; then AC_PATH_PROG(MSGFMT, msgfmt) if test "$MSGFMT" = ""; then AC_ERROR([msgfmt could not be found. Try configuring with --disable-nls]) fi fi LIBINTL= if test "$USE_NLS" = "yes"; then AC_MSG_CHECKING([for functional NLS support]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo");])], [AC_MSG_RESULT(yes)], [AC_LIB_LINKFLAGS_BODY([intl]) oldLIBS="$LIBS" LIBS="$LIBS $LIBINTL" oldCFLAGS="$LIBS" CFLAGS="$CFLAGS $INCINTL" AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo");])], [AC_MSG_RESULT(yes (with $INCINTL $LIBINTL))], [AC_MSG_RESULT(no) USE_NLS=no]) LIBS="$oldLIBS"]) fi if test "$USE_NLS" = "yes"; then AC_SUBST(INTL_LIBS, [$LTLIBINTL]) AC_SUBST(INTL_CFLAGS, [$INCINTL]) AC_DEFINE(ENABLE_NLS, 1, [Enable NLS support]) fi AM_CONDITIONAL(USE_NLS, [test "$USE_NLS" = "yes"]) AC_ARG_WITH([system-cafile], AS_HELP_STRING([--with-system-cafile], [Location of the default system CA certificate file for old (<3.0.20) GnuTLS versions])) # We will use GnuTLS by default if it's present, and if GnuTLS doesn't # have DTLS support then we'll *also* use OpenSSL for that, but it # appears *only* only in the openconnect executable and not the # library (hence shouldn't be a problem for GPL'd programs using # libopenconnect). # # If built with --without-openssl then we'll even eschew OpenSSL for # DTLS support and will build without any DTLS support at all if # GnuTLS cannot manage. # # You can build without GnuTLS, even if its pkg-config file is present # on the system, by using '--without-gnutls' AC_ARG_WITH([gnutls], AS_HELP_STRING([--without-gnutls], [Do not attempt to use GnuTLS; use OpenSSL instead])) AC_ARG_WITH([openssl], AS_HELP_STRING([--with-openssl], [Location of OpenSSL build dir])) ssl_library= if test "$with_gnutls" = "yes" || test "$with_gnutls" = ""; then PKG_CHECK_MODULES(GNUTLS, gnutls, [found_gnutls=yes], [found_gnutls=no]) if test "$found_gnutls" = "yes"; then if ! $PKG_CONFIG --atleast-version=2.12.16 gnutls; then found_gnutls=old fi if test "$have_win" = "yes"; then AC_MSG_CHECKING([for broken GnuTLS Windows versions]) if $PKG_CONFIG --atleast-version=3.2.0 gnutls && ! $PKG_CONFIG --atleast-version=3.2.10 gnutls; then AC_MSG_RESULT([yes]) found_gnutls=winbroken else AC_MSG_RESULT([no]) fi fi fi case $with_gnutls$found_gnutls in yeswinbroken) AC_MSG_ERROR([GnuTLS v3.2.0-v3.2.9 are not functional on Windows]) ;; yesold) AC_MSG_ERROR([Your GnuTLS is too old. At least v2.12.16 is required]) ;; yesno) AC_MSG_ERROR([GnuTLS requested but no package 'gnutls' found]) ;; old) AC_MSG_WARN([GnuTLS is too old. At least v2.12.16 is required. Falling back to OpenSSL]) ;; yes) with_gnutls=yes ;; esac elif test "$with_gnutls" != "no"; then AC_MSG_ERROR([Values other than 'yes' or 'no' for --with-gnutls are not supported]) fi if test "$with_gnutls" = "yes"; then oldlibs="$LIBS" LIBS="$LIBS $GNUTLS_LIBS" oldcflags="$CFLAGS" CFLAGS="$CFLAGS $GNUTLS_CFLAGS" AC_CHECK_FUNC(gnutls_dtls_set_data_mtu, [AC_DEFINE(HAVE_GNUTLS_DTLS_SET_DATA_MTU, 1, [Have this function])], []) AC_CHECK_FUNC(gnutls_pkcs11_get_raw_issuer, [AC_DEFINE(HAVE_GNUTLS_PKCS11_GET_RAW_ISSUER, 1, [Have this function])], []) AC_CHECK_FUNC(gnutls_certificate_set_x509_system_trust, [AC_DEFINE(HAVE_GNUTLS_CERTIFICATE_SET_X509_SYSTEM_TRUST, 1, [I hate autoheader])], []) if test "$ac_cv_func_gnutls_certificate_set_x509_system_trust" != "yes"; then # We will need to tell GnuTLS the path to the system CA file. if test "$with_system_cafile" = "yes" || test "$with_system_cafile" = ""; then unset with_system_cafile AC_MSG_CHECKING([For location of system CA trust file]) for file in /etc/ssl/certs/ca-certificates.crt \ /etc/pki/tls/cert.pem \ /usr/local/share/certs/ca-root-nss.crt \ /etc/ssl/cert.pem \ /etc/ssl/ca-bundle.pem \ ; do if grep 'BEGIN CERTIFICATE-----' $file >/dev/null 2>&1; then with_system_cafile=${file} break fi done AC_MSG_RESULT([${with_system_cafile-NOT FOUND}]) elif test "$with_system_cafile" = "no"; then AC_MSG_ERROR([You cannot disable the system CA certificate file.]) fi if test "$with_system_cafile" = ""; then AC_MSG_ERROR([Unable to find a standard system CA certificate file.] [Your GnuTLS requires a path to a CA certificate store. This is a file] [which contains a list of the Certificate Authorities which are trusted.] [Most distributions ship with this file in a standard location, but none] [the known standard locations exist on your system. You should provide a] [--with-system-cafile= argument to this configure script, giving the full] [path to a default CA certificate file for GnuTLS to use. Also, please] [send full details of your system, including 'uname -a' output and the] [location of the system CA certificate store on your system, to the] [openconnect-devel@lists.infradead.org mailing list.]) fi AC_DEFINE_UNQUOTED([DEFAULT_SYSTEM_CAFILE], ["$with_system_cafile"], [Location of System CA trust file]) fi AC_CHECK_FUNC(gnutls_cipher_set_iv, [have_gnutls_esp=yes], [have_gnutls_esp=no]) AC_CHECK_FUNC(gnutls_pkcs12_simple_parse, [AC_DEFINE(HAVE_GNUTLS_PKCS12_SIMPLE_PARSE, 1, [This one was obvious too])], []) AC_CHECK_FUNC(gnutls_certificate_set_key, [AC_DEFINE(HAVE_GNUTLS_CERTIFICATE_SET_KEY, 1, [stupid])], []) AC_CHECK_FUNC(gnutls_pk_to_sign, [AC_DEFINE(HAVE_GNUTLS_PK_TO_SIGN, 1, [autoheader])], []) AC_CHECK_FUNC(gnutls_pubkey_export2, [AC_DEFINE(HAVE_GNUTLS_PUBKEY_EXPORT2, 1, [autoheader sucks donkey balls])], []) AC_CHECK_FUNC(gnutls_x509_crt_set_pin_function, [AC_DEFINE(HAVE_GNUTLS_X509_CRT_SET_PIN_FUNCTION, 1, [From GnuTLS 3.1.0])], []) AC_CHECK_FUNC(gnutls_system_key_add_x509, [AC_DEFINE(HAVE_GNUTLS_SYSTEM_KEYS, 1, [From GnuTLS 3.4.0])], []) if test "$with_openssl" = "" || test "$with_openssl" = "no"; then AC_CHECK_FUNC(gnutls_session_set_premaster, [have_gnutls_dtls=yes], [have_gnutls_dtls=no]) else have_gnutls_dtls=no fi if test "$have_gnutls_dtls" = "yes"; then if test "$with_openssl" = "" || test "$with_openssl" = "no"; then # They either said no OpenSSL or didn't specify, and GnuTLS can # do DTLS, so just use GnuTLS. AC_DEFINE(HAVE_GNUTLS_SESSION_SET_PREMASTER, 1, [the fish are hungry tonight]) ssl_library=gnutls with_openssl=no else # They specifically asked for OpenSSL, so use it for DTLS even # though GnuTLS could manage. ssl_library=both fi else if test "$with_openssl" = "no"; then # GnuTLS doesn't have DTLS, but they don't want OpenSSL. So build # without DTLS support at all. ssl_library=gnutls else # GnuTLS doesn't have DTLS so use OpenSSL for it, but GnuTLS for # the TCP connection (and thus in the library). ssl_library=both fi fi AC_CHECK_FUNC(gnutls_pkcs11_add_provider, [PKG_CHECK_MODULES(P11KIT, p11-kit-1, [AC_DEFINE(HAVE_P11KIT, 1, [Have. P11. Kit.]) AC_SUBST(P11KIT_PC, p11-kit-1)], [:])], []) LIBS="$oldlibs -ltspi" AC_MSG_CHECKING([for tss library]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ int err = Tspi_Context_Create((void *)0); Trspi_Error_String(err);])], [AC_MSG_RESULT(yes) AC_SUBST([TSS_LIBS], [-ltspi]) AC_SUBST([TSS_CFLAGS], []) AC_DEFINE(HAVE_TROUSERS, 1, [Have Trousers TSS library])], [AC_MSG_RESULT(no)]) LIBS="$oldlibs" CFLAGS="$oldcflags" fi if test "$with_openssl" = "yes" || test "$with_openssl" = "" || test "$ssl_library" = "both"; then PKG_CHECK_MODULES(OPENSSL, openssl, [], [oldLIBS="$LIBS" LIBS="$LIBS -lssl -lcrypto" AC_MSG_CHECKING([for OpenSSL without pkg-config]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms();])], [AC_MSG_RESULT(yes) AC_SUBST([OPENSSL_LIBS], ["-lssl -lcrypto"]) AC_SUBST([OPENSSL_CFLAGS], [])], [AC_MSG_RESULT(no) if test "$ssl_library" = "both"; then ssl_library="gnutls"; else AC_ERROR([Could not build against OpenSSL]); fi]) LIBS="$oldLIBS"]) if test "$ssl_library" != "both" && test "$ssl_library" != "gnutls"; then ssl_library=openssl fi elif test "$with_openssl" != "no" ; then OPENSSL_CFLAGS="-I${with_openssl}/include" OPENSSL_LIBS="${with_openssl}/libssl.a ${with_openssl}/libcrypto.a -ldl -lz" AC_SUBST(OPENSSL_CFLAGS) AC_SUBST(OPENSSL_LIBS) enable_static=yes enable_shared=no AC_DEFINE(DTLS_OPENSSL, 1, [Using OpenSSL for DTLS]) if test "$ssl_library" != "both"; then ssl_library=openssl fi fi esp=none case "$ssl_library" in gnutls) AC_DEFINE(OPENCONNECT_GNUTLS, 1, [Using GnuTLS]) AC_DEFINE(DTLS_GNUTLS, 1, [Using GnuTLS for DTLS]) AC_SUBST(SSL_DTLS_PC, [gnutls]) AC_SUBST(SSL_LIBS, ['$(GNUTLS_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(GNUTLS_CFLAGS)']) check_openssl_dtls=no if test "$have_gnutls_dtls" = "yes"; then esp=gnutls fi ;; openssl) PKG_CHECK_MODULES(P11KIT, p11-kit-1, [PKG_CHECK_MODULES(LIBP11, libp11, [AC_DEFINE(HAVE_LIBP11, 1, [Have libp11 and p11-kit for OpenSSL]) AC_SUBST(P11KIT_PC, ["libp11 p11-kit-1"]) proxy_module="`$PKG_CONFIG --variable=proxy_module p11-kit-1`" AC_DEFINE_UNQUOTED([DEFAULT_PKCS11_MODULE], "${proxy_module}", [p11-kit proxy])], [:])], [:]) AC_DEFINE(OPENCONNECT_OPENSSL, 1, [Using OpenSSL]) AC_DEFINE(DTLS_OPENSSL, 1, [Using OpenSSL for DTLS]) AC_SUBST(SSL_DTLS_PC, [openssl]) AC_SUBST(SSL_LIBS, ['$(OPENSSL_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(OPENSSL_CFLAGS)']) check_openssl_dtls=yes esp=openssl ;; both) # GnuTLS for TCP, OpenSSL for DTLS AC_DEFINE(OPENCONNECT_GNUTLS, 1, [Using GnuTLS]) AC_DEFINE(DTLS_OPENSSL, 1, [Using OpenSSL for DTLS]) AC_SUBST(SSL_DTLS_PC, [gnutls openssl]) AC_SUBST(SSL_LIBS, ['$(GNUTLS_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(GNUTLS_CFLAGS)']) AC_SUBST(DTLS_SSL_LIBS, ['$(OPENSSL_LIBS)']) AC_SUBST(DTLS_SSL_CFLAGS, ['$(OPENSSL_CFLAGS)']) check_openssl_dtls=yes if test "$have_gnutls_dtls" = "yes"; then esp=gnutls else esp=openssl fi ;; *) AC_MSG_ERROR([Neither OpenSSL nor GnuTLS selected for SSL.]) ;; esac AC_ARG_WITH([openssl-version-check], AS_HELP_STRING([--without-openssl-version-check], [Do not check for known-broken OpenSSL versions])) if test "$with_openssl_version_check" = "no"; then check_openssl_dtls=no fi oldLIBS="${LIBS}" oldCFLAGS="${CFLAGS}" LIBS="${LIBS} ${OPENSSL_LIBS}" CFLAGS="${CFLAGS} ${OPENSSL_CFLAGS}" if test "$check_openssl_dtls" = "yes"; then AC_MSG_CHECKING([for known-broken versions of OpenSSL]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ (OPENSSL_VERSION_NUMBER == 0x10002000L || \ (OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L)) #error Bad OpenSSL #endif ])], [AC_MSG_RESULT(no)], [AC_MSG_RESULT(yes) AC_ERROR([This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead.])]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ (OPENSSL_VERSION_NUMBER == 0x1000200fL) #error Bad OpenSSL #endif ])], [AC_MSG_RESULT(no)], [AC_MSG_RESULT(yes) AC_ERROR([This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=3703&user=guest&pass=guest and http://rt.openssl.org/Ticket/Display.html?id=3711&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead.])]) fi if test "$esp" = "openssl"; then AC_CHECK_FUNC(HMAC_CTX_copy, [], [esp=none echo set ESP to $esp AC_MSG_WARN([ESP support will be disabled])]) fi LIBS="${oldLIBS}" CFLAGS="${oldCFLAGS}" AM_CONDITIONAL(OPENCONNECT_GNUTLS, [ test "$ssl_library" != "openssl" ]) AM_CONDITIONAL(OPENCONNECT_OPENSSL, [ test "$ssl_library" = "openssl" ]) AM_CONDITIONAL(ESP_GNUTLS, [ test "$esp" = "gnutls" ]) AM_CONDITIONAL(ESP_OPENSSL, [ test "$esp" = "openssl" ]) if test "$esp" = "gnutls"; then AC_DEFINE(ESP_GNUTLS, 1, [Using GnuTLS for ESP]) elif test "$esp" = "openssl"; then AC_DEFINE(ESP_OPENSSL, 1, [Using OpenSSL for ESP]) fi AC_ARG_WITH(lz4, AS_HELP_STRING([--without-lz4], [disable support for LZ4 compression]), test_for_lz4=$withval, test_for_lz4=yes) enable_lz4=no if test "$test_for_lz4" = yes;then PKG_CHECK_MODULES([LIBLZ4], [liblz4], [ enable_lz4=yes AC_DEFINE([HAVE_LZ4], [], [LZ4 was found]) ], [ AC_MSG_WARN([[ *** *** lz4 not found. *** ]]) ]) fi # For some bizarre reason now that we use AM_ICONV, the mingw32 build doesn't # manage to set EGREP properly in the created ./libtool script. Make sure it's # found. AC_PROG_EGREP # Needs to happen after we default to static/shared libraries based on OpenSSL AC_PROG_LIBTOOL if test "$use_openbsd_libtool" = "true" && test -x /usr/bin/libtool; then echo using OpenBSD libtool LIBTOOL=/usr/bin/libtool fi AM_CONDITIONAL(OPENBSD_LIBTOOL, [ test "$use_openbsd_libtool" = "true" ]) AX_CHECK_VSCRIPT PKG_CHECK_MODULES(LIBXML2, libxml-2.0) PKG_CHECK_MODULES(ZLIB, zlib, [AC_SUBST(ZLIB_PC, [zlib])], [oldLIBS="$LIBS" LIBS="$LIBS -lz" AC_MSG_CHECKING([for zlib without pkg-config]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include ],[ z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY);])], [AC_MSG_RESULT(yes) AC_SUBST([ZLIB_LIBS], [-lz]) AC_SUBST([ZLIB_CFLAGS], [])], [AC_MSG_RESULT(no) AC_ERROR([Could not build against zlib])]) LIBS="$oldLIBS"]) AC_ARG_WITH([libproxy], AS_HELP_STRING([--without-libproxy], [Build without libproxy library [default=auto]])) AS_IF([test "x$with_libproxy" != "xno"], [ PKG_CHECK_MODULES(LIBPROXY, libproxy-1.0, [AC_SUBST(LIBPROXY_PC, libproxy-1.0) AC_DEFINE([LIBPROXY_HDR], ["proxy.h"], [libproxy header file]) libproxy_pkg=yes], libproxy_pkg=no) ], [libproxy_pkg=disabled]) dnl Libproxy *can* exist without a .pc file, and its header may be called dnl libproxy.h in that case. if (test "$libproxy_pkg" = "no"); then AC_MSG_CHECKING([for libproxy]) oldLIBS="$LIBS" LIBS="$LIBS -lproxy" AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [(void)px_proxy_factory_new();])], [AC_MSG_RESULT(yes (with libproxy.h)) AC_DEFINE([LIBPROXY_HDR], ["libproxy.h"]) AC_SUBST([LIBPROXY_LIBS], [-lproxy])], [AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [(void)px_proxy_factory_new();])], [AC_MSG_RESULT(yes (with proxy.h)) AC_DEFINE([LIBPROXY_HDR], ["proxy.h"]) AC_SUBST([LIBPROXY_LIBS], [-lproxy])], [AC_MSG_RESULT(no)])]) LIBS="$oldLIBS" fi AC_ARG_WITH([stoken], AS_HELP_STRING([--without-stoken], [Build without libstoken library [default=auto]])) AS_IF([test "x$with_stoken" != "xno"], [ PKG_CHECK_MODULES(LIBSTOKEN, stoken, [AC_SUBST(LIBSTOKEN_PC, stoken) AC_DEFINE([HAVE_LIBSTOKEN], 1, [Have libstoken]) libstoken_pkg=yes], libstoken_pkg=no) ], [libstoken_pkg=disabled]) AM_CONDITIONAL(OPENCONNECT_STOKEN, [test "$libstoken_pkg" = "yes"]) AC_ARG_WITH([libpcsclite], AS_HELP_STRING([--without-libpcsclite], [Build without libpcsclite library (for Yubikey support) [default=auto]])) AS_IF([test "x$with_libpcsclite" != "xno"], [ PKG_CHECK_MODULES(LIBPCSCLITE, libpcsclite, [AC_SUBST(LIBPCSCLITE_PC, libpcsclite) AC_DEFINE([HAVE_LIBPCSCLITE], 1, [Have libpcsclite]) libpcsclite_pkg=yes], libpcsclite_pkg=no) ], [libpcsclite_pkg=disabled]) AM_CONDITIONAL(OPENCONNECT_LIBPCSCLITE, [test "$libpcsclite_pkg" = "yes"]) AC_ARG_WITH([libpskc], AS_HELP_STRING([--without-libpskc], [Build without libpskc library [default=auto]])) AS_IF([test "x$with_libpskc" != "xno"], [ PKG_CHECK_MODULES(LIBPSKC, [libpskc >= 2.2.0], [AC_SUBST(LIBPSKC_PC, libpskc) AC_DEFINE([HAVE_LIBPSKC], 1, [Have libpskc]) libpskc_pkg=yes], libpskc_pkg=no)]) linked_gssapi=no AC_ARG_WITH([gssapi], AS_HELP_STRING([--without-gssapi], [Build without GSSAPI support [default=auto]])) AC_DEFUN([GSSAPI_CHECK_BUILD],[ gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" AC_MSG_CHECKING([GSSAPI compilation with "${GSSAPI_LIBS}"]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include GSSAPI_HDR],[ OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL);])], [linked_gssapi=yes AC_MSG_RESULT(yes)], [linked_gssapi=no AC_MSG_RESULT(no)]) LIBS="$gss_old_libs" ]) # Attempt to work out how to build with GSSAPI. Mostly, krb5-config will # exist and work. Tested on FreeBSD 9, OpenBSD 5.5, NetBSD 6.1.4. Solaris # has krb5-config but it doesn't do GSSAPI so hard-code the results there. # Older OpenBSD (I tested 5.2) lacks krb5-config so leave that as an example. if test "$with_gssapi" != "no"; then found_gssapi=no if test "${with_gssapi}" != "yes" -a "${with_gssapi}" != "" ; then gssapi_root="${with_gssapi}" else gssapi_root="" fi # First: if they specify GSSAPI_LIBS and/or GSSAPI_CFLAGS then use them. if test "$GSSAPI_LIBS$GSSAPI_CFLAGS" != ""; then found_gssapi=yes fi # Second: try finding a viable krb5-config that supports gssapi if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then krb5path="${gssapi_root}/bin:$PATH" else krb5path="/usr/kerberos/bin:$PATH" fi if test -n "$host_alias"; then AC_PATH_PROG(KRB5_CONFIG, [${host_alias}-krb5-config], [], [$krb5path]) fi if test "$KRB5_CONFIG" = ""; then AC_PATH_PROG(KRB5_CONFIG, [krb5-config], [], [$krb5path]) fi if test "$KRB5_CONFIG" != ""; then AC_MSG_CHECKING([whether $KRB5_CONFIG supports gssapi]) if "${KRB5_CONFIG}" --cflags gssapi > /dev/null 2>/dev/null; then AC_MSG_RESULT(yes) found_gssapi=yes GSSAPI_LIBS="`"${KRB5_CONFIG}" --libs gssapi`" GSSAPI_CFLAGS="`"${KRB5_CONFIG}" --cflags gssapi`" else AC_MSG_RESULT(no) fi fi fi # Third: look for or in some likely places, # and we'll worry about how to *link* it in a moment... if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then if test -r "${with_gssapi}/include/gssapi.h" -o \ -r "${with_gssapi}/include/gssapi/gssapi.h"; then GSSAPI_CFLAGS="-I\"${with_gssapi}/include\"" fi else if test -r /usr/kerberos/include/gssapi.h -o \ -r /usr/kerberos/include/gssapi/gssapi.h; then GSSAPI_CFLAGS=-I/usr/kerberos/include elif test -r /usr/include/kerberosV/gssapi.h -o \ -r /usr/include/kerberosV/gssapi/gssapi.h; then # OpenBSD 5.2 puts it here GSSAPI_CFLAGS=-I/usr/include/kerberosV else # Maybe it'll Just Work GSSAPI_CFLAGS= fi fi fi oldcflags="$CFLAGS" CFLAGS="$CFLAGS ${GSSAPI_CFLAGS}" # OK, now see if we've correctly managed to find gssapi.h at least... gssapi_hdr= AC_CHECK_HEADER([gssapi/gssapi.h], [gssapi_hdr=""], [AC_CHECK_HEADER([gssapi.h], [gssapi_hdr=""], [AC_MSG_WARN([Cannot find or ])])]) # Finally, unless we've already failed, see if we can link it. linked_gssapi=no if test -n "${gssapi_hdr}"; then AC_DEFINE_UNQUOTED(GSSAPI_HDR, $gssapi_hdr, [GSSAPI header]) if test "$found_gssapi" = "yes"; then # We think we have GSSAPI_LIBS already so try it... GSSAPI_CHECK_BUILD else LFLAG= if test -n "$gssapi_root"; then LFLAG="-L\"${gssapi_root}/lib$libsuff\"" fi # Solaris, HPUX, etc. GSSAPI_LIBS="$LFLAG -lgss" GSSAPI_CHECK_BUILD if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi_krb5" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # OpenBSD 5.2 at least GSSAPI_LIBS="$LFLAG -lgssapi -lkrb5 -lcrypto" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # MIT GSSAPI_LIBS="$LFLAG -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # Heimdal GSSAPI_LIBS="$LFLAG -lkrb5 -lcrypto -lasn1 -lcom_err -lroken -lgssapi" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then AC_MSG_WARN([Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually]) fi fi fi CFLAGS="$oldcflags" if test "$linked_gssapi" = "yes"; then AC_DEFINE([HAVE_GSSAPI], 1, [Have GSSAPI support]) AC_SUBST(GSSAPI_CFLAGS) AC_SUBST(GSSAPI_LIBS) elif test "$with_gssapi" = ""; then AC_MSG_WARN([Building without GSSAPI support]); unset GSSAPI_CFLAGS unset GSSAPI_LIBS else AC_MSG_ERROR([GSSAPI support requested but not found. Try setting GSSAPI_LIBS/GSSAPI_CFLAGS]) fi fi AM_CONDITIONAL(OPENCONNECT_GSSAPI, [test "$linked_gssapi" = "yes"]) AC_ARG_WITH([java], AS_HELP_STRING([--with-java(=DIR)], [Build JNI bindings using jni.h from DIR [default=no]]), [], [with_java=no]) if test "$with_java" = "yes"; then AX_JNI_INCLUDE_DIR for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS; do JNI_CFLAGS="$JNI_CFLAGS -I$JNI_INCLUDE_DIR" done elif test "$with_java" = "no"; then JNI_CFLAGS="" else JNI_CFLAGS="-I$with_java" fi if test "x$JNI_CFLAGS" != "x"; then oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $JNI_CFLAGS" AC_MSG_CHECKING([jni.h usability]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ], [jint foo = 0; (void)foo;])], AC_MSG_RESULT([yes]), [AC_MSG_RESULT([no]) AC_MSG_ERROR([unable to compile JNI test program])]) CFLAGS="$oldCFLAGS" AC_SUBST(JNI_CFLAGS, [$JNI_CFLAGS]) fi AM_CONDITIONAL(OPENCONNECT_JNI, [test "$JNI_CFLAGS" != ""]) AC_ARG_ENABLE([jni-standalone], AS_HELP_STRING([--enable-jni-standalone], [build JNI stubs directly into libopenconnect.so [default=no]]), [jni_standalone=$enableval], [jni_standalone=no]) AM_CONDITIONAL(JNI_STANDALONE, [test $jni_standalone = yes]) symver_java= if test "$jni_standalone" = "yes" ; then symver_java=$(sed -n '/JNIEXPORT/{s/^JNIEXPORT.*\(Java_.*\) *(/\1;/ p}' ${srcdir}/jni.c) # Remove the newlines between each item. symver_java=$(echo $symver_java) fi AC_SUBST(SYMVER_JAVA, $symver_java) AC_CHECK_HEADER([if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["if_tun.h"], [if_tun.h include path])], [AC_CHECK_HEADER([linux/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["linux/if_tun.h"])], [AC_CHECK_HEADER([net/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["net/if_tun.h"])], [AC_CHECK_HEADER([net/tun/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["net/tun/if_tun.h"])])])])]) AC_CHECK_HEADER([net/if_utun.h], AC_DEFINE([HAVE_NET_UTUN_H], 1, [Have net/utun.h])) AC_CHECK_HEADER([alloca.h], AC_DEFINE([HAVE_ALLOCA_H], 1, [Have alloca.h])) AC_CHECK_HEADER([endian.h], [AC_DEFINE([ENDIAN_HDR], [], [endian header include path])], [AC_CHECK_HEADER([sys/endian.h], [AC_DEFINE([ENDIAN_HDR], [])], [AC_CHECK_HEADER([sys/isa_defs.h], [AC_DEFINE([ENDIAN_HDR], [])])])]) if test "$ssl_library" = "openssl" || test "$ssl_library" = "both"; then oldLIBS="$LIBS" LIBS="$LIBS $OPENSSL_LIBS" oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $OPENSSL_CFLAGS" if test "$ssl_library" = "openssl"; then AC_MSG_CHECKING([for ENGINE_by_id() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [ENGINE_by_id("foo");])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_ENGINE, [1], [OpenSSL has ENGINE support])], [AC_MSG_RESULT(no) AC_MSG_NOTICE([Building without OpenSSL TPM ENGINE support])]) fi AC_MSG_CHECKING([for dtls1_stop_timer() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include #include extern void dtls1_stop_timer(SSL *);], [dtls1_stop_timer(NULL);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_DTLS1_STOP_TIMER, [1], [OpenSSL has dtls1_stop_timer() function])], [AC_MSG_RESULT(no)]) AC_MSG_CHECKING([for DTLSv1_2_client_method() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [DTLSv1_2_client_method();])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_DTLS12, [1], [OpenSSL has DTLSv1_2_client_method() function])], [AC_MSG_RESULT(no)]) LIBS="$oldLIBS" CFLAGS="$oldCFLAGS" fi build_www=yes AC_PATH_PROGS(PYTHON, [python2 python], [], $PATH:/bin:/usr/bin) if (test -n "${ac_cv_path_PYTHON}"); then AC_MSG_CHECKING([that python is version 2.x]) if $PYTHON --version 2>&1 | grep "Python 2\." > /dev/null; then AC_MSG_RESULT([yes]) AC_SUBST(PYTHON, ${ac_cv_path_PYTHON}) else AC_MSG_RESULT([no]) AC_MSG_NOTICE([Python is not v2.x; not building HTML pages]) build_www=no fi else AC_MSG_NOTICE([Python not found; not building HTML pages]) build_www=no fi if test "${build_www}" = "yes"; then AC_MSG_CHECKING([if groff can create UTF-8 XHTML]) AC_PATH_PROGS_FEATURE_CHECK([GROFF], [groff], [$ac_path_GROFF -t -K UTF-8 -mandoc -Txhtml /dev/null > /dev/null 2>&1 && ac_cv_path_GROFF=$ac_path_GROFF]) if test -n "$ac_cv_path_GROFF"; then AC_MSG_RESULT(yes) AC_SUBST(GROFF, ${ac_cv_path_GROFF}) else AC_MSG_RESULT([no. Not building HTML pages]) build_www=no fi fi AM_CONDITIONAL(BUILD_WWW, [test "${build_www}" = "yes"]) AC_SUBST([CONFIG_STATUS_DEPENDENCIES], ['$(top_srcdir)/po/LINGUAS $(top_srcdir)/openconnect.h ${top_srcdir}/libopenconnect.map.in']) RAWLINGUAS=`sed -e "/^#/d" -e "s/#.*//" "${srcdir}/po/LINGUAS"` # Remove newlines LINGUAS=`echo $RAWLINGUAS` AC_SUBST(LINGUAS) APIMAJOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MAJOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" APIMINOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MINOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" AC_SUBST(APIMAJOR) AC_SUBST(APIMINOR) # We want version.c to depend on the files that would affect the # output of version.sh. But we cannot assume that they'll exist, # and we cannot use $(wildcard) in a non-GNU makefile. So we just # depend on the files which happen to exist at configure time. GITVERSIONDEPS= for a in ${srcdir}/.git/index ${srcdir}/.git/packed-refs \ ${srcdir}/.git/refs/tags ${srcdir}/.git/HEAD; do if test -r $a ; then GITVERSIONDEPS="$GITVERSIONDEPS $a" fi done AC_SUBST(GITVERSIONDEPS) AC_CONFIG_FILES(Makefile openconnect.pc po/Makefile www/Makefile \ libopenconnect.map openconnect.8 www/styles/Makefile \ www/inc/Makefile www/images/Makefile) AC_OUTPUT openconnect-7.06/http.c0000664000076400007640000010524512502026115012040 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" static int proxy_write(struct openconnect_info *vpninfo, char *buf, size_t len); static int proxy_read(struct openconnect_info *vpninfo, char *buf, size_t len); #define MAX_BUF_LEN 131072 #define BUF_CHUNK_SIZE 4096 struct oc_text_buf *buf_alloc(void) { return calloc(1, sizeof(struct oc_text_buf)); } void buf_append_urlencoded(struct oc_text_buf *buf, char *str) { while (str && *str) { unsigned char c = *str; if (c < 0x80 && isalnum((int)(c))) buf_append_bytes(buf, str, 1); else buf_append(buf, "%%%02x", c); str++; } } void buf_truncate(struct oc_text_buf *buf) { if (!buf) return; buf->pos = 0; if (buf->data) buf->data[0] = 0; } int buf_ensure_space(struct oc_text_buf *buf, int len) { int new_buf_len; new_buf_len = (buf->pos + len + BUF_CHUNK_SIZE - 1) & ~(BUF_CHUNK_SIZE - 1); if (new_buf_len <= buf->buf_len) return 0; if (new_buf_len > MAX_BUF_LEN) { buf->error = -E2BIG; return buf->error; } else { realloc_inplace(buf->data, new_buf_len); if (!buf->data) buf->error = -ENOMEM; else buf->buf_len = new_buf_len; } return buf->error; } void __attribute__ ((format (printf, 2, 3))) buf_append(struct oc_text_buf *buf, const char *fmt, ...) { va_list ap; if (!buf || buf->error) return; if (buf_ensure_space(buf, 1)) return; while (1) { int max_len = buf->buf_len - buf->pos, ret; va_start(ap, fmt); ret = vsnprintf(buf->data + buf->pos, max_len, fmt, ap); va_end(ap); if (ret < 0) { buf->error = -EIO; break; } else if (ret < max_len) { buf->pos += ret; break; } else if (buf_ensure_space(buf, ret)) break; } } void buf_append_bytes(struct oc_text_buf *buf, const void *bytes, int len) { if (!buf || buf->error) return; if (buf_ensure_space(buf, len + 1)) return; memcpy(buf->data + buf->pos, bytes, len); buf->pos += len; buf->data[buf->pos] = 0; } void buf_append_from_utf16le(struct oc_text_buf *buf, const void *_utf16) { const unsigned char *utf16 = _utf16; unsigned char utf8[4]; int c; if (!utf16) return; while (utf16[0] || utf16[1]) { if ((utf16[1] & 0xfc) == 0xd8 && (utf16[3] & 0xfc) == 0xdc) { c = ((load_le16(utf16) & 0x3ff) << 10)| (load_le16(utf16 + 2) & 0x3ff); c += 0x10000; utf16 += 4; } else { c = load_le16(utf16); utf16 += 2; } if (c < 0x80) { utf8[0] = c; buf_append_bytes(buf, utf8, 1); } else if (c < 0x800) { utf8[0] = 0xc0 | (c >> 6); utf8[1] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 2); } else if (c < 0x10000) { utf8[0] = 0xe0 | (c >> 12); utf8[1] = 0x80 | ((c >> 6) & 0x3f); utf8[2] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 3); } else { utf8[0] = 0xf0 | (c >> 18); utf8[1] = 0x80 | ((c >> 12) & 0x3f); utf8[2] = 0x80 | ((c >> 6) & 0x3f); utf8[3] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 4); } } utf8[0] = 0; buf_append_bytes(buf, utf8, 1); } int get_utf8char(const char **p) { const char *utf8 = *p; unsigned char c; int utfchar, nr_extra, min; c = *(utf8++); if (c < 128) { utfchar = c; nr_extra = 0; min = 0; } else if ((c & 0xe0) == 0xc0) { utfchar = c & 0x1f; nr_extra = 1; min = 0x80; } else if ((c & 0xf0) == 0xe0) { utfchar = c & 0x0f; nr_extra = 2; min = 0x800; } else if ((c & 0xf8) == 0xf0) { utfchar = c & 0x07; nr_extra = 3; min = 0x10000; } else { return -EILSEQ; } while (nr_extra--) { c = *(utf8++); if ((c & 0xc0) != 0x80) return -EILSEQ; utfchar <<= 6; utfchar |= (c & 0x3f); } if (utfchar > 0x10ffff || utfchar < min) return -EILSEQ; *p = utf8; return utfchar; } int buf_append_utf16le(struct oc_text_buf *buf, const char *utf8) { int utfchar, len = 0; /* Ick. Now I'm implementing my own UTF8 handling too. Perhaps it's time to bite the bullet and start requiring something like glib? */ while (*utf8) { utfchar = get_utf8char(&utf8); if (utfchar < 0) { if (buf) buf->error = utfchar; return utfchar; } if (!buf) continue; if (utfchar >= 0x10000) { utfchar -= 0x10000; if (buf_ensure_space(buf, 4)) return buf_error(buf); store_le16(buf->data + buf->pos, (utfchar >> 10) | 0xd800); store_le16(buf->data + buf->pos + 2, (utfchar & 0x3ff) | 0xdc00); buf->pos += 4; len += 4; } else { if (buf_ensure_space(buf, 2)) return buf_error(buf); store_le16(buf->data + buf->pos, utfchar); buf->pos += 2; len += 2; } } /* We were only being used for validation */ if (!buf) return 0; /* Ensure UTF16 is NUL-terminated */ if (buf_ensure_space(buf, 2)) return buf_error(buf); buf->data[buf->pos] = buf->data[buf->pos + 1] = 0; return len; } int buf_error(struct oc_text_buf *buf) { return buf ? buf->error : -ENOMEM; } int buf_free(struct oc_text_buf *buf) { int error = buf_error(buf); if (buf) { if (buf->data) free(buf->data); free(buf); } return error; } /* * We didn't really want to have to do this for ourselves -- one might have * thought that it would be available in a library somewhere. But neither * cURL nor Neon have reliable cross-platform ways of either using a cert * from the TPM, or just reading from / writing to a transport which is * provided by their caller. */ int http_add_cookie(struct openconnect_info *vpninfo, const char *option, const char *value, int replace) { struct oc_vpn_option *new, **this; if (*value) { new = malloc(sizeof(*new)); if (!new) { vpn_progress(vpninfo, PRG_ERR, _("No memory for allocating cookies\n")); return -ENOMEM; } new->next = NULL; new->option = strdup(option); new->value = strdup(value); if (!new->option || !new->value) { free(new->option); free(new->value); free(new); return -ENOMEM; } } else { /* Kill cookie; don't replace it */ new = NULL; /* This would be meaningless */ if (!replace) return -EINVAL; } for (this = &vpninfo->cookies; *this; this = &(*this)->next) { if (!strcmp(option, (*this)->option)) { if (!replace) { free(new->value); free(new->option); free(new); return 0; } /* Replace existing cookie */ if (new) new->next = (*this)->next; else new = (*this)->next; free((*this)->option); free((*this)->value); free(*this); *this = new; break; } } if (new && !*this) { *this = new; new->next = NULL; } return 0; } #define BODY_HTTP10 -1 #define BODY_CHUNKED -2 int process_http_response(struct openconnect_info *vpninfo, int connect, int (*header_cb)(struct openconnect_info *, char *, char *), struct oc_text_buf *body) { char buf[MAX_BUF_LEN]; int bodylen = BODY_HTTP10; int closeconn = 0; int result; int i; buf_truncate(body); cont: if (vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTPS response\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } if (!strncmp(buf, "HTTP/1.0 ", 9)) closeconn = 1; if ((!closeconn && strncmp(buf, "HTTP/1.1 ", 9)) || !(result = atoi(buf+9))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTTP response '%s'\n"), buf); openconnect_close_https(vpninfo, 0); return -EINVAL; } vpn_progress(vpninfo, (result == 200 || result == 407) ? PRG_DEBUG : PRG_INFO, _("Got HTTP response: %s\n"), buf); /* Eat headers... */ while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { char *colon; if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error processing HTTP response\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } colon = strchr(buf, ':'); if (!colon) { vpn_progress(vpninfo, PRG_ERR, _("Ignoring unknown HTTP response line '%s'\n"), buf); continue; } *(colon++) = 0; if (*colon == ' ') colon++; /* Handle Set-Cookie first so that we can avoid printing the webvpn cookie in the verbose debug output */ if (!strcasecmp(buf, "Set-Cookie")) { char *semicolon = strchr(colon, ';'); const char *print_equals; char *equals = strchr(colon, '='); int ret; if (semicolon) *semicolon = 0; if (!equals) { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie offered: %s\n"), buf); return -EINVAL; } *(equals++) = 0; print_equals = equals; /* Don't print the webvpn cookie unless it's empty; we don't want people posting it in public with debugging output */ if (!strcmp(colon, "webvpn") && *equals) print_equals = _(""); vpn_progress(vpninfo, PRG_DEBUG, "%s: %s=%s%s%s\n", buf, colon, print_equals, semicolon ? ";" : "", semicolon ? (semicolon+1) : ""); /* The server tends to ask for the username and password as usual, even if we've already failed because it didn't like our cert. Thankfully it does give us this hint... */ if (!strcmp(colon, "ClientCertAuthFailed")) vpn_progress(vpninfo, PRG_ERR, _("SSL certificate authentication failed\n")); ret = http_add_cookie(vpninfo, colon, equals, 1); if (ret) return ret; } else { vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, colon); } if (!strcasecmp(buf, "Connection")) { if (!strcasecmp(colon, "Close")) closeconn = 1; #if 0 /* This might seem reasonable, but in fact it breaks certificate authentication with some servers. If they give an HTTP/1.0 response, even if they explicitly give a Connection: Keep-Alive header, just close the connection. */ else if (!strcasecmp(colon, "Keep-Alive")) closeconn = 0; #endif } if (!strcasecmp(buf, "Location")) { vpninfo->redirect_url = strdup(colon); if (!vpninfo->redirect_url) return -ENOMEM; } if (!strcasecmp(buf, "Content-Length")) { bodylen = atoi(colon); if (bodylen < 0) { vpn_progress(vpninfo, PRG_ERR, _("Response body has negative size (%d)\n"), bodylen); openconnect_close_https(vpninfo, 0); return -EINVAL; } } if (!strcasecmp(buf, "Transfer-Encoding")) { if (!strcasecmp(colon, "chunked")) bodylen = BODY_CHUNKED; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown Transfer-Encoding: %s\n"), colon); openconnect_close_https(vpninfo, 0); return -EINVAL; } } if (header_cb) header_cb(vpninfo, buf, colon); } /* Handle 'HTTP/1.1 100 Continue'. Not that we should ever see it */ if (result == 100) goto cont; /* On successful CONNECT, there is no body. Return success */ if (connect && result == 200) return result; /* Now the body, if there is one */ vpn_progress(vpninfo, PRG_DEBUG, _("HTTP body %s (%d)\n"), bodylen == BODY_HTTP10 ? "http 1.0" : bodylen == BODY_CHUNKED ? "chunked" : "length: ", bodylen); /* If we were given Content-Length, it's nice and easy... */ if (bodylen > 0) { if (buf_ensure_space(body, bodylen + 1)) return buf_error(body); while (body->pos < bodylen) { i = vpninfo->ssl_read(vpninfo, body->data + body->pos, bodylen - body->pos); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response body\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } body->pos += i; } } else if (bodylen == BODY_CHUNKED) { /* ... else, chunked */ while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { int chunklen, lastchunk = 0; if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching chunk header\n")); return i; } chunklen = strtol(buf, NULL, 16); if (!chunklen) { lastchunk = 1; goto skip; } if (buf_ensure_space(body, chunklen + 1)) return buf_error(body); while (chunklen) { i = vpninfo->ssl_read(vpninfo, body->data + body->pos, chunklen); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response body\n")); return -EINVAL; } chunklen -= i; body->pos += i; } skip: if ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTP response body\n")); } else { vpn_progress(vpninfo, PRG_ERR, _("Error in chunked decoding. Expected '', got: '%s'"), buf); } return -EINVAL; } if (lastchunk) break; } } else if (bodylen == BODY_HTTP10) { if (!closeconn) { vpn_progress(vpninfo, PRG_ERR, _("Cannot receive HTTP 1.0 body without closing connection\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } /* HTTP 1.0 response. Just eat all we can in 4KiB chunks */ while (1) { if (buf_ensure_space(body, 4096 + 1)) return buf_error(body); i = vpninfo->ssl_read(vpninfo, body->data + body->pos, 4096); if (i < 0) { /* Error */ openconnect_close_https(vpninfo, 0); return i; } else if (!i) break; /* Got more data */ body->pos += i; } } if (closeconn || vpninfo->no_http_keepalive) openconnect_close_https(vpninfo, 0); body->data[body->pos] = 0; return result; } int internal_parse_url(const char *url, char **res_proto, char **res_host, int *res_port, char **res_path, int default_port) { const char *orig_host, *orig_path; char *host, *port_str; int port, proto_len = 0; orig_host = strstr(url, "://"); if (orig_host) { proto_len = orig_host - url; orig_host += 3; if (strprefix_match(url, proto_len, "https")) port = 443; else if (strprefix_match(url, proto_len, "http")) port = 80; else if (strprefix_match(url, proto_len, "socks") || strprefix_match(url, proto_len, "socks4") || strprefix_match(url, proto_len, "socks5")) port = 1080; else return -EPROTONOSUPPORT; } else { if (default_port) { port = default_port; orig_host = url; } else return -EINVAL; } orig_path = strchr(orig_host, '/'); if (orig_path) { host = strndup(orig_host, orig_path - orig_host); orig_path++; } else host = strdup(orig_host); if (!host) return -ENOMEM; port_str = strrchr(host, ':'); if (port_str) { char *end; int new_port = strtol(port_str + 1, &end, 10); if (!*end) { *port_str = 0; port = new_port; } } if (res_proto) *res_proto = proto_len ? strndup(url, proto_len) : NULL; if (res_host) *res_host = host; else free(host); if (res_port) *res_port = port; if (res_path) *res_path = (orig_path && *orig_path) ? strdup(orig_path) : NULL; return 0; } void openconnect_clear_cookies(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt, *next; for (opt = vpninfo->cookies; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } vpninfo->cookies = NULL; } /* Return value: * < 0, on error * = 0, on success (go ahead and retry with the latest vpninfo->{hostname,urlpath,port,...}) */ int handle_redirect(struct openconnect_info *vpninfo) { vpninfo->redirect_type = REDIR_TYPE_LOCAL; if (!strncmp(vpninfo->redirect_url, "https://", 8)) { /* New host. Tear down the existing connection and make a new one */ char *host; int port; int ret; free(vpninfo->urlpath); vpninfo->urlpath = NULL; ret = internal_parse_url(vpninfo->redirect_url, NULL, &host, &port, &vpninfo->urlpath, 0); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse redirected URL '%s': %s\n"), vpninfo->redirect_url, strerror(-ret)); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return ret; } if (strcasecmp(vpninfo->hostname, host) || port != vpninfo->port) { openconnect_set_hostname(vpninfo, host); vpninfo->port = port; /* Kill the existing connection, and a new one will happen */ openconnect_close_https(vpninfo, 0); openconnect_clear_cookies(vpninfo); vpninfo->redirect_type = REDIR_TYPE_NEWHOST; } free(host); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return 0; } else if (strstr(vpninfo->redirect_url, "://")) { vpn_progress(vpninfo, PRG_ERR, _("Cannot follow redirection to non-https URL '%s'\n"), vpninfo->redirect_url); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return -EINVAL; } else if (vpninfo->redirect_url[0] == '/') { /* Absolute redirect within same host */ free(vpninfo->urlpath); vpninfo->urlpath = strdup(vpninfo->redirect_url + 1); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return 0; } else { char *lastslash = NULL; if (vpninfo->urlpath) lastslash = strrchr(vpninfo->urlpath, '/'); if (!lastslash) { free(vpninfo->urlpath); vpninfo->urlpath = vpninfo->redirect_url; vpninfo->redirect_url = NULL; } else { char *oldurl = vpninfo->urlpath; *lastslash = 0; vpninfo->urlpath = NULL; if (asprintf(&vpninfo->urlpath, "%s/%s", oldurl, vpninfo->redirect_url) == -1) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Allocating new path for relative redirect failed: %s\n"), strerror(-err)); return err; } free(oldurl); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; } return 0; } } void dump_buf(struct openconnect_info *vpninfo, char prefix, char *buf) { while (*buf) { char *eol = buf; char eol_char = 0; while (*eol) { if (*eol == '\r' || *eol == '\n') { eol_char = *eol; *eol = 0; break; } eol++; } vpn_progress(vpninfo, PRG_DEBUG, "%c %s\n", prefix, buf); if (!eol_char) break; *eol = eol_char; buf = eol + 1; if (eol_char == '\r' && *buf == '\n') buf++; } } /* Inputs: * method: GET or POST * vpninfo->hostname: Host DNS name * vpninfo->port: TCP port, typically 443 * vpninfo->urlpath: Relative path, e.g. /+webvpn+/foo.html * request_body_type: Content type for a POST (e.g. text/html). Can be NULL. * request_body: POST content * form_buf: Callee-allocated buffer for server content * * Return value: * < 0, on error * >=0, on success, indicating the length of the data in *form_buf */ int do_https_request(struct openconnect_info *vpninfo, const char *method, const char *request_body_type, struct oc_text_buf *request_body, char **form_buf, int fetch_redirect) { struct oc_text_buf *buf = buf_alloc(); int result; int rq_retry; int rlen, pad; int auth = 0; int max_redirects = 10; if (request_body_type && buf_error(request_body)) return buf_error(request_body); redirected: if (max_redirects-- <= 0) { result = -EIO; goto out; } vpninfo->redirect_type = REDIR_TYPE_NONE; if (*form_buf) { free(*form_buf); *form_buf = NULL; } /* * It would be nice to use cURL for this, but we really need to guarantee * that we'll be using OpenSSL (for the TPM stuff), and it doesn't seem * to have any way to let us provide our own socket read/write functions. * We can only provide a socket _open_ function. Which would require having * a socketpair() and servicing the "other" end of it. * * So we process the HTTP for ourselves... */ buf_truncate(buf); buf_append(buf, "%s /%s HTTP/1.1\r\n", method, vpninfo->urlpath ?: ""); if (auth) { result = gen_authorization_hdr(vpninfo, 0, buf); if (result) goto out; /* Forget existing challenges */ clear_auth_states(vpninfo, vpninfo->http_auth, 0); } if (vpninfo->proto.add_http_headers) vpninfo->proto.add_http_headers(vpninfo, buf); if (request_body_type) { rlen = request_body->pos; /* force body length to be a multiple of 64, to avoid leaking * password length. */ pad = 64*(1+rlen/64) - rlen; buf_append(buf, "X-Pad: %0*d\r\n", pad, 0); buf_append(buf, "Content-Type: %s\r\n", request_body_type); buf_append(buf, "Content-Length: %d\r\n", (int)rlen); } buf_append(buf, "\r\n"); if (request_body_type) buf_append_bytes(buf, request_body->data, request_body->pos); if (vpninfo->port == 443) vpn_progress(vpninfo, PRG_INFO, "%s https://%s/%s\n", method, vpninfo->hostname, vpninfo->urlpath ?: ""); else vpn_progress(vpninfo, PRG_INFO, "%s https://%s:%d/%s\n", method, vpninfo->hostname, vpninfo->port, vpninfo->urlpath ?: ""); if (buf_error(buf)) return buf_free(buf); vpninfo->retry_on_auth_fail = 0; retry: if (openconnect_https_connected(vpninfo)) { /* The session is already connected. If we get a failure on * *sending* the request, try it again immediately with a new * connection. */ rq_retry = 1; } else { rq_retry = 0; if ((result = openconnect_open_https(vpninfo))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); /* We really don't want to return -EINVAL if we have failed to even connect to the server, because if we do that openconnect_obtain_cookie() might try again without XMLPOST... with the same result. */ result = -EIO; goto out; } } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', buf->data); result = vpninfo->ssl_write(vpninfo, buf->data, buf->pos); if (rq_retry && result < 0) { openconnect_close_https(vpninfo, 0); goto retry; } if (result < 0) goto out; result = process_http_response(vpninfo, 0, http_auth_hdrs, buf); if (result < 0) { /* We'll already have complained about whatever offended us */ goto out; } if (vpninfo->dump_http_traffic && buf->pos) dump_buf(vpninfo, '<', buf->data); if (result == 401 && vpninfo->try_http_auth) { auth = 1; goto redirected; } if (result != 200 && vpninfo->redirect_url) { result = handle_redirect(vpninfo); if (result == 0) { if (!fetch_redirect) goto out; if (fetch_redirect == 2) { /* Juniper requires we GET after a redirected POST */ method = "GET"; request_body_type = NULL; } if (vpninfo->redirect_type == REDIR_TYPE_NEWHOST) clear_auth_states(vpninfo, vpninfo->http_auth, 1); goto redirected; } goto out; } if (!buf->pos || result != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), result); result = -EINVAL; goto out; } *form_buf = buf->data; buf->data = NULL; result = buf->pos; out: buf_free(buf); /* On success, clear out all authentication state for the next request */ clear_auth_states(vpninfo, vpninfo->http_auth, 1); return result; } char *openconnect_create_useragent(const char *base) { char *uagent; if (asprintf(&uagent, "%s %s", base, openconnect_version_str) < 0) return NULL; return uagent; } static int proxy_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while ((ret = proxy_read(vpninfo, (void *)(buf + i), 1)) == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } buf[i] = 0; return i ?: ret; } static int proxy_write(struct openconnect_info *vpninfo, char *buf, size_t len) { size_t count; int fd = vpninfo->proxy_fd; if (fd == -1) return -EINVAL; for (count = 0; count < len; ) { fd_set rd_set, wr_set; int maxfd = fd; int i; FD_ZERO(&wr_set); FD_ZERO(&rd_set); FD_SET(fd, &wr_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) return -EINTR; /* Not that this should ever be able to happen... */ if (!FD_ISSET(fd, &wr_set)) continue; i = send(fd, (void *)&buf[count], len - count, 0); if (i < 0) return -errno; count += i; } return count; } static int proxy_read(struct openconnect_info *vpninfo, char *buf, size_t len) { size_t count; int fd = vpninfo->proxy_fd; if (fd == -1) return -EINVAL; for (count = 0; count < len; ) { fd_set rd_set; int maxfd = fd; int i; FD_ZERO(&rd_set); FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, NULL, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) return -EINTR; /* Not that this should ever be able to happen... */ if (!FD_ISSET(fd, &rd_set)) continue; i = recv(fd, (void *)&buf[count], len - count, 0); if (i < 0) return -errno; else if (i == 0) return -ECONNRESET; count += i; } return count; } static const char *socks_errors[] = { N_("request granted"), N_("general failure"), N_("connection not allowed by ruleset"), N_("network unreachable"), N_("host unreachable"), N_("connection refused by destination host"), N_("TTL expired"), N_("command not supported / protocol error"), N_("address type not supported") }; static int socks_password_auth(struct openconnect_info *vpninfo) { int ul, pl, i; char buf[1024]; if (!vpninfo->proxy_user || !vpninfo->proxy_pass) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested username/password but we have none\n")); return -EIO; } ul = strlen(vpninfo->proxy_user); pl = strlen(vpninfo->proxy_pass); if (ul > 255 || pl > 255) { vpn_progress(vpninfo, PRG_ERR, _("Username and password for SOCKS authentication must be < 255 bytes\n")); return -EINVAL; } buf[0] = 1; buf[1] = ul; memcpy(buf + 2, vpninfo->proxy_user, ul); buf[2 + ul] = pl; memcpy(buf + 3 + ul, vpninfo->proxy_pass, pl); i = proxy_write(vpninfo, buf, 3 + ul + pl); /* Don't leave passwords lying around if we can easily avoid it... */ memset(buf, 0, sizeof(buf)); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing auth request to SOCKS proxy: %s\n"), strerror(-i)); return i; } if ((i = proxy_read(vpninfo, buf, 2)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading auth response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (buf[0] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected auth response from SOCKS proxy: %02x %02x\n"), buf[0], buf[1]); return -EIO; } if (buf[1] == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Authenticated to SOCKS server using password\n")); return 0; } else { vpn_progress(vpninfo, PRG_ERR, _("Password authentication to SOCKS server failed\n")); return -EIO; } } #define SOCKS_AUTH_NONE 0 /* RFC1928 */ #define SOCKS_AUTH_GSSAPI 1 /* RFC1961 */ #define SOCKS_AUTH_PASSWORD 2 /* RFC1929 */ #define SOCKS_AUTH_NO_ACCEPTABLE 0xff /* RFC1928 */ static int process_socks_proxy(struct openconnect_info *vpninfo) { char buf[1024]; int i, nr_auth_methods = 0; buf[0] = 5; /* SOCKS version */ buf[2 + nr_auth_methods++] = SOCKS_AUTH_NONE; #if defined(HAVE_GSSAPI) || defined(_WIN32) if (vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state > AUTH_FAILED && !vpninfo->proxy_user && !vpninfo->proxy_pass) buf[2 + nr_auth_methods++] = SOCKS_AUTH_GSSAPI; #endif if (vpninfo->proxy_auth[AUTH_TYPE_BASIC].state > AUTH_FAILED && vpninfo->proxy_user && vpninfo->proxy_pass) buf[2 + nr_auth_methods++] = SOCKS_AUTH_PASSWORD; buf[1] = nr_auth_methods; if ((i = proxy_write(vpninfo, buf, 2 + nr_auth_methods)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing auth request to SOCKS proxy: %s\n"), strerror(-i)); return i; } if ((i = proxy_read(vpninfo, buf, 2)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading auth response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (buf[0] != 5) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected auth response from SOCKS proxy: %02x %02x\n"), buf[0], buf[1]); return -EIO; } switch ((unsigned char)buf[1]) { case SOCKS_AUTH_NONE: /* No authentication */ break; case SOCKS_AUTH_GSSAPI: #if defined(HAVE_GSSAPI) || defined(_WIN32) vpn_progress(vpninfo, PRG_DEBUG, _("SOCKS server requested GSSAPI authentication\n")); if (socks_gssapi_auth(vpninfo)) return -EIO; break; #else /* This should never happen since we didn't ask for it! */ vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested GSSAPI authentication\n")); return -EIO; #endif case SOCKS_AUTH_PASSWORD: vpn_progress(vpninfo, PRG_DEBUG, _("SOCKS server requested password authentication\n")); if (socks_password_auth(vpninfo)) return -EIO; break; case SOCKS_AUTH_NO_ACCEPTABLE: vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requires authentication\n")); vpn_progress(vpninfo, PRG_INFO, _("This version of OpenConnect was built without GSSAPI support\n")); return -EIO; default: vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested unknown authentication type %02x\n"), (unsigned char)buf[1]); return -EIO; } vpn_progress(vpninfo, PRG_INFO, _("Requesting SOCKS proxy connection to %s:%d\n"), vpninfo->hostname, vpninfo->port); buf[0] = 5; /* SOCKS version */ buf[1] = 1; /* CONNECT */ buf[2] = 0; /* Reserved */ buf[3] = 3; /* Address type is domain name */ buf[4] = strlen(vpninfo->hostname); strcpy((char *)buf + 5, vpninfo->hostname); i = strlen(vpninfo->hostname) + 5; store_be16(buf + i, vpninfo->port); i += 2; if ((i = proxy_write(vpninfo, buf, i)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing connect request to SOCKS proxy: %s\n"), strerror(-i)); return i; } /* Read 5 bytes -- up to and including the first byte of the returned address (which might be the length byte of a domain name) */ if ((i = proxy_read(vpninfo, buf, 5)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading connect response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (i != 5 || buf[0] != 5) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected connect response from SOCKS proxy: %02x %02x...\n"), buf[0], buf[1]); return -EIO; } if (buf[1]) { unsigned char err = buf[1]; if (err < sizeof(socks_errors) / sizeof(socks_errors[0])) vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy error %02x: %s\n"), err, _(socks_errors[err])); else vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy error %02x\n"), err); return -EIO; } /* Connect responses contain an address */ switch (buf[3]) { case 1: /* Legacy IP */ i = 5; break; case 3: /* Domain name */ i = buf[4] + 2; break; case 4: /* IPv6 */ i = 17; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unexpected address type %02x in SOCKS connect response\n"), buf[3]); return -EIO; } if ((i = proxy_read(vpninfo, buf, i)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading connect response from SOCKS proxy: %s\n"), strerror(-i)); return i; } return 0; } static int process_http_proxy(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; int result; int auth = vpninfo->proxy_close_during_auth; vpninfo->proxy_close_during_auth = 0; vpn_progress(vpninfo, PRG_INFO, _("Requesting HTTP proxy connection to %s:%d\n"), vpninfo->hostname, vpninfo->port); retry: reqbuf = buf_alloc(); buf_append(reqbuf, "CONNECT %s:%d HTTP/1.1\r\n", vpninfo->hostname, vpninfo->port); buf_append(reqbuf, "Host: %s\r\n", vpninfo->hostname); buf_append(reqbuf, "User-Agent: %s\r\n", vpninfo->useragent); buf_append(reqbuf, "Proxy-Connection: keep-alive\r\n"); buf_append(reqbuf, "Connection: keep-alive\r\n"); buf_append(reqbuf, "Accept-Encoding: identity\r\n"); if (auth) { result = gen_authorization_hdr(vpninfo, 1, reqbuf); if (result) { buf_free(reqbuf); return result; } /* Forget existing challenges */ clear_auth_states(vpninfo, vpninfo->proxy_auth, 0); } buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) return buf_free(reqbuf); if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); result = proxy_write(vpninfo, reqbuf->data, reqbuf->pos); if (result < 0) { buf_free(reqbuf); vpn_progress(vpninfo, PRG_ERR, _("Sending proxy request failed: %s\n"), strerror(-result)); return result; } result = process_http_response(vpninfo, 1, proxy_auth_hdrs, reqbuf); buf_free(reqbuf); if (result < 0) return -EINVAL; if (result == 407) { /* If the proxy asked us to close the connection, do so */ if (vpninfo->proxy_close_during_auth) return -EAGAIN; auth = 1; goto retry; } if (result == 200) return 0; vpn_progress(vpninfo, PRG_ERR, _("Proxy CONNECT request failed: %d\n"), result); return -EIO; } int process_proxy(struct openconnect_info *vpninfo, int ssl_sock) { int ret; vpninfo->proxy_fd = ssl_sock; vpninfo->ssl_read = proxy_read; vpninfo->ssl_write = proxy_write; vpninfo->ssl_gets = proxy_gets; if (!vpninfo->proxy_type || !strcmp(vpninfo->proxy_type, "http")) ret = process_http_proxy(vpninfo); else if (!strcmp(vpninfo->proxy_type, "socks") || !strcmp(vpninfo->proxy_type, "socks5")) ret = process_socks_proxy(vpninfo); else { vpn_progress(vpninfo, PRG_ERR, _("Unknown proxy type '%s'\n"), vpninfo->proxy_type); ret = -EIO; } vpninfo->proxy_fd = -1; if (!vpninfo->proxy_close_during_auth) clear_auth_states(vpninfo, vpninfo->proxy_auth, 1); return ret; } int openconnect_set_http_proxy(struct openconnect_info *vpninfo, const char *proxy) { char *url = strdup(proxy), *p; int ret; if (!url) return -ENOMEM; free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; ret = internal_parse_url(url, &vpninfo->proxy_type, &vpninfo->proxy, &vpninfo->proxy_port, NULL, 80); if (ret) goto out; p = strchr(vpninfo->proxy, '@'); if (p) { /* Proxy username/password */ *p = 0; vpninfo->proxy_user = vpninfo->proxy; vpninfo->proxy = strdup(p + 1); p = strchr(vpninfo->proxy_user, ':'); if (p) { *p = 0; vpninfo->proxy_pass = strdup(p + 1); } } if (vpninfo->proxy_type && strcmp(vpninfo->proxy_type, "http") && strcmp(vpninfo->proxy_type, "socks") && strcmp(vpninfo->proxy_type, "socks5")) { vpn_progress(vpninfo, PRG_ERR, _("Only http or socks(5) proxies supported\n")); free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; return -EINVAL; } out: free(url); return ret; } void http_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { struct oc_vpn_option *opt; buf_append(buf, "Host: %s\r\n", vpninfo->hostname); buf_append(buf, "User-Agent: %s\r\n", vpninfo->useragent); if (vpninfo->cookies) { buf_append(buf, "Cookie: "); for (opt = vpninfo->cookies; opt; opt = opt->next) buf_append(buf, "%s=%s%s", opt->option, opt->value, opt->next ? "; " : "\r\n"); } } openconnect-7.06/jni.c0000664000076400007640000010016512461546130011645 00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include "openconnect.h" struct libctx { JNIEnv *jenv; jobject jobj; jobject async_lock; struct openconnect_info *vpninfo; int cmd_fd; int loglevel; }; static void throw_excep(JNIEnv *jenv, const char *exc, int line) { jclass excep; char msg[64]; snprintf(msg, 64, "%s:%d", __FILE__, line); (*jenv)->ExceptionClear(jenv); excep = (*jenv)->FindClass(jenv, exc); if (excep) (*jenv)->ThrowNew(jenv, excep, msg); } #define OOM(jenv) do { throw_excep(jenv, "java/lang/OutOfMemoryError", __LINE__); } while (0) static struct libctx *getctx(JNIEnv *jenv, jobject jobj) { jclass jcls = (*jenv)->GetObjectClass(jenv, jobj); jfieldID jfld = (*jenv)->GetFieldID(jenv, jcls, "libctx", "J"); if (!jfld) return NULL; return (void *)(unsigned long)(*jenv)->GetLongField(jenv, jobj, jfld); } /* * GetMethodID() and GetFieldID() and NewStringUTF() will automatically throw exceptions on error */ static jmethodID get_obj_mid(struct libctx *ctx, jobject jobj, const char *name, const char *sig) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, sig); return mid; } static jstring dup_to_jstring(JNIEnv *jenv, const char *in) { /* * Many implementations of NewStringUTF() will return NULL on * NULL input, but that isn't guaranteed: * http://gcc.gnu.org/bugzilla/show_bug.cgi?id=35979 */ return in ? (*jenv)->NewStringUTF(jenv, in) : NULL; } static int get_cstring(JNIEnv *jenv, jstring in, const char **out) { const char *tmp; if (in == NULL) { *out = NULL; return 0; } tmp = (*jenv)->GetStringUTFChars(jenv, in, NULL); if (!tmp) { OOM(jenv); return -1; } *out = tmp; return 0; } static void release_cstring(JNIEnv *jenv, jstring jstr, const char *cstr) { if (cstr) (*jenv)->ReleaseStringUTFChars(jenv, jstr, cstr); } static int set_int(struct libctx *ctx, jobject jobj, const char *name, int value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "I"); if (!jfld) return -1; (*ctx->jenv)->SetIntField(ctx->jenv, jobj, jfld, value); return 0; } static int set_long(struct libctx *ctx, jobject jobj, const char *name, uint64_t value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "J"); if (!jfld) return -1; (*ctx->jenv)->SetLongField(ctx->jenv, jobj, jfld, (jlong)value); return 0; } static int set_string(struct libctx *ctx, jobject jobj, const char *name, const char *value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "Ljava/lang/String;"); jstring jarg; if (!jfld) return -1; jarg = dup_to_jstring(ctx->jenv, value); if (value && !jarg) return -1; (*ctx->jenv)->SetObjectField(ctx->jenv, jobj, jfld, jarg); return 0; } static int add_string(struct libctx *ctx, jclass jcls, jobject jobj, const char *name, const char *value) { jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, "(Ljava/lang/String;)V"); jstring jarg; if (!value) return 0; if (!mid) return -1; jarg = dup_to_jstring(ctx->jenv, value); if (!jarg) return -1; (*ctx->jenv)->CallVoidMethod(ctx->jenv, jobj, mid, jarg); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg); return 0; } static int add_string_pair(struct libctx *ctx, jclass jcls, jobject jobj, const char *name, const char *key, const char *value) { jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, "(Ljava/lang/String;Ljava/lang/String;)V"); jstring jarg0, jarg1; if (!key || !value) return -1; if (!mid) return -1; jarg0 = dup_to_jstring(ctx->jenv, key); if (!jarg0) return -1; jarg1 = dup_to_jstring(ctx->jenv, value); if (!jarg1) { (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg0); return -1; } (*ctx->jenv)->CallVoidMethod(ctx->jenv, jobj, mid, jarg0, jarg1); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg1); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg0); return 0; } static int validate_peer_cert_cb(void *privdata, const char *reason) { struct libctx *ctx = privdata; jstring jreason; int ret = -1; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; jreason = dup_to_jstring(ctx->jenv, reason); if (!jreason) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onValidatePeerCert", "(Ljava/lang/String;)I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jreason); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static int write_new_config_cb(void *privdata, const char *buf, int buflen) { struct libctx *ctx = privdata; jmethodID mid; jbyteArray jbuf; int ret = -1; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; mid = get_obj_mid(ctx, ctx->jobj, "onWriteNewConfig", "([B)I"); if (!mid) goto out; jbuf = (*ctx->jenv)->NewByteArray(ctx->jenv, buflen); if (!jbuf) goto out; (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, jbuf, 0, buflen, (jbyte *)buf); ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jbuf); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static void protect_socket_cb(void *privdata, int fd) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onProtectSocket", "(I)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, fd); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void stats_cb(void *privdata, const struct oc_stats *stats) { struct libctx *ctx = privdata; jmethodID mid; jclass jcls; jobject jobj = NULL; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$VPNStats"); if (jcls == NULL) goto out; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) goto out; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) goto out; if (set_long(ctx, jobj, "txPkts", stats->tx_pkts) || set_long(ctx, jobj, "txBytes", stats->tx_bytes) || set_long(ctx, jobj, "rxPkts", stats->rx_pkts) || set_long(ctx, jobj, "rxBytes", stats->rx_bytes)) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onStatsUpdate", "(Lorg/infradead/libopenconnect/LibOpenConnect$VPNStats;)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, jobj); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static jobject new_auth_form(struct libctx *ctx, struct oc_auth_form *form) { jmethodID mid; jclass jcls; jobject jobj = NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$AuthForm"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "banner", form->banner) || set_string(ctx, jobj, "message", form->message) || set_string(ctx, jobj, "error", form->error) || set_string(ctx, jobj, "authID", form->auth_id) || set_string(ctx, jobj, "method", form->method) || set_string(ctx, jobj, "action", form->action) || set_int(ctx, jobj, "authgroupSelection", form->authgroup_selection)) { return NULL; } return jobj; } static jobject new_form_choice(struct libctx *ctx, struct oc_choice *choice) { jmethodID mid; jclass jcls; jobject jobj = NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$FormChoice"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "name", choice->name) || set_string(ctx, jobj, "label", choice->label) || set_string(ctx, jobj, "authType", choice->auth_type) || set_string(ctx, jobj, "overrideName", choice->override_name) || set_string(ctx, jobj, "overrideLabel", choice->override_label)) { return NULL; } return jobj; } static int populate_select_choices(struct libctx *ctx, jobject jopt, struct oc_form_opt_select *opt) { jmethodID mid; int i; mid = get_obj_mid(ctx, jopt, "addChoice", "(Lorg/infradead/libopenconnect/LibOpenConnect$FormChoice;)V"); if (!mid) return -1; for (i = 0; i < opt->nr_choices; i++) { jobject jformchoice = new_form_choice(ctx, opt->choices[i]); if (!jformchoice) return -1; (*ctx->jenv)->CallVoidMethod(ctx->jenv, jopt, mid, jformchoice); } return 0; } static int add_form_option(struct libctx *ctx, jobject jform, struct oc_form_opt *opt, int is_authgroup) { jmethodID addOpt; jobject jopt; addOpt = get_obj_mid(ctx, jform, "addOpt", "(Z)Lorg/infradead/libopenconnect/LibOpenConnect$FormOpt;"); if (!addOpt) return -1; jopt = (*ctx->jenv)->CallObjectMethod(ctx->jenv, jform, addOpt, is_authgroup); if (jopt == NULL) return -1; if (set_int(ctx, jopt, "type", opt->type) || set_string(ctx, jopt, "name", opt->name) || set_string(ctx, jopt, "label", opt->label) || set_string(ctx, jopt, "value", opt->_value) || set_long(ctx, jopt, "flags", opt->flags)) return -1; if (opt->type == OC_FORM_OPT_SELECT && populate_select_choices(ctx, jopt, (struct oc_form_opt_select *)opt)) return -1; return 0; } static char *lookup_choice_name(struct oc_form_opt_select *opt, const char *name) { int i; /* opt->_value is NOT a caller-allocated string for OC_FORM_OPT_SELECT */ for (i = 0; i < opt->nr_choices; i++) if (!strcmp(opt->choices[i]->name, name)) return opt->choices[i]->name; return NULL; } static int process_auth_form_cb(void *privdata, struct oc_auth_form *form) { struct libctx *ctx = privdata; jobject jform; jmethodID callback, getOptValue; struct oc_form_opt *opt; jint ret; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; /* create and populate new AuthForm object and option/choice lists */ jform = new_auth_form(ctx, form); if (!jform) goto err; getOptValue = get_obj_mid(ctx, jform, "getOptValue", "(Ljava/lang/String;)Ljava/lang/String;"); if (!getOptValue) goto err; for (opt = form->opts; opt; opt = opt->next) { int is_authgroup = opt == (void *)form->authgroup_opt; if (add_form_option(ctx, jform, opt, is_authgroup) < 0) goto err; } /* invoke onProcessAuthForm callback */ callback = get_obj_mid(ctx, ctx->jobj, "onProcessAuthForm", "(Lorg/infradead/libopenconnect/LibOpenConnect$AuthForm;)I"); if (!callback) goto err; ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, callback, jform); /* copy any populated form fields back into the C structs */ for (opt = form->opts; opt; opt = opt->next) { jstring jname, jvalue; jname = dup_to_jstring(ctx->jenv, opt->name); if (!jname) goto err; jvalue = (*ctx->jenv)->CallObjectMethod(ctx->jenv, jform, getOptValue, jname); if (jvalue) { const char *tmp = (*ctx->jenv)->GetStringUTFChars(ctx->jenv, jvalue, NULL); if (!tmp) goto err; if (opt->type == OC_FORM_OPT_SELECT) opt->_value = lookup_choice_name((void *)opt, tmp); else { free(opt->_value); opt->_value = strdup(tmp); if (!opt->_value) OOM(ctx->jenv); } (*ctx->jenv)->ReleaseStringUTFChars(ctx->jenv, jvalue, tmp); } } (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; err: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return -1; } static void __attribute__ ((format(printf, 3, 4))) progress_cb(void *privdata, int level, const char *fmt, ...) { struct libctx *ctx = privdata; va_list ap; char *msg; jstring jmsg; int ret, loglevel; jmethodID mid; (*ctx->jenv)->MonitorEnter(ctx->jenv, ctx->async_lock); loglevel = ctx->loglevel; (*ctx->jenv)->MonitorExit(ctx->jenv, ctx->async_lock); if (level > loglevel) return; va_start(ap, fmt); ret = vasprintf(&msg, fmt, ap); va_end(ap); if (ret < 0) { OOM(ctx->jenv); return; } if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; jmsg = dup_to_jstring(ctx->jenv, msg); free(msg); if (!jmsg) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onProgress", "(ILjava/lang/String;)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, level, jmsg); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static int lock_token_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; int ret = -1; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; mid = get_obj_mid(ctx, ctx->jobj, "onTokenLock", "()I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static int unlock_token_cb(void *privdata, const char *new_token) { struct libctx *ctx = privdata; jstring jtoken; int ret = -1; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; jtoken = dup_to_jstring(ctx->jenv, new_token); if (!jtoken) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onTokenUnlock", "(Ljava/lang/String;)I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jtoken); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } /* Library init/uninit */ static jobject init_async_lock(struct libctx *ctx) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, ctx->jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, "asyncLock", "Ljava/lang/Object;"); jobject jobj = (*ctx->jenv)->GetObjectField(ctx->jenv, ctx->jobj, jfld); if (jobj) jobj = (*ctx->jenv)->NewGlobalRef(ctx->jenv, jobj); return jobj; } JNIEXPORT jlong JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_init( JNIEnv *jenv, jobject jobj, jstring juseragent) { char *useragent; struct libctx *ctx = calloc(1, sizeof(*ctx)); if (!ctx) goto bad; ctx->jenv = jenv; ctx->jobj = (*jenv)->NewGlobalRef(jenv, jobj); if (!ctx->jobj) goto bad_free_ctx; ctx->async_lock = init_async_lock(ctx); if (!ctx->async_lock) goto bad_delete_obj_ref; useragent = (char *)(*jenv)->GetStringUTFChars(jenv, juseragent, NULL); if (!useragent) goto bad_delete_ref; ctx->vpninfo = openconnect_vpninfo_new(useragent, validate_peer_cert_cb, write_new_config_cb, process_auth_form_cb, progress_cb, ctx); (*jenv)->ReleaseStringUTFChars(jenv, juseragent, useragent); if (!ctx->vpninfo) goto bad_delete_ref; openconnect_set_token_callbacks(ctx->vpninfo, ctx, lock_token_cb, unlock_token_cb); openconnect_set_protect_socket_handler(ctx->vpninfo, protect_socket_cb); openconnect_set_stats_handler(ctx->vpninfo, stats_cb); ctx->cmd_fd = openconnect_setup_cmd_pipe(ctx->vpninfo); if (ctx->cmd_fd < 0) goto bad_free_vpninfo; ctx->loglevel = PRG_DEBUG; return (jlong)(unsigned long)ctx; bad_free_vpninfo: openconnect_vpninfo_free(ctx->vpninfo); bad_delete_ref: (*jenv)->DeleteGlobalRef(jenv, ctx->async_lock); bad_delete_obj_ref: (*jenv)->DeleteGlobalRef(jenv, ctx->jobj); bad_free_ctx: free(ctx); bad: OOM(jenv); return 0; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_free( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_vpninfo_free(ctx->vpninfo); (*jenv)->DeleteGlobalRef(jenv, ctx->async_lock); (*jenv)->DeleteGlobalRef(jenv, ctx->jobj); free(ctx); } static void write_cmd_pipe(JNIEnv *jenv, jobject jobj, char cmd) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; if (write(ctx->cmd_fd, &cmd, 1) < 0) { /* probably dead already */ } } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_doCancel( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_CANCEL); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_pause( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_PAUSE); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_requestStats( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_STATS); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_globalInit( JNIEnv *jenv, jclass jcls) { openconnect_init_ssl(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_obtainCookie( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return 0; return openconnect_obtain_cookie(ctx->vpninfo); } /* special handling: caller-allocated buffer */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertHash( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); const char *hash; jstring jresult = NULL; if (!ctx) return NULL; hash = openconnect_get_peer_cert_hash(ctx->vpninfo); if (!hash) return NULL; jresult = dup_to_jstring(ctx->jenv, hash); if (!jresult) OOM(ctx->jenv); return jresult; } /* special handling: callee-allocated, caller-freed string */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertDetails( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); char *buf = NULL; jstring jresult = NULL; if (!ctx) return NULL; buf = openconnect_get_peer_cert_details(ctx->vpninfo); if (!buf) return NULL; jresult = dup_to_jstring(ctx->jenv, buf); if (!jresult) OOM(ctx->jenv); openconnect_free_cert_info(ctx->vpninfo, buf); return jresult; } /* special handling: callee-allocated, caller-freed binary buffer */ JNIEXPORT jbyteArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertDER( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); unsigned char *buf = NULL; int ret; jbyteArray jresult = NULL; if (!ctx) return NULL; ret = openconnect_get_peer_cert_DER(ctx->vpninfo, &buf); if (ret < 0) return NULL; jresult = (*ctx->jenv)->NewByteArray(ctx->jenv, ret); if (jresult) (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, jresult, 0, ret, (jbyte *) buf); openconnect_free_cert_info(ctx->vpninfo, buf); return jresult; } /* special handling: two string arguments */ JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setClientCert( JNIEnv *jenv, jobject jobj, jstring jcert, jstring jsslkey) { struct libctx *ctx = getctx(jenv, jobj); const char *cert = NULL, *sslkey = NULL; if (ctx && !get_cstring(ctx->jenv, jcert, &cert) && !get_cstring(ctx->jenv, jsslkey, &sslkey)) openconnect_set_client_cert(ctx->vpninfo, cert, sslkey); release_cstring(ctx->jenv, jcert, cert); release_cstring(ctx->jenv, jsslkey, sslkey); return; } /* special handling: multiple string arguments */ JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunDevice( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL; int ret = -ENOMEM; if (ctx && !get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1)) ret = openconnect_setup_tun_device(ctx->vpninfo, arg0, arg1); release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); return ret; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCSDWrapper( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1, jstring jarg2) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL, *arg2 = NULL; if (ctx && !get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1) && !get_cstring(ctx->jenv, jarg2, &arg2)) { openconnect_setup_csd(ctx->vpninfo, getuid(), 1, arg0); openconnect_set_csd_environ(ctx->vpninfo, "TMPDIR", arg1); openconnect_set_csd_environ(ctx->vpninfo, "PATH", arg2); } release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); release_cstring(ctx->jenv, jarg2, arg2); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setMobileInfo( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1, jstring jarg2) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL, *arg2 = NULL; if (ctx && !get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1) && !get_cstring(ctx->jenv, jarg2, &arg2)) openconnect_set_mobile_info(ctx->vpninfo, arg0, arg1, arg2); release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); release_cstring(ctx->jenv, jarg2, arg2); } /* class methods (general library info) */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getVersion( JNIEnv *jenv, jclass jcls) { return dup_to_jstring(jenv, openconnect_get_version()); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasPKCS11Support( JNIEnv *jenv, jclass jcls) { return openconnect_has_pkcs11_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasTSSBlobSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_tss_blob_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasStokenSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_stoken_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasOATHSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_oath_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasYubiOATHSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_yubioath_support(); } /* simple cases: void or int params */ JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPort( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_get_port(ctx->vpninfo); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_passphraseFromFSID( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_passphrase_from_fsid(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_clearCookie( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_clear_cookie(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_resetSSL( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_reset_ssl(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCertExpiryWarning( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_cert_expiry_warning(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setReqMTU( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_reqmtu(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setDPD( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_dpd(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setPFS( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_pfs(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setSystemTrust( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_system_trust(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_makeCSTPConnection( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_make_cstp_connection(ctx->vpninfo); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupDTLS( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_setup_dtls(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_mainloop( JNIEnv *jenv, jobject jobj, jint arg0, jint arg1) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_mainloop(ctx->vpninfo, arg0, arg1); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setLogLevel( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; (*ctx->jenv)->MonitorEnter(ctx->jenv, ctx->async_lock); ctx->loglevel = arg; (*ctx->jenv)->MonitorExit(ctx->jenv, ctx->async_lock); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunFD( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_setup_tun_fd(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setXMLPost( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_xmlpost(ctx->vpninfo, arg); } /* simple cases: return a const string (no need to free it) */ #define RETURN_STRING_START \ struct libctx *ctx = getctx(jenv, jobj); \ const char *buf = NULL; \ jstring jresult = NULL; \ if (!ctx) \ return NULL; \ #define RETURN_STRING_END \ if (!buf) \ return NULL; \ jresult = dup_to_jstring(ctx->jenv, buf); \ if (!jresult) \ OOM(ctx->jenv); \ return jresult; JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getHostname( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_hostname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getUrlpath( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_urlpath(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCookie( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cookie(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIFName( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_ifname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDTLSCipher( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dtls_cipher(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCSTPCipher( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cstp_cipher(ctx->vpninfo); RETURN_STRING_END } #define SET_STRING_START(ret) \ struct libctx *ctx = getctx(jenv, jobj); \ const char *arg = NULL; \ if (get_cstring(ctx->jenv, jarg, &arg)) \ return ret; #define SET_STRING_END() \ release_cstring(ctx->jenv, jarg, arg) JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_checkPeerCertHash( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_check_peer_cert_hash(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_parseURL( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_parse_url(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setProxyAuth( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_proxy_auth(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setHTTPProxy( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_http_proxy(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setXMLSHA1( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_xmlsha1(ctx->vpninfo, arg, strlen(arg) + 1); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setHostname( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_hostname(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setUrlpath( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_urlpath(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCAFile( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_cafile(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setReportedOS( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START(-ENOMEM) return openconnect_set_reported_os(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setTokenMode( JNIEnv *jenv, jobject jobj, jint mode, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_token_mode(ctx->vpninfo, mode, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunScript( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_setup_tun_script(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jobject JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIPInfo( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); jmethodID mid; jclass jcls; const struct oc_ip_info *ip; const struct oc_vpn_option *cstp, *dtls; struct oc_split_include *inc; int i; if (!ctx) return NULL; if (openconnect_get_ip_info(ctx->vpninfo, &ip, &cstp, &dtls) < 0) return NULL; if (!ip) return NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$IPInfo"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "addr", ip->addr) || set_string(ctx, jobj, "netmask", ip->netmask) || set_string(ctx, jobj, "addr6", ip->addr6) || set_string(ctx, jobj, "netmask6", ip->netmask6) || set_string(ctx, jobj, "domain", ip->domain) || set_string(ctx, jobj, "proxyPac", ip->proxy_pac) || set_int(ctx, jobj, "MTU", ip->mtu)) return NULL; for (i = 0; i < 3; i++) { if (ip->dns[i] && add_string(ctx, jcls, jobj, "addDNS", ip->dns[i])) return NULL; if (ip->nbns[i] && add_string(ctx, jcls, jobj, "addNBNS", ip->nbns[i])) return NULL; } for (inc = ip->split_dns; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitDNS", inc->route)) return NULL; for (inc = ip->split_includes; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitInclude", inc->route)) return NULL; for (inc = ip->split_excludes; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitExclude", inc->route)) return NULL; for (; cstp; cstp = cstp->next) if (add_string_pair(ctx, jcls, jobj, "addCSTPOption", cstp->option, cstp->value)) return NULL; for (; dtls; dtls = dtls->next) if (add_string_pair(ctx, jcls, jobj, "addDTLSOption", dtls->option, dtls->value)) return NULL; return jobj; } openconnect-7.06/Makefile.am0000664000076400007640000001753212474364513012771 00000000000000 SUBDIRS = if BUILD_WWW SUBDIRS += www endif if USE_NLS SUBDIRS += po endif lib_LTLIBRARIES = libopenconnect.la sbin_PROGRAMS = openconnect man8_MANS = openconnect.8 AM_CFLAGS = @WFLAGS@ AM_CPPFLAGS = -DLOCALEDIR="\"$(localedir)\"" if BUILD_LZSTEST lzstest_SOURCES = lzstest.c noinst_PROGRAMS = lzstest endif openconnect_SOURCES = xml.c main.c openconnect_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) openconnect_LDADD = libopenconnect.la $(SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(INTL_LIBS) $(ICONV_LIBS) library_srcs = ssl.c http.c http-auth.c auth-common.c library.c compat.c lzs.c mainloop.c script.c ntlm.c digest.c lib_srcs_cisco = auth.c cstp.c dtls.c lib_srcs_juniper = oncp.c lzo.c auth-juniper.c lib_srcs_gnutls = gnutls.c gnutls_pkcs12.c gnutls_tpm.c lib_srcs_openssl = openssl.c openssl-pkcs11.c lib_srcs_win32 = tun-win32.c sspi.c lib_srcs_posix = tun.c lib_srcs_gssapi = gssapi.c lib_srcs_iconv = iconv.c lib_srcs_oath = oath.c lib_srcs_yubikey = yubikey.c lib_srcs_stoken = stoken.c POTFILES = $(openconnect_SOURCES) $(lib_srcs_cisco) $(lib_srcs_juniper) \ gnutls-esp.c openssl-esp.c esp.c \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(library_srcs) \ $(lib_srcs_win32) $(lib_srcs_posix) $(lib_srcs_gssapi) $(lib_srcs_iconv) \ $(lib_srcs_oath) $(lib_srcs_yubikey) $(lib_srcs_stoken) openconnect-internal.h library_srcs += $(lib_srcs_juniper) $(lib_srcs_cisco) $(lib_srcs_oath) if OPENCONNECT_LIBPCSCLITE library_srcs += $(lib_srcs_yubikey) endif if OPENCONNECT_STOKEN library_srcs += $(lib_srcs_stoken) endif if OPENCONNECT_GSSAPI library_srcs += $(lib_srcs_gssapi) endif if OPENCONNECT_GNUTLS library_srcs += $(lib_srcs_gnutls) endif if ESP_GNUTLS lib_srcs_juniper += gnutls-esp.c esp.c endif if ESP_OPENSSL lib_srcs_juniper += openssl-esp.c esp.c endif if OPENCONNECT_OPENSSL library_srcs += $(lib_srcs_openssl) endif if OPENCONNECT_ICONV library_srcs += $(lib_srcs_iconv) endif if OPENCONNECT_WIN32 library_srcs += $(lib_srcs_win32) else library_srcs += $(lib_srcs_posix) endif libopenconnect_la_SOURCES = version.c $(library_srcs) libopenconnect_la_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(P11KIT_CFLAGS) $(TSS_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) $(LIBP11_CFLAGS) $(LIBLZ4_CFLAGS) libopenconnect_la_LIBADD = $(SSL_LIBS) $(DTLS_SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(ZLIB_LIBS) $(P11KIT_LIBS) $(TSS_LIBS) $(LIBSTOKEN_LIBS) $(LIBPSKC_LIBS) $(GSSAPI_LIBS) $(INTL_LIBS) $(ICONV_LIBS) $(LIBPCSCLITE_LIBS) $(LIBP11_LIBS) $(LIBLZ4_LIBS) if OPENBSD_LIBTOOL # OpenBSD's libtool doesn't have -version-number, but its -version-info arg # does what GNU libtool's -version-number does. Which arguably is what the # GNU -version-info arg ought to do too. I hate libtool. LT_VER_ARG = -version-info else LT_VER_ARG = -version-number endif libopenconnect_la_LDFLAGS = $(LT_VER_ARG) @APIMAJOR@:@APIMINOR@ -no-undefined noinst_HEADERS = openconnect-internal.h openconnect.h gnutls.h lzo.h include_HEADERS = openconnect.h if HAVE_VSCRIPT libopenconnect_la_LDFLAGS += @VSCRIPT_LDFLAGS@,libopenconnect.map libopenconnect_la_DEPENDENCIES = libopenconnect.map endif if OPENCONNECT_JNI if JNI_STANDALONE libopenconnect_la_SOURCES += jni.c libopenconnect_la_CFLAGS += $(JNI_CFLAGS) -Wno-missing-declarations else lib_LTLIBRARIES += libopenconnect-wrapper.la libopenconnect_wrapper_la_SOURCES = jni.c libopenconnect_wrapper_la_CFLAGS = $(AM_CFLAGS) $(JNI_CFLAGS) -Wno-missing-declarations libopenconnect_wrapper_la_LIBADD = libopenconnect.la endif endif pkgconfig_DATA = openconnect.pc EXTRA_DIST = version.sh COPYING.LGPL $(lib_srcs_openssl) $(lib_srcs_gnutls) EXTRA_DIST += $(shell cd "$(top_srcdir)" && \ git ls-tree HEAD -r --name-only -- android/ java/ 2>/dev/null) DISTCLEANFILES = $(pkgconfig_DATA) main.o: version.c version.c: $(library_srcs) $(lib_openssl_srcs) $(lib_gnutls_srcs) \ $(openconnect_SOURCES) Makefile.am configure.ac \ openconnect.h openconnect-internal.h version.sh @GITVERSIONDEPS@ @cd $(srcdir) && ./version.sh $(abs_builddir)/version.c tmp-dist: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 dist uncommitted-check: @if ! git update-index --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; fi DISTHOOK=1 dist-hook: uncommitted-check @if [ $(DISTHOOK) = 1 ]; then \ if ! git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is not tagged"; exit 1; fi ; \ if ! git diff --name-only --exit-code v$(VERSION) HEAD > /dev/null; then \ echo "*** ERROR: Git checkout not at version v$(VERSION)"; exit 1; fi ; \ fi sign-dist: dist @for a in $(DIST_ARCHIVES); do \ gpg --default-key 67E2F359 --detach-sign -a $$a ; \ done tag: uncommitted-check @if git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is already tagged"; exit 1; fi @sed 's/AC_INIT.*/AC_INIT(openconnect, $(VERSION))/' -i $(srcdir)/configure.ac @sed 's/^v=.*/v="v$(VERSION)"/' -i $(srcdir)/version.sh @( echo '1,//p' ;\ echo '//,$$p' ;\ echo '//a\' ;\ echo 'The latest release is OpenConnect v$(VERSION)\' ;\ echo '(PGP signature),\' ;\ echo 'released on $(shell date +%Y-%m-%d) with the following changelog:

    \' ;\ sed '0,/OpenConnect HEAD/d;/<\/ul>/,$$d;s/$$/\\/' $(srcdir)/www/changelog.xml ;\ echo ' ' ) | \ sed -n -f - -i $(srcdir)/www/download.xml @( echo "s/Last modified: .*/Last modified: $(shell date)/" ;\ echo '/
  • OpenConnect HEAD/a\' ;\ echo '
      \' ;\ echo '
    • No changelog entries yet
      • \';\ echo '

    \' ; echo '
    • \' ;\ echo '
  • OpenConnect v$(VERSION)\' ;\ echo ' (PGP signature) — $(shell date +%Y-%m-%d)' ) | \ sed -f - -i $(srcdir)/www/changelog.xml # stupid syntax highlighting ' @cd $(srcdir) && git commit -s -m "Tag version $(VERSION)" configure.ac version.sh www/download.xml www/changelog.xml @git tag v$(VERSION) @cd $(srcdir) && ./autogen.sh update-po: po/$(PACKAGE).pot @cd $(top_srcdir); if ! git diff-index --name-only --exit-code HEAD -- po/; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; \ else \ > po/LINGUAS; \ for a in po/*.po; do \ msgmerge -q -N -F $$a $(abs_builddir)/po/$(PACKAGE).pot > $$a.merge ; \ msgattrib -F --no-fuzzy --no-obsolete $$a.merge > $$a ; \ rm $$a.merge ; \ if msgattrib --translated $$a | grep -q msgstr; then \ echo $$a | sed 's%^po/\(.*\)\.po%\1%' >> po/LINGUAS ; \ fi ; \ done && \ if ! git update-index -q --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD -- po/ >/dev/null; then \ git commit -s -m "Resync translations with sources" -- po/ ; \ else \ echo No changes to commit ; \ fi; \ fi po/$(PACKAGE).pot: $(POTFILES) version.sh @echo "Regenerating $@" ; rm -f $@ && \ xgettext --directory=$(top_srcdir) --from-code=UTF-8 \ --sort-by-file --add-comments --keyword=_ --keyword=N_ \ --package-name="@PACKAGE@" --package-version="@VERSION@" \ --msgid-bugs-address=openconnect-devel@lists.infradead.org \ -o $@ $(POTFILES) ACLOCAL_AMFLAGS = -I m4